CN113452684A - Network security detection gateway and system - Google Patents
Network security detection gateway and system Download PDFInfo
- Publication number
- CN113452684A CN113452684A CN202110671646.2A CN202110671646A CN113452684A CN 113452684 A CN113452684 A CN 113452684A CN 202110671646 A CN202110671646 A CN 202110671646A CN 113452684 A CN113452684 A CN 113452684A
- Authority
- CN
- China
- Prior art keywords
- data
- data packet
- network
- risk
- safety
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/66—Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
Abstract
The invention is suitable for the technical field of communication, in particular to a network security detection gateway and a system, wherein the network security detection gateway comprises: the data receiving and analyzing device is used for analyzing the network data packet and obtaining a data analysis result; the safety evaluation device is used for carrying out safety evaluation according to the data analysis result to obtain a safety evaluation report; the data distribution device divides the network data packet into a safety data packet and a risk data packet, and the data sending device is used for sending the safety data packet and the risk data packet through a public transmission channel and an encryption transmission channel respectively. The invention analyzes the network data packet, transmits the data with high safety and the data with low safety separately, and attaches the data with low safety to the attached data packet, so that the subsequent network equipment can actively defend the data when processing the data, thereby improving the control capability of the gateway on the network safety and avoiding the problem of repeated safety detection of each network node.
Description
Technical Field
The invention belongs to the technical field of communication, and particularly relates to a network security detection gateway and a network security detection system.
Background
The Gateway (Gateway) is also called an internetwork connector and a protocol converter. The gateway realizes network interconnection above a network layer, is a complex network interconnection device and is only used for interconnection of two networks with different high-level protocols. The gateway can be used for interconnection of both wide area networks and local area networks.
A gateway is a computer system or device that acts as a switch-operative. The gateway is a translator used between two systems that differ in communication protocol, data format or language, or even in an entirely different architecture. Instead of the bridge simply communicating the information, the gateway repackages the received information to accommodate the needs of the destination system.
In the prior art, a gateway generally directly receives network data, then performs security detection on the network data, intercepts the network data with threats after the detection is completed, and sends the network data without risks or with lower risk coefficients; however, when the detected network data reaches the next gateway node, the above steps are repeated, so that before the network data finally reaches the destination, the network data is subjected to security detection for many times, which not only increases the complexity in the data transmission process, but also affects the transmission rate; but the problem of network threat intrusion can be caused if the security detection is not carried out on the network data.
Disclosure of Invention
The embodiment of the invention aims to provide a network security detection gateway and a system, aiming at solving the problems in the background technology.
The embodiment of the present invention is implemented as follows, in which a network security detection gateway includes:
the data receiving and analyzing device is used for receiving the network data packet, analyzing the network data packet in an isolation environment and obtaining a data analysis result, wherein the data analysis result at least comprises a protocol type, a service type, a data sending end type and a data receiving end type;
the safety evaluation device is used for carrying out safety evaluation according to the data analysis result to obtain a safety evaluation report, and the safety evaluation report contains the risk level of each piece of data contained in the network data packet;
the data distribution device is used for dividing the network data packet into a safety data packet and a risk data packet according to the safety evaluation report, wherein the network data packet with the risk level higher than the preset value is a risk data packet, and the network data packet with the risk level not higher than the preset value is the safety data packet;
and the data sending device is used for sending the safety data packet and the risk data packet through a public transmission channel and an encryption transmission channel respectively, and the encryption transmission channel is used for carrying out encryption transmission on the risk grade information of the risk data packet and the risk data packet.
Preferably, the data receiving and analyzing device includes:
the data packet receiving module is used for receiving a network data packet;
and the data packet analysis module is used for analyzing the network data packet in the isolation environment and obtaining a data analysis result.
Preferably, the security evaluation device includes:
the characteristic vector generating module is used for generating a corresponding network data packet characteristic vector according to a data analysis result, and the network data packet characteristic vector is used for representing the information type contained in the network data packet;
the evaluation function generation module is used for matching a corresponding evaluation function according to the network data packet characteristic vector and substituting each element value in the network data packet characteristic vector into the evaluation function to obtain a risk evaluation value;
and the risk level evaluation module is used for generating a security evaluation report according to the risk evaluation value, wherein the security evaluation report contains the risk levels of all data contained in the current network data packet.
Preferably, the data offloading device includes:
the data packet fragmentation module is used for carrying out fragmentation processing on the network data packet to obtain a plurality of data blocks;
the data packet classification module is used for dividing the data block into a safety data block and a risk data block according to the safety evaluation report;
and the data packet combination module is used for packaging the plurality of safety data blocks into safety data blocks and packaging the plurality of risk data blocks into risk data packets.
Preferably, the data transmission device includes:
the public transmission module is used for transmitting the safety data packet through a public transmission channel;
the data packet encryption module is used for encrypting the risk data packet and compiling risk grade information corresponding to the risk data packet into the risk data packet;
and the encryption transmission module is used for sending the risk data packet through an encryption transmission channel.
Preferably, the evaluation function is stored in a function database, and a plurality of evaluation functions are stored in the function database and respectively correspond to different types of network data packets.
Preferably, the encryption mode adopted by the data packet encryption module for the risk data packet is any one of MD5 encryption, symmetric encryption and asymmetric encryption.
Another objective of an embodiment of the present invention is to provide a network security detection system, which includes the network security detection gateway as described above, and further includes a server, where the server is in communication connection with the network security detection gateway.
According to the network security detection gateway and the network security detection system provided by the embodiment of the invention, the network data packet is isolated and the data in the network data packet is analyzed to obtain the data analysis result, the risk degree of each piece of data is evaluated according to the data analysis result, the data with high security and the data with low security are transmitted separately, and the data with low security is attached with the auxiliary data packet, so that the subsequent network equipment can actively defend the data when processing the data, the control capability of the gateway on the network security is improved, and the problem of repeated security detection of each network node is avoided.
Drawings
Fig. 1 is an architecture diagram of a network security detection gateway according to an embodiment of the present invention;
fig. 2 is an architecture diagram of a data receiving and analyzing apparatus according to an embodiment of the present invention;
FIG. 3 is a diagram illustrating an architecture of a security evaluation apparatus according to an embodiment of the present invention;
fig. 4 is an architecture diagram of a data offloading device according to an embodiment of the present invention;
fig. 5 is an architecture diagram of a data transmission apparatus according to an embodiment of the present invention;
fig. 6 is an architecture diagram of a network security detection system according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
It will be understood that, as used herein, the terms "first," "second," and the like may be used herein to describe various elements, but these elements are not limited by these terms unless otherwise specified. These terms are only used to distinguish one element from another. For example, a first xx script may be referred to as a second xx script, and similarly, a second xx script may be referred to as a first xx script, without departing from the scope of the present application.
It can be understood that, in the prior art, a gateway generally directly receives network data, then performs security detection on the network data, and after the detection is completed, intercepts the network data with threat, and sends the network data without risk or with a lower risk coefficient; however, when the detected network data reaches the next gateway node, the above steps are repeated, so that before the network data finally reaches the destination, the network data is subjected to security detection for many times, which not only increases the complexity in the data transmission process, but also affects the transmission rate; but the problem of network threat intrusion can be caused if the security detection is not carried out on the network data.
In order to solve the above problems, in the embodiments of the present invention, a network data packet is isolated and analyzed, so as to obtain a data analysis result, and a risk degree of each piece of data is evaluated according to the data analysis result, so that data with high security is separately transmitted from data with low security, and an attached data packet is attached to the data with low security, so that subsequent network devices can actively defend the data when processing the data, thereby improving a control capability of a gateway on network security, and avoiding a problem of repeated security detection of each network node.
Specifically, as shown in fig. 1, fig. 1 is an architecture diagram of a network security detection gateway according to an embodiment of the present invention.
In an embodiment provided by the present invention, the network security detection gateway includes:
the data receiving and analyzing device 100 is configured to receive a network data packet, analyze the network data packet in an isolated environment, and obtain a data analysis result, where the data analysis result at least includes a protocol type, a service type, a data sending end type, and a data receiving end type.
Specifically, the data receiving and analyzing apparatus 100 is configured to interface with an external network environment, and a sandbox is created inside the data receiving and analyzing apparatus 100, where the sandbox is an execution environment that limits program behaviors according to a security policy, and data analysis is performed in the sandbox without affecting a storage device.
And the security evaluation device 200 is configured to perform security evaluation according to the data analysis result to obtain a security evaluation report, where the security evaluation report includes risk levels of each piece of data included in the network data packet.
Specifically, the security evaluation apparatus 200 performs security evaluation on the current network data packet according to the protocol type, the service type, the data sending end type, and the data receiving end type in the data analysis result in sequence based on the data analysis result, and during the security evaluation, evaluates each item according to the risk degree of the protocol type, the service type, the data sending end type, and the data receiving end type, for example, evaluates according to the TCP/IP protocol, the IPX/SPX protocol, and the NetBEUI protocol in the protocol types, and the higher the security degree of the protocol is, the higher the security of the current network data packet is, and the same is true for the service type, the data sending end type, and the data receiving end type.
The data offloading device 300 is configured to divide the network data packet into a security data packet and a risk data packet according to the security assessment report, where the network data packet with a risk level higher than a preset value is a risk data packet, and the network data packet with a risk level not higher than the preset value is a security data packet.
Specifically, the data offloading device 300 divides the network data packet based on the security evaluation report, and in this process, data with risk in the original network data packet is separately packaged, so that the data offloading device 300 can obtain the security data packet and the risk data packet, and in the security evaluation report, the risk level of each piece of data is recorded, so that when repackaging is performed, that is, based on this, the network data with a high risk level is packaged in the risk data packet, and correspondingly, the network data with a low risk level is packaged in the security data packet.
And the data sending device 400 is used for sending the security data packet and the risk data packet through a common transmission channel and an encryption transmission channel respectively, wherein the encryption transmission channel is used for carrying out encryption transmission on the risk grade information of the risk data packet and the risk data packet.
Specifically, the data sending device 400 is configured to transmit the repackaged network data, and when sending the data, the security data packet includes data content with higher security, so that the data can be directly transmitted by using a common transmission channel, the common transmission channel is equivalent to a "green channel", and when passing through another network node, the network node directly releases the security data packet transmitted in the common transmission channel, so that the efficiency of network data transmission can be greatly improved; for the risk data packet, the risk data packet is sent by using the encrypted transmission channel, and the risk data packet is also bound with the corresponding risk level information corresponding to the risk data packet, so that when the next network node receives the risk data packet and the corresponding risk level information, a corresponding processing mode is adopted, and for the network node without a detection function, the network node can obtain the risk level of the current risk data packet without detecting the network node, so as to conveniently perform corresponding processing on the network node, and avoid network risk intrusion from the network node.
Specifically, fig. 2 is an architecture diagram of a data receiving and analyzing apparatus according to an embodiment of the present invention.
In a preferred embodiment of the present invention, the data receiving and analyzing device includes:
a data packet receiving module 101, configured to receive a network data packet.
Specifically, the packet receiving module 101 receives the network packet from the network environment in a manner of a basic data receiving method, a tail flag method, or a load length method, and the received data is directly and temporarily stored in the sandbox for processing.
The data packet parsing module 102 is configured to parse the network data packet in an isolated environment, and obtain a data analysis result.
Specifically, the data packet parsing module 102 parses the network data packet in the sandbox to obtain corresponding parameters, such as: protocol type, service type, data sending end type and data receiving end type.
Specifically, fig. 3 is an architecture diagram of a safety evaluation device according to an embodiment of the present invention.
In a preferred embodiment provided by the present invention, the security evaluation device includes:
and the feature vector generation module 201 is configured to generate a corresponding network data packet feature vector according to the data analysis result, where the network data packet feature vector is used to characterize an information type included in the network data packet.
Specifically, the feature vector generation module 201 first reads the data analysis result, and constructs a corresponding network data packet feature vector using each item of information in the network data packet as an element, where the network data packet feature vector includes all types of all information.
And the evaluation function generation module 202 is configured to match a corresponding evaluation function according to the network data packet feature vector, and substitute each element value in the network data packet feature vector into the evaluation function to obtain a risk evaluation value.
Specifically, the evaluation function generation module 202 matches the corresponding evaluation function according to the information recorded in the feature vector of the current network data packet, because different network data packets contain different data types, different evaluation functions need to be adopted to evaluate different network data packets, and after the matched evaluation function is called, the elements in the feature vector of the network data packet are substituted into the corresponding evaluation function, so that a risk level can be generated for each item of data in the network data packet. The evaluation function is stored in a function database, a plurality of evaluation functions are stored in the function database, and the plurality of evaluation functions respectively correspond to different types of network data packets.
The process of matching the corresponding evaluation function according to the network packet feature vector is as follows, firstly, reading the network packet feature vector, for example, the network packet feature vector is (a, c, d, g, i, k, l), the element of the feature vector is the type of data, then according to the zero vector (a1, a2, A3, … …, AN), the value of N is the same as the total number of types of data in the network packet, at this time, a1 corresponds to a, a2 corresponds to B, A3 corresponds to c, and so on, according to the corresponding relationship between the current network packet feature vector (a, c, d, g, i, k, l) and the zero vector, generating a new matching vector (B1, B2, B3, … …, BN), if the network packet feature vector exists in a, the value of B1 is 1, if the network packet feature vector does not exist in B, the value of B2 is 0, obtaining the numerical values (1, 0, 1, 0, 1, 0 … …, 0) in the matching vector in sequence, then forming the elements in (1, 0, 1, 0, 1, 0 … …, 0) into binary digits from left to right, and further matching the corresponding evaluation functions in an evaluation function database according to the binary digits, wherein each evaluation function corresponds to a binary code.
And the risk level evaluation module 203 is configured to generate a security evaluation report according to the risk evaluation value, where the security evaluation report includes the risk levels of the data included in the current network data packet.
Specifically, the risk level evaluation module 203 generates a corresponding security evaluation report according to a result generated by the evaluation function, where the security evaluation report includes the risk levels of the data included in the current network data packet.
Specifically, fig. 4 is an architecture diagram of a data offloading device according to an embodiment of the present invention.
In a preferred embodiment provided by the present invention, the data offloading device includes:
the data packet fragmentation module 301 is configured to perform fragmentation processing on a network data packet to obtain a plurality of data blocks.
Specifically, the data packet fragmentation module 301 reads the security evaluation report and performs fragmentation processing on the network data packet to obtain a plurality of data blocks, where a data block includes one data.
A packet classification module 302 for dividing the data block into a safety data block and a risk data block according to the safety evaluation report.
Specifically, the packet classification module 302 will traverse each data block according to the security assessment report, and partition the data blocks into the security data block and the risk data block.
And the data packet combination module 303 is configured to package the plurality of security data blocks into security data blocks and package the plurality of risk data blocks into risk data packets.
Specifically, the data packet combining module 303 repackages all the security data blocks according to the types of the data blocks, and performs the packetization on all the risk data blocks, thereby obtaining the corresponding risk data packets and the security data packets.
Specifically, fig. 5 is an architecture diagram of a data transmission device according to an embodiment of the present invention.
In a preferred embodiment of the present invention, the data transmission device includes:
a common transmission module 401, configured to transmit the secure data packet through a common transmission channel.
Specifically, the common transmission module 401 preferably reads the security data packet and then transmits the security data packet through the common transmission channel, and the bandwidth allocated by the common transmission channel is higher, because for the network data packet, the security data included therein is obviously for the risk data, and therefore more data is transmitted through the common transmission channel.
The data packet encryption module 402 is configured to encrypt the risk data packet and compile risk level information corresponding to the risk data packet into the risk data packet.
Specifically, before sending the risk data packet, the packet encryption module 402 encrypts the risk data packet, and compiles the risk level information into the risk data packet, where the encryption mode may be any one of MD5 encryption, symmetric encryption, and asymmetric encryption, or may be implemented by encrypting and compiling the data start end of the risk data packet.
And an encryption transmission module 403, configured to send the risk data packet through an encryption transmission channel.
Specifically, fig. 6 is an architecture diagram of a network security detection system according to an embodiment of the present invention.
In a preferred embodiment provided by the present invention, a network security detection system includes the network security detection gateway described above, and further includes a server, where the server is in communication connection with the network security detection gateway. The server has the capability of bearing response service requests, bearing services and guaranteeing services.
In an embodiment of the present invention, the network security detection gateway includes: the data receiving and analyzing device, the security evaluation device, the data distribution device and the data sending device are connected, the data sending device is connected with a server, and the server can be an entity server, a cloud server, a single computer device or a plurality of computer devices. The data receiving and analyzing device receives a network data packet, analyzes the network data packet in an isolation environment and obtains a data analysis result, the security evaluation device carries out security evaluation according to the data analysis result to obtain a security evaluation report, the data distribution device divides the network data packet into a security data packet and a risk data packet according to the security evaluation report, the network data packet with the risk level higher than a preset value is a risk data packet, the network data packet with the risk level not higher than the preset value is a security data packet, and the data sending device sends the security data packet and the risk data packet to the server through a public transmission channel and an encrypted transmission channel respectively. By arranging the network security detection gateway, the security of network data transmission is improved,
those skilled in the art will appreciate that the architecture shown in fig. 1 is a block diagram of only a portion of the architecture associated with the disclosed aspects and is not intended to limit the network devices to which the disclosed aspects apply, as a particular network device may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.
In one embodiment, the network security detection gateway provided by the present application may be implemented in the form of a computer program that is executable on a network device. The memory of the network device may store various program modules constituting the network security detection gateway, such as the data receiving and analyzing device, the security evaluation device, the data offloading device, and the data sending device shown in fig. 1.
It should be understood that, although the steps in the flowcharts of the embodiments of the present invention are shown in sequence as indicated by the arrows, the steps are not necessarily performed in sequence as indicated by the arrows. The steps are not performed in the exact order shown and described, and may be performed in other orders, unless explicitly stated otherwise. Moreover, at least a portion of the steps in various embodiments may include multiple sub-steps or multiple stages that are not necessarily performed at the same time, but may be performed at different times, and the order of performance of the sub-steps or stages is not necessarily sequential, but may be performed in turn or alternately with other steps or at least a portion of the sub-steps or stages of other steps.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a non-volatile computer-readable storage medium, and can include the processes of the embodiments of the methods described above when the program is executed. Any reference to memory, storage, database, or other medium used in the embodiments provided herein may include non-volatile and/or volatile memory, among others. Non-volatile memory can include read-only memory (ROM), Programmable ROM (PROM), Electrically Programmable ROM (EPROM), Electrically Erasable Programmable ROM (EEPROM), or flash memory. Volatile memory can include Random Access Memory (RAM) or external cache memory. By way of illustration and not limitation, RAM is available in a variety of forms such as Static RAM (SRAM), Dynamic RAM (DRAM), Synchronous DRAM (SDRAM), Double Data Rate SDRAM (DDRSDRAM), Enhanced SDRAM (ESDRAM), Synchronous Link DRAM (SLDRAM), Rambus Direct RAM (RDRAM), direct bus dynamic RAM (DRDRAM), and memory bus dynamic RAM (RDRAM).
The technical features of the embodiments described above may be arbitrarily combined, and for the sake of brevity, all possible combinations of the technical features in the embodiments described above are not described, but should be considered as being within the scope of the present specification as long as there is no contradiction between the combinations of the technical features.
The above-mentioned embodiments only express several embodiments of the present invention, and the description thereof is more specific and detailed, but not construed as limiting the scope of the present invention. It should be noted that, for a person skilled in the art, several variations and modifications can be made without departing from the inventive concept, which falls within the scope of the present invention. Therefore, the protection scope of the present patent shall be subject to the appended claims.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents and improvements made within the spirit and principle of the present invention are intended to be included within the scope of the present invention.
Claims (8)
1. A network security detection gateway, the network security detection gateway comprising:
the data receiving and analyzing device is used for receiving the network data packet, analyzing the network data packet in an isolation environment and obtaining a data analysis result, wherein the data analysis result at least comprises a protocol type, a service type, a data sending end type and a data receiving end type;
the safety evaluation device is used for carrying out safety evaluation according to the data analysis result to obtain a safety evaluation report, and the safety evaluation report contains the risk level of each piece of data contained in the network data packet;
the data distribution device is used for dividing the network data packet into a safety data packet and a risk data packet according to the safety evaluation report, wherein the network data packet with the risk level higher than the preset value is a risk data packet, and the network data packet with the risk level not higher than the preset value is the safety data packet;
and the data sending device is used for sending the safety data packet and the risk data packet through a public transmission channel and an encryption transmission channel respectively, and the encryption transmission channel is used for carrying out encryption transmission on the risk grade information of the risk data packet and the risk data packet.
2. The gateway of claim 1, wherein the data receiving and analyzing device comprises:
the data packet receiving module is used for receiving a network data packet;
and the data packet analysis module is used for analyzing the network data packet in the isolation environment and obtaining a data analysis result.
3. The network security detection gateway of claim 1, wherein the security evaluation device comprises:
the characteristic vector generating module is used for generating a corresponding network data packet characteristic vector according to a data analysis result, and the network data packet characteristic vector is used for representing the information type contained in the network data packet;
the evaluation function generation module is used for matching a corresponding evaluation function according to the network data packet characteristic vector and substituting each element value in the network data packet characteristic vector into the evaluation function to obtain a risk evaluation value;
and the risk level evaluation module is used for generating a security evaluation report according to the risk evaluation value, wherein the security evaluation report contains the risk levels of all data contained in the current network data packet.
4. The network security detection gateway according to claim 1, wherein the data offloading device comprises:
the data packet fragmentation module is used for carrying out fragmentation processing on the network data packet to obtain a plurality of data blocks;
the data packet classification module is used for dividing the data block into a safety data block and a risk data block according to the safety evaluation report;
and the data packet combination module is used for packaging the plurality of safety data blocks into safety data blocks and packaging the plurality of risk data blocks into risk data packets.
5. The gateway of claim 1, wherein the data sending device comprises:
the public transmission module is used for transmitting the safety data packet through a public transmission channel;
the data packet encryption module is used for encrypting the risk data packet and compiling risk grade information corresponding to the risk data packet into the risk data packet;
and the encryption transmission module is used for sending the risk data packet through an encryption transmission channel.
6. The gateway of claim 3, wherein the evaluation function is stored in a function database, and the function database stores a plurality of evaluation functions, and the plurality of evaluation functions respectively correspond to different types of network data packets.
7. The network security detection gateway of claim 5, wherein the packet encryption module encrypts the risk packet in any one of MD5 encryption, symmetric encryption and asymmetric encryption.
8. A network security detection system, comprising the network security detection gateway according to any one of claims 1 to 7, and further comprising a server, wherein the server is in communication connection with the network security detection gateway.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110671646.2A CN113452684A (en) | 2021-06-17 | 2021-06-17 | Network security detection gateway and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110671646.2A CN113452684A (en) | 2021-06-17 | 2021-06-17 | Network security detection gateway and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113452684A true CN113452684A (en) | 2021-09-28 |
Family
ID=77811576
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110671646.2A Pending CN113452684A (en) | 2021-06-17 | 2021-06-17 | Network security detection gateway and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113452684A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114710353A (en) * | 2022-04-11 | 2022-07-05 | 万申科技股份有限公司 | Risk management and control system based on AIoT intelligent edge gateway |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105376167A (en) * | 2009-10-28 | 2016-03-02 | 惠普公司 | Distributed packet stream inspection and processing |
| CN109257326A (en) * | 2017-07-14 | 2019-01-22 | 东软集团股份有限公司 | The method, apparatus and storage medium and electronic equipment for defending data flow to attack |
| CA3065058A1 (en) * | 2018-12-28 | 2020-06-28 | Eidetic Communications Inc. | Apparatus and method for encrypting data in a data storage system |
| CN112367190A (en) * | 2020-10-21 | 2021-02-12 | 黄杰 | Network space security situation real-time detection method and system |
| CN112866185A (en) * | 2019-11-28 | 2021-05-28 | 海信集团有限公司 | Network traffic monitoring device and abnormal traffic detection method |
-
2021
- 2021-06-17 CN CN202110671646.2A patent/CN113452684A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105376167A (en) * | 2009-10-28 | 2016-03-02 | 惠普公司 | Distributed packet stream inspection and processing |
| CN109257326A (en) * | 2017-07-14 | 2019-01-22 | 东软集团股份有限公司 | The method, apparatus and storage medium and electronic equipment for defending data flow to attack |
| CA3065058A1 (en) * | 2018-12-28 | 2020-06-28 | Eidetic Communications Inc. | Apparatus and method for encrypting data in a data storage system |
| CN112866185A (en) * | 2019-11-28 | 2021-05-28 | 海信集团有限公司 | Network traffic monitoring device and abnormal traffic detection method |
| CN112367190A (en) * | 2020-10-21 | 2021-02-12 | 黄杰 | Network space security situation real-time detection method and system |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114710353A (en) * | 2022-04-11 | 2022-07-05 | 万申科技股份有限公司 | Risk management and control system based on AIoT intelligent edge gateway |
| CN114710353B (en) * | 2022-04-11 | 2023-11-28 | 万申科技股份有限公司 | Risk management and control system based on AIoT intelligent edge gateway |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US6834342B2 (en) | Method and system for secure communication over unstable public connections | |
| JP6556232B2 (en) | Classification device and method, computer program product, and system for performing real-time classification of data streams | |
| US9942247B2 (en) | Traffic shape obfuscation when using an encrypted network connection | |
| CN111177749B (en) | Encrypted source code file processing method and device, computer equipment and storage medium | |
| CN110020955B (en) | Online medical insurance information processing method and device, server and user terminal | |
| US20140280778A1 (en) | Tracking Network Packets Across Translational Boundaries | |
| CN110620762A (en) | RDMA (remote direct memory Access) -based data transmission method, network card, server and medium | |
| CN113452684A (en) | Network security detection gateway and system | |
| US11252184B2 (en) | Anti-attack data transmission method and device | |
| CN113518042B (en) | Data processing method, device, equipment and storage medium | |
| CN112436998B (en) | Data transmission method and electronic equipment | |
| US11265255B1 (en) | Secure communication routing for remote devices | |
| CN111262837B (en) | Data encryption method, data decryption method, system, equipment and medium | |
| Khalid et al. | FAPMIC: Fake packet and selective packet drops attacks mitigation by Merkle hash tree in intermittently connected networks | |
| CN107800758B (en) | Wind control data processing method, device and system | |
| CN114979069B (en) | Domain name resolution request processing method, storage medium and electronic equipment | |
| CN110808975B (en) | Sensitive data transmission method and device, computer equipment and storage medium | |
| KR20160123416A (en) | Information security device, terminal, network having information security system and terminal | |
| CN106470237B (en) | Asynchronous downloading method and system | |
| CN111294359B (en) | Pressure testing method, pressure testing device, computer equipment and storage medium | |
| CN114338126A (en) | Network application identification method and device | |
| CN114116638A (en) | Resource acquisition method and zero-trust access control equipment | |
| CN110460566B (en) | Industrial network data tamper-proofing method and system based on token | |
| CN117240603B (en) | Data transmission method, system, device, electronic equipment and storage medium | |
| Epishkina et al. | Covert channel limitation via special dummy traffic generating |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210928 |