Global network access control method based on android device

A global network and access control technology, applied in the field of network communication, can solve problems such as low efficiency, uncontrollable web pages, and no support for pan-domain name resolution, so as to reduce system performance and network efficiency, reduce system resource occupation, and achieve information security. desired effect

Active Publication Date: 2021-11-19
南京领创信息科技有限公司
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] At present, there are two main types of network access control for mobile devices that are mainstream in the market. One is to control the browser to access the website through a dedicated browser. The main defects: 1) only control the dedicated browser, and cannot perform network control on third-party browsers
2) It is impossible to control the web pages embedded in other learning and work applications
The other is to simply implement global restrictions through the iptables rules of the operating system. The main defects: 1) Only ip address rules can be set to control
2) The white list of domain names needs to be converted into ip in advance, which is inefficient, and it is impossible to deal with changing IP addresses such as CDN networks
3) With the increase of the whitelist, the execution efficiency of rule writing is getting lower and lower
4) Pan-domain name resolution is not supported, and background management needs to add a large number of accurate domain name whitelist addresses
Neither of the two solutions can perform safe and effective network control on a large number of distributed mobile devices, and cannot effectively control mobile devices' access to illegal websites.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Global network access control method based on android device
  • Global network access control method based on android device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0092] like figure 1 As shown, this implementation includes background configuration module list 1, authorization module 2, automatic delivery interface module 3, whitelist writing module 4, DNS resolution and redirection module 5, network request resolution module 6, network access interception module 7 and data server8.

[0093] The background configuration module list 1 is stored in the data service 8 through the authorization module 2 . The automatic distribution interface module 3 reads the list stored in the data server 8 through the authorization module 2, and sends it to the white list writing module 4, and the white list writing module 4 writes the white list classification into the network request analysis module 6 and network access Intercept module 7. The DNS analysis redirection module 5 redirects the DNS analysis of the network request to the network request analysis module 6, and the network request analysis module 6 matches the destination address of the mobi...

Embodiment 2

[0095] like figure 2 Shown, the using method of embodiment 1 comprises the following steps:

[0096] (1) The mobile device initiates a network request;

[0097] (2) The domain name type network request that needs DNS resolution is redirected to the network request resolution module 6 by the DNS resolution redirection module 5; the IP type request will directly reach the network access interception module 7.

[0098] (3) The DNS resolution module performs generic domain name matching on the requested domain name and the written whitelist, and writes the matched domain name resolution result ip into the ipset table. The generic domain name matching algorithm is as follows:

[0099] S41. Take out the whitelist list line by line;

[0100] S42. Match the requested domain name string to the extracted whitelist string, counting from the end of the string, and if the match is successful, the comparison ends.

[0101] (4) When the network request arrives at the network access inter...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention relates to the technical field of network communication, in particular to an Android device-based global network access control system and method, including a background configuration module list, an authorization module, an automatic interface module, a whitelist writing module, and a DNS resolution and redirection module , a network request analysis module, a network access interception module and a data server. The invention enables the background of the mobile device to automatically obtain the white list and automatically perform network control; at the same time, it supports pan-domain name matching, which greatly reduces the workload and improves the efficiency of background management; instant request for instant analysis solves the performance and efficiency problems of large batches of centralized analysis, It reduces the occupation of system resources, and at the same time completely solves the problem of changing the IP address of the CDN network. Without the intervention of managers, the information security requirements of the global network control of mobile devices are efficiently realized.

Description

technical field [0001] The present invention relates to the technical field of network communication, in particular to a global network access control system and method based on an Android device. Background technique [0002] With the popularization of the mobile Internet, a large number of mobile application usage scenarios have emerged in various industries, and the use of mobile devices is quickly pushed to various industries such as mobile office, mobile government affairs, and smart education. The use of mobile smart terminals can effectively eliminate the limitations of location and time, and greatly improve the work and study efficiency of governments, schools, and enterprises, as well as the convenience of use; at the same time, it also brings many problems, especially in the network use of special equipment , based on the consideration of information security and the prevention of malicious software damage, the demand for network access control of mobile devices is...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12
Inventor 席建业孙超张泉
Owner 南京领创信息科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap