CN101662457A - Notebook computer with network data filtering device - Google Patents
Notebook computer with network data filtering device Download PDFInfo
- Publication number
- CN101662457A CN101662457A CN200810142092A CN200810142092A CN101662457A CN 101662457 A CN101662457 A CN 101662457A CN 200810142092 A CN200810142092 A CN 200810142092A CN 200810142092 A CN200810142092 A CN 200810142092A CN 101662457 A CN101662457 A CN 101662457A
- Authority
- CN
- China
- Prior art keywords
- address
- controller
- trusted
- button
- packet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention relates to a notebook computer with a network data filtering device. The notebook computer is provided with an independent network data filtering device besides software and hardware ofcommon notebook computers. The network data filtering device comprises a controller (2), a computer end network interface (3), a network end network interface (4), a storage device (5), a display device (6), a sound-producing device (7), a trust key (11), a distrust key (12), a temporary trust key (13) and a main switch (14), wherein trust IP addresses and distrust IP addresses are stored in the storage device (5); and the controller (2) operates according to a scheduled program to filter data packets transmitted between the computer and an external network and intercept all data packets communicated with the distrust IP addresses, and thus, when the notebook computer is connected to the internet, the notebook computer can only exchange information with the trust IP addresses to ensure that information in the computer cannot be stolen and transmitted to the distrust IP addresses.
Description
[technical field]
The present invention relates to computer and data security technical field, particularly relate to a kind of notebook computer that is provided with network data filtering device.
[background technology]
Progress along with the epoch, the application of Information of Science and Technology is very universal, especially computer and Internet development, financial institution such as bank etc., the service that much utilizes Information of Science and Technology is provided, and for example Web bank service, Internet securities dealing service etc., these services generally are that the Transaction Information with the user is sent to financial institution by the Internet, examine user's Transaction Information by financial institution after, operate accordingly according to the Transaction Information content.Owing to include user's capsule information in these Transaction Informations, for example account number, account password etc., as long as steal to such an extent that these data just can be in the ignorant account of controlling the user down of user, steal the money in the user account, so some hacker is by various inbreak methods, the wooden horse formula is placed in the user's computer, when the user is wired to the server of financial institution, steal user's data by the wooden horse formula, comprise account number, account password etc., then these data transmissions are arrived hacker's specified server.Because the wooden horse formula is to be hidden in the computer usually, even utilized the wooden horse formula to steal user's data by the hacker, the user can not discover, and the hacker uses these data to steal user's the interior money of account then, making the user sustain a loss, is a problem extremely to be solved.
[summary of the invention]
Purpose of the present invention, be to provide a kind of notebook computer that is provided with network data filtering device, when making the online of computer line with other computer communications, can only carry out exchange message with the computer of the IP address of users to trust, thereby make the hacker can not be by the wooden horse formula with the data transmission stolen IP address to non-users to trust.
The object of the present invention is achieved like this, adopt a kind of like this notebook computer that is provided with network data filtering device, described computer is except the software and hardware that possesses general notebook computer and possess, also be provided with independently network data filtering device, it is characterized in that, described network data filtering device includes controller (2), computer terminal network interface (3), network terminal network interface (4), storage device (5), display unit (6), sound-producing device (7), trusted button (11), distrust button (12), interim trust button (13), master switch (14), wherein, controller (2) respectively with computer terminal network interface (3), network terminal network interface (4), storage device (5), display unit (6), sound-producing device (7), trusted button (11), distrust button (12), interim trust button (13), master switch circuitry phases such as (14) connects, store each trusted IP address and each distrust IP address in the storage device (5), controller (2) is by the preset program running, to filter from the packet that computer terminal network interface (3) send network terminal network interface (4) to, IP address, interception purposes ground is for all packets of distrusting the IP address and/or will filter from the packet that network terminal network interface (4) send computer terminal network interface (3) to, and interception IP address, source place is for distrusting all packets of IP address.
So just realized purpose of the present invention.
Adopted notebook computer of the present invention, even suffered hacker's wooden horse formula, when the wooden horse formula arrives the IP address of hacker's appointment with the data transmission of being stolen, network data filtering device can find that immediately this IP address is not to be the IP address that the user trusts, and just can not allow this data transmission arrive the IP address of hacker's appointment.
[description of drawings]
Fig. 1 is the three-dimensional schematic illustration of imageization that is provided with the notebook computer of network data filtering device of the present invention;
Fig. 2 is the structural representation key diagram that is provided with the notebook computer of network data filtering device of the present invention.
Among the figure, the system that identical digitized representation is identical, device, parts device, accompanying drawing are schematically, in order to formation of the present invention and principal character to be described.
[embodiment]
Below in conjunction with accompanying drawing, method of the present invention is described in further detail.
Consult Fig. 1 and Fig. 2, Fig. 1 is the three-dimensional schematic illustration of imageization that is provided with the notebook computer of network data filtering device of the present invention, Fig. 2 is the structural representation key diagram that is provided with the notebook computer of network data filtering device of the present invention, computer shown in Fig. 1 and Fig. 2 is except the software and hardware that possesses general notebook computer and possess, also be provided with independently network data filtering device, described network data filtering device includes controller (2), computer terminal network interface (3), network terminal network interface (4), storage device (5), display unit (6), sound-producing device (7), trusted button (11), distrust button (12), interim trust button (13), master switch (14), wherein, controller (2) respectively with computer terminal network interface (3), network terminal network interface (4), storage device (5), display unit (6), sound-producing device (7), trusted button (11), distrust button (12), interim trust button (13), master switch circuitry phases such as (14) connects, store each trusted IP address and each distrust IP address in the storage device (5), controller (2) is by the preset program running, to filter from the packet that computer terminal network interface (3) send network terminal network interface (4) to, IP address, interception purposes ground is for all packets of distrusting the IP address and/or will filter from the packet that network terminal network interface (4) send computer terminal network interface (3) to, and interception IP address, source place is for distrusting all packets of IP address.
Continue to consult Fig. 1 and Fig. 2, the shell of the notebook computer shown in Fig. 1 and Fig. 2 (1) is provided with the button of four network data filtering device special uses, comprise: trusted button (11), distrust button (12), trust button (13), master switch (14) temporarily, wherein master switch (14) is the master switch of described network data filtering device, remaining trusted button (11), distrusts button (12), trusts button buttons such as (13) temporarily to be to be used for indicating controller (2) how to handle strange IP address.
In the present invention, computer terminal network interface (3) is the network interface circuit that is connected to computer-internal, and network terminal network interface (4) is the network socket that is connected to computer, just network data filtering device is to place between the network interface and external network of computer-internal, by network data filtering device the data that flow through are filtered, comprise the packet that sends network terminal network interface (4) from computer terminal network interface (3) to, with the packet that sends computer terminal network interface (3) from network terminal network interface (4) to, below will be described in further detail respectively.In addition, also store the domain name data of a plurality of IP address correspondence in the storage device (5), comprise the domain name data of each trusted IP address correspondence, the domain name data of each distrust IP address correspondence, the domain name data of other IP address correspondences.
When below being to use notebook computer of the present invention to surf the Net, network data filtering device sends computer to process that output packet is filtered, when described controller (2) from computer terminal network interface (3) when receiving packet, each trusted IP address that controller (2) is stored with the IP address, destination of this packet and storage device (5) and each distrust the IP address to check, and carry out one of them program of following A group program then according to checked result:
Program A1: when IP address, the destination of packet distrusts that with one of them the IP address is identical, controller (2) discards this packet interception, and send alarm prompt sound and/or show the Word message of this distrust IP address by display unit (6) by sound-producing device (7), described Word message comprises the domain name of IP address and/or this IP address correspondence;
Program A2: when IP address, the destination of packet was identical with one of them trusted IP address, controller (2) outputed to network terminal network interface (4) with this packet;
Program A3: when IP address, the destination of packet and any one trusted IP address inequality, and IP address, this destination and any one are distrusted when the IP address is also inequality, IP address, this destination is strange IP address, controller (2) sends voice prompt and/or shows the Word message of this strange IP address by display unit (6) by sound-producing device (7), and described Word message comprises the domain name of IP address and/or this IP address correspondence.
After controller (2) is carried out described program A3, controller (2) is waited for the button operation that receives the user, when the user presses trusted button (11), distrusts button (12), trusts one of them button that button (13) waits temporarily, controller (2) is carried out and is comprised that following B organizes one of them program of program:
Program B1: distrust button (12) when the user presses, controller (2) discards this packet interception, then described strange IP address setting is stored in the storage device (5) for distrusting the IP address;
Program B2: when the user presses trusted button (11), controller (2) outputs to network terminal network interface (4) with this packet, is that trusted IP address is stored in the network data filtering device with described strange IP address setting then;
Program B3: when the user presses interim trust button (13), controller (2) outputs to network terminal network interface (4) with this packet, controller (2) is that the destination IP address setting of described packet is that trusted IP address is stored in the storage device (5) with described strange IP address then, and set effective time of this trusted IP address, and controller (2) is in this effective time this trusted of deletion IP address from storage device (5) later.
When below being to use notebook computer of the present invention to surf the Net, network data filtering device will send the process that the packet of computer filters to from external network, when described controller (2) from network terminal network interface (4) when receiving packet, each trusted IP address that controller (2) is stored with the IP address, source place of this packet and storage device (5) and each distrust the IP address to check, and carry out one of them program of following C group program then according to checked result:
Program C1: when IP address, the source place of packet distrusts that with one of them the IP address is identical, controller (2) discards this packet interception, and send alarm prompt sound and/or show the Word message of this distrust IP address by display unit (6) by sound-producing device (7), described Word message comprises the domain name of IP address and/or this IP address correspondence;
Program C2: when IP address, the source place of packet was identical with one of them trusted IP address, controller (2) outputed to computer terminal network interface (3) with this packet;
Program C3: when IP address, the source place of packet and any one trusted IP address inequality, and IP address, this source place and any one are distrusted when the IP address is also inequality, IP address, this source place is strange IP address, controller (2) sends voice prompt and/or shows the Word message of this strange IP address by display unit (6) by sound-producing device (7), and described Word message comprises the domain name of IP address and/or this IP address correspondence.
When the user presses trusted button (11), distrusts button (12), trusts one of them button that button (13) waits temporarily, controller (2) is carried out and is comprised that following D organizes one of them program of program:
Program D1: distrust button (12) when the user presses, controller (2) discards this packet interception, then described strange IP address setting is stored in the storage device (5) for distrusting the IP address;
Program D2: when the user presses trusted button (11), controller (2) outputs to computer terminal network interface (3) with this packet, is that trusted IP address is stored in the network data filtering device with described strange IP address setting then;
Program D3: when the user presses interim trust button (13), controller (2) outputs to computer terminal network interface (3) with this packet, controller (2) is that the destination IP address setting of described packet is that trusted IP address is stored in the storage device (5) with described strange IP address then, and set effective time of this trusted IP address, and controller (2) is in this effective time this trusted of deletion IP address from storage device (5) later.
Continue to consult Fig. 1, the network data filtering device of the notebook computer shown in Fig. 1 is to adopt memory card as storage device (5), can be in advance with each trusted IP address and corresponding domain name thereof, each distrusts the data of IP address and corresponding domain name thereof, other IP addresses and corresponding domain name thereof or the like to write memory card, just memory card is inserted on the network data filtering device then and uses.
Below described the notebook computer that is provided with network data filtering device of the present invention in detail, though the present invention is illustrated with the above embodiments, but the present invention is not limited to this, under the situation of the scope of not leaving spirit of the present invention and appended claims, can do multiple change and variation.
The notebook computer that is provided with network data filtering device of the present invention is to adopt a network data filtering device that is independent of computer motherboard, physically isolate with computer motherboard, even notebook computer has infected virus and wooden horse formula, also can not influence the work of network data filtering device.Enforcement of the present invention has ensured that user's data can not stolen by the wooden horse formula, is particularly suitable for being applied to the application that some often are wired to financial website.
Claims (7)
1. notebook computer that is provided with network data filtering device, described computer is except the software and hardware that possesses general notebook computer and possess, also be provided with independently network data filtering device, it is characterized in that, described network data filtering device includes controller (2), computer terminal network interface (3), network terminal network interface (4), storage device (5), display unit (6), sound-producing device (7), trusted button (11), distrust button (12), interim trust button (13), master switch (14), wherein, controller (2) respectively with computer terminal network interface (3), network terminal network interface (4), storage device (5), display unit (6), sound-producing device (7), trusted button (11), distrust button (12), interim trust button (13), master switch circuitry phases such as (14) connects, store each trusted IP address and each distrust IP address in the storage device (5), controller (2) is by the preset program running, to filter from the packet that computer terminal network interface (3) send network terminal network interface (4) to, IP address, interception purposes ground is for all packets of distrusting the IP address and/or will filter from the packet that network terminal network interface (4) send computer terminal network interface (3) to, and interception IP address, source place is for distrusting all packets of IP address.
2. notebook computer as claimed in claim 1, it is characterized in that, also store the domain name data of a plurality of IP address correspondence in the described storage device (5), comprise the domain name data of each trusted IP address correspondence, the domain name data of each distrust IP address correspondence, the domain name data of other IP address correspondences.
3. notebook computer as claimed in claim 1 is characterized in that, described master switch (14) is the master switch of described network data filtering device.
4. as claim 1 or 2 or 3 described notebook computers, it is characterized in that, when described controller (2) from computer terminal network interface (3) when receiving packet, each trusted IP address that controller (2) is stored with the IP address, destination of this packet and storage device (5) and each distrust the IP address to check, and carry out one of them program of following A group program then according to checked result:
Program A1: when IP address, the destination of packet distrusts that with one of them the IP address is identical, controller (2) discards this packet interception, and send alarm prompt sound and/or show the Word message of this distrust IP address by display unit (6) by sound-producing device (7), described Word message comprises the domain name of IP address and/or this IP address correspondence;
Program A2: when IP address, the destination of packet was identical with one of them trusted IP address, controller (2) outputed to network terminal network interface (4) with this packet;
Program A3: when IP address, the destination of packet and any one trusted IP address inequality, and IP address, this destination and any one are distrusted when the IP address is also inequality, IP address, this destination is strange IP address, controller (2) sends voice prompt and/or shows the Word message of this strange IP address by display unit (6) by sound-producing device (7), and described Word message comprises the domain name of IP address and/or this IP address correspondence.
5. network data filtering device as claimed in claim 4, it is characterized in that, after controller (2) is carried out described program A3, controller (2) is waited for the button operation that receives the user, when the user presses trusted button (11), distrusts button (12), trusts one of them button that button (13) waits temporarily, controller (2) is carried out and is comprised that following B organizes one of them program of program:
Program B1: distrust button (12) when the user presses, controller (2) discards this packet interception, then described strange IP address setting is stored in the storage device (5) for distrusting the IP address;
Program B2: when the user presses trusted button (11), controller (2) outputs to network terminal network interface (4) with this packet, is that trusted IP address is stored in the network data filtering device with described strange IP address setting then;
Program B3: when the user presses interim trust button (13), controller (2) outputs to network terminal network interface (4) with this packet, controller (2) is that trusted IP address is stored in the storage device (5) with described strange IP address setting then, and set effective time of this trusted IP address, and controller (2) is in this effective time this trusted of deletion IP address from storage device (5) later.
6. as claim 1 or 2 or 3 described notebook computers, it is characterized in that, when described controller (2) from network terminal network interface (4) when receiving packet, each trusted IP address that controller (2) is stored with the IP address, source place of this packet and storage device (5) and each distrust the IP address to check, and carry out one of them program of following C group program then according to checked result:
Program C1: when IP address, the source place of packet distrusts that with one of them the IP address is identical, controller (2) discards this packet interception, and send alarm prompt sound and/or show the Word message of this distrust IP address by display unit (6) by sound-producing device (7), described Word message comprises the domain name of IP address and/or this IP address correspondence;
Program C2: when IP address, the source place of packet was identical with one of them trusted IP address, controller (2) outputed to computer terminal network interface (3) with this packet;
Program C 3: when IP address, the source place of packet and any one trusted IP address inequality, and IP address, this source place and any one are distrusted when the IP address is also inequality, IP address, this source place is strange IP address, controller (2) sends voice prompt and/or shows the Word message of this strange IP address by display unit (6) by sound-producing device (7), and described Word message comprises the domain name of IP address and/or this IP address correspondence.
7. network data filtering device as claimed in claim 6, it is characterized in that, after controller (2) is carried out described program C3, controller (2) is waited for the button operation that receives the user, when the user presses trusted button (11), distrusts button (12), trusts one of them button that button (13) waits temporarily, controller (2) is carried out and is comprised that following D organizes one of them program of program:
Program D1: distrust button (12) when the user presses, controller (2) discards this packet interception, then described strange IP address setting is stored in the storage device (5) for distrusting the IP address;
Program D2: when the user presses trusted button (11), controller (2) outputs to computer terminal network interface (3) with this packet, is that trusted IP address is stored in the network data filtering device with described strange IP address setting then;
Program D3: when the user presses interim trust button (13), controller (2) outputs to computer terminal network interface (3) with this packet, controller (2) is that trusted IP address is stored in the storage device (5) with described strange IP address setting then, and set effective time of this trusted IP address, and controller (2) is in this effective time this trusted of deletion IP address from storage device (5) later.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200810142092A CN101662457A (en) | 2008-08-28 | 2008-08-28 | Notebook computer with network data filtering device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200810142092A CN101662457A (en) | 2008-08-28 | 2008-08-28 | Notebook computer with network data filtering device |
Publications (1)
Publication Number | Publication Date |
---|---|
CN101662457A true CN101662457A (en) | 2010-03-03 |
Family
ID=41790248
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN200810142092A Pending CN101662457A (en) | 2008-08-28 | 2008-08-28 | Notebook computer with network data filtering device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN101662457A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103181146A (en) * | 2010-11-08 | 2013-06-26 | 瑞典爱立信有限公司 | Method and apparatus for enabling dns redirection in mobile telecommunication systems |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20040083388A1 (en) * | 2002-10-25 | 2004-04-29 | Nguyen The Vinh | Method and apparatus for monitoring data packets in a packet-switched network |
CN1801807A (en) * | 2005-01-05 | 2006-07-12 | 英华达(上海)电子有限公司 | Safety protection module of mobile communication equipment and its processing method |
CN101040497A (en) * | 2004-10-12 | 2007-09-19 | 松下电器产业株式会社 | Firewall system and firewall control method |
-
2008
- 2008-08-28 CN CN200810142092A patent/CN101662457A/en active Pending
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20040083388A1 (en) * | 2002-10-25 | 2004-04-29 | Nguyen The Vinh | Method and apparatus for monitoring data packets in a packet-switched network |
CN101040497A (en) * | 2004-10-12 | 2007-09-19 | 松下电器产业株式会社 | Firewall system and firewall control method |
CN1801807A (en) * | 2005-01-05 | 2006-07-12 | 英华达(上海)电子有限公司 | Safety protection module of mobile communication equipment and its processing method |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103181146A (en) * | 2010-11-08 | 2013-06-26 | 瑞典爱立信有限公司 | Method and apparatus for enabling dns redirection in mobile telecommunication systems |
CN103181146B (en) * | 2010-11-08 | 2016-03-09 | 瑞典爱立信有限公司 | The method and apparatus that in mobile communication system, DNS is redirected can be realized |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108901022A (en) | A kind of micro services universal retrieval method and gateway | |
TW200409490A (en) | Network interface and protocol | |
Sanka et al. | Efficient high performance FPGA based NoSQL caching system for blockchain scalability and throughput improvement | |
JP6361090B2 (en) | Relay device | |
CN107873129A (en) | Security service for not managed device | |
CN108073823A (en) | Data processing method, apparatus and system | |
CA2578053A1 (en) | System and method for accessing host computer via remote computer | |
CN108737446A (en) | Multi-party communications method based on dual identity and system | |
CN109286500A (en) | Vehicle Electronic Control Unit ECU authentication method, device and equipment | |
CN101662368A (en) | Network data filtering device capable of fighting against Trojan horse programs and corresponding method | |
CN107635028A (en) | A kind of naming method of resource, device, block scm cluster and electronic equipment | |
CN110351275A (en) | A kind of host port flux monitoring method, system, device and storage equipment | |
CN101662457A (en) | Notebook computer with network data filtering device | |
CN103034811A (en) | File processing method and system and device | |
CN104714760B (en) | A kind of method and device for reading and writing storage device | |
WO2022228588A1 (en) | Method, system and apparatus for binding user account, and device | |
US20160117524A1 (en) | Enhanced view compliance tool | |
CN108563492A (en) | Data capture method, virtual machine and electronic equipment | |
CN106685901A (en) | Method for processing cross-domain data, first server and second server | |
SE506628C2 (en) | Method and apparatus for signing and encrypting information in a telecommunication and data communication system | |
CN111510306B (en) | Offline signature method and device based on block chain | |
CN107094079A (en) | A kind of method for opening termination function, device and equipment | |
JP2009145969A (en) | Setting information setting system and setting information setting method | |
JP2006209322A (en) | Access control system and method, server device, terminal device, and program | |
CN103685510A (en) | Service-side-based-operating multi-terminal-oriented media resource synchronization method and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20100303 |