CN104618396A - 一种可信网络接入与访问控制系统及方法 - Google Patents
一种可信网络接入与访问控制系统及方法 Download PDFInfo
- Publication number
- CN104618396A CN104618396A CN201510095892.2A CN201510095892A CN104618396A CN 104618396 A CN104618396 A CN 104618396A CN 201510095892 A CN201510095892 A CN 201510095892A CN 104618396 A CN104618396 A CN 104618396A
- Authority
- CN
- China
- Prior art keywords
- network
- secure
- trusted
- requestor
- network insertion
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0807—Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (8)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510095892.2A CN104618396B (zh) | 2015-03-04 | 2015-03-04 | 一种可信网络接入与访问控制方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510095892.2A CN104618396B (zh) | 2015-03-04 | 2015-03-04 | 一种可信网络接入与访问控制方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104618396A true CN104618396A (zh) | 2015-05-13 |
CN104618396B CN104618396B (zh) | 2018-01-02 |
Family
ID=53152671
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510095892.2A Active CN104618396B (zh) | 2015-03-04 | 2015-03-04 | 一种可信网络接入与访问控制方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104618396B (zh) |
Cited By (23)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105959319A (zh) * | 2016-07-13 | 2016-09-21 | 南阳理工学院 | 一种数据安全传输方法及装置 |
CN106027518A (zh) * | 2016-05-19 | 2016-10-12 | 中国人民解放军装备学院 | 一种基于准实时状态反馈的可信网络连接方法 |
CN106161445A (zh) * | 2016-07-13 | 2016-11-23 | 南阳理工学院 | 一种计算机信息安全控制方法及装置 |
CN106209848A (zh) * | 2016-07-13 | 2016-12-07 | 国网河南省电力公司南阳供电公司 | 电力通信方法及装置 |
CN106209847A (zh) * | 2016-07-13 | 2016-12-07 | 国网河南省电力公司南阳供电公司 | 电力数据传输方法及装置 |
CN106209844A (zh) * | 2016-07-13 | 2016-12-07 | 国网河南省电力公司南阳供电公司 | 电力安全通讯方法 |
CN106254322A (zh) * | 2016-07-27 | 2016-12-21 | 南阳理工学院 | 一种英语教学数据传输方法及装置 |
CN106254329A (zh) * | 2016-07-30 | 2016-12-21 | 南阳理工学院 | 用于保护计算机网络安全的方法 |
CN106888091A (zh) * | 2015-12-23 | 2017-06-23 | 北京奇虎科技有限公司 | 基于eap的可信网络接入方法和系统 |
CN106899561A (zh) * | 2015-12-24 | 2017-06-27 | 北京奇虎科技有限公司 | 一种基于acl的tnc权限控制方法和系统 |
CN107196906A (zh) * | 2017-03-31 | 2017-09-22 | 山东超越数控电子有限公司 | 一种安全域网络接入控制方法及系统 |
CN108347343A (zh) * | 2017-01-25 | 2018-07-31 | 华为技术有限公司 | 一种策略管理方法、装置和系统 |
CN109219950A (zh) * | 2016-03-29 | 2019-01-15 | 西门子移动有限公司 | 用于在安全相关的设备之间交换消息的方法 |
CN109309690A (zh) * | 2018-12-28 | 2019-02-05 | 中国人民解放军国防科技大学 | 一种基于报文认证码的软件白名单控制方法 |
CN109995783A (zh) * | 2019-04-02 | 2019-07-09 | 山东超越数控电子股份有限公司 | 一种可信网络的接入方法、设备以及存储介质 |
CN110035076A (zh) * | 2019-04-04 | 2019-07-19 | 华北电力科学研究院有限责任公司 | 面向能源互联网的可信接入方法、可信客户端及服务器 |
CN110166473A (zh) * | 2019-05-29 | 2019-08-23 | 中国移动通信集团江苏有限公司 | 网络数据传输检测方法、装置、设备和介质 |
CN110298183A (zh) * | 2019-06-26 | 2019-10-01 | 浪潮金融信息技术有限公司 | 一种分级保护数据安全的方法 |
CN110417776A (zh) * | 2019-07-29 | 2019-11-05 | 大唐高鸿信安(浙江)信息科技有限公司 | 一种身份认证方法及装置 |
CN112257059A (zh) * | 2020-10-12 | 2021-01-22 | 麒麟软件有限公司 | 一种动态可信文件执行控制方法及系统 |
CN112351005A (zh) * | 2020-10-23 | 2021-02-09 | 杭州安恒信息技术股份有限公司 | 物联网通信方法、装置、可读存储介质及计算机设备 |
CN112422292A (zh) * | 2020-11-19 | 2021-02-26 | 杭州世平信息科技有限公司 | 一种网络安全防护方法、系统、设备及存储介质 |
CN113271285A (zh) * | 2020-02-14 | 2021-08-17 | 北京沃东天骏信息技术有限公司 | 接入网络的方法和装置 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101136928A (zh) * | 2007-10-19 | 2008-03-05 | 北京工业大学 | 一种可信网络接入框架 |
CN101448264A (zh) * | 2008-12-22 | 2009-06-03 | 杭州华三通信技术有限公司 | 接入用户的访问控制方法和系统 |
CN104038478A (zh) * | 2014-05-19 | 2014-09-10 | 瑞达信息安全产业股份有限公司 | 一种嵌入式平台身份验证可信网络连接方法和系统 |
-
2015
- 2015-03-04 CN CN201510095892.2A patent/CN104618396B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101136928A (zh) * | 2007-10-19 | 2008-03-05 | 北京工业大学 | 一种可信网络接入框架 |
CN101448264A (zh) * | 2008-12-22 | 2009-06-03 | 杭州华三通信技术有限公司 | 接入用户的访问控制方法和系统 |
CN104038478A (zh) * | 2014-05-19 | 2014-09-10 | 瑞达信息安全产业股份有限公司 | 一种嵌入式平台身份验证可信网络连接方法和系统 |
Non-Patent Citations (1)
Title |
---|
计龙,等: "可信网络跨域接入技术研究", 《计算机工程与设计》 * |
Cited By (34)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106888091A (zh) * | 2015-12-23 | 2017-06-23 | 北京奇虎科技有限公司 | 基于eap的可信网络接入方法和系统 |
CN106899561B (zh) * | 2015-12-24 | 2020-04-07 | 北京奇虎科技有限公司 | 一种基于acl的tnc权限控制方法和系统 |
CN106899561A (zh) * | 2015-12-24 | 2017-06-27 | 北京奇虎科技有限公司 | 一种基于acl的tnc权限控制方法和系统 |
CN109219950A (zh) * | 2016-03-29 | 2019-01-15 | 西门子移动有限公司 | 用于在安全相关的设备之间交换消息的方法 |
CN109219950B (zh) * | 2016-03-29 | 2021-05-07 | 西门子交通有限公司 | 用于在安全相关的设备之间交换消息的方法 |
US10862675B2 (en) | 2016-03-29 | 2020-12-08 | Siemens Mobility GmbH | Method for exchanging messages between security-relevant devices |
CN106027518A (zh) * | 2016-05-19 | 2016-10-12 | 中国人民解放军装备学院 | 一种基于准实时状态反馈的可信网络连接方法 |
CN106209844A (zh) * | 2016-07-13 | 2016-12-07 | 国网河南省电力公司南阳供电公司 | 电力安全通讯方法 |
CN106209847A (zh) * | 2016-07-13 | 2016-12-07 | 国网河南省电力公司南阳供电公司 | 电力数据传输方法及装置 |
CN106209848A (zh) * | 2016-07-13 | 2016-12-07 | 国网河南省电力公司南阳供电公司 | 电力通信方法及装置 |
CN106161445A (zh) * | 2016-07-13 | 2016-11-23 | 南阳理工学院 | 一种计算机信息安全控制方法及装置 |
CN105959319A (zh) * | 2016-07-13 | 2016-09-21 | 南阳理工学院 | 一种数据安全传输方法及装置 |
CN106254322A (zh) * | 2016-07-27 | 2016-12-21 | 南阳理工学院 | 一种英语教学数据传输方法及装置 |
CN106254329A (zh) * | 2016-07-30 | 2016-12-21 | 南阳理工学院 | 用于保护计算机网络安全的方法 |
US11611481B2 (en) | 2017-01-25 | 2023-03-21 | Huawei Technologies Co., Ltd. | Policy management method and system, and apparatus |
CN108347343A (zh) * | 2017-01-25 | 2018-07-31 | 华为技术有限公司 | 一种策略管理方法、装置和系统 |
US10855543B2 (en) | 2017-01-25 | 2020-12-01 | Huawei Technologies Co., Ltd. | Policy management method and system, and apparatus |
CN107196906A (zh) * | 2017-03-31 | 2017-09-22 | 山东超越数控电子有限公司 | 一种安全域网络接入控制方法及系统 |
CN109309690B (zh) * | 2018-12-28 | 2019-04-02 | 中国人民解放军国防科技大学 | 一种基于报文认证码的软件白名单控制方法 |
CN109309690A (zh) * | 2018-12-28 | 2019-02-05 | 中国人民解放军国防科技大学 | 一种基于报文认证码的软件白名单控制方法 |
CN109995783A (zh) * | 2019-04-02 | 2019-07-09 | 山东超越数控电子股份有限公司 | 一种可信网络的接入方法、设备以及存储介质 |
CN110035076A (zh) * | 2019-04-04 | 2019-07-19 | 华北电力科学研究院有限责任公司 | 面向能源互联网的可信接入方法、可信客户端及服务器 |
CN110035076B (zh) * | 2019-04-04 | 2021-05-25 | 华北电力科学研究院有限责任公司 | 面向能源互联网的可信接入方法、可信客户端及服务器 |
CN110166473A (zh) * | 2019-05-29 | 2019-08-23 | 中国移动通信集团江苏有限公司 | 网络数据传输检测方法、装置、设备和介质 |
CN110298183A (zh) * | 2019-06-26 | 2019-10-01 | 浪潮金融信息技术有限公司 | 一种分级保护数据安全的方法 |
CN110298183B (zh) * | 2019-06-26 | 2021-07-20 | 浪潮金融信息技术有限公司 | 一种分级保护数据安全的方法 |
CN110417776A (zh) * | 2019-07-29 | 2019-11-05 | 大唐高鸿信安(浙江)信息科技有限公司 | 一种身份认证方法及装置 |
CN110417776B (zh) * | 2019-07-29 | 2022-03-25 | 大唐高鸿信安(浙江)信息科技有限公司 | 一种身份认证方法及装置 |
CN113271285A (zh) * | 2020-02-14 | 2021-08-17 | 北京沃东天骏信息技术有限公司 | 接入网络的方法和装置 |
CN113271285B (zh) * | 2020-02-14 | 2023-08-08 | 北京沃东天骏信息技术有限公司 | 接入网络的方法和装置 |
CN112257059A (zh) * | 2020-10-12 | 2021-01-22 | 麒麟软件有限公司 | 一种动态可信文件执行控制方法及系统 |
CN112351005A (zh) * | 2020-10-23 | 2021-02-09 | 杭州安恒信息技术股份有限公司 | 物联网通信方法、装置、可读存储介质及计算机设备 |
CN112422292A (zh) * | 2020-11-19 | 2021-02-26 | 杭州世平信息科技有限公司 | 一种网络安全防护方法、系统、设备及存储介质 |
CN112422292B (zh) * | 2020-11-19 | 2024-04-02 | 杭州世平信息科技有限公司 | 一种网络安全防护方法、系统、设备及存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN104618396B (zh) | 2018-01-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104618396A (zh) | 一种可信网络接入与访问控制系统及方法 | |
US20230035336A1 (en) | Systems and methods for mitigating and/or preventing distributed denial-of-service attacks | |
US10630725B2 (en) | Identity-based internet protocol networking | |
JP6965921B2 (ja) | ネットワーク機能仮想化システム及び検証方法 | |
EP2180632B1 (en) | A method for trusted network connect based on tri-element peer authentication | |
US8826378B2 (en) | Techniques for authenticated posture reporting and associated enforcement of network access | |
US11233790B2 (en) | Network-based NT LAN manager (NTLM) relay attack detection and prevention | |
US20140020067A1 (en) | Apparatus and method for controlling traffic based on captcha | |
US8336108B2 (en) | Method and system for collaboration involving enterprise nodes | |
US11197160B2 (en) | System and method for rogue access point detection | |
US11812261B2 (en) | System and method for providing a secure VLAN within a wireless network | |
US20090193503A1 (en) | Network access control | |
CN106899561B (zh) | 一种基于acl的tnc权限控制方法和系统 | |
CN105282157A (zh) | 一种安全通信控制方法 | |
CN110830507B (zh) | 资源访问方法、装置、电子设备及系统 | |
Koilpillai | Software defined perimeter (SDP) a primer for cios | |
Kowalski et al. | Toward the mutual routing security in wide area networks: A scoping review of current threats and countermeasures | |
KR101663935B1 (ko) | 피싱 및 파밍 방지 시스템 및 방법 | |
CN114978519A (zh) | 报文发送方法、签名信息的生成方法及设备 | |
US20220210143A1 (en) | Apparatus and method for communicating data in in-vehicle network based on automotive ethernet | |
AU2018304187B2 (en) | Systems and methods for mitigating and/or preventing distributed denial-of-service attacks | |
MM et al. | AUTHENTICATED MACHINE LEARNING IN 5G NETWORK DEPLOYMENTS | |
Tschofenig | Network Working Group K. Moore Internet-Draft Network Heretics Intended status: Best Current Practice R. Barnes Expires: January 4, 2018 Mozilla | |
CN112333146A (zh) | 变电智能网关arp安全防御方法及变电智能网关 | |
Sun et al. | A study on the enhanced security techniques of bgp for drdos attack |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20180807 Address after: 250100 S06 tower, 1036, Chao Lu Road, hi tech Zone, Ji'nan, Shandong. Patentee after: Shandong wave cloud Mdt InfoTech Ltd Address before: No. 1036, Shandong high tech Zone wave road, Ji'nan, Shandong Patentee before: Inspur Group Co., Ltd. |
|
TR01 | Transfer of patent right | ||
CP03 | Change of name, title or address |
Address after: 250100 No. 1036 Tidal Road, Jinan High-tech Zone, Shandong Province, S01 Building, Tidal Science Park Patentee after: Inspur cloud Information Technology Co., Ltd Address before: 250100 Ji'nan science and technology zone, Shandong high tide Road, No. 1036 wave of science and Technology Park, building S06 Patentee before: SHANDONG LANGCHAO YUNTOU INFORMATION TECHNOLOGY Co.,Ltd. |
|
CP03 | Change of name, title or address |