Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Distributed dynamic network security protecting system

A distributed network, dynamic security technology, applied in transmission systems, digital transmission systems, secure communication devices, etc., can solve the problem of inability to effectively realize dynamic self-immunity, inability to effectively process encryption protocols, and inability to prevent coordinated intrusion behaviors, etc. problem, to achieve the effect of dynamic self-immunity and scale expansion, prevention of distributed collaborative intrusion, and good scalability

Inactive Publication Date: 2004-08-04
HUAZHONG UNIV OF SCI & TECH
View PDF0 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This structure eliminates some weaknesses of traditional firewalls (for example: depends on the physical topology of the network, cannot prevent internal attacks, is not efficient, has many failure points, cannot effectively handle many end-to-end encryption protocols such as IPSec)
However, in this structure, with the increase of protected nodes, the task of the central management platform to issue policies will become increasingly heavy, which reduces the scalability of the system; in addition, this structure cannot prevent increasingly severe coordinated intrusions, and cannot effectively Realize dynamic autoimmunity

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Distributed dynamic network security protecting system
  • Distributed dynamic network security protecting system
  • Distributed dynamic network security protecting system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0041] Table 1 Hardware and network configuration of each node

[0042] Among them, one is used as the central management platform, and the remaining service nodes are divided into several groups according to services, such as: Web group, FTP group. The specific implementation is as follows: Node 1 acts as the central management platform, and loads the summary decision-making module and the policy release module; Nodes 2 to 8 are in the Web group, and Nodes 9 to 16 are in the FTP group, and each node is loaded with the micro-intrusion detection module and Micro-firewall module.

[0043] Combined with the accompanying drawings, the configuration of the entire system is described as follows:

[0044] 1) Packet filtering policy library(8)

[0045] The policy library has 6 fields in total, examples of which are shown in Table 2 and Table 3.

[0046] agreement number

source IP

source port

Destination IP

destination port

measu...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The distributed dynamic network security protecting system has central network administration station provided with summarizing decision module and policy releasing module. The network is divided into N subnetworks in tree structure, and each subnetwork administration station is provided with summarizing decision module and policy releasing module. Each node in the subnetwork has micro invasion detecting module and micro fire wall module installed. In the policy releasing module, mobile agency technology is adopted. The distributed micro invasion detecting module provides security protection in application layer while the distributed micro fire wall module provides security protection in kernel level. The double security protection makes the system capable of preventing outer and inner attack, preventing cooperative invasion and providing dynamic immunity.

Description

technical field [0001] The invention belongs to the field of computer security, in particular to a network dynamic security protection system based on distributed micro-firewall and micro-intrusion detection. Background technique [0002] With the increase of network crimes and the emergence of hacker websites, network security has become a crucial issue in the field of computer and its applications, so network security tools emerge in endlessly. Although people are constantly modifying the network protocols, the relatively mature and already commercialized intrusion detection and firewall technologies among network security tools have attracted much attention. These two technologies are applied security technologies based on modern communication network technology and information security technology, with the goal of protecting data, resources and users' reputation. [0003] The technical report of the China Cyber ​​Security Response Center pointed out that the current int...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/00
Inventor 韩宗芬金海刘科鲜丰易川江孙建华郭立
Owner HUAZHONG UNIV OF SCI & TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com