CN104394129A - 安全外壳ssh2协议数据的采集方法和装置 - Google Patents
安全外壳ssh2协议数据的采集方法和装置 Download PDFInfo
- Publication number
- CN104394129A CN104394129A CN201410637319.5A CN201410637319A CN104394129A CN 104394129 A CN104394129 A CN 104394129A CN 201410637319 A CN201410637319 A CN 201410637319A CN 104394129 A CN104394129 A CN 104394129A
- Authority
- CN
- China
- Prior art keywords
- packet
- ssh2
- data
- agreement
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/50—Testing arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/061—Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
- H04L63/205—Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/08—Protocols specially adapted for terminal emulation, e.g. Telnet
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/166—Implementing security features at a particular protocol layer at the transport layer
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/16—Implementing security features at a particular protocol layer
- H04L63/168—Implementing security features at a particular protocol layer above the transport layer
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (10)
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410637319.5A CN104394129B (zh) | 2014-11-05 | 2014-11-05 | 安全外壳ssh2协议数据的采集方法和装置 |
PCT/CN2015/074081 WO2016070538A1 (zh) | 2014-11-05 | 2015-03-12 | 安全外壳ssh2协议数据的采集方法和装置 |
JP2017523952A JP2017533674A (ja) | 2014-11-05 | 2015-03-12 | セキュアシェルssh2プロトコルデータの収集方法及び装置 |
EP15856581.2A EP3208989A4 (en) | 2014-11-05 | 2015-03-12 | Secure shell (ssh2) protocol data collection method and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410637319.5A CN104394129B (zh) | 2014-11-05 | 2014-11-05 | 安全外壳ssh2协议数据的采集方法和装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104394129A true CN104394129A (zh) | 2015-03-04 |
CN104394129B CN104394129B (zh) | 2017-10-17 |
Family
ID=52611965
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410637319.5A Active CN104394129B (zh) | 2014-11-05 | 2014-11-05 | 安全外壳ssh2协议数据的采集方法和装置 |
Country Status (4)
Country | Link |
---|---|
EP (1) | EP3208989A4 (zh) |
JP (1) | JP2017533674A (zh) |
CN (1) | CN104394129B (zh) |
WO (1) | WO2016070538A1 (zh) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2016070538A1 (zh) * | 2014-11-05 | 2016-05-12 | 中国科学院声学研究所 | 安全外壳ssh2协议数据的采集方法和装置 |
CN106685896A (zh) * | 2015-11-09 | 2017-05-17 | 中国科学院声学研究所 | 一种ssh协议多层通道内的明文数据采集方法及系统 |
CN106941476A (zh) * | 2016-01-05 | 2017-07-11 | 中国科学院声学研究所 | 一种sftp数据采集及审计的方法及系统 |
CN107277035A (zh) * | 2017-07-05 | 2017-10-20 | 北京信息职业技术学院 | 一种在tcp连接阶段传递客户端信息的方法 |
CN107453861A (zh) * | 2016-05-30 | 2017-12-08 | 中国科学院声学研究所 | 一种基于ssh2协议的数据采集方法 |
CN111147480A (zh) * | 2019-12-25 | 2020-05-12 | 中国银联股份有限公司 | 文件访问控制方法、装置、设备及介质 |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114095406B (zh) * | 2020-08-07 | 2023-04-21 | 中国科学院数据与通信保护研究教育中心 | 一种密文数据机密性检测方法及电子装置 |
CN112769773B (zh) * | 2020-12-24 | 2022-08-30 | 卡斯柯信号有限公司 | 一种基于国密算法的铁路安全通信协议仿真系统 |
CN114884715A (zh) * | 2022-04-27 | 2022-08-09 | 深信服科技股份有限公司 | 一种流量检测方法、检测模型训练方法、装置及相关设备 |
CN115118487B (zh) * | 2022-06-24 | 2023-08-25 | 山东旗帜信息有限公司 | 一种ssh数据采集方法及系统 |
US11811599B1 (en) | 2023-01-23 | 2023-11-07 | International Business Machines Corporation | Multi-version compatibility for connectivity protocols |
CN116432240B (zh) * | 2023-06-08 | 2023-08-22 | 长扬科技(北京)股份有限公司 | 内网终端敏感数据的检测方法、装置、服务器及系统 |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20090172148A1 (en) * | 2007-12-26 | 2009-07-02 | Verizon Business Network Services Inc. | Method and system for monitoring and analyzing of ip networks elements |
CN101741842A (zh) * | 2009-12-07 | 2010-06-16 | 北京交通大学 | 一种基于可信计算实现可信ssh的方法 |
CN101989987A (zh) * | 2010-11-05 | 2011-03-23 | 黄艺海 | 安全终端仿真协议监控时实现加密文件传输和跟踪的方法 |
CN102857520A (zh) * | 2012-10-11 | 2013-01-02 | 德讯科技股份有限公司 | 一种字符终端Telnet协议安全访问系统及方法 |
CN103873379A (zh) * | 2012-12-18 | 2014-06-18 | 中国科学院声学研究所 | 一种基于重叠网的分布式路由抗毁策略配置方法和系统 |
CN103973781A (zh) * | 2014-04-29 | 2014-08-06 | 上海上讯信息技术股份有限公司 | 一种基于代理服务器的屏幕监控方法及其系统 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FI120072B (fi) * | 2005-07-19 | 2009-06-15 | Ssh Comm Security Corp | Pakettidatan lähettäminen verkon yli tietoturvaprotokollaa käyttäen |
US8856910B1 (en) * | 2011-08-31 | 2014-10-07 | Palo Alto Networks, Inc. | Detecting encrypted tunneling traffic |
WO2013110857A1 (en) * | 2012-01-24 | 2013-08-01 | Ssh Communications Security Oyj | Privileged access auditing |
CN104394129B (zh) * | 2014-11-05 | 2017-10-17 | 中国科学院声学研究所 | 安全外壳ssh2协议数据的采集方法和装置 |
-
2014
- 2014-11-05 CN CN201410637319.5A patent/CN104394129B/zh active Active
-
2015
- 2015-03-12 WO PCT/CN2015/074081 patent/WO2016070538A1/zh active Application Filing
- 2015-03-12 JP JP2017523952A patent/JP2017533674A/ja active Pending
- 2015-03-12 EP EP15856581.2A patent/EP3208989A4/en not_active Withdrawn
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20090172148A1 (en) * | 2007-12-26 | 2009-07-02 | Verizon Business Network Services Inc. | Method and system for monitoring and analyzing of ip networks elements |
CN101741842A (zh) * | 2009-12-07 | 2010-06-16 | 北京交通大学 | 一种基于可信计算实现可信ssh的方法 |
CN101989987A (zh) * | 2010-11-05 | 2011-03-23 | 黄艺海 | 安全终端仿真协议监控时实现加密文件传输和跟踪的方法 |
CN102857520A (zh) * | 2012-10-11 | 2013-01-02 | 德讯科技股份有限公司 | 一种字符终端Telnet协议安全访问系统及方法 |
CN103873379A (zh) * | 2012-12-18 | 2014-06-18 | 中国科学院声学研究所 | 一种基于重叠网的分布式路由抗毁策略配置方法和系统 |
CN103973781A (zh) * | 2014-04-29 | 2014-08-06 | 上海上讯信息技术股份有限公司 | 一种基于代理服务器的屏幕监控方法及其系统 |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2016070538A1 (zh) * | 2014-11-05 | 2016-05-12 | 中国科学院声学研究所 | 安全外壳ssh2协议数据的采集方法和装置 |
CN106685896A (zh) * | 2015-11-09 | 2017-05-17 | 中国科学院声学研究所 | 一种ssh协议多层通道内的明文数据采集方法及系统 |
CN106685896B (zh) * | 2015-11-09 | 2019-08-20 | 中国科学院声学研究所 | 一种ssh协议多层通道内的明文数据采集方法及系统 |
CN106941476A (zh) * | 2016-01-05 | 2017-07-11 | 中国科学院声学研究所 | 一种sftp数据采集及审计的方法及系统 |
CN106941476B (zh) * | 2016-01-05 | 2019-10-22 | 中国科学院声学研究所 | 一种sftp数据采集及审计的方法及系统 |
CN107453861A (zh) * | 2016-05-30 | 2017-12-08 | 中国科学院声学研究所 | 一种基于ssh2协议的数据采集方法 |
CN107453861B (zh) * | 2016-05-30 | 2019-09-24 | 中国科学院声学研究所 | 一种基于ssh2协议的数据采集方法 |
CN107277035A (zh) * | 2017-07-05 | 2017-10-20 | 北京信息职业技术学院 | 一种在tcp连接阶段传递客户端信息的方法 |
CN107277035B (zh) * | 2017-07-05 | 2020-04-07 | 北京信息职业技术学院 | 一种在tcp连接阶段传递客户端信息的方法 |
CN111147480A (zh) * | 2019-12-25 | 2020-05-12 | 中国银联股份有限公司 | 文件访问控制方法、装置、设备及介质 |
CN111147480B (zh) * | 2019-12-25 | 2022-11-18 | 中国银联股份有限公司 | 文件访问控制方法、装置、设备及介质 |
Also Published As
Publication number | Publication date |
---|---|
WO2016070538A1 (zh) | 2016-05-12 |
CN104394129B (zh) | 2017-10-17 |
JP2017533674A (ja) | 2017-11-09 |
EP3208989A4 (en) | 2017-08-30 |
EP3208989A1 (en) | 2017-08-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104394129A (zh) | 安全外壳ssh2协议数据的采集方法和装置 | |
US10419406B2 (en) | Efficient forwarding of encrypted TCP retransmissions | |
Harkins et al. | The internet key exchange (IKE) | |
US20110188659A1 (en) | Method of integrating quantum key distribution with internet key exchange protocol | |
Saxena et al. | Dynamic secrets and secret keys based scheme for securing last mile smart grid wireless communication | |
EP2561663A2 (en) | System and method for providing secured access to services | |
Rabiah et al. | A lightweight authentication and key exchange protocol for IoT | |
WO2013166696A1 (zh) | 数据传输方法、系统及装置 | |
CN115567206A (zh) | 采用量子分发密钥实现网络数据报文加解密方法及系统 | |
CN108040071A (zh) | 一种VoIP音视频加密密钥动态切换方法 | |
CN113784298B (zh) | 基于量子密钥的北斗短报文的通信系统 | |
EP3787254A1 (en) | Methods and apparatus for end-to-end secure communications | |
JP2013077957A (ja) | 中継装置、暗号化通信システム、暗号化通信プログラム、および暗号化通信方法 | |
Hohendorf et al. | Secure End-to-End Transport Over SCTP. | |
Imran et al. | Misa: Minimalist implementation of onem2m security architecture for constrained iot devices | |
Zhang et al. | Energy cost of cryptographic session key establishment in a wireless sensor network | |
Schwenk | IP Security (IPSec) | |
Marksteiner et al. | On the Resilience of a QKD Key Synchronization Protocol for IPsec | |
Yogender et al. | Impact of Employing Different Security Levels on QoS Parameters in Virtual Private Networks. | |
CN213846703U (zh) | 基于量子安全加密的企业vpn系统 | |
Lindskog et al. | An end-to-end security solution for SCTP | |
Cho3B et al. | Quantum-Resistant MACsec and IPsec for Virtual Private Networks | |
Fumy | Internet security protocols | |
Lindskog et al. | The design and message complexity of secure socket SCTP | |
Rose et al. | Network Working Group T. Pauly Internet-Draft Apple Inc. Intended status: Informational C. Perkins Expires: January 1, 2019 University of Glasgow |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210816 Address after: 100190, No. 21 West Fourth Ring Road, Beijing, Haidian District Patentee after: INSTITUTE OF ACOUSTICS, CHINESE ACADEMY OF SCIENCES Address before: 100190, No. 21 West Fourth Ring Road, Beijing, Haidian District Patentee before: INSTITUTE OF ACOUSTICS, CHINESE ACADEMY OF SCIENCES Patentee before: BEIJING INTELLIX TECHNOLOGIES Co.,Ltd. Effective date of registration: 20210816 Address after: Room 1601, 16th floor, East Tower, Ximei building, No. 6, Changchun Road, high tech Industrial Development Zone, Zhengzhou, Henan 450001 Patentee after: Zhengzhou xinrand Network Technology Co.,Ltd. Address before: 100190, No. 21 West Fourth Ring Road, Beijing, Haidian District Patentee before: INSTITUTE OF ACOUSTICS, CHINESE ACADEMY OF SCIENCES |
|
TR01 | Transfer of patent right |