CN108810020B - Spatial internet management and control method and system - Google Patents

Spatial internet management and control method and system Download PDF

Info

Publication number
CN108810020B
CN108810020B CN201810776782.6A CN201810776782A CN108810020B CN 108810020 B CN108810020 B CN 108810020B CN 201810776782 A CN201810776782 A CN 201810776782A CN 108810020 B CN108810020 B CN 108810020B
Authority
CN
China
Prior art keywords
satellite
signal
signals
internet
content
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201810776782.6A
Other languages
Chinese (zh)
Other versions
CN108810020A (en
Inventor
马伟
鲁睿
刘燕兵
杜翠兰
杨博
柳毅
易立
李睿
李赫男
施慧
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Institute of Information Engineering of CAS
National Computer Network and Information Security Management Center
Original Assignee
Institute of Information Engineering of CAS
National Computer Network and Information Security Management Center
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Institute of Information Engineering of CAS, National Computer Network and Information Security Management Center filed Critical Institute of Information Engineering of CAS
Publication of CN108810020A publication Critical patent/CN108810020A/en
Application granted granted Critical
Publication of CN108810020B publication Critical patent/CN108810020B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/30Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information
    • H04L63/306Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information intercepting packet switched data communications, e.g. Web, Internet or IMS communications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/12Arrangements for remote connection or disconnection of substations or of equipment thereof
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0245Filtering by information in the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B7/00Radio transmission systems, i.e. using radiation field
    • H04B7/14Relay systems
    • H04B7/15Active relay systems
    • H04B7/185Space-based or airborne stations; Stations for satellite systems
    • H04B7/18578Satellite systems for providing broadband data service to individual earth stations
    • H04B7/18597Arrangements for system physical machines management, i.e. for construction, operations control, administration, maintenance
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W52/00Power management, e.g. TPC [Transmission Power Control], power saving or power classes
    • H04W52/04TPC
    • H04W52/38TPC being performed in particular situations

Abstract

The invention provides a spatial internet management and control method, which comprises the following steps: monitoring satellite-ground signals between a satellite space station and a satellite receiving terminal and WiFi signals between the satellite receiving terminal and a user terminal in real time, and finding out satellite internet users; carrying out demodulation, protocol analysis and content restoration on the detected WiFi signals of the satellite Internet users, and judging whether illegal contents exist according to a control strategy; if the content contains illegal content, the satellite-ground signals in the area range are blocked through noise interference, and the WiFi signals are blocked through protocol blocking.

Description

Spatial internet management and control method and system
Technical Field
The invention relates to the technical field of space internet, in particular to a space internet management and control method and system.
Background
The global spatial three-dimensional networking has become an important trend for the development of the internet. With the gradual breakthrough of emerging space communication sites and information carrying means such as satellites, hot air balloons and unmanned aerial vehicles, the technical bottleneck is broken through, and the new generation of internet continuously breaks away from the ground constraint and extends to aviation, maritime affairs and wider regions.
The basic architecture of the satellite internet is shown in fig. 1, and mainly comprises a ground station, a satellite space station, a satellite receiving terminal and a user terminal. The ground station is used for connecting an operator network, the Internet and the satellite space station; the satellite space station is used for relaying and forwarding wireless signals in a space range; the satellite receiving terminal is used for receiving satellite signals from the satellite space station and converting the satellite signals into WiFi signals for the user terminal to use, and receiving the WiFi signals from the user terminal and converting the WiFi signals into satellite signals; the user terminal is used for providing services for users.
Due to the existence of the space internet, on one hand, a new channel is provided for network access in remote mountainous areas, desert areas, oceans and other areas, and active participation of internet companies such as Google and Facebook can also greatly promote the development of the space internet; on the other hand, the spatial internet, especially the satellite internet, has the characteristics that an operation platform is deployed abroad, a transmission network has no obvious physical boundary, and the like, and the problems of 'unclear touch, short of reach, no pressure' and the like of the spatial internet can be caused, so that the national network security is influenced.
However, because the spatial internet has the factors of weak ground signals, full signal coverage, unpublished communication protocols, and the like, the communication signals may not pass through the transfer of ground equipment, so that the existing communication network management and control technology is difficult to be directly used for spatial internet management and control. Firstly, because the satellite is far away from the ground, and the signal strength of the satellite signal reaching the ground is weak, the traditional electromagnetic spectrum detection device is difficult to detect the satellite internet signal, and the satellite internet is full coverage, so that even if the satellite internet signal is detected, whether the satellite internet user exists is difficult to determine. Secondly, different from the existing standard systems such as mobile cellular communication and WiFi communication, the satellite internet has no unified standard, and related communication protocols are mainly established by enterprises, so that the content is difficult to restore through analyzing satellite-ground link signals. In addition, because some satellite internet can realize data transmission without the transfer of ground equipment, the existing network management and control based on the ground gateway can not be suitable for the satellite internet. Therefore, there is an urgent need to research harmful information supervision techniques and blocking devices under new spatial internet conditions.
Disclosure of Invention
Based on the defects of the existing space internet management and control technology, the invention provides a space internet management and control method and a space internet management and control system.
In order to solve the technical problems, the invention adopts the technical scheme that:
a spatial internet management and control method comprises the following steps:
monitoring satellite-ground signals between a satellite space station and a satellite receiving terminal and WiFi signals between the satellite receiving terminal and a user terminal in real time, and finding out satellite internet users;
carrying out demodulation, protocol analysis and content restoration on the detected WiFi signals of the satellite Internet users, and judging whether illegal contents exist according to a control strategy;
if the content contains illegal content, the satellite-ground signals in the area range are blocked through noise interference, and the WiFi signals are blocked through protocol blocking.
Further, the real-time monitoring refers to a monitoring method based on time-space correlation analysis, namely, the satellite earth signal and the WiFi signal are monitored simultaneously, and when only the satellite earth signal and the WiFi signal exist simultaneously and the changes of the satellite earth signal and the WiFi signal are consistent in the time dimension and the space dimension, it is determined that a satellite internet user exists.
Further, the management and control strategy refers to setting and managing illegal contents, wherein the illegal contents comprise illegal domain names, illegal IP addresses and illegal keywords.
Further, noise interference blocking is performed by a noise interference unit.
A space Internet management and control system comprises:
the signal detection equipment is used for detecting satellite-ground signals between the satellite space station and the satellite receiving terminal and WiFi signals between the satellite receiving terminal and the user terminal;
the content analysis subsystem is used for processing the WiFi signals sent by the signal detection equipment, acquiring content information and returning the content information to the management platform;
the signal blocking equipment is used for blocking the satellite-ground signal and the WiFi signal;
and the management platform is used for carrying out instruction control on the signal detection equipment, the content analysis subsystem and the signal blocking equipment, configuring a control strategy, and acquiring and displaying an analysis result.
Furthermore, the signal detection device, the content analysis subsystem and the signal blocking device are at least one.
Further, the management platform allocates a unique ID to each of the signal detection device and the signal blocking device, and records the ID and the location information.
Further, the command control comprises on, off and power adjustment commands sent to the signal detection device and the signal blocking device.
Further, the signal blocking device comprises a noise interferer.
According to the invention, whether the satellite internet signal exists is monitored in real time by deploying the detection equipment in the control area, whether illegal content exists in the satellite internet signal is judged by carrying out protocol analysis and content analysis on the detected satellite internet signal, and signal blocking is carried out on specific content or specific users according to the content analysis result and the control strategy. Aiming at the defects that the existing internet management and control needs the cooperation of telecommunication operators and is not suitable for space internet scenes and the like, the method integrates signal detection, content analysis and signal blocking, is simple to operate, can be easily applied to practical application, and can manage and control the satellite internet in a focus area without the cooperation of the operators.
Drawings
Fig. 1 is a basic architecture diagram of a satellite internet.
Fig. 2 is a flowchart of a method for managing and controlling space internet according to the present invention.
Fig. 3 is a deployment diagram of a spatial internet management and control system according to the present invention.
Detailed Description
In order to make the aforementioned and other features and advantages of the invention more comprehensible, embodiments accompanied with figures are described in detail below.
The embodiment provides a spatial internet management and control method, as shown in fig. 2, which specifically includes the following steps:
1. system deployment and setup
One or more devices are deployed in an area to be managed, and at least one signal detection device, one content analysis subsystem, one signal blocking device and one management platform are included according to the size of the range of the area to be managed, and a system deployment diagram is shown in fig. 3.
The management platform assigns a unique ID to each of the signal detection devices and the signal blocking devices, and records the ID of each device and their location information.
2. Signal detection
As can be seen from the satellite internet architecture, there are three main types of wireless signals in the satellite internet: satellite signals between the ground station and the satellite space station, satellite signals between the satellite space station and the satellite receiving terminal, and WiFi signals between the satellite receiving terminal and the user terminal. Because the invention mainly manages and controls the satellite internet in the key area, the signal detection in the invention mainly refers to the detection of satellite-ground signals between a satellite space station and a satellite receiving terminal and WiFi signals between the satellite receiving terminal and a user terminal. The signal detection equipment works in a satellite Internet system frequency band and a WiFi frequency band, and after receiving a detection instruction of the management platform, whether satellite-ground signals and WiFi signals exist is detected by receiving signals of the satellite Internet system frequency band and the WiFi frequency band. In addition, the signal detection device also supports sending detected wireless signals to the content analysis subsystem.
3. Content analysis
Firstly, the content analysis synchronizes, demodulates, analyzes the protocol, and restores the content of the wireless signal detected by the signal detection device, and can analyze whether the content contains illegal content according to the management and control strategy of the management platform. The analysis results are then returned to the management platform.
4. Signal blocking
If the wireless signals of the satellite internet contain illegal contents, the management platform sends signal blocking instructions to the signal blocking equipment, wherein the signal blocking instructions comprise the opening and closing of the blocking equipment, the blocking power and the like. The signal detection device periodically feeds back the working state (switch, power, etc.) to the management platform.
The embodiment further provides a spatial internet management and control system, as shown in fig. 3, including:
1. signal detection equipment detects satellite-ground signal and wiFi signal, and its function mainly has:
(1) receiving a management platform detection instruction;
(2) the system comprises a satellite Internet system frequency band detection module, a satellite-ground signal detection module, a WiFi module and a satellite Internet user identification module, wherein the satellite Internet system frequency band detection module is used for detecting whether a satellite-ground signal and a WiFi signal exist or not and judging whether a satellite Internet user exists or not;
(3) receiving satellite-ground signals and WiFi signals and sending the satellite-ground signals and the WiFi signals to a content analysis subsystem;
2. content analysis subsystem
(1) Receiving a management platform instruction, and analyzing and processing a signal from the signal detection equipment;
(2) the wireless signals are processed by synchronization, demodulation, protocol analysis, content restoration, content analysis and the like;
(3) returning the analysis result to the management platform;
3. the signal blocking equipment mainly has the functions of:
(1) receiving a management platform instruction, and starting or closing the signal blocking equipment;
(2) supporting the blocking of satellite-ground signals and WiFi signals;
(3) supporting the adjustment of the transmitting power of the blocking equipment, thereby adjusting the coverage of the blocking equipment;
(4) and returning the working state (switch, power and the like) to the management platform.
4. The management platform is a system for controlling functions of the signal detection equipment, the content analysis subsystem and the signal blocking equipment by management and control personnel, and the functions mainly comprise:
(1) configuring IDs for the signal detection equipment and the signal blocking equipment and recording;
(2) sending instructions of opening, closing, power adjustment and the like to the signal detection equipment and the signal blocking equipment;
(3) configuring a control strategy and receiving an analysis result;
(4) and recording the position information of the signal detection device and the signal blocking device and visualizing the position information.
The above embodiments are only intended to illustrate the technical solution of the present invention and not to limit the same, and a person skilled in the art can modify the technical solution of the present invention or substitute the same without departing from the spirit and scope of the present invention, and the scope of the present invention should be determined by the claims.

Claims (8)

1. A spatial internet management and control method comprises the following steps:
a space internet management and control system is deployed in an area to be controlled, satellite-ground signals between a satellite space station and a satellite receiving terminal and WiFi signals between the satellite receiving terminal and a user terminal are monitored in real time by the system, when the uplink satellite-ground signals and the WiFi signals exist simultaneously and the changes of the uplink satellite-ground signals and the WiFi signals are consistent in time and space dimensions, a satellite internet user is judged to exist, and the satellite internet user is found out;
carrying out demodulation, protocol analysis and content restoration on the detected WiFi signals of the satellite Internet users, and judging whether illegal contents exist according to a control strategy;
if the content contains illegal content, the satellite-ground signals in the area range are blocked through noise interference, and the WiFi signals are blocked through protocol blocking.
2. The method as claimed in claim 1, wherein the management policy is to set and manage illegal contents, and the illegal contents include illegal domain names, illegal IP addresses and illegal keywords.
3. The method of claim 1, wherein the noise interference is performed by a noise interferer.
4. A space internet management and control system based on the method of any one of the above claims 1 to 3, comprising:
the signal detection equipment is used for detecting satellite-ground signals between the satellite space station and the satellite receiving terminal and WiFi signals between the satellite receiving terminal and the user terminal;
the content analysis subsystem is used for processing the WiFi signals sent by the signal detection equipment, acquiring content information and returning the content information to the management platform;
the signal blocking equipment is used for blocking the satellite-ground signal and the WiFi signal;
and the management platform is used for carrying out instruction control on the signal detection equipment, the content analysis subsystem and the signal blocking equipment, configuring a control strategy, and acquiring and displaying an analysis result.
5. The system of claim 4, wherein the signal detection device, the content analysis subsystem, and the signal blocking device are each at least one.
6. The system of claim 4, wherein the management platform assigns a unique ID to each of the signal detection device and the signal blocking device and records the ID and location information.
7. The system of claim 4, wherein the command controls include on, off, power adjustment commands sent to the signal detection device and the signal blocking device.
8. The system of claim 4, wherein the signal blocking device comprises a noise interferer.
CN201810776782.6A 2017-12-08 2018-07-13 Spatial internet management and control method and system Active CN108810020B (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201711294213 2017-12-08
CN201711294213X 2017-12-08

Publications (2)

Publication Number Publication Date
CN108810020A CN108810020A (en) 2018-11-13
CN108810020B true CN108810020B (en) 2021-05-18

Family

ID=64076774

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810776782.6A Active CN108810020B (en) 2017-12-08 2018-07-13 Spatial internet management and control method and system

Country Status (1)

Country Link
CN (1) CN108810020B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102511157A (en) * 2010-08-12 2012-06-20 联发科技股份有限公司 Method of in-device interference mitigation for cellular, bluetooth, wifi, and satellite systems coexistence
EP2525548A1 (en) * 2011-05-16 2012-11-21 General Electric Company Systems, methods, and apparatus for network intrusion detection based on monitoring network traffic
CN104506228A (en) * 2014-12-05 2015-04-08 中国空间技术研究院 WIFI (wireless fidelity) application system based on satellite communication
CN106170078A (en) * 2016-08-24 2016-11-30 杭州华雁数码电子有限公司 A kind of satellite long-distance intelligent broadcast system and operational approach

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104540024B (en) * 2014-12-18 2019-03-08 网宿科技股份有限公司 Video terminal and its method and system for limiting video playing
CN205847271U (en) * 2016-07-26 2016-12-28 深圳市天海世界卫星通信科技有限公司 A kind of Ka, Ku combine band broadband satellite boats and ships wireless WIFI connecting internet system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102511157A (en) * 2010-08-12 2012-06-20 联发科技股份有限公司 Method of in-device interference mitigation for cellular, bluetooth, wifi, and satellite systems coexistence
EP2525548A1 (en) * 2011-05-16 2012-11-21 General Electric Company Systems, methods, and apparatus for network intrusion detection based on monitoring network traffic
CN104506228A (en) * 2014-12-05 2015-04-08 中国空间技术研究院 WIFI (wireless fidelity) application system based on satellite communication
CN106170078A (en) * 2016-08-24 2016-11-30 杭州华雁数码电子有限公司 A kind of satellite long-distance intelligent broadcast system and operational approach

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
《卫星通信网络入侵检测系统研究》;刘丹丹;《中国优秀硕士学位论文信息科技辑》;20160331;第17页24-26行、第18页14-20行、第20页18-22行、第26页14-16行、第29页21-23行、第30页1-4行、第31页6-9行、第33页4-8行 *

Also Published As

Publication number Publication date
CN108810020A (en) 2018-11-13

Similar Documents

Publication Publication Date Title
Vattapparamban et al. Indoor occupancy tracking in smart buildings using passive sniffing of probe requests
US11171960B2 (en) Network security management based on collection and cataloging of network-accessible device information
US8254847B2 (en) Distributed wireless communications for tactical network dominance
JP2006217622A (en) System using existing cellular network to detect event of gps disturbance
CN110994798A (en) Substation equipment monitoring system
EP2592769B1 (en) Method, device and system for radio frequency detection
EP3689045B1 (en) A low power network with extended coverage
CN102970771B (en) A kind of acquisition of signal acquisition method based on wireless sensor network and system
Chung et al. Experiments of A LPWAN tracking (TR) platform based on Sigfox test network
CN107907789A (en) POWER SYSTEM STATE monitoring method based on NB IoT
KR102131338B1 (en) High-speed wireless network system using TVWS
CN106341656A (en) Video equipment monitoring method, device and system
CN107634810B (en) Satellite energy detection cognitive method and system based on radio environment map
CN114286202B (en) LoRaWAN system with LoRaWAN Mesh gateway
Gu et al. Attack-aware data timestamping in low-power synchronization-free LoRaWAN
KR101937251B1 (en) Video Monitoring System using TVWS
CN108810020B (en) Spatial internet management and control method and system
CN105978642A (en) Wireless monitoring station analysis addressing method and system based on interference big data
Shrivastava et al. Debunking the 5G Covid 19 Myth-A Comprehensive Review of 5G and its Implications in IoT
CN106788868A (en) signal shielding system, signal shielding system control method
EP2854437B1 (en) Detecting the presence of rogue femtocells in enterprise networks
US11595141B2 (en) Unified communications link status analyzer apparatus for agile control in contested environments
CN212484572U (en) Intelligent environment monitoring alarm device supporting multiple communication protocols
CN111835648B (en) Remote starting system of directional equipment
CN108200576B (en) Method and system for detecting bad users in satellite Internet

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant