CN108449339A - A kind of cable network access security protection system and method based on equipment physical fingerprint feature - Google Patents
A kind of cable network access security protection system and method based on equipment physical fingerprint feature Download PDFInfo
- Publication number
- CN108449339A CN108449339A CN201810223027.5A CN201810223027A CN108449339A CN 108449339 A CN108449339 A CN 108449339A CN 201810223027 A CN201810223027 A CN 201810223027A CN 108449339 A CN108449339 A CN 108449339A
- Authority
- CN
- China
- Prior art keywords
- safety regulation
- network interface
- physical fingerprint
- unit
- interface unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Power Engineering (AREA)
- Small-Scale Networks (AREA)
Abstract
Disclosure of the invention a kind of cable network access security protection system and method, system based on equipment physical fingerprint feature include wireline equipment physical fingerprint extraction unit, wired network interface unit, internal network interface unit and safety regulation matching unit.Wireline equipment physical fingerprint extraction unit is reported to safety regulation matching unit from the physical fingerprint of wire signal extraction equipment, while wire signal is reached wired network interface unit;Wired network interface unit and internal network interface unit give the link layer data packet received to safety regulation matching unit respectively;Safety regulation matching unit matches the data received according to safety regulation, otherwise the packet discard if matching is unsuccessful forwards as former state.The present invention does not change original cable network access system framework, and the wireline equipment to accessing internal network carries out authentication, enhances the safety of network system, is suitable for the relevant technologies and the safety-related technology of traditional network based on safety of physical layer.
Description
Technical field
The present invention relates to information security field more particularly to a kind of cable network accesses based on equipment physical fingerprint feature
Security protection system and method.
Background technology
Any electronic component is all nonlinear, therefore, inside the transmitter of wireline equipment to be identified is existed a large amount of
Nonlinear source greatly makes the signal that equipment is sent out generate differentiation and also can even for same producer with a batch of product
Since the uncontrollable factor of production equipment generates special nonlinear characteristic.Equipment physics is formed to the extraction of this feature
Fingerprint extraction technology.Compared to traditional equipment identities authentication method, physical fingerprint extractive technique can effectively resist forgery,
The attacks such as distort, with the unclonable characteristic of physics.
On the other hand, current network security system is widely used the method for white list, blacklist to access in radio equipment
Link-layer identity mark be authenticated.However the identity of equipment is easy to forge, this allows for single for identity
The protection of mark is easy failure.Overcome this network usually using the device authentication end to end of additional network layer or more
The defect of security system, however device authentication must be transformed the wireline equipment of original wired network system and connect simultaneously end to end
Enter end equipment, for industrial products, the transformation except any genuine is all infeasible in practice.
Therefore, present invention proposition will add set of system in incoming end, will be carried out to physical fingerprint feature in wire signal
Traditional safety regulation based on link-layer identity mark is promoted to and contains two tuple of physical fingerprint-identity by extraction
Safety regulation, both avoided the arbitrary forgery identified to link-layer identity, and in turn avoided the transformation to original system, to carry
Rise the safety of cable network access system.
Invention content
Goal of the invention:It is of the existing technology in order to solve the problems, such as, especially for the arbitrary forgery of link-layer identity mark
Or the case where to the transformation of original system, authentication can be carried out with wireline equipment, promote the peace of cable network access system
Quan Xing, the present invention provide a kind of cable network access security protection system based on equipment physical fingerprint feature.
It is a further object of the present invention to provide a kind of, and the cable network based on equipment physical fingerprint feature accesses security protection
Method.
Technical solution:A kind of cable network access security protection system based on equipment physical fingerprint feature, including it is wired
Equipment physical fingerprint extraction unit, wired network interface unit, internal network interface unit and safety regulation matching unit;It is described
Wireline equipment physical fingerprint extraction unit is connect with wired network interface unit with safety regulation matching unit, and signal transmission side
It is single to being extracted for the transmission from wireline equipment physical fingerprint extraction unit to wired network interface unit, from wireline equipment physical fingerprint
Member is transmitted to safety regulation matching unit;Wired network interface unit, internal network interface unit match with safety regulation single
Member connection, and between wired network interface unit and safety regulation matching unit, internal network interface unit and safety regulation
With the signal transmitted in both directions between unit;
The wireline equipment physical fingerprint extraction unit includes memory, processor and storage on a memory and can locate
The computer program run on reason device, processor are realized when executing the program:It is extracted from the wire signal on network connection
The physical fingerprint feature of wireline equipment;
Safety regulation matching unit includes memory, processor and storage on a memory and can run on a processor
Computer program, processor are realized when executing the program:Storage and matching safety regulation, safety regulation includes that the physics of equipment refers to
Line, link-layer identity mark, network layer address, transport layer port number and application layer identity mark.
Preferably, the safety regulation matching unit is used for the safety regulation according to storage, from wireline equipment physical fingerprint
The wireline equipment physical fingerprint inputted in extraction unit, and from the link layer data packet that wired network interface unit inputs
Link-layer identity mark judges the legitimacy of the data inputted from wired network interface unit.
Preferably, further include the link layer data load inputted from wired network interface unit according to the safety regulation of storage
In include network layer address, transport layer port and application layer identity identifier judge the number inputted from wired network interface unit
According to legitimacy.
Preferably, the safety regulation matching unit is used for according to safety regulation link layer identity, network layer
Location, transport layer port number and application layer identity identify the binding relationship with wireline equipment physical fingerprint, judge to connect from internal network
Mouth unit input, that is, will be forwarded to the legitimacy of the data of wired network interface unit.
A kind of cable network access safety protecting method based on equipment physical fingerprint feature, includes the following steps:
Step 1:Safety regulation is inputted in safety regulation matching unit in advance, safety regulation includes link-layer identity mark
Knowledge, network layer address, transport layer port number and application layer identity identify the binding relationship with wireline equipment physical fingerprint;
Step 2:The wire signal on current network connecting line is received, wireline equipment physical fingerprint extraction unit is to wired
The physical features of signal are scanned, therefrom extract the physical fingerprint of wireline equipment, and physical fingerprint information is reported to peace
Full rule match unit, while wire signal is pass-through to wired network interface unit;
Step 3:Wire signal will become link layer data packet via the parsing of the physical layer protocol of wired network interface unit
It is transmitted to safety regulation matching unit;
Meanwhile the link layer data packet that Intranet is sent out is transmitted to safety regulation matching unit by internal network interface unit;
Step 4:Safety regulation matching unit is believed according to the physical fingerprint that wireline equipment physical fingerprint extraction unit extracts
Breath, identifies the wireline equipment currently connected by network connection, and record the physical fingerprint feature of current connection devices;
Safety regulation matching unit check wireline equipment physical fingerprint that wireline equipment physical fingerprint extraction unit reports with
Wireline equipment link-layer identity mark in the link layer data packet that wired network interface reports, and bound, then to tying up
The data packet of physical fingerprint feature is determined and safety regulation that step 1 prestores is matched, to judge from wired network interface
And the link-layer identity of the link layer data packet come identifies whether to match with the equipment physical fingerprint pre-entered in safety regulation,
If mismatching, link layer data packet is abandoned;If matching, wired network interface unit is transmitted through to the link layer data packet come and is forwarded
To internal network interface;
The wireline equipment physical fingerprint feature that safety regulation matching unit reports wireline equipment physical fingerprint extraction unit
It is stored, labeled as the physical fingerprint of the wireline equipment currently connected;Synchronously, safety regulation matching unit is by internal network
The link layer data packet that interface unit reports is matched with the safety regulation that step 1 prestores, pre- in safety regulation to obtain
The physical fingerprint feature for the legal wireline equipment deposited, and the link layer data packet reported with internal network interface unit is tied up
Fixed, last safety regulation matching unit judges equipment of the legitimate device physical fingerprint of link layer data packet binding with currently connecting
Physical fingerprint whether match, if mismatch, abandon link layer data packet, otherwise by internal network interface unit be transmitted through come
Link layer data packet has been forwarded to existing Network Interface Unit.
Preferably, the judgement in step 4 further includes the link number of plies come from wired network interface and internal network interface
Whether pre-entered with safety regulation according to network layer address, transport layer port and the application layer identity identifier for including in load
Equipment physical fingerprint matching.
Advantageous effect:System and method proposed by the present invention can not change original cable network access system framework
On the basis of, set of system is added in incoming end, the physical fingerprint feature in wire signal is extracted, by traditional based on link layer body
The safety regulation of part mark, which is promoted to, contains physical fingerprint-link-layer identity two tuples of mark, even contains physics and refers to
The safety regulation of the multi-component system of line-link-layer identity mark-network layer address-transport layer port-application layer identity mark, both kept away
Exempt from the arbitrary forgery identified to link-layer identity, in turn avoids the transformation to original system, cable network access unit and interior
Network insertion unit in portion's need not can be transformed using the equipment in existing network completely, to be referred to using the physics of wireline equipment
Line feature carries out authentication with identification information to the wireline equipment for accessing internal network, to enhance the peace of network system
Quan Xing is suitable for the relevant technologies and the safety-related technology of traditional network based on safety of physical layer.
Description of the drawings
Fig. 1 is the system pie graph that the cable network based on equipment physical fingerprint feature accesses security protection system;
Fig. 2 is the process chart that the cable network based on equipment physical fingerprint feature accesses safety protecting method;
Fig. 3 is the physical fingerprint feature extraction that the cable network based on equipment physical fingerprint feature accesses safety protecting method
With equipment identities identification (RNC-ID) analytic flow chart;
Fig. 4 is the cable network access safety protecting method based on equipment physical fingerprint feature slave cable network to inside
The safety regulation of network matches flow chart;
Fig. 5 be cable network based on equipment physical fingerprint feature access safety protecting method slave internal network to wired
The safety regulation of network matches flow chart.
Specific implementation mode
The invention will be further described in the following with reference to the drawings and specific embodiments.
As shown in Figure 1, the cable network based on equipment physical fingerprint feature accesses security protection system, including wireline equipment
Physical fingerprint extraction unit, wired network interface unit, internal network interface unit and safety regulation matching unit;It is described wired
Equipment physical fingerprint extraction unit is connect with wired network interface unit with safety regulation matching unit, and signal transmission direction is
From wireline equipment physical fingerprint extraction unit to wired network interface unit transmission, from wireline equipment physical fingerprint extraction unit to
Safety regulation matching unit transmits;Wired network interface unit, internal network interface unit connect with safety regulation matching unit
Connect, and between wired network interface unit and safety regulation matching unit, internal network interface unit matched with safety regulation it is single
Signal transmitted in both directions between member;
The wireline equipment physical fingerprint extraction unit includes memory, processor and storage on a memory and can locate
The computer program run on reason device, processor are realized when executing the program:It is extracted from the wire signal on network connection
The physical fingerprint feature of wireline equipment;
Safety regulation matching unit includes memory, processor and storage on a memory and can run on a processor
Computer program, processor are realized when executing the program:Storage and matching safety regulation, safety regulation includes that the physics of equipment refers to
Line, link-layer identity mark, network layer address, transport layer port number and application layer identity mark.
As shown in Fig. 2, the cable network based on equipment physical fingerprint feature accesses safety protecting method, specifically include following
Step:
Safety regulation is inputted in safety regulation matching unit in advance, safety regulation includes link-layer identity mark, network
The binding relationship of layer address, transport layer port number and application layer identity mark and wireline equipment physical fingerprint;Receive current network
Wire signal on connecting line, physics of the wireline equipment physical fingerprint extraction unit to the wire signal on current network connecting line
Feature is scanned, therefrom extracts the physical fingerprint of wireline equipment, and physical fingerprint information is reported to safety regulation matching
Unit, while wire signal is pass-through to wired network interface unit;Wired network interface unit is sent by general fashion processing
The wire signal that equipment generates, and give the link layer data packet received to safety regulation matching unit;Internal network interface
Unit handles internal network data by general fashion, and the link layer data received is wrapped report safety regulation matching unit;
Safety regulation matching unit is according to default rule to wireline equipment physical fingerprint extraction unit, wired network interface unit, interior
Data that portion's Network Interface Unit reports carry out physical fingerprint and link-layer identity mark, network layer address, transport layer port and
The rule match of application layer identity identifier abandons link layer data packet if finding with the conflicting data of rule, otherwise former
Sample forwards the data packet between internal network interface unit and wired network interface unit.
In the following, physical fingerprint feature extraction flow, the safety regulation from cable network to internal network will be directed to respectively
Safety regulation matching flow with flow and from internal network to cable network is described in detail.
1, physical fingerprint feature extraction flow
Based on equipment physical fingerprint feature cable network access safety protecting method physical fingerprint feature extraction with set
Standby identity process of analysis is as shown in Figure 3.Wireline equipment physical fingerprint extraction unit scans network first when extracting signal
Then effective physical features of the signal transmitted on connecting line remove the influence extraction sending device of network connection channel
Physical fingerprint feature finally reports safety regulation matching unit, meanwhile, wire signal is pass-through to wired network interface unit.
2, the safety regulation from cable network to internal network matches flow
Based on equipment physical fingerprint feature cable network access safety protecting method slave cable network to internal network
Safety regulation matching flow it is as shown in Figure 4.The physical fingerprint of wireline equipment physical fingerprint extraction unit extraction equipment first is special
Sign, and the transparent transmission wire signal is to wired network interface unit.Wired network interface receives wire signal by general procedure parsing,
The link layer data packet received is transmitted to safety regulation matching module.Then, safety regulation matching unit checks wired set
In the link layer data packet that the wireline equipment physical fingerprint that standby physical fingerprint extraction unit reports is reported with wired network interface
Wireline equipment link-layer identity identifies, and is bound, and is then bundled with the data packet of fingerprint characteristic and the peace to prestore to this
Full rule is matched, to judge the link-layer identity of the link layer data packet come from wired network interface identify (if
Link layer (and network layer, transport layer, application layer) data payload is not encrypted or can be decrypted by this system, further includes link
Network layer address, transport layer port and the application layer identity identifier for including in layer data load) whether with it is pre- in safety regulation
Otherwise link layer data packet is forwarded to by the equipment physical fingerprint matching first inputted if it does not match, abandoning link layer data packet
Internal network interface.
3, the safety regulation from internal network to cable network matches flow
Based on equipment physical fingerprint feature cable network access safety protecting method slave internal network to cable network
Safety regulation matching flow it is as shown in Figure 5.The physical fingerprint of wireline equipment physical fingerprint extraction unit extraction equipment first is special
It levies and is transferred to safety regulation matching unit.Synchronously, internal network interface presses general procedure receives link layer data packet, and turns
Issue safety regulation matching module.Then, safety regulation matching unit has what wireline equipment physical fingerprint extraction unit reported
Line equipment physical fingerprint feature is stored, labeled as the physical fingerprint of the wireline equipment currently connected.Synchronously, safety regulation
Matching unit is by link layer data packet that internal network interface unit reports and the safety regulation to prestore (including legal link layer
Identity, network layer address, transport layer port, application layer identity identifier) it is matched, it is pre- in safety regulation to obtain
The physical fingerprint feature for the legal wireline equipment deposited, and the link layer data packet reported with internal network interface unit is tied up
It is fixed.Last safety regulation matching unit judges equipment of the legitimate device physical fingerprint of link layer data packet binding with currently connecting
Physical fingerprint whether match, if it does not match, abandon link layer data packet, link layer data packet has otherwise been forwarded to portion's net
Network interface.
The above is only a preferred embodiment of the present invention, it should be pointed out that:For the ordinary skill people of the art
For member, various improvements and modifications may be made without departing from the principle of the present invention, especially to physical fingerprint spy
Sign extract used particular technique selection (as be directed to different network connection materials --- as twisted-pair feeder, coaxial cable,
Optical fiber etc. --- the different physical fingerprint feature of selection, the extraction means for changing physical fingerprint) and to specific wired network communication
Agreement and the adaptation of version (include but not limited to 802.3 agreements, 802.4 agreements, 802.5 agreements, RS232
Agreement, RS485 agreements and CAN bus agreement etc.), changing for these details will not generate shadow to the overall architecture of the present invention
It rings, therefore these change, improvements and modifications also should be regarded as protection scope of the present invention.
Claims (6)
1. a kind of cable network based on equipment physical fingerprint feature accesses security protection system, which is characterized in that including wired
Equipment physical fingerprint extraction unit, wired network interface unit, internal network interface unit and safety regulation matching unit;It is described
Wireline equipment physical fingerprint extraction unit is connect with wired network interface unit with safety regulation matching unit, and signal transmission side
It is single to being extracted for the transmission from wireline equipment physical fingerprint extraction unit to wired network interface unit, from wireline equipment physical fingerprint
Member is transmitted to safety regulation matching unit;Wired network interface unit, internal network interface unit match with safety regulation single
Member connection, and between wired network interface unit and safety regulation matching unit, internal network interface unit and safety regulation
With the signal transmitted in both directions between unit;
The wireline equipment physical fingerprint extraction unit include memory, processor and storage on a memory and can be in processor
The computer program of upper operation, processor are realized when executing the program:It is extracted from the wire signal on network connection wired
The physical fingerprint feature of equipment;
Safety regulation matching unit include memory, processor and storage on a memory and the calculating that can run on a processor
Machine program, processor are realized when executing the program:Storage and matching safety regulation, safety regulation include equipment physical fingerprint,
Link-layer identity mark, network layer address, transport layer port number and application layer identity mark.
2. the cable network according to claim 1 based on equipment physical fingerprint feature accesses security protection system, special
Sign is that the safety regulation matching unit is used for the safety regulation according to storage, from wireline equipment physical fingerprint extraction unit
The wireline equipment physical fingerprint of middle input, and from wired network interface unit input link layer data packet in link layer body
Part mark judges the legitimacy of the data inputted from wired network interface unit.
3. the cable network according to claim 2 based on equipment physical fingerprint feature accesses security protection system, special
Sign is, further includes including from the link layer data load that wired network interface unit inputs according to the safety regulation of storage
Network layer address, transport layer port and application layer identity identifier judge the legal of the data inputted from wired network interface unit
Property.
4. the cable network access security protection system according to any one of claims 1 to 3 based on equipment physical fingerprint feature
System, which is characterized in that the safety regulation matching unit is used for according to safety regulation link layer identity, network layer
Location, transport layer port number and application layer identity identify the binding relationship with wireline equipment physical fingerprint, judge to connect from internal network
Mouth unit input, that is, will be forwarded to the legitimacy of the data of wired network interface unit.
5. a kind of cable network based on equipment physical fingerprint feature accesses safety protecting method, which is characterized in that including following
Step:
Step 1:Safety regulation is inputted in safety regulation matching unit in advance, safety regulation includes link-layer identity mark, net
Network layers address, transport layer port number and application layer identity identify the binding relationship with wireline equipment physical fingerprint;
Step 2:The wire signal on current network connecting line is received, wireline equipment physical fingerprint extraction unit is to wire signal
Physical features be scanned, therefrom extract the physical fingerprint of wireline equipment, and physical fingerprint information is reported to safe rule
Then matching unit, while wire signal is pass-through to wired network interface unit;
Step 3:Wire signal will become the transmission of link layer data packet via the parsing of the physical layer protocol of wired network interface unit
To safety regulation matching unit;
Meanwhile the link layer data packet that Intranet is sent out is transmitted to safety regulation matching unit by internal network interface unit;
Step 4:The physical fingerprint information that safety regulation matching unit is extracted according to wireline equipment physical fingerprint extraction unit, mark
Know the wireline equipment for and currently being connected by network connection, and records the physical fingerprint feature of current connection devices;
Safety regulation matching unit check wireline equipment physical fingerprint that wireline equipment physical fingerprint extraction unit reports with it is wired
Wireline equipment link-layer identity mark in the link layer data packet that network interface reports, and bound, then to being bundled with
The safety regulation that the data packet and step 1 of physical fingerprint feature prestore is matched, to judge to come from wired network interface
The link-layer identity of link layer data packet identify whether to match with the equipment physical fingerprint pre-entered in safety regulation, if not
Matching, then abandon link layer data packet;If matching, the link layer data packet that wired network interface unit is transmitted through is forwarded to interior
Portion's network interface;
The wireline equipment physical fingerprint feature that safety regulation matching unit reports wireline equipment physical fingerprint extraction unit carries out
Storage, labeled as the physical fingerprint of the wireline equipment currently connected;Synchronously, safety regulation matching unit is by internal network interface
The link layer data packet that unit reports matched with the safety regulation that step 1 prestores, and is prestored in safety regulation to obtain
The physical fingerprint feature of legal wireline equipment, and the link layer data packet reported with internal network interface unit is bound, most
Safety regulation matching unit judges the object of the legitimate device physical fingerprint and the equipment currently connecting of link layer data packet binding afterwards
Whether reason fingerprint matches, if mismatching, abandons link layer data packet, otherwise internal network interface unit is transmitted through to the link come
Layer data packet has been forwarded to existing Network Interface Unit.
6. the cable network according to claim 5 based on equipment physical fingerprint feature accesses safety protecting method, special
Sign is that the judgement in step 3 further includes from the link layer data load that wired network interface and internal network interface come
Including network layer address, transport layer port and application layer identity identifier whether with the equipment object that is pre-entered in safety regulation
Manage fingerprint matching.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810223027.5A CN108449339B (en) | 2018-03-16 | 2018-03-16 | Wired network access security protection system and method based on device physical fingerprint characteristics |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810223027.5A CN108449339B (en) | 2018-03-16 | 2018-03-16 | Wired network access security protection system and method based on device physical fingerprint characteristics |
Publications (2)
Publication Number | Publication Date |
---|---|
CN108449339A true CN108449339A (en) | 2018-08-24 |
CN108449339B CN108449339B (en) | 2020-07-31 |
Family
ID=63194989
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810223027.5A Active CN108449339B (en) | 2018-03-16 | 2018-03-16 | Wired network access security protection system and method based on device physical fingerprint characteristics |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108449339B (en) |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109257378A (en) * | 2018-11-05 | 2019-01-22 | 杭州安恒信息技术股份有限公司 | A kind of quick identification environment of internet of things illegally accesses the method and system of assets |
CN109889487A (en) * | 2018-12-29 | 2019-06-14 | 北京奇安信科技有限公司 | The processing method and processing device of external equipment access terminal |
CN112055358A (en) * | 2020-09-10 | 2020-12-08 | 国网江苏省电力有限公司信息通信分公司 | WIFI network security access method based on radio frequency fingerprint |
CN112910917A (en) * | 2021-02-25 | 2021-06-04 | 深信服科技股份有限公司 | Network isolation method, device, equipment and readable storage medium |
CN112953928A (en) * | 2020-12-30 | 2021-06-11 | 山东鲁能软件技术有限公司 | Network security protection system and method for video monitoring front-end equipment |
CN114826327A (en) * | 2022-03-28 | 2022-07-29 | 南京东科优信网络安全技术研究院有限公司 | Ethernet terminal equipment signal separation method based on twisted pair characteristics |
CN115081628A (en) * | 2022-08-15 | 2022-09-20 | 浙江大华技术股份有限公司 | Method and device for determining adaptation degree of deep learning model |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104392161A (en) * | 2014-09-25 | 2015-03-04 | 电子科技大学 | Equipment certification based on audio physical fingerprint under variable pitch condition |
EP2865159A1 (en) * | 2012-10-04 | 2015-04-29 | Siemens Aktiengesellschaft | Apparatus and method for transmitting data |
CN107070949A (en) * | 2017-05-24 | 2017-08-18 | 江苏大学 | A kind of vehicle-mounted net Lightweight Identify Authentication Protocol Design Method based on device-fingerprint |
CN107368732A (en) * | 2017-07-14 | 2017-11-21 | 南京安璞信息技术有限公司 | A kind of object recognition and detection system and method based on equipment physical fingerprint feature |
CN107612949A (en) * | 2017-11-13 | 2018-01-19 | 电子科技大学 | A kind of intelligent wireless terminal access authentication method and system based on radio-frequency fingerprint |
-
2018
- 2018-03-16 CN CN201810223027.5A patent/CN108449339B/en active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2865159A1 (en) * | 2012-10-04 | 2015-04-29 | Siemens Aktiengesellschaft | Apparatus and method for transmitting data |
CN104392161A (en) * | 2014-09-25 | 2015-03-04 | 电子科技大学 | Equipment certification based on audio physical fingerprint under variable pitch condition |
CN107070949A (en) * | 2017-05-24 | 2017-08-18 | 江苏大学 | A kind of vehicle-mounted net Lightweight Identify Authentication Protocol Design Method based on device-fingerprint |
CN107368732A (en) * | 2017-07-14 | 2017-11-21 | 南京安璞信息技术有限公司 | A kind of object recognition and detection system and method based on equipment physical fingerprint feature |
CN107612949A (en) * | 2017-11-13 | 2018-01-19 | 电子科技大学 | A kind of intelligent wireless terminal access authentication method and system based on radio-frequency fingerprint |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109257378A (en) * | 2018-11-05 | 2019-01-22 | 杭州安恒信息技术股份有限公司 | A kind of quick identification environment of internet of things illegally accesses the method and system of assets |
CN109889487A (en) * | 2018-12-29 | 2019-06-14 | 北京奇安信科技有限公司 | The processing method and processing device of external equipment access terminal |
CN109889487B (en) * | 2018-12-29 | 2021-11-12 | 奇安信科技集团股份有限公司 | Processing method and device for external equipment access terminal |
CN112055358A (en) * | 2020-09-10 | 2020-12-08 | 国网江苏省电力有限公司信息通信分公司 | WIFI network security access method based on radio frequency fingerprint |
CN112953928A (en) * | 2020-12-30 | 2021-06-11 | 山东鲁能软件技术有限公司 | Network security protection system and method for video monitoring front-end equipment |
CN112910917A (en) * | 2021-02-25 | 2021-06-04 | 深信服科技股份有限公司 | Network isolation method, device, equipment and readable storage medium |
CN114826327A (en) * | 2022-03-28 | 2022-07-29 | 南京东科优信网络安全技术研究院有限公司 | Ethernet terminal equipment signal separation method based on twisted pair characteristics |
CN114826327B (en) * | 2022-03-28 | 2023-09-22 | 南京东科优信网络安全技术研究院有限公司 | Ethernet terminal equipment signal separation method based on twisted pair characteristics |
CN115081628A (en) * | 2022-08-15 | 2022-09-20 | 浙江大华技术股份有限公司 | Method and device for determining adaptation degree of deep learning model |
Also Published As
Publication number | Publication date |
---|---|
CN108449339B (en) | 2020-07-31 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108449339A (en) | A kind of cable network access security protection system and method based on equipment physical fingerprint feature | |
CN108551674A (en) | A kind of wireless network access security protection system and method based on equipment physical fingerprint feature | |
CN111586025B (en) | SDN-based SDP security group implementation method and security system | |
CN107026874A (en) | One kind instruction signature and verification method and system | |
CN106789259A (en) | A kind of LoRa core network systems and implementation method | |
CN104080085B (en) | Wireless network access double authentication method, device and system | |
CN104253818B (en) | Server, terminal authentication method and server, terminal | |
KR101907770B1 (en) | Communication protocol testing method, and tested device and testing platform thereof | |
CN111181912B (en) | Browser identifier processing method and device, electronic equipment and storage medium | |
CN107070907A (en) | Intranet and extranet data unidirectional transmission method and system | |
CN106327637A (en) | Bluetooth door opening system based on community management and method | |
US20070208932A1 (en) | Method and system for cloned cable modem detection | |
EP2044549B1 (en) | Method for transferring resource and method for providing information | |
CN107248911A (en) | A kind of hidden authentication method of sequence spreading knocked at the door based on address | |
CN108810003A (en) | A kind of safety verification scheme of multi-service side's message access | |
CN103067389B (en) | High safety file transfer method based on short website | |
CN107181725A (en) | Vehicle safety communications method, device, vehicle multimedia system and vehicle | |
CN108833109A (en) | Identity identifying method, device and electronic equipment | |
Babu et al. | Notice of Violation of IEEE Publication Principles: IoT Security Enhancement with Automated Identification Device using IOT SENTINEL | |
CN107332803A (en) | A kind of admittance control method and system based on end host safe condition | |
CN105721161A (en) | H<2>-MAC (Hash-based Message Authentication Code) message authentication IP (intellectual property) core hardware device based on bus | |
CN105141642B (en) | A kind of method and device preventing illegal user's behavior | |
WO2018004042A1 (en) | Mutual verification system and method for executing same | |
CN113992336B (en) | Encryption network offline data trusted exchange method and device based on block chain | |
CN116305287A (en) | File management method for preventing secret leakage |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |