CN103312693B - Video and audio access control gateway equipment - Google Patents
Video and audio access control gateway equipment Download PDFInfo
- Publication number
- CN103312693B CN103312693B CN201310167414.9A CN201310167414A CN103312693B CN 103312693 B CN103312693 B CN 103312693B CN 201310167414 A CN201310167414 A CN 201310167414A CN 103312693 B CN103312693 B CN 103312693B
- Authority
- CN
- China
- Prior art keywords
- video
- data
- unit
- access control
- audio
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The embodiment of the invention provides video and audio access control gateway equipment. The equipment comprises a front processing unit, a control processing unit and a rear processing unit, wherein the front processing unit is connected with an access network end; the rear processing unit is connected with a core network end; the control processing unit is used for isolating the access network end and the core network end; and content filtering, intrusion detection, operational logbook auditing and access control processing are performed between the access network end and the interior core network end. According to the embodiment of the invention, the content filtering, intrusion detection, operational logbook auditing and access control processing are performed between the access network end and the interior core network end by utilizing the video and audio access control gateway equipment, so that voice and video online transmission can be controlled, the security hole of video and audio information existing in TCP/IP (Transmission Control Protocol/Internet Protocol) protocol system is solved, and security isolation or system reinforcement is performed on boundaries of the network and security domains.
Description
Technical field
The present invention relates to network safety filed, more particularly to a kind of audio frequency and video access control gateway equipment.
Background technology
In industries such as public security, People's Armed Police, and in electric power, the large enterprise of petrochemical industry equal energy source industry, traditionally there is sound
Video scheduling system, the system is scheduled commander subordinate unit using voice and video, carries out collaborative work.With IT technologies
Develop rapidly, mobile communication and intelligent terminal greatly popularize, and voice scheduling is to based on SIP(Session Initiation
Protocol, SIP)Many net system converged communication directions of agreement are developed, and voice scheduling is being not merely with phone
Based on scheduling, but the scheduling of various voice terminals is combined, including traditional telephone, IP phone, videophone, handss
Machine, PAD, satellite phone etc..Video scheduling system is also no longer single video conference network system, and the scheduling of video needs
Across multiple networks, the equipment of access includes desktop computer, notebook, PAD etc., can be by other business networks and video monitoring net
Network system globe area, forms comprehensive video scheduling system.
Therefore, above-mentioned audio frequency and video scheduling system is also no longer a pile hardware composition, fixed dispatching desk, and is only deployed at
Command centre, but to the development of soft dispatching desk, mainly based on software, on various smart machines, both can fix,
Can move.Above-mentioned audio frequency and video scheduling system is changing traditional voice and video scheduling method, many on network
Plant and transmit audio, video data and access control information between net system.So, certainly will melt on the border of network insertion and each net system
Chalaza, will consider safe access control problem, otherwise, be very easy to cause whole network under fire and be subjected to poisoning intrusion.
At present, audio frequency and video integrated dispatch needs inter-network system to conduct interviews control and information transfer, and the safety of network is proposed
New requirement, the terminal type for particularly accessing is more, and communication protocol is more, black phone exchange network and IP network are constantly melted
Close, telephone exchange to soft switch develops, how continuing to bring out for various intelligent terminals prevents the unauthorized use of equipment
How to prevent using malicious attack of the access terminal to networkHow to prevent wooden horse, virus, invasion, leakage of data and distort
ThreatenThese problems have increasing need for urgently to be resolved hurrily.
Fire wall, intrusion detection etc. are generally adopted in core IP network, being both for data network system carries out safeguard protection,
Partition protecting is carried out according to the type for using and servicing.Because fire wall is in itself based on TCP(Transmission Control
Protocol, transmission control protocol)What/IP agreement system was realized, so it cannot be solved present in ICP/IP protocol system
Leak.And for this audio frequency and video dispatching platform, being conducted interviews by inter-network system is controlled and information transfer, there is presently no
Safety protecting method.
The content of the invention
The embodiment provides a kind of audio frequency and video access control gateway equipment, to realize audio frequency and video scheduling system in
Information security.
A kind of audio frequency and video access control gateway equipment, including:Preprocessing unit, control process unit and postpositive disposal list
Unit, the preprocessing unit and access network end connect, and described postpositive disposal unit and core net end connects, described control
Processing unit is isolated at the access network end and the core net end, is carried out between access network end and internal core net end
Information filtering, intrusion detection, Operation Log audit and access control are processed.
The technical scheme provided by embodiments of the invention described above can be seen that the embodiment of the present invention by using audio frequency and video
Access control gateway equipment is isolated at access network end and core net end, is carried out between access network end and internal core net end
Information filtering, intrusion detection, Operation Log audit and access control are processed.Such that it is able to control voice, video transfers on network, solution
Certainly security breaches of audio/video information present in ICP/IP protocol system, network and security domain boundaries are carried out security isolation or
System reinforcement, protection comprehensive communication network core data resource security is controllable.
Description of the drawings
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, below will be to use needed for embodiment description
Accompanying drawing be briefly described, it should be apparent that, drawings in the following description are only some embodiments of the present invention, for this
For the those of ordinary skill of field, on the premise of not paying creative work, can be with other according to these accompanying drawings acquisitions
Accompanying drawing.
Fig. 1 is that a kind of audio frequency and video access control gateway equipment provided in an embodiment of the present invention realizes principle schematic;
Fig. 2 is a kind of concrete structure schematic diagram of audio frequency and video access control gateway equipment provided in an embodiment of the present invention;
Fig. 3 is the tool of the preprocessing unit in a kind of audio frequency and video access control gateway equipment provided in an embodiment of the present invention
Body structural representation;
Fig. 4 is the tool of the postpositive disposal unit in a kind of audio frequency and video access control gateway equipment provided in an embodiment of the present invention
Body structural representation;
Fig. 5 is the tool of the control process unit in a kind of audio frequency and video access control gateway equipment provided in an embodiment of the present invention
Body structural representation.
Specific embodiment
For ease of the understanding to the embodiment of the present invention, do by taking several specific embodiments as an example further below in conjunction with accompanying drawing
Explanation, and each embodiment does not constitute the restriction to the embodiment of the present invention.
A kind of audio frequency and video access control gateway equipment provided in an embodiment of the present invention realizes principle as shown in figure 1, concrete
Structural representation as shown in Fig. 2 including:Preprocessing unit 1, control process unit 2 and postpositive disposal unit 3.Above-mentioned sound is regarded
Frequency access control gateway equipment is isolated at access network end and core net end, is entered between access network end and internal core net end
Row audio frequency and video access control, with reference to physical layer technology of breaking, link layer technology of breaking, ICP/IP protocol peel off and reconstruction technique with
And stripping and the reconstruction technique of application protocol, realize the safe and reliable transmission of the audio, video data of different safety class networks.
Above-mentioned preprocessing unit and the connection of access network end, concrete structure as shown in figure 3, including:
Advanced video data reception module 31, for passing through at the video input channel reception control that one-way optical fiber is constituted
The video data from postpositive disposal unit that reason unit is sended over.
Front audio data reception module 32, the audio input channel for being consisted of one-way optical fiber is received at control
The voice data from postpositive disposal unit that reason unit is sended over
Advanced video data transmission blocks 33, for the video output channel that constituted by one-way optical fiber to control process
The video data from access network end that unit sends.
Front audio data transmission blocks 34, for the audio frequency output channel that constituted by one-way optical fiber to control process
The voice data from access network end that unit sends.
Above-mentioned postpositive disposal unit and core net end connects, and concrete structure is as shown in figure 4, specifically include:
Rearmounted video data receiver module 41, for passing through at the video input channel reception control that one-way optical fiber is constituted
The video data from preprocessing unit that reason unit is sended over.
Rearmounted audio data receipt module 42, the audio input channel for being consisted of one-way optical fiber is received at control
The voice data from preprocessing unit that reason unit is sended over.
Rearmounted video data sends module 43, for the video output channel that consisted of one-way optical fiber to control process
The video data from core net end that unit sends.
Rearmounted voice data sending module 44, for the audio frequency output channel that constituted by one-way optical fiber to control process
The voice data from core net end that unit sends.
Above-mentioned control process unit 2 and preprocessing unit 1, postpositive disposal unit 3 connect, and major function sets including network
The access of standby and user authentication, audio, video data point/interflow, the extraction of control signaling, protocol analysis, rule match, information filtering
With one-way transmission etc., concrete structure is as shown in figure 5, specifically include:
Security isolation module 51, for by hardware isolated part realize between access network end and core net end safety every
From thoroughly TCP/IP between blocking access network end and core net end etc. is communicated to connect and other procotols.
Content filtering module 52, the security strategy for being customized according to user pre-set and store each of audio, video data
Information filtering rule is planted, the information filtering rule can be according to data type(Voice data or video data), protocol type
(TCP or UDP etc.), data transfer direction(From preprocessing unit to postpositive disposal unit or from postpositive disposal unit to
Preprocessing unit), user type(Advanced level user or less advanced users), data QoS(Quality of Service, service
Quality)Require etc. factor and set.Can include keyword filtration, name single-filtering, image filtering, language in the information filtering rule
Sound information filtering etc..
Audio, video data to communicating between preprocessing unit and postpositive disposal unit carries out protocol analysis, packet solution
Analysis, obtains data type, protocol type, data transfer direction, user type, data qos requirement of above-mentioned audio, video data etc.
Information, determines the corresponding filtering rule of above-mentioned audio, video data, using the filtering rule to preposition process according to the information for obtaining
The content of the audio, video data communicated between unit and postpositive disposal unit is filtered.
The above filtering module is specifically included:
Keyword and list filter submodule:The DPI matched using feature based(Deep Packet Inspection,
Deep message is detected)Method carries out contents extraction to the packet of audio, video data, using above-mentioned corresponding filtering rule to carrying
The content and list of the packet for taking out carries out filtration treatment so that network security isolation can be assisted from link layer to application layer
The filtration of view field is controlled, and the filtration of keyword and list is controlled in application data, by protocol analysis and stripping,
Transmission to data is controlled, and control signaling is checked and information filtering, only allows legal audio video transmission to assist
View, audio, video data passes through, and all data in addition can be blocked.
Voice content filtering rule submodule:In most of waste advertisements phones, the communication process of the harassing call of malice
In, often recipient is hung up first, i.e., send bye message first.Effective signaling is performed by the signaling to voice content
Behavioral statisticses specificity analysises, can effectively judge waste advertisements phone, the dissemination of the harassing call of malice and to corresponding
Calling carry out key words sorting, so as to define Transmission Control Strategy and filters(Such as blacklist, white list, gray list, voice
Turing test, reverse ID inquiring and checking etc.)The final judgement of call property is made, and performs corresponding disposal operations.
Image filtering rule submodule:First Face Detection is carried out to filtering image with Face Detection model, then use stricture of vagina
Reason detection model confirms to colour of skin mask image, finally calculates characteristic vector and be sent to the grader for training and classified
Decision-making.The embodiment of the present invention is being utilized using the sensitive image filter algorithm based on Gabor functions and multi-level identification, the algorithm
Statistical color model is carried out on the basis of Face Detection to image to be checked, using Sobel operators in combination with Gabor filter
Method extracts the features of skin colors and textural characteristics of image, and sensitive image is carried out using RBF neural and support vector machine
It is multi-level to filter identification.
Intrusion detection module 53, the audio frequency and video for communicating between monitoring preprocessing unit and postpositive disposal unit in real time
Data flow, by Session tracking technology by the communication in network security domain is by link division and records, it can comprehensively react net
The situation of network communication connection.Session tracking technology have recorded the customer of network service(Initiator)And server side(Service is carried
Supplier)Whole communication tracks.Session tracking technology connects the tracking that conversates to each independent packet, makes system not only
Single bag data can be processed, and can be analyzed according to the context of session, be more effectively carried out pattern recognition.For every
One packet, extracts its source IP address and purpose IP address, searches main frame to chain and connection to chain.When having deposited in system
It is such a connection to when, change as needed the connection to some Status Flags, to carry out such as SYN
The monitoring identification of the attacks such as FLOODING, preserves address of the main frame to chain element and connection to chain element, passes to high-rise answering
With process.If internal system does not have such main frame pair or connects right, need to set up these structures, in filling in these structures
Necessary information, so as to carry out the attacks such as SYN FLOODING monitoring recognize.The main frame is preserved to chain element and connection
Address to chain element, passes to higher layer applications process.
Analysis network communication session track, can be according to network data flow and network communication session track, using statistical
The methods such as analysis, Bayesian inference and model prediction, carry out feature detection, abnormality detection, state-detection, and the network peace of customization
Full strategy, identification network attack, inbreak method and means.As scanning, detection, back door, unauthorized access trial, malicious code,
Denial of Service attack and questionable conduct etc., and take corresponding safety precaution management and technical measures.Can be to substantial amounts of network
Data are analyzed process and filter, and generate the network security daily record by customization security strategy screening, and reduction needs artificial treatment
Daily record data.
Operation Log Audit Module 54, for providing powerful log audit function, complete documentation simultaneously preserves the system of being directed to
Various operations, such as User logs in/publish, system configuration operation, Control on Communication, the various types of daily records of strategy customization.Carry
For account number auditing by delegated power, login process audit, authentication audit, usage behavior audit, communication behavior audit etc., audit management
Member can be inquired about these daily records, be audited, and to operations such as log content importing, derivation, backups, be easy to audit management.
Access control module 45, for monitoring that the audio/video communication between preprocessing unit and postpositive disposal unit enters
Row audit, conducts interviews control according to auditing objectives.Cross-domain audio frequency and video are accessed and is audited, the sponsor, behaviour to audio frequency and video
Make content etc. to be recorded, be easy to audit.Auditing objectives include:Keyword filtration that information filtering rule is related to, name single-filtering,
The contents such as image filtering, voice content filtration, the state of data flow, network communication session track, user account number and authority etc..
Security strategy and data access control rule are set in access control module, illegal security strategy and access control is blocked or abandon
The data flow or packet of rule.Access control adopts the pattern of data flow one-way optical fiber transmission channel on hardware, accordingly, it is capable to
Enough thoroughly blocking and physical isolation transmission link, so as to be really achieved the purpose of safe access control.
One of ordinary skill in the art will appreciate that:Accompanying drawing is the schematic diagram of one embodiment, module in accompanying drawing or
Flow process is not necessarily implemented necessary to the present invention.
One of ordinary skill in the art will appreciate that:The module in equipment in embodiment can be according to embodiment description point
In being distributed in the equipment of embodiment, it is also possible to carry out respective change and be disposed other than in one or more equipment of the present embodiment.On
Stating the module of embodiment can merge into a module, it is also possible to be further split into multiple submodule.
In sum, the embodiment of the present invention by using audio frequency and video access control gateway equipment by access network end and core net
End is isolated, and information filtering, intrusion detection, Operation Log audit is carried out between access network end and internal core net end and is visited
Ask control process.Such that it is able to control voice, video transfers on network, audio/video information present in ICP/IP protocol system is solved
Security breaches, carry out security isolation or system reinforcement to network and security domain boundaries, protect comprehensive communication network core data
Resource security is controllable.
The embodiment of the present invention can effectively be filtered and implement to block virus attack between net and malicious attack behavior
Cut, across a network to the network user, access across safe domain browsing and carry out identity discriminating and right access control, prevent disabled user
Or validated user is gone beyond one's commission unauthorized access, application system and significant data resource are accessed carries out identity discriminating and authority accesses control
System, prevents from applying or data illegal or go beyond one's commission uses, to many net systems(Wired, wireless, satellite etc.)Voice and video is visited after fusion
Ask to be accessed with service application and carry out log recording and behavior auditing etc..
The embodiment of the present invention can be solved at present in industries such as public security, People's Armed Police, and in electric power, petrochemical industry equal energy source industry
Information security issue in large enterprise, in audio frequency and video scheduling system.
The above, the only present invention preferably specific embodiment, but protection scope of the present invention is not limited thereto,
Any those familiar with the art the invention discloses technical scope in, the change or replacement that can be readily occurred in,
All should be included within the scope of the present invention.Therefore, protection scope of the present invention should be with scope of the claims
It is defined.
Claims (8)
1. a kind of audio frequency and video access control gateway equipment, it is characterised in that include:Preprocessing unit, control process unit and
Postpositive disposal unit, the preprocessing unit and access network end connect, and described postpositive disposal unit and core net end connects,
Described control process unit is isolated at the access network end and the core net end, in access network end and internal core net
Carry out information filtering, intrusion detection, Operation Log audit and access control between end to process;
The postpositive disposal unit by one-way optical fiber to the preprocessing unit send video data and or voice data;
The preprocessing unit by one-way optical fiber to the postpositive disposal unit send video data and or voice data.
2. audio frequency and video access control gateway equipment according to claim 1, it is characterised in that described preprocessing unit
Including:
Advanced video data reception module, for passing through control process described in the video input channel reception that one-way optical fiber is constituted
The video data from postpositive disposal unit that unit is sended over;
Front audio data reception module, the audio input channel for being consisted of one-way optical fiber receives the control process
The voice data from postpositive disposal unit that unit is sended over;
Advanced video data transmission blocks, for the video output channel that constituted by one-way optical fiber to the control process list
Unit sends the video data from access network end;
Front audio data transmission blocks, for the audio frequency output channel that constituted by one-way optical fiber to the control process list
Unit sends the voice data from access network end.
3. audio frequency and video access control gateway equipment according to claim 1, it is characterised in that described postpositive disposal unit
Including:
Rearmounted video data receiver module, for passing through control process described in the video input channel reception that one-way optical fiber is constituted
The video data from preprocessing unit that unit is sended over;
Rearmounted audio data receipt module, the audio input channel for being consisted of one-way optical fiber receives the control process
The voice data from preprocessing unit that unit is sended over;
Rearmounted video data sends module, for the video output channel that consisted of one-way optical fiber to the control process list
Unit sends the video data from core net end;
Rearmounted voice data sending module, for the audio frequency output channel that constituted by one-way optical fiber to the control process list
Unit sends the voice data from core net end.
4. the audio frequency and video access control gateway equipment according to claim 1 or 2 or 3, it is characterised in that at described control
Reason unit includes:
Security isolation module, it is thorough for realizing the security isolation between access network end and core net end by hardware isolated part
Bottom blocks the communication connection between access network end and core net end and procotol, and the procotol includes but is not limited to TCP/
IP;Content filtering module, the security strategy for being customized according to user pre-sets and stores the information filtering of audio, video data
Rule, the information filtering rule is wanted according to data type, protocol type, data transfer direction, user type, data service quality
In asking at least one and set, using the information filtering rule between preprocessing unit and postpositive disposal unit communicate
The content of audio, video data filtered;
Intrusion detection module, for the audio, video data for communicating between monitoring preprocessing unit and postpositive disposal unit in real time
Stream, according to network data flow and network communication session track, the network security policy based on customization adopts statistical analysiss, Bayes
Reasoning, mode prediction method and/or feature detection, abnormality detection, state-detection are carried out, recognize network intrusions, and take corresponding
Safety precaution process;
Operation Log Audit Module, the daily record of the various operations of audio frequency and video access control gateway equipment is directed to for storage, to institute
State daily record to be audited;
Access control module, for monitoring that the audio/video communication between preprocessing unit and postpositive disposal unit is examined
Meter, conducts interviews control according to auditing objectives.
5. audio frequency and video access control gateway equipment according to claim 4, it is characterised in that described information filtering mould
Block includes:
Keyword and list filtering module, for when information filtering rule is keyword and list filtering rule, adopting
The deep message detection method of feature based matching carries out contents extraction to the packet of audio, video data, using the keyword
Filtration treatment is carried out to the content of packet that extracts and list with list filtering rule, by protocol analysis and stripping,
Transmission to data is controlled, and control signaling is checked and information filtering;
Voice content filtering module, for when information filtering rule is voice content filtering rule, by voice
The signaling of appearance performs effective signaling behavioral statisticses and the analysis of signaling behavioral trait, obtains waste advertisements phone, harassing call
Dissemination, and key words sorting is carried out to waste advertisements phone, harassing call according to dissemination, setting waste advertisements phone,
The Transmission Control Strategy and filters of harassing call, and perform the disposal operations of the Transmission Control Strategy and filters;
Image filtering module, for when information filtering rule is regular for image filtering, using Face Detection set in advance
Model carries out Face Detection to image to be filtered and obtains colour of skin mask image, is mutually tied using Sobel operators and Gabor filter
The method of conjunction extracts the features of skin colors and textural characteristics of the colour of skin mask image, according to the features of skin colors and textural characteristics
Multi-level filtration is carried out to the colour of skin mask image using RBF neural and support vector machine to recognize.
6. audio frequency and video access control gateway equipment according to claim 4, it is characterised in that:Described intrusion detection mould
Block, specifically for connecting the tracking that conversates to each independent packet by Session tracking technology, for each data
Bag, extracts its source IP address and purpose IP address, main frame is searched to chain and connection to chain, when Installed System Memory is in the main frame
During to chain and connection to chain, according to Status Flag of the modification main frame to chain and connection to chain, the monitoring for performing intrusion detection
Identification, preserves address of the main frame to chain and connection to chain, passes to higher layer applications process;If internal system does not exist described
Main frame to chain and connection to chain when, then set up the main frame to chain and connection to chain structure, fill in the main frame to chain and connection
To the necessary information in chain structure, address of the main frame to chain and connection to chain structure is preserved, pass to higher layer applications process.
7. audio frequency and video access control gateway equipment according to claim 4, it is characterised in that the day of described various operations
Will includes:User logs in/publish daily record, system configuration operation daily record, Control on Communication daily record and strategy customization daily record.
8. audio frequency and video access control gateway equipment according to claim 4, it is characterised in that:Described access control mould
Block, audits specifically for accessing cross-domain audio frequency and video, and auditing objectives include:The sponsor of audio frequency and video, operation content, content
Keyword filtration, name single-filtering, image filtering, voice content filtration, the state of data flow, network service that filtering rule is related to
Session track, user account number and authority, internally arrange security strategy and data access control rule, block or abandon illegal peace
The data flow or packet of full strategy and access control rule.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310167414.9A CN103312693B (en) | 2013-05-08 | 2013-05-08 | Video and audio access control gateway equipment |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310167414.9A CN103312693B (en) | 2013-05-08 | 2013-05-08 | Video and audio access control gateway equipment |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103312693A CN103312693A (en) | 2013-09-18 |
CN103312693B true CN103312693B (en) | 2017-04-19 |
Family
ID=49137478
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201310167414.9A Active CN103312693B (en) | 2013-05-08 | 2013-05-08 | Video and audio access control gateway equipment |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103312693B (en) |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104954864B (en) * | 2015-06-19 | 2019-03-01 | 中国人民解放军信息工程大学 | Bi-directional set-top box intruding detection system and its detection method |
CN109862435A (en) * | 2018-11-16 | 2019-06-07 | 京信通信系统(中国)有限公司 | Monitoring method, device, computer storage medium and the equipment of live video |
CN110569630A (en) * | 2019-08-15 | 2019-12-13 | 山东中创软件商用中间件股份有限公司 | Management authority distribution method, device and medium for application server |
CN111586092A (en) * | 2020-03-25 | 2020-08-25 | 深圳壹账通智能科技有限公司 | Full link monitoring method, system and CAT client |
CN111553332B (en) * | 2020-07-10 | 2020-10-30 | 杭州海康威视数字技术股份有限公司 | Intrusion detection rule generation method and device and electronic equipment |
CN115913614A (en) * | 2022-09-19 | 2023-04-04 | 上海辰锐信息科技有限公司 | Network access device and method |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101321173A (en) * | 2008-07-21 | 2008-12-10 | 华为技术有限公司 | Method, system and device for preventing network attack |
CN101730187A (en) * | 2009-05-13 | 2010-06-09 | 中兴通讯股份有限公司 | Method and system for realizing local access control of home base station |
WO2012096788A1 (en) * | 2011-01-10 | 2012-07-19 | Alcatel Lucent | Session initiation protocol (sip) firewall for ip multimedia subsystem (ims) core to defend against sip registration- based dos/odds attacks |
CN102857936A (en) * | 2011-06-27 | 2013-01-02 | 中兴通讯股份有限公司 | Processing method and device of local access connection in switching process |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN202663408U (en) * | 2011-08-18 | 2013-01-09 | 西南交通大学 | Multichannel chaotic synchronization communication system with simple topology structure |
-
2013
- 2013-05-08 CN CN201310167414.9A patent/CN103312693B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101321173A (en) * | 2008-07-21 | 2008-12-10 | 华为技术有限公司 | Method, system and device for preventing network attack |
CN101730187A (en) * | 2009-05-13 | 2010-06-09 | 中兴通讯股份有限公司 | Method and system for realizing local access control of home base station |
WO2012096788A1 (en) * | 2011-01-10 | 2012-07-19 | Alcatel Lucent | Session initiation protocol (sip) firewall for ip multimedia subsystem (ims) core to defend against sip registration- based dos/odds attacks |
CN102857936A (en) * | 2011-06-27 | 2013-01-02 | 中兴通讯股份有限公司 | Processing method and device of local access connection in switching process |
Non-Patent Citations (3)
Title |
---|
公共安全物联网接入网关技术研究与设计;接入网关技术研究与设计等;《警察技术》;20111030;16-19 * |
基于内容图像检索与敏感图像过滤的若干算法研究;孙艳;《中国博士学位论文全文数据库 信息科技辑》;20120515(第5期);提要,第 1-8,68-74页 * |
基于内容安全的局域网监控系统(CSBLAN)的设计与实现;高峰;《中国优秀硕士学位论文全文数据库 信息科技辑》;20051115(第7期);第16-19页 * |
Also Published As
Publication number | Publication date |
---|---|
CN103312693A (en) | 2013-09-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103312693B (en) | Video and audio access control gateway equipment | |
Walton | China's golden shield: Corporations and the development of surveillance technology in the People's Republic of China | |
Zargar et al. | A survey of defense mechanisms against distributed denial of service (DDoS) flooding attacks | |
Ling et al. | Torward: Discovery, blocking, and traceback of malicious traffic over tor | |
CN101018200B (en) | Bi-planar network architecture | |
Metzger et al. | Integrated security incident management--concepts and real-world experiences | |
US20230403296A1 (en) | Analyses and aggregation of domain behavior for email threat detection by a cyber security system | |
US20120137362A1 (en) | Collaborative security system for residential users | |
Pallangyo | Cyber Security Challenges, its Emerging Trends on Latest Information and Communication Technology and Cyber Crime in Mobile Money Transaction Services | |
Fovino et al. | ICT security assessment of a power plant, a case study | |
Mishra et al. | Artificial intelligent firewall | |
Grillenmeier | Ransomware–one of the biggest threats facing enterprises today | |
Ruiz-Agundez et al. | Fraud detection for voice over ip services on next-generation networks | |
CN108933867B (en) | Method and device for preventing and controlling information fraud, equipment and storage medium | |
EP2109284A1 (en) | Protection mechanism against denial-of-service attacks via traffic redirection | |
Chen | Discussion on the Security Protection of Telecommunication Network | |
Brookson et al. | ICT product proofing against crime | |
Kluepfel | Securing a global village and its resources | |
McInnes | A Multi-Level Governance Framework for Increasing Awareness and Reducing Cyber Misuse in Next Generation Cross Border Voice Communication Networks & IoT | |
Bella et al. | A fraud detection model for Next-Generation Networks | |
Paulins et al. | Vulnerability Analysis of IP Multimedia Subsystem (IMS) | |
Fraser | A Next Generation Internet Architecture | |
Morthala | Building Firewall Application To Enhance The Cyber Security | |
Salaudeen et al. | A Plethoric Literature Survey on SIMBox Fraud Detection in Telecommunication Industry | |
Svensberg | Software-defined zero-trust network architecture: Evolution from Purdue model-based |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |