Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and system for establishing safe connection between nodes

A technology of secure connection and establishment method, applied in the field of establishment method and system of secure connection between nodes, capable of solving problems such as complex wired LAN topology, complex allocation and update process, and attack on switching equipment

Active Publication Date: 2010-09-15
CHINA IWNCOMM
View PDF3 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, this security measure requires the switching device to decrypt, encrypt, and then forward each data packet that needs to be forwarded, which undoubtedly brings a huge computational burden to the switching device in the LAN, and it is easy to cause attackers to attack the switching device. attack; and the delay of the data packet from the sending node to the destination node will also increase, reducing the network transmission efficiency
[0004] The topology of the wired LAN is relatively complex, and the number of nodes involved is relatively large, so the data communication in the network is relatively complicated.
If a static key pair is assigned between LAN nodes to establish a secure connection between nodes, the distribution and update process is extremely complicated

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for establishing safe connection between nodes
  • Method and system for establishing safe connection between nodes

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] The node N (Node) defined in the present invention refers to a user terminal STA (STation) and a switching device SW (SWitch) in a local area network. Physical layer devices such as hubs in the LAN are not treated as nodes.

[0039] It is assumed that a secure connection has been established between adjacent switching devices and user terminals, between adjacent switching devices and switching devices through pre-distribution or other security mechanisms, that is, they already have a shared key; all exchange Two devices have established a secure connection through pre-distribution or other security mechanisms, that is, they already have a shared key. The establishment mechanism of the assumed key is not limited or defined in the present invention.

[0040] to send source node N Source with destination node N Destination Take the establishment of a secure connection between the switching devices SW as an example. First refers to the node from which the source node N ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for establishing safe connection between nodes, which comprises that: 1) a transmitting source node NSource transmits a key request packet to switching equipment SWFirst; 2) the switching equipment SWFirst transmits a temporary key announcement packet to switching equipment SWLast; 3) the switching equipment SWLast transmits the key announcement packet to a destination node NDestination; 4) the destination node NDestination transmits a key announcement response packet to the switching equipment SWLast; 5) the switching equipment SWLast transmits a temporary key announcement response packet to the switching equipment SWFirst; 6) the switching equipment SWFirst transmits a key response packet to the transmitting source node NSource; and 7) the transmitting source node NSource receives the key response packet. The establishing and updating process is flexible, and shared static keys are not needed to be deployed between every two nodes in a total network by an administrator.

Description

technical field [0001] The invention relates to the field of wired local area network security application in information security technology, in particular to a method and system for establishing a secure connection between nodes. Background technique [0002] The wired LAN is generally a broadcast network, and the data sent by one node can be received by other nodes. All nodes on the network share the channel, which brings great security risks to the network. As long as the attacker accesses the network to monitor, he can capture all the data packets on the network. The local area network LAN defined by the existing national standard GB / T 15629.3 (corresponding to IEEE 802.3 or ISO / IEC 8802-3) does not provide data security methods, which makes it easy for attackers to steal key information. [0003] In the wired LAN, the standard organization IEEE realizes the security of the link layer by enhancing the security of IEEE 802.3. IEEE 802.1AE provides a data encryption pr...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/28
CPCH04L45/00
Inventor 李琴曹军铁满霞葛莉
Owner CHINA IWNCOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com