CN110808990B - Mail transmission method, device, electronic equipment and computer readable storage medium - Google Patents

Mail transmission method, device, electronic equipment and computer readable storage medium Download PDF

Info

Publication number
CN110808990B
CN110808990B CN201911090500.8A CN201911090500A CN110808990B CN 110808990 B CN110808990 B CN 110808990B CN 201911090500 A CN201911090500 A CN 201911090500A CN 110808990 B CN110808990 B CN 110808990B
Authority
CN
China
Prior art keywords
mail
network
data
module
redirection
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201911090500.8A
Other languages
Chinese (zh)
Other versions
CN110808990A (en
Inventor
王志刚
王志海
喻波
彭洪涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Wondersoft Technology Co Ltd
Original Assignee
Beijing Wondersoft Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Wondersoft Technology Co Ltd filed Critical Beijing Wondersoft Technology Co Ltd
Priority to CN201911090500.8A priority Critical patent/CN110808990B/en
Publication of CN110808990A publication Critical patent/CN110808990A/en
Application granted granted Critical
Publication of CN110808990B publication Critical patent/CN110808990B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L51/00User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
    • H04L51/42Mailbox-related aspects, e.g. synchronisation of mailboxes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0281Proxies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/563Data redirection of data network streams
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention provides a mail transmission method, a mail transmission device, electronic equipment and a computer readable storage medium, wherein the method comprises the following steps: the network redirection driver intercepts a network access request carrying target configuration data when detecting the network access request of a mail client to the mail server, judges whether the target configuration data is matched with pre-stored reference configuration data or not, redirects the network access request to a local proxy module under the condition of judging that the target configuration data is matched with the pre-stored reference configuration data, and proxies the mail transmission between the mail client and the mail server by the local proxy module. The mail transmission method of the embodiment of the invention perfects the technical blank of the Linux system mail transmission encryption and decryption technology, realizes autonomy and controllability, has advanced architecture, stable technology, high compatibility and high safety, and simultaneously improves the user experience because the user does not perceive the whole mail encryption and decryption process.

Description

Mail transmission method, device, electronic equipment and computer readable storage medium
Technical Field
The present invention relates to the field of mail transmission technologies, and in particular, to a mail transmission method, an apparatus, an electronic device, and a computer-readable storage medium.
Background
At present, the electronic mail is one of the most widely applied services of the internet, and the existence of the electronic mail greatly facilitates the communication between people and promotes the development of the society. The smtp and pop3 protocols used by the e-mail system are transmitted in the clear text when data are transmitted on the network, which has great safety hazard. The mail content is easy to be intercepted by hackers or malicious persons, causing sensitive data leakage, and the hackers or malicious persons may also initiate mail spoofing or attacks. On a windows platform, a relatively mature mail transmission method protection method and a product exist, so that the safety protection of mail transmission is realized, and due to the difference between the windows platform and a Linux platform, the secret protection method and the product can only be applied to the windows platform but not the Linux platform, so that the safety of mail transmission on the Linux platform is poor at present.
Disclosure of Invention
The invention provides a mail transmission method, a mail transmission device, electronic equipment and a computer readable storage medium, which aim to solve the problem of poor mail transmission safety on a Linux platform in the prior art.
In order to solve the above problems, the present invention is realized by:
in a first aspect, an embodiment of the present invention provides a mail transmission method, which is applied to an electronic device, where an operating system kernel of the electronic device supports a Netfilter framework, and a network redirection driver, a mail client, and a local agent module are configured in the electronic device; the method comprises the following steps:
the network redirection driver intercepts a network access request of the mail client to a mail server when detecting the network access request, wherein the network access request carries target configuration data;
the network redirection driver judges whether the target configuration data is matched with pre-stored reference configuration data or not;
the network redirection driver redirects the network access request to the local proxy module under the condition of judging that the target configuration data is matched with the pre-stored reference configuration data;
the local proxy module proxies mail transmission between the mail client and the mail server.
Optionally, the method further comprises:
registering a callback function corresponding to the event for completing the redirection function to the netfilter framework in the network driver to obtain the network redirection driver with the redirection function, wherein the callback function comprises a redirection callback function.
Optionally, the network access request is that the mail client sends a mail to the mail server, and the redirecting the network access request to the home agent module includes:
the network redirection driver redirects first mail data sent by the mail client to the local agent module;
the local proxy module acting on mail transmission between the mail client and the mail server includes:
the local agent module receives the first mail data;
and the local agent module encrypts the first mail data and sends the encrypted first mail data to the mail server.
Optionally, the network access request is a mail receiving request initiated by the mail client to receive a mail from the mail server, and the redirecting the network access request to the local proxy module includes:
the network redirection driver sends the mail receiving request to a local agent module;
the local proxy module acting on mail transmission between the mail client and the mail server includes:
the local agent module sends the mail receiving request to the mail server;
the mail server sends second mail data to the local agent module according to the mail receiving request;
and the local agent module decrypts the second mail data and sends the decrypted second mail data to the mail client.
Optionally, the operating system kernel includes a kernel interface, a transport layer and a network layer, a hook function is built in the network layer, and the network layer supports the Netfilter framework; the network redirection driver redirects the first mail data sent by the mail client to the local agent module, and the network redirection driver comprises:
calling a network system calling interface through an application layer;
calling the system kernel interface through the network system calling interface, and sending the first mail data from the application layer to the operating system kernel;
the transmission layer processes the first mail data to obtain first intermediate mail data and sends the first intermediate mail data to the network layer;
the Netfilter framework acquires first intermediate mail data from the network layer through a hook function;
the Netfilter framework calls the redirection callback function to redirect the first intermediate mail data to the local agent module;
the local agent module receives the first mail data, and comprises:
the local proxy module receives the first intermediate mail data.
The local agent module encrypts the first mail data and sends the encrypted first mail data to the mail server, and the method includes:
and the local agent module encrypts the first intermediate mail data and sends the encrypted first intermediate mail data to the mail server.
Optionally, the operating system kernel includes a network layer, a hook function is built in the network layer, and the network layer supports the Netfilter framework; the network redirection driver sends the mail receiving request to a local agent module, and the method comprises the following steps:
calling a network system calling interface through an application layer;
calling the system kernel interface through the network system calling interface, and sending the mail receiving request from the application layer to the operating system kernel;
the transmission layer processes the mail receiving request to obtain a first intermediate mail receiving request and sends the first intermediate mail receiving request to the network layer;
the Netfilter framework acquires a first intermediate mail receiving request from the network layer through a hook function;
the Netfilter framework calls the redirection callback function to redirect the first intermediate mail receiving request to the local agent module;
the local agent module sends the mail receiving request to the mail server, and comprises:
the local agent module processes the first intermediate mail receiving request to obtain a mail receiving request to be sent, and sends the mail receiving request to be sent to the mail server;
the mail server sends second mail data to the local agent module according to the mail receiving request, and the method comprises the following steps:
the mail server sends second mail data to the local agent module according to the mail receiving request to be sent;
receiving second mail data sent by the mail server through a network card drive, and sending the second mail data to the network interface layer;
the network interface layer processes the second mail data to obtain second intermediate mail data and sends the second intermediate mail data to the network layer;
the Netfilter framework acquires second intermediate mail data from the network layer through a hook function;
the Netfilter framework calls the redirection callback function to redirect the second intermediate mail data to a local agent module;
the local agent module receives the second mail data, and comprises:
the local proxy module receives the second intermediate mail data.
The local agent module decrypts the second mail data and sends the decrypted second mail data to the mail client, and the method includes:
and the local agent module decrypts the second intermediate mail data and sends the decrypted second intermediate mail data to the mail client.
Optionally, before the determining whether the target configuration data matches with the pre-stored reference configuration data, the method further includes:
and the network redirection driver prestores reference configuration data sent by the configuration management module.
Optionally, the configuration management module includes a configuration parsing module and a configuration issuing module, the network redirection driver includes a redirection parameter receiving module, and the network redirection driver prestores reference configuration data sent by the configuration management module, including:
the configuration analysis module analyzes the configuration strategy to obtain reference configuration data and sends the reference configuration data to the configuration issuing module;
the configuration issuing module sends the reference configuration data to the redirection parameter receiving module;
the redirection parameter receiving module stores the reference configuration data.
In a second aspect, an embodiment of the present invention provides a mail transmission apparatus, which is applied to an electronic device, where an operating system kernel of the electronic device supports a Netfilter framework, and a network redirection driver, a mail client, and a local agent module are configured in the electronic device; the device comprises:
the intercepting module is used for intercepting a network access request of the mail client to a mail server when the network access request is detected, wherein the network access request carries target configuration data;
the judging module is used for judging whether the target configuration data is matched with pre-stored reference configuration data or not;
a network access request redirection module, configured to redirect the network access request to the local proxy module when the network redirection driver determines that the target configuration data matches pre-stored reference configuration data;
and the mail transmission agent module is used for the local agent module to agent the mail transmission between the mail client and the mail server.
Optionally, the apparatus further comprises:
and the registration module is used for registering a callback function corresponding to the event for completing the redirection function in the network driver to the netfilter framework in the network driver so as to obtain the network redirection driver with the redirection function, wherein the callback function comprises a redirection callback function.
Optionally, the network access request is that the mail client sends a mail to the mail server, and the network access request redirection module includes:
the first redirection submodule is used for redirecting the first mail data sent by the mail client to the local proxy module;
the mail transmission agent module comprises:
the first receiving submodule is used for receiving the first mail data;
and the first encryption submodule is used for encrypting the first mail data and sending the encrypted first mail data to the mail server.
Optionally, the network access request is a mail receiving request initiated by the mail client to receive a mail from the mail server, and the network access request redirection module includes:
the first mail receiving request sending submodule is used for sending the mail receiving request to the local agent module;
the mail transmission agent module comprises:
a second mail receiving request sending submodule for sending the mail receiving request to the mail server;
a second mail data sending submodule, configured to send second mail data to the local proxy module according to the mail receiving request;
and the second encryption submodule is used for decrypting the second mail data and sending the decrypted second mail data to the mail client.
Optionally, the operating system kernel includes a kernel interface, a transport layer and a network layer, a hook function is built in the network layer, and the network layer supports the Netfilter framework; the first redirection submodule includes:
the first calling subunit is used for calling a network system calling interface;
the second calling subunit is used for calling the system kernel interface and sending the first mail data from the application layer to the operating system kernel;
the first processing subunit is configured to process the first mail data to obtain first intermediate mail data, and send the first intermediate mail data to the network layer;
the first acquiring subunit is used for acquiring first intermediate mail data from the network layer through a hook function;
a first redirection subunit, configured to invoke the redirection callback function to redirect the first intermediate mail data to the local proxy module;
the first receiving submodule includes:
a first receiving subunit, configured to receive the first intermediate mail data;
the first encryption submodule includes:
and the first encryption subunit is used for encrypting the first intermediate mail data and sending the encrypted first intermediate mail data to the mail server.
Optionally, the operating system kernel includes a network layer, a hook function is built in the network layer, and the network layer supports the Netfilter framework; the first mail receiving request sending comprises the following steps:
the third calls the subunit, is used for calling the network system and calling the interface;
a fourth calling subunit, configured to call the system kernel interface, and send the mail receiving request from the application layer to the operating system kernel;
the second processing subunit is configured to process the mail receiving request to obtain a first intermediate mail receiving request, and send the first intermediate mail receiving request to the network layer;
the second acquisition subunit is used for acquiring a first intermediate mail receiving request from the network layer through a hook function;
a second redirection subunit, configured to invoke the redirection callback function to redirect the first intermediate mail receiving request to the local proxy module;
the second mail receiving request sending submodule includes:
the second sending subunit is configured to process the first intermediate mail receiving request to obtain a mail receiving request to be sent, and send the mail receiving request to be sent to the mail server;
the second mail data sending submodule includes:
a second mail data sending subunit, configured to send second mail data to the local agent module according to the mail receiving request to be sent;
the second encryption submodule includes:
and the second encryption subunit is used for decrypting the second intermediate mail data and sending the decrypted second intermediate mail data to the mail client.
Optionally, the apparatus further comprises:
and the storage module is used for storing the reference configuration data sent by the configuration management module in advance.
Optionally, the configuration management module includes a configuration parsing module and a configuration issuing module, the network redirection driver includes a redirection parameter receiving module, and the storage module includes:
the first sending submodule is used for analyzing the configuration strategy, obtaining reference configuration data and sending the reference configuration data to the configuration issuing module;
a second sending submodule, configured to send the reference configuration data to the redirection parameter receiving module;
and the storage submodule is used for storing the reference configuration data.
In a third aspect, an embodiment of the present invention provides an electronic device, including: a memory, a processor and a computer program stored on the memory and executable on the processor, the computer program, when executed by the processor, implementing the steps of the mail transmission method of any of the above.
In a fourth aspect, the embodiment of the present invention further provides a computer-readable storage medium, where a computer program is stored on the computer-readable storage medium, and when being executed by a processor, the computer program implements the steps of the mail transmission method described in any one of the above.
Compared with the prior art, the invention has the following advantages:
in the embodiment of the invention, because the network redirection driver is used for detecting the network access request of the mail client to the mail server and intercepting and redirecting the network access request, the whole operation is completed in the driver layer, therefore, the mail transmission method in the embodiment of the invention is not easy to be maliciously intervened or damaged, so that the method has high safety, meanwhile, the user does not sense the whole mail encryption and decryption process, the use habit of the user is not changed, and the use experience of the user is improved.
Drawings
Fig. 1 is a block diagram illustrating a mail transmission system according to an embodiment of the present invention;
fig. 2 is a flowchart illustrating steps of a mail transmission method according to an embodiment of the present invention;
FIG. 3 is a diagram illustrating a system kernel architecture according to an embodiment of the present invention;
fig. 4 is a flow chart illustrating a mail transmission method according to an embodiment of the present invention;
fig. 5 is a block diagram illustrating a data processing apparatus according to an embodiment of the present invention.
Detailed Description
In order to make the aforementioned objects, features and advantages of the present invention comprehensible, embodiments accompanied with figures are described in further detail below.
Referring to fig. 1, a block diagram of a mail transmission system of an embodiment of the present invention is shown.
The system is generally divided into three levels: a configuration management module, a network redirection driver and a local agent module.
The configuration management module is responsible for analyzing and issuing configuration data;
the network redirection driver is used for receiving the configuration data of the configuration management module, carrying out redirection processing on the network connection meeting the requirements according to the configuration data and storing original network connection information;
and the local proxy module acquires the original connection information from the network redirection driver, performs proxy service between the mail client and the remote mail server, and encrypts or decrypts the mail data passing through the proxy according to the relevant configuration.
As shown in fig. 1, the configuration management module is composed of a configuration analysis module and a configuration issuing module.
The configuration analysis module is responsible for carrying out standard datamation on the configuration strategy and the parameter configuration information and informing the configuration issuing module after the standard datamation is finished; wherein the configuration policy is preset by an operator.
And the configuration issuing module is used for issuing the analyzed configuration data to a redirection parameter receiving module of the network redirection drive after receiving the notification that the configuration analysis is finished. The configuration data includes process ID and port data to be controlled, etc., i.e., which process ID and port need to be redirected by the network redirection driver.
As shown in fig. 1, the network redirection driver is composed of a redirection parameter receiving module, a network redirection module, and an original connection information storage module.
The redirection parameter receiving module is responsible for receiving configuration data (namely a process ID and a port to be controlled) sent by the configuration management module and persistently storing the configuration data, namely the network redirection driver stores the configuration data after receiving the configuration data until the process disappears, and the configuration data is used by the network redirection module;
and the network redirection module is used for redirecting the network access request meeting the requirements according to the configuration data stored by the redirection parameter receiving module, namely if the process ID and the accessed port of the network access request are matched with the process ID and the port stored in the configuration data, the network access request needs to be redirected, the network access request is forwarded to a related module of the local proxy module, and the original network connection information is notified to the original connection information storage module.
As shown in fig. 1, the local proxy module is composed of a data encryption module, a proxy service module, and an original connection information acquisition module.
The data encryption module is responsible for encrypting the mail data meeting the requirements;
the proxy service module obtains original connection request information of the mail client through the original connection information acquisition module, is connected with the remote server, analyzes and processes mail data sent to the remote server by the mail client, calls the data encryption module to encrypt the mail data, and forwards the encrypted mail data to the remote server after encryption is completed, or obtains the original connection request information of the mail server through the original connection information acquisition module, connects the mail client to analyze and process the mail data received from the remote server, calls the data encryption module to decrypt the encrypted mail data, and forwards the mail data to the mail client after decryption is completed;
and the original connection information acquisition module is in charge of extracting the original connection information stored by the network redirection driver for the proxy service module to use.
Referring to fig. 2 in conjunction with the system shown in fig. 1, a flowchart of steps of an embodiment of a mail transmission method of the present invention is shown, which may specifically include the following steps:
step 201, the network redirection driver intercepts the network access request when detecting the network access request of the mail client to the mail server.
The network access request carries target configuration data, and the target configuration data comprises a process ID of the network access request and a port to be connected.
The mail transmission method of the embodiment can work on any electronic device, the operating system of the electronic device can be a Linux system, and can also be operating systems secondarily developed based on Linux, such as the winning symbol kylin, deep Linux, the zhongxing new pivot operating system, the hunan kylin, and the like, the operating system kernel supports the Netfilter framework, and the electronic device is configured with a network redirection driver, a mail client and a local agent module.
In this embodiment, after the network redirection driver is started, it may automatically detect whether there is a network access request of the mail client to the mail server, and if it is detected that there is a network access request, intercept the network access request, and obtain target configuration data carried by the network access request. The network access request may be a request for sending a mail to the mail server by the mail client, or a request for accessing the mail server and receiving a mail from the mail server by the mail client. In either case, the network access request carries the target configuration data, i.e. the process ID and the port to be controlled.
In this embodiment, the network redirection driver is a network redirection driver developed based on a Netfilter framework supported by a Linux operating system kernel (Netfilter is a subsystem introduced by Linux 2.4.x, and serves as a general and abstract framework to provide a complete set of management mechanisms for hook functions, so that connection tracking based on protocol types, such as packet filtering, Network Address Translation (NAT), and Network Address Translation (NAT), becomes possible).
In an embodiment, a callback function corresponding to a related event may be registered in a driver according to a function that needs to be implemented, and the event may be, for example, creating a connection, closing a connection, sending data, or the like. When a network access request passes through the netfilter framework, the netfilter framework can sequentially call callback functions registered to the netfilter framework, wherein the callback functions comprise callback functions for realizing related events (such as filtering, redirection, passing rejection and the like) of the redirection function, logic processing is carried out in the callback functions, and the redirection function is realized by modifying corresponding parameters.
In this embodiment, the Linux system kernel provides a Netfilter filtering framework, which is convenient for developers to write a kernel module, register a corresponding event processing function, and implement network control, such as filtering, redirection, passing rejection, and the like, so that before the network redirection driver detects a network access request of the mail client to the mail server, the steps may be further performed: and a developer registers a callback function corresponding to the relevant event for completing the redirection function to the netfilter framework in the driver in advance to obtain the network redirection driver with the redirection function.
The network redirection driver of the embodiment of the invention can be automatically started after the electronic equipment is started.
Step 202, the network redirection driver determines whether the target configuration data matches with pre-stored reference configuration data.
In this embodiment, the network redirection driver pre-stores reference configuration data, where the reference configuration data is a process ID and a port that are preset and need to be redirected by the network redirection driver. That is, the network redirection driver matches the obtained target configuration data with the pre-stored reference configuration data, and if the obtained target configuration data can be matched with the pre-stored reference configuration data, it indicates that the network access request needs to be redirected.
In this embodiment, the network redirection driver pre-stores the reference configuration data, as shown in fig. 1, the reference configuration data comes from the configuration management module, that is, the network redirection driver pre-stores the reference configuration data sent by the configuration management module.
In an embodiment of this embodiment, as shown in fig. 1, the configuration management module includes a configuration analysis module and a configuration issuing module, the network redirection driver includes a redirection parameter receiving module, and the network redirection driver stores in advance reference configuration data sent by the configuration management module, which may specifically include the following steps:
step A1, the configuration analysis module analyzes the configuration strategy to obtain the reference configuration data, and sends the reference configuration data to the configuration sending module.
Step a2, the configuration issuing module sends the reference configuration data to the redirection parameter receiving module.
Step a3, the redirection parameter receiving module stores the reference configuration data.
In this embodiment, the configuration analysis module performs standard datamation on the configuration policy and the parameter configuration information to obtain reference configuration data, and notifies the configuration issuing module after completion of the standard datamation, and after receiving the notification that the configuration policy is analyzed, the configuration issuing module issues the analyzed reference configuration data to the redirection parameter receiving module of the network redirection driver, and after receiving the reference configuration data, the redirection parameter receiving module stores the reference configuration data.
It should be noted that the time when the network redirection driver prestores the reference configuration data sent by the configuration management module may be executed when the network redirection driver is started each time, that is, when the network redirection driver is started each time, the configuration management module sends the reference configuration data to the network redirection driver; or the configuration management module may send the reference configuration data to the network redirection driver periodically, for example, daily, weekly, monthly, where the cycle time is not limited; in addition, the configuration management module may send the reference configuration data to the network redirection driver after receiving the update of the configuration policy and further updating the reference configuration data.
Step 203, the network redirection driver redirects the network access request to the local proxy module when judging that the target configuration data matches with the pre-stored reference configuration data.
In this embodiment, if the network redirection driver determines that the target configuration data matches the pre-stored reference configuration data, the network access request is redirected to the home agent module.
Step 204, the local agent module acts as a proxy for the mail transmission between the mail client and the mail server.
In this embodiment, after receiving the redirected network access request, the local proxy module proxies mail transmission between the mail client and the mail server.
In the embodiment, because the network redirection driver is used for detecting the network access request of the mail client to the mail server and intercepting and redirecting the network access request, the whole operation is completed in the driver layer, and the network redirection driver can be set to be in a static deactivation mode, once the network redirection driver is successfully started, the network redirection driver cannot be stopped, so that the mail transmission method in the embodiment of the application is not easy to be maliciously intervened or damaged, and has high safety.
In one embodiment, the network access request of the mail client to the mail server may include sending a mail request or receiving a mail request, i.e., the mail client sends first mail data to the mail server or the mail client receives second mail data from the mail server, and thus the network redirection driver redirects the network access request to the home agent module, which is substantially redirection of the first mail data sent by the mail client or the second mail data sent by the mail server to the home agent module.
In this embodiment, the step 204 of using the local proxy module to proxy the mail transmission between the mail client and the mail server may specifically include the following two cases:
firstly, when the network access request is that the mail client sends a mail to the mail server, that is, the network redirection driver redirects first mail data sent by the mail client to the local proxy module, the local proxy module firstly receives the first mail data, then encrypts the first mail data, and finally sends the encrypted first mail data to the mail server, thereby completing the proxy work of the local proxy module on the mail transmission between the mail client and the mail server.
Secondly, when the network access request is a mail receiving request initiated by the mail client and used for receiving the mail from the mail server, namely the mail receiving request initiated by the mail client is redirected and driven to be forwarded to the local proxy module, the local proxy module forwards the mail server, the local proxy module receives second mail data of the mail server, and after decryption operation, the second mail data (plaintext data) after decryption processing is sent back to the mail client, so that the proxy operation of the local proxy module on mail transmission between the mail client and the mail server is completed.
After receiving the first mail data or the second mail data, the local agent module performs protocol analysis on the first mail data or the second mail data, where the protocol analysis is mainly to repackage and encapsulate mail contents and attachments included in the first mail data or the second mail data so as to perform encryption and decryption processing, that is, configure a control policy, that is, encrypt addresses of recipients, decrypt a received mail ciphertext, and the like. Thus, the method of the embodiment can realize full text encryption or attachment encryption when the mail is sent, and full text decryption or attachment decryption when the mail is received.
Referring to fig. 3, fig. 3 is a system kernel structure diagram according to an embodiment of the present invention, and as shown in fig. 3, the operating system kernel includes a kernel interface, a transport layer, a network layer and a network interface layer, the network layer has a hook function built therein, and the network layer supports the Netfilter framework; in the first case, the redirecting the first mail data sent by the mail client to the local proxy module by the network redirection driver may specifically include the following steps:
b1, calling the network system calling interface through the application layer.
B2, calling the system kernel interface through the network system call interface, and sending the first mail data from the application layer to the operating system kernel.
And B3, the transmission layer processes the first mail data to obtain first intermediate mail data, and sends the first intermediate mail data to the network layer.
And B4, the Netfilter framework acquires the first intermediate mail data from the network layer through a hook function.
B5, the Netfilter framework calls the redirect callback function to redirect the first intermediate mail data to the local proxy module.
In this embodiment, when the mail client sends the first mail data to the mail server, the network access request of the application layer is finally converted into a reference to a network system call interface, the network system call interface calls a system kernel interface, the first mail data from the application layer is sent to the operating system kernel, the system kernel interface converts the system call into a call to a transport layer, and a TCP or UDP service is completed, that is, the transport layer processes the first mail data to obtain first intermediate mail data, the first intermediate mail data is data that is subjected to the TCP or UDP service, the transport layer converts the network access request into a call to a network layer, and a network layer service is completed, that is, the transport layer sends the first intermediate mail data to the network layer for sending a mail.
In a network layer, a hook service is built in, and a Netfilter filtering framework is supported, so that the Netfilter framework can acquire first intermediate mail data from the network layer through a hook function, and then the Netfilter framework calls the redirection callback function to redirect the first intermediate mail data to the local agent module, namely, the first intermediate mail data is sent to the local agent module.
After receiving the first intermediate mail data, the local agent module encrypts the first intermediate mail data and sends the encrypted first intermediate mail data to the mail server. That is, after the local proxy module receives the first intermediate mail data, the proxy becomes a mail client and sends the first intermediate mail data to the mail server.
With continued reference to fig. 3, fig. 3 shows a system kernel structure diagram according to an embodiment of the present invention, as shown in fig. 3, the operating system kernel includes a kernel interface, a transport layer, a network layer and a network interface layer, the network layer is internally provided with a hook function, and the network layer supports the Netfilter framework; in the second case, the sending, by the network redirection driver, the mail receiving request to the home agent module may specifically include the following steps:
c1, calling the network system calling interface through the application layer.
C2, calling the system kernel interface through the network system call interface, and sending the mail receiving request from the application layer to the operating system kernel.
And C3, the transmission layer processes the mail receiving request to obtain a first intermediate mail receiving request, and sends the first intermediate mail receiving request to the network layer.
And C4, the Netfilter framework acquires a first intermediate mail receiving request from the network layer through a hook function.
C5, the Netfilter framework calls the redirect callback function to redirect the first intermediate mail receiving request to the local proxy module.
In this embodiment, when a mail client sends a mail receiving request to a mail server, a mail receiving request of an application layer is finally converted into a reference to a network system call interface, the network system call interface calls a system kernel interface, the mail receiving request from the application layer is sent to the operating system kernel, the system kernel interface converts system call into call to a transport layer to complete TCP or UDP service, that is, the transport layer processes the mail receiving request to obtain a first intermediate mail receiving request, the first intermediate mail receiving request is a mail receiving request after being served by the TCP or UDP, the transport layer converts mail receiving into call to the network layer to complete network layer service, that is, the transport layer sends the first intermediate mail receiving request to the network layer for mail receiving network layer service.
In a network layer, a hook service is built in, and a Netfilter filtering framework is supported, so that the Netfilter framework can acquire a first intermediate mail receiving request from the network layer through a hook function, then the Netfilter framework calls the redirection callback function to redirect the first intermediate mail receiving request to the local agent module, namely, the first intermediate mail receiving request is sent to the local agent module, and the local agent module receives second mail data sent by a mail server.
And after receiving the second intermediate mail data, the local agent module decrypts the second intermediate mail data and sends the decrypted second intermediate mail data to the mail client. That is, after the local proxy module receives the second intermediate mail data, the proxy becomes a mail server and sends the second intermediate mail data to the mail client.
In this embodiment, other drivers interested in network data may register corresponding callback functions to the netfilter framework, and a network data packet (i.e., mail data) satisfying the conditions may call the function registered in the driver to process the function via the netfilter framework, thereby implementing various functions, such as a redirection function.
In the embodiment, the redirection callback function is registered to the netfilter frame through the network driver to become the network redirection driver, when the network access request passes through the netfilter frame, the netfilter frame can call the redirection callback function registered to the netfilter frame, and the modification of the network access request can be realized in the network redirection driver, so that the network access request is redirected to the local agent module according to the configuration.
The mail transmission method of the embodiment of the invention perfects the technical blank of the Linux system mail transmission encryption and decryption technology, realizes autonomy and controllability, samples an advanced Netfilter framework, has advanced architecture, stable technology, high compatibility, high client security, convenient and flexible deployment, is convenient to use because the mail transmission method works in a driving layer, does not change the operation habit of a user, and has low training cost.
Referring to fig. 4, fig. 4 is a flow chart illustrating a mail transmission method according to an embodiment of the present invention. As shown in fig. 4, the flow is as follows:
1. after the operating system is started and the network redirection driver is started, the user accesses the mail server through the mail client and then goes to the next step for execution.
2. And the network redirection driver intercepts network access, redirects the network access to the local agent module, and then turns to the next step for execution.
3. The local agent module analyzes the network request and provides agent service, and then the next step is executed.
4. And checking whether the mail is sent, if so, turning to the next step for execution, and otherwise, turning to the 8 th step for execution.
5. And receiving the mail client data, carrying out protocol analysis, and turning to the next step for execution.
6. And encrypting the mail data according to the requirement, and turning to the next step for execution.
7. And forwarding the encrypted data to the mail server, and turning to the step 11 for execution.
8. And receiving the data of the mail server, carrying out protocol analysis, and turning to the next step for execution.
9. And decrypting the mail data as required, and turning to the next step for execution.
10. And forwarding the decrypted data to the mail client, and switching to the next step for execution.
11. And checking whether the system is exited, if so, turning to the next step for execution, and otherwise, turning to the 1 st step for execution.
12. And exiting and ending.
Based on the same technical concept, please refer to fig. 5, fig. 5 shows a block diagram of a mechanism of a mail transmission apparatus 500 according to an embodiment of the present invention, as shown in fig. 5, the apparatus is applied to an electronic device, an operating system kernel of the electronic device supports a Netfilter framework, and a network redirection driver, a mail client, and a local proxy module are configured in the electronic device; the device comprises:
an intercepting module 501, configured to intercept a network access request of the mail client to a mail server when the network access request is detected, where the network access request carries target configuration data;
a judging module 502, configured to judge whether the target configuration data matches with pre-stored reference configuration data;
a network access request redirection module 503, configured to redirect the network access request to the local proxy module when the network redirection driver determines that the target configuration data matches pre-stored reference configuration data;
a mail transmission agent module 504, configured to agent the mail transmission between the mail client and the mail server by the local agent module.
Optionally, the apparatus further comprises:
and the registration module is used for registering a callback function corresponding to the event for completing the redirection function in the network driver to the netfilter framework in the network driver so as to obtain the network redirection driver with the redirection function, wherein the callback function comprises a redirection callback function.
Optionally, the network access request is that the mail client sends a mail to the mail server, and the network access request redirection module includes:
the first redirection submodule is used for redirecting the first mail data sent by the mail client to the local proxy module;
the mail transmission agent module comprises:
the first receiving submodule is used for receiving the first mail data;
and the first encryption submodule is used for encrypting the first mail data and sending the encrypted first mail data to the mail server.
Optionally, the network access request is a mail receiving request initiated by the mail client to receive a mail from the mail server, and the network access request redirection module includes:
the first mail receiving request sending submodule is used for sending the mail receiving request to the local agent module;
the mail transmission agent module comprises:
a second mail receiving request sending submodule for sending the mail receiving request to the mail server;
a second mail data sending submodule, configured to send second mail data to the local proxy module according to the mail receiving request;
and the second encryption submodule is used for decrypting the second mail data and sending the decrypted second mail data to the mail client.
Optionally, the operating system kernel includes a kernel interface, a transport layer and a network layer, a hook function is built in the network layer, and the network layer supports the Netfilter framework; the first redirection submodule includes:
the first calling subunit is used for calling a network system calling interface;
the second calling subunit is used for calling the system kernel interface and sending the first mail data from the application layer to the operating system kernel;
the first processing subunit is configured to process the first mail data to obtain first intermediate mail data, and send the first intermediate mail data to the network layer;
the first acquiring subunit is used for acquiring first intermediate mail data from the network layer through a hook function;
a first redirection subunit, configured to invoke the redirection callback function to redirect the first intermediate mail data to the local proxy module;
the first receiving submodule includes:
a first receiving subunit, configured to receive the first intermediate mail data;
the first encryption submodule includes:
and the first encryption subunit is used for encrypting the first intermediate mail data and sending the encrypted first intermediate mail data to the mail server.
Optionally, the operating system kernel includes a network layer, a hook function is built in the network layer, and the network layer supports the Netfilter framework;
the first mail receiving request sending comprises the following steps:
the third calls the subunit, is used for calling the network system and calling the interface;
a fourth calling subunit, configured to call the system kernel interface, and send the mail receiving request from the application layer to the operating system kernel;
the second processing subunit is configured to process the mail receiving request to obtain a first intermediate mail receiving request, and send the first intermediate mail receiving request to the network layer;
the second acquisition subunit is used for acquiring a first intermediate mail receiving request from the network layer through a hook function;
a second redirection subunit, configured to invoke the redirection callback function to redirect the first intermediate mail receiving request to the local proxy module;
the second mail receiving request sending submodule includes:
the second sending subunit is configured to process the first intermediate mail receiving request to obtain a mail receiving request to be sent, and send the mail receiving request to be sent to the mail server;
the second mail data sending submodule includes:
a second mail data sending subunit, configured to send second mail data to the local agent module according to the mail receiving request to be sent;
the second encryption submodule includes:
and the second encryption subunit is used for decrypting the second intermediate mail data and sending the decrypted second intermediate mail data to the mail client.
Optionally, the apparatus further comprises:
and the storage module is used for storing the reference configuration data sent by the configuration management module in advance.
Optionally, the configuration management module includes a configuration parsing module and a configuration issuing module, the network redirection driver includes a redirection parameter receiving module, and the storage module includes:
the first sending submodule is used for analyzing the configuration strategy, obtaining reference configuration data and sending the reference configuration data to the configuration issuing module;
a second sending submodule, configured to send the reference configuration data to the redirection parameter receiving module;
and the storage submodule is used for storing the reference configuration data.
For the device embodiment, since it is basically similar to the method embodiment, the description is simple, and for the relevant points, refer to the partial description of the method embodiment.
An embodiment of the present invention further provides an electronic device, which includes a processor, a memory, and a computer program stored in the memory and capable of running on the processor, where the computer program, when executed by the processor, implements each process of the above-mentioned mail transmission method embodiment, and can achieve the same technical effect, and details are not repeated here to avoid repetition.
The embodiment of the present invention further provides a computer-readable storage medium, where a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the computer program implements each process of the above-mentioned mail transmission method embodiment, and can achieve the same technical effect, and in order to avoid repetition, details are not repeated here. The computer-readable storage medium may be a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk.
Various implementation modes of the embodiments in the present specification are described in a progressive manner, each implementation mode focuses on differences from other implementation modes, and the same and similar parts among the implementation modes can be referred to each other.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, apparatus or computer program product. Accordingly, embodiments of the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, embodiments of the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
Embodiments of the present invention are described with reference to flowchart illustrations and/or block diagrams of methods, apparatus, electronic devices (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing electronic device to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing electronic device, create a system for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing electronic devices to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including an instruction system which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing electronic device to cause a series of operational steps to be performed on the computer or other programmable electronic device to produce a computer implemented process such that the instructions which execute on the computer or other programmable electronic device provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
While preferred embodiments of the present invention have been described, additional variations and modifications of these embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. Therefore, it is intended that the appended claims be interpreted as including preferred embodiments and all such alterations and modifications as fall within the scope of the embodiments of the invention.
Finally, it should also be noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or electronic device that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or electronic device. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or electronic device that comprises the element.
The above detailed description is provided for a mail transmission method and a mail transmission device provided by the present invention, and the principle and the implementation of the present invention are explained in the present document by applying specific examples, and the description of the above embodiments is only used to help understanding the method and the core idea of the present invention; meanwhile, for a person skilled in the art, according to the idea of the present invention, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present invention.

Claims (11)

1. A mail transmission method is characterized in that the method is applied to electronic equipment, a Linux operating system kernel of the electronic equipment supports a Netfilter framework, and a network redirection driver, a mail client and a local agent module are configured in the electronic equipment; the method comprises the following steps:
the network redirection driver intercepts a network access request of the mail client to a mail server when detecting the network access request, wherein the network access request carries target configuration data;
the network redirection driver judges whether the target configuration data is matched with pre-stored reference configuration data or not;
the network redirection driver redirects the network access request to the local proxy module under the condition of judging that the target configuration data is matched with the pre-stored reference configuration data;
the local agent module is used for acting the mail transmission between the mail client and the mail server;
the operating system kernel comprises a kernel interface, a transmission layer and a network layer, wherein a hook function is arranged in the network layer, and the network layer supports the Netfilter framework;
the redirecting the network access request to the home agent module comprises:
calling a network system calling interface through an application layer;
calling the system kernel interface through the network system calling interface, and sending the first mail data from the application layer to the operating system kernel;
the transmission layer processes the first mail data to obtain first intermediate mail data and sends the first intermediate mail data to the network layer;
the Netfilter framework acquires first intermediate mail data from the network layer through a hook function;
and the Netfilter framework calls the redirection callback function to redirect the first intermediate mail data to the local agent module.
2. The method of claim 1, further comprising:
and registering a callback function corresponding to the event which completes the redirection function to the Netfilter framework in the network driver to obtain the network redirection driver with the redirection function, wherein the callback function comprises a redirection callback function.
3. The method of claim 2, wherein the network access request is for the mail client to send mail to the mail server, and wherein redirecting the network access request to the home agent module comprises:
the network redirection driver redirects first mail data sent by the mail client to the local agent module;
the local proxy module acting on mail transmission between the mail client and the mail server includes:
the local agent module receives the first mail data;
and the local agent module encrypts the first mail data and sends the encrypted first mail data to the mail server.
4. The method of claim 2, wherein the network access request is a mail reception request initiated by the mail client to receive mail from the mail server, and wherein redirecting the network access request to the home agent module comprises:
the network redirection driver sends the mail receiving request to a local agent module;
the local proxy module acting on mail transmission between the mail client and the mail server includes:
the local agent module sends the mail receiving request to the mail server;
the mail server sends second mail data to the local agent module according to the mail receiving request;
and the local agent module decrypts the second mail data and sends the decrypted second mail data to the mail client.
5. The method of claim 3, wherein the local proxy module receiving the first mail data comprises:
the local agent module receives the first intermediate mail data;
the local agent module encrypts the first mail data and sends the encrypted first mail data to the mail server, and the method includes:
and the local agent module encrypts the first intermediate mail data and sends the encrypted first intermediate mail data to the mail server.
6. The method of claim 4, wherein the operating system kernel comprises a network layer, wherein a hook function is built in the network layer, and wherein the Netfilter framework is supported by the network layer;
the network redirection driver sends the mail receiving request to a local agent module, and the method comprises the following steps:
calling a network system calling interface through an application layer;
calling the system kernel interface through the network system calling interface, and sending the mail receiving request from the application layer to the operating system kernel;
the transmission layer processes the mail receiving request to obtain a first intermediate mail receiving request and sends the first intermediate mail receiving request to the network layer;
the Netfilter framework acquires a first intermediate mail receiving request from the network layer through a hook function;
the Netfilter framework calls the redirection callback function to redirect the first intermediate mail receiving request to the local agent module;
the local agent module sends the mail receiving request to the mail server, and comprises:
the local agent module processes the first intermediate mail receiving request to obtain a mail receiving request to be sent, and sends the mail receiving request to be sent to the mail server;
the mail server sends second mail data to the local agent module according to the mail receiving request, and the method comprises the following steps:
receiving second mail data sent by the mail server through a network card drive, and sending the second mail data to the network interface layer;
the network interface layer processes the second mail data to obtain second intermediate mail data and sends the second intermediate mail data to the network layer;
the Netfilter framework acquires second intermediate mail data from the network layer through a hook function;
the Netfilter framework calls the redirection callback function to redirect the second intermediate mail data to a local agent module;
the local agent module decrypts the second mail data and sends the decrypted second mail data to the mail client, and the method includes:
and the local agent module decrypts the second intermediate mail data and sends the decrypted second intermediate mail data to the mail client.
7. The method of claim 1, wherein prior to said determining whether the target configuration data matches pre-stored reference configuration data, the method further comprises:
and the network redirection driver prestores reference configuration data sent by the configuration management module.
8. The method according to claim 7, wherein the configuration management module includes a configuration parsing module and a configuration issuing module, the network redirection driver includes a redirection parameter receiving module, and the network redirection driver pre-stores reference configuration data sent by the configuration management module, and includes:
the configuration analysis module analyzes the configuration strategy to obtain reference configuration data and sends the reference configuration data to the configuration issuing module;
the configuration issuing module sends the reference configuration data to the redirection parameter receiving module;
the redirection parameter receiving module stores the reference configuration data.
9. A mail transmission device is characterized in that the mail transmission device is applied to electronic equipment, a Linux operating system kernel of the electronic equipment supports a Netfilter framework, and a network redirection driver, a mail client and a local agent module are configured in the electronic equipment; the device comprises:
the intercepting module is used for intercepting a network access request of the mail client to a mail server when the network access request is detected, wherein the network access request carries target configuration data;
the judging module is used for judging whether the target configuration data is matched with pre-stored reference configuration data or not;
a network access request redirection module, configured to redirect the network access request to the local proxy module when the network redirection driver determines that the target configuration data matches pre-stored reference configuration data;
a mail transmission agent module, which is used for the local agent module to agent the mail transmission between the mail client and the mail server;
the operating system kernel comprises a kernel interface, a transmission layer and a network layer, wherein a hook function is arranged in the network layer, and the network layer supports the Netfilter framework;
the network access request redirection module further comprises:
the first calling subunit is used for calling a network system calling interface;
the second calling subunit is used for calling the system kernel interface and sending the first mail data from the application layer to the operating system kernel;
the first processing subunit is configured to process the first mail data to obtain first intermediate mail data, and send the first intermediate mail data to the network layer;
the first acquiring subunit is used for acquiring first intermediate mail data from the network layer through a hook function;
and the first redirection subunit is used for calling the redirection callback function to redirect the first intermediate mail data to the local proxy module.
10. An electronic device, comprising: memory, processor and computer program stored on the memory and executable on the processor, which computer program, when being executed by the processor, carries out the steps of the mail transmission method according to one of claims 1 to 8.
11. A computer-readable storage medium, characterized in that a computer program is stored on the computer-readable storage medium, which computer program, when being executed by a processor, carries out the steps of the mail transmission method according to one of claims 1 to 8.
CN201911090500.8A 2019-11-08 2019-11-08 Mail transmission method, device, electronic equipment and computer readable storage medium Active CN110808990B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911090500.8A CN110808990B (en) 2019-11-08 2019-11-08 Mail transmission method, device, electronic equipment and computer readable storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911090500.8A CN110808990B (en) 2019-11-08 2019-11-08 Mail transmission method, device, electronic equipment and computer readable storage medium

Publications (2)

Publication Number Publication Date
CN110808990A CN110808990A (en) 2020-02-18
CN110808990B true CN110808990B (en) 2021-11-05

Family

ID=69502273

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911090500.8A Active CN110808990B (en) 2019-11-08 2019-11-08 Mail transmission method, device, electronic equipment and computer readable storage medium

Country Status (1)

Country Link
CN (1) CN110808990B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110808990B (en) * 2019-11-08 2021-11-05 北京明朝万达科技股份有限公司 Mail transmission method, device, electronic equipment and computer readable storage medium
CN114172677A (en) * 2020-09-11 2022-03-11 北京金山云网络技术有限公司 Identification method, device and system for second dial IP
CN112291138B (en) * 2020-11-16 2022-07-26 北京北信源软件股份有限公司 Mail data auditing method and device, electronic equipment and storage medium
CN114024743A (en) * 2021-11-04 2022-02-08 山东中创软件商用中间件股份有限公司 Remote management method, device, equipment and storage medium for application server

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106027382A (en) * 2016-07-29 2016-10-12 北京北信源软件股份有限公司 Anti-leakage device and method and user terminal
CN106209606A (en) * 2016-08-31 2016-12-07 北京深思数盾科技股份有限公司 A kind of use the method for WEB mail, terminal and system safely
CN109033872A (en) * 2018-07-18 2018-12-18 郑州信大捷安信息技术股份有限公司 A kind of secure operating environment building method of identity-based
CN109347817A (en) * 2018-10-12 2019-02-15 厦门安胜网络科技有限公司 A kind of method and device that network security redirects
CN110808990A (en) * 2019-11-08 2020-02-18 北京明朝万达科技股份有限公司 Mail transmission method, device, electronic equipment and computer readable storage medium

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10097534B2 (en) * 2015-08-28 2018-10-09 Dell Products L.P. System and method to redirect hardware secure USB storage devices in high latency VDI environments

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106027382A (en) * 2016-07-29 2016-10-12 北京北信源软件股份有限公司 Anti-leakage device and method and user terminal
CN106209606A (en) * 2016-08-31 2016-12-07 北京深思数盾科技股份有限公司 A kind of use the method for WEB mail, terminal and system safely
CN109033872A (en) * 2018-07-18 2018-12-18 郑州信大捷安信息技术股份有限公司 A kind of secure operating environment building method of identity-based
CN109347817A (en) * 2018-10-12 2019-02-15 厦门安胜网络科技有限公司 A kind of method and device that network security redirects
CN110808990A (en) * 2019-11-08 2020-02-18 北京明朝万达科技股份有限公司 Mail transmission method, device, electronic equipment and computer readable storage medium

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
《基于排队论模型的电子邮件系统分析 》;赵丹;《 计算机工程》;20180313;第44卷(第9期);正文309-313页 *

Also Published As

Publication number Publication date
CN110808990A (en) 2020-02-18

Similar Documents

Publication Publication Date Title
CN110808990B (en) Mail transmission method, device, electronic equipment and computer readable storage medium
CN106998551B (en) Method, system, device and terminal for application access authentication
EP2850770B1 (en) Transport layer security traffic control using service name identification
CA3060851C (en) Selectively performing man in the middle decryption
US8590034B2 (en) Method, system and apparatus for providing stateful information redaction
US11277381B2 (en) Multi-channel based just-in-time firewall control
KR20160043044A (en) Gateway device for terminating a large volume of vpn connections
EP2371096B1 (en) Electronic file sending method
EP2617155B1 (en) Secure registration to a service provided by a web server
CN108600251A (en) Mobile device management and safety
US20050144441A1 (en) Presence validation to assist in protecting against Denial of Service (DOS) attacks
CN111049844B (en) Internet access behavior management method, device, equipment and storage medium based on Socks agents
US11716374B2 (en) Forced identification with automated post resubmission
US10158610B2 (en) Secure application communication system
CN103034811B (en) A kind of method, system and device of file process
CN112583599B (en) Communication method and device
CN111181831B (en) Communication data processing method and device, storage medium and electronic device
EP3231152B1 (en) Dynamic data encryption method, and associated method for controlling decryption rights
CN110417638B (en) Communication data processing method and device, storage medium and electronic device
US20240048590A1 (en) Intercept for encrypted communications
CN116707955A (en) Single-packet authentication method and related device
CN114363031A (en) Network access method and device
FR3029720A1 (en) METHOD FOR DYNAMIC DATA ENCRYPTION

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant