CN114726648A - Terminal security cloud control system based on Internet of things - Google Patents

Terminal security cloud control system based on Internet of things Download PDF

Info

Publication number
CN114726648A
CN114726648A CN202210512435.9A CN202210512435A CN114726648A CN 114726648 A CN114726648 A CN 114726648A CN 202210512435 A CN202210512435 A CN 202210512435A CN 114726648 A CN114726648 A CN 114726648A
Authority
CN
China
Prior art keywords
terminal
flow
module
delta
security
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202210512435.9A
Other languages
Chinese (zh)
Other versions
CN114726648B (en
Inventor
王龙华
詹越
苗棋江
张倚榕
付斌
李先峰
陈杰皓
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Guoxin Wanglian Technology Co ltd
Original Assignee
Beijing Guoxin Wanglian Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Guoxin Wanglian Technology Co ltd filed Critical Beijing Guoxin Wanglian Technology Co ltd
Priority to CN202210512435.9A priority Critical patent/CN114726648B/en
Publication of CN114726648A publication Critical patent/CN114726648A/en
Application granted granted Critical
Publication of CN114726648B publication Critical patent/CN114726648B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/145Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16YINFORMATION AND COMMUNICATION TECHNOLOGY SPECIALLY ADAPTED FOR THE INTERNET OF THINGS [IoT]
    • G16Y30/00IoT infrastructure
    • G16Y30/10Security thereof
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Virology (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Telephonic Communication Services (AREA)
  • Alarm Systems (AREA)

Abstract

The invention relates to a terminal security cloud control system based on the Internet of things, in particular to the technical field of data processing, which comprises an acquisition module, a cloud processing module and a data processing module, wherein the acquisition module is used for acquiring interactive flow of terminal equipment accessed to a gateway of the Internet of things and cloud interaction in real time; the system comprises a test module, a data acquisition module and a data transmission module, wherein the test module is used for periodically testing a terminal accessed to the gateway of the Internet of things according to interactive flow acquired in real time so as to acquire a standard flow range of flow interaction between the terminal and a cloud end, and the test module is connected with the acquisition module; the storage module is used for storing a standard flow range of flow interaction of the terminal obtained by testing and is connected with the testing module; the analysis module is used for analyzing the safety of the terminal according to the interactive flow acquired in real time and is connected with the test module; and the control module is used for controlling the access of the terminal according to the security analysis result of the terminal and is connected with the analysis module. The invention effectively improves the safety monitoring efficiency of the terminal of the Internet of things.

Description

Terminal security cloud control system based on Internet of things
Technical Field
The invention relates to the technical field of Internet of things safety, in particular to a terminal safety cloud control system based on the Internet of things.
Background
The internet of things is the internet that the things link to each other, can realize article and article, interconnection between people and the article, and the terminal can carry out information interaction through accessing the internet of things and server, and in order to guarantee the security, when the terminal launches the access request, the high in the clouds server need carry out the security authentication to the terminal, just allows the terminal to access the internet of things when the authentication passes.
Chinese patent publication No.: CN102065430B, disclosing a method for implementing secure access of a terminal of the internet of things, in this technical scheme, when a terminal node not connected with an electronic key applies for accessing a network, a management node will search a terminal authority list to determine whether the terminal node is allowed to access; when a terminal node connected with an electronic key applies for accessing a network, a management node firstly executes the operation under the condition without the electronic key, and if the terminal fails to access, an electronic key authorization list is searched to judge whether the terminal node is allowed to access. The scheme solves the safety problem when the terminal is accessed, but cannot realize real-time safety monitoring on the access terminal, so that the safety monitoring efficiency of the access terminal is low and the like.
Disclosure of Invention
Therefore, the invention provides a terminal security cloud control system based on the Internet of things, which is used for solving the problem of low security monitoring efficiency of the Internet of things terminal caused by the fact that real-time data monitoring cannot be carried out on a terminal accessed to an Internet of things gateway in the prior art.
In order to achieve the above object, the present invention provides a terminal security cloud control system based on the internet of things, comprising,
the acquisition module is used for acquiring terminal interaction flow of terminal equipment accessed to the gateway of the Internet of things and cloud interaction in real time;
the system comprises a test module, a collecting module and a control unit, wherein the test module is used for periodically testing a terminal accessed to an Internet of things gateway according to terminal interactive flow acquired in real time and is connected with the collecting module, the test module comprises a channel selecting unit, a calculating unit, an adjusting unit and a correcting unit, a plurality of communication channels are arranged in the channel selecting unit, the channel capacities of the communication channels are different, the channel selecting unit is used for selecting a communication channel of the terminal and a cloud terminal for interaction, the channel selecting unit is connected with the calculating unit, the calculating unit is used for calculating a standard flow range of the terminal and the cloud terminal for interaction according to total data transmission flow in a period and is connected with the adjusting unit, the adjusting unit is used for selecting an error adjusting coefficient according to total data transmission flow in the test period to adjust a flow error in the standard flow range, and the adjusting unit is also used for correcting the error adjusting coefficient according to total data transmission time in the test period, the calibration unit is connected with the calibration unit and is used for calibrating a communication channel between the terminal and the cloud end after the test period according to the flow error regulation state;
the storage module is used for storing the terminal interaction flow acquired by testing and the calculated standard flow range and is connected with the testing module;
the analysis module is used for analyzing the security of the terminal according to the real-time acquired interactive flow, is connected with the test module, and is also used for judging the security of the terminal for the first time according to the time point of interaction between the terminal and the cloud end and judging the security of the terminal for the second time according to the real-time acquired single transmission flow of the terminal;
and the control module is used for controlling the access of the terminal according to the security analysis result of the terminal and is connected with the analysis module.
Further, when the test module tests a terminal accessing the gateway, the computing unit is provided with a test period T, the channel selecting unit selects a communication channel with a channel capacity of R0 for data interaction between the terminal and the cloud within the test period T, R0 is a preset channel capacity, a starting point of the test period is a time node at which the terminal is accessed, the computing unit obtains a total data transmission flow G and data transmission times H of the terminal within the test period T, computes an average flow Δ G, and sets Δ G = G/H, the computing unit sets a standard flow range of the terminal interacting with the cloud to Δ G ± p0, p0 is a flow error, and sets p0= Gs- Δ G, where Gs is a maximum flow rate of single transmission within the test period.
Further, when the adjusting unit adjusts the flow error p0, the adjusting unit compares the total data transmission flow G in the collected test period with the total preset data transmission flow G0, and adjusts the flow error p0 according to the comparison result, wherein,
if G is less than or equal to G0, the adjusting unit judges that the total flow of data transmission in the period is within a preset flow range, and does not adjust the flow error p 0;
if G > G0, the adjusting unit judges that the total flow of data transmission in the period exceeds a preset flow range, adjusts the flow error to p0 ', sets p 0' = p0 × r, and sets the error adjustment coefficient to be 1 < r < 1.2.
Further, when the adjusting unit corrects the error adjusting coefficient, the adjusting unit compares the total data transmission time tz in the collected test period with the preset total data transmission time tz0, and corrects the set error adjusting coefficient r according to the comparison result, wherein,
if tz is less than or equal to tz0, the adjusting unit judges that the data transmission time is short, selects a preset correction coefficient s to correct an error adjusting coefficient r, sets r '= r × s for the corrected error adjusting coefficient r', and sets s to be more than 1 and less than 1.1;
if tz > tz0, the adjusting unit judges that the data transmission time is normal and does not carry out correction.
Further, the correction unit acquires a flow rate difference Δ Gv within a test period, sets Δ Gv = | G-G0|, and corrects the communication channel according to the adjustment state of the flow rate error p0, when correcting the communication channel,
when the flow error p0 is not adjusted by the adjusting unit, if delta Gv < [ delta ] Gv0, no correction is performed, delta Gv0 is a preset flow difference, and if delta Gv ≧ delta Gv0, the correcting unit selects a communication channel with a channel capacity of R1 as a communication channel after the test period, and sets R1= R0-R0 x ([ delta ] Gv-delta ] Gv 0)/[ delta ] Gv;
when the adjusting unit adjusts the flow error p0, if delta Gv < [ delta ] Gv0, the correcting unit does not correct the error, and if the delta ] Gv is larger than or equal to the delta ] Gv0, the correcting unit selects a communication channel with a channel capacity of R2 as a communication channel after the test period, and sets R2= R0+ R0 x ([ delta ] Gv-delta ] Gv 0)/[ delta ] Gv 0.
Further, when analyzing the security of the terminal, the analysis module obtains a time point Tb when the terminal interacts with the cloud, compares the time point Tb with a preset interaction time period Tb0, and determines the security of the terminal for the first time according to a comparison result, wherein,
if Tb belongs to Tb0, the analysis module carries out secondary judgment on the safety of the terminal according to the single transmission flow of the terminal acquired in real time;
if Tb ∉ Tb0, the analysis module judges that the terminal has the risk of being stolen, and the control module blocks the access of the terminal.
Further, when the analysis module carries out secondary judgment on the safety of the terminal, the analysis module compares the terminal single transmission flow Gk acquired in real time after the test period with the standard flow range of the terminal acquired by the test module in the test, and carries out secondary judgment on the safety of the terminal according to the comparison result, wherein,
when Gk is less than delta G-p0, the analysis module judges that the single transmission flow of the terminal does not reach the standard, and the risk of network failure exists;
when the delta G-p0 is not less than Gk not less than delta G + p0, the analysis module judges that the safety of the terminal meets the requirement;
and when the delta G + p0 is less than Gk, the analysis module judges that the single transmission flow of the terminal exceeds the standard and the virus risk exists.
Further, when the analysis module determines that the terminal has a network fault risk, the control module alarms the terminal, the analysis module obtains the number W of times of alarming after the terminal accesses the gateway and compares the number W with a preset alarm number W0, the control module controls the access of the terminal according to the comparison result, wherein,
when W < W0, the control module keeps the access of the terminal;
when W is larger than or equal to W0, the control module blocks the access of the terminal and forbids the access of the terminal within t0 time, t0 is preset black-drawing time, and when the terminal is accessed again, the control module calculates the terminal safety factor of the terminal so as to enhance the control of the access of the terminal.
Further, a terminal safety factor C is arranged in the control module, C =0.3 xWk +0.7 xP is set, Wk is the historical alarm frequency of the terminal, P is the historical blocking frequency of the terminal, the control module compares the calculated terminal safety factor C with a preset terminal safety factor C0 and controls the access of the terminal according to the comparison result, wherein,
when C is less than or equal to C0, the control module keeps the access of the terminal;
when C > C0, the control module blocks and permanently prohibits access by the terminal.
Further, when the analysis module determines that the terminal has a virus risk, the control module blocks the access of the terminal and sets the black time of the terminal, and when the black time is set, the control module obtains the blocked times E of the terminal on the same day, compares the blocked times E with the preset blocking times E0, and sets the black time of the terminal according to the comparison result, wherein,
when E < E0, the control module sets the black drawing time of the terminal as t1, sets t1= t0+ t0 × E/E0, and forbids the access of the terminal in the black drawing time;
when E is larger than or equal to E0, the control module forbids the access of the terminal permanently.
Compared with the prior art, the method has the advantages that the normal range of the transmission flow of the terminal is tested by acquiring the transmission flow and the transmission times during terminal interaction in the preset period in the test process of the test module, the normal flow range of the terminal is monitored by testing the acquired standard flow range of the terminal, abnormal flow transmission is blocked in time by monitoring, and therefore the safety of the Internet of things is improved.
Particularly, the adjusting unit compares the total data transmission flow G in the test period with a preset value to adjust the flow error, if the total data transmission flow G is greater than the preset value, it is proved that the error is required to be increased greatly in the transmission flow to improve the accuracy of the standard flow range, and when the adjusting unit adjusts, the adjusting unit selects a preset adjusting coefficient to adjust, so that the efficiency of safety monitoring of the terminal of the internet of things is improved.
Particularly, the adjusting unit makes the adjusting coefficient influenced by the total data transmission time through correction, if the total data transmission time influence is smaller than a preset value, the transmission speed is high, and the adjusting unit increases the adjusting coefficient to increase the flow error, so that the standard flow range is increased, and the accuracy of the standard flow range is further improved.
Particularly, after the adjusting unit has adjusted the traffic error and determined the standard traffic range, in order to avoid data loss during the interaction process, the correcting unit corrects the communication channel of the terminal and the cloud communication according to the adjusting state to change the channel capacity of the communication channel, thereby avoiding data loss during the transmission process, when the adjusting is not performed, the total traffic of data transmission is proved to be within the preset value, at this time, if the calculated traffic difference is smaller than the preset value, the total traffic of transmission does not differ much from the preset value, the communication channel is not corrected, otherwise, the channel capacity is reduced according to the difference value to correct the communication channel, when the adjusting of the traffic error, the total traffic of data transmission is proved to be larger than the preset value, at this time, if the calculated traffic difference is smaller than the preset value, the total traffic is not greatly different from the preset value, the communication channel is not corrected, otherwise, the channel capacity is increased according to the difference value to correct the communication channel, therefore, data loss in transmission is avoided, data transmission monitoring precision is improved, and efficiency of safety monitoring of the Internet of things terminal is further improved
Particularly, the analysis module judges the security of the terminal for the first time according to the interactive time point Tb of the terminal and the cloud, and judges the security of the terminal after the test for the second time according to the standard flow range calculated in the test period, so that the security of the terminal is monitored in real time to determine the security state of the terminal, and the security monitoring efficiency of the terminal is further improved.
In particular, in this embodiment, the analysis module alarms through the control module after determining that the terminal has a network failure risk, the control module further limits the access of the terminal according to the alarm frequency of the terminal, so as to ensure the safety of the access of the terminal, the terminal has safety risk if the terminal is alarmed for a plurality of times, the safety of the internet of things is effectively ensured by blocking the access of the terminal in time, when the access of the terminal is blocked, the control module is also provided with black time within which the terminal cannot be accessed, so that the safety of the Internet of things can be further ensured, thereby improving the security monitoring efficiency of the terminal, and, when the terminal blocked from access due to the alarm is accessed again, the control module strengthens the monitoring of the terminal by calculating the terminal safety factor C of the terminal, the safety of the Internet of things is improved, and therefore the safety monitoring efficiency of the terminal is further improved.
Particularly, after the analysis module judges that the terminal has a virus risk, the control module can effectively ensure the security of the internet of things by blocking access in time, and the control module sets the black time of the terminal through the blocking times, prolongs the black time each time the terminal is blocked, and when the blocking times reach a preset value, the access of the terminal is forbidden permanently, so that the security of the internet of things is further ensured by limiting the access of the terminal, and the security monitoring efficiency of the terminal is further improved.
Drawings
Fig. 1 is a schematic structural diagram of a terminal security cloud control system based on the internet of things in the embodiment.
Detailed Description
In order that the objects and advantages of the invention will be more clearly understood, the invention is further described below with reference to examples; it should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
Preferred embodiments of the present invention are described below with reference to the accompanying drawings. It should be understood by those skilled in the art that these embodiments are only for explaining the technical principle of the present invention, and do not limit the scope of the present invention.
Furthermore, it should be noted that, in the description of the present invention, unless otherwise explicitly specified or limited, the terms "mounted," "connected," and "connected" are to be construed broadly, and may be, for example, fixedly connected, detachably connected, or integrally connected; can be mechanically or electrically connected; they may be connected directly or indirectly through intervening media, or they may be interconnected between two elements. The specific meanings of the above terms in the present invention can be understood by those skilled in the art according to specific situations.
Please refer to fig. 1, which is a schematic structural diagram of a terminal security cloud system based on the internet of things according to the embodiment, the system includes,
the system comprises an acquisition module, a data transmission module and a data transmission module, wherein the acquisition module is used for acquiring terminal interaction flow of terminal equipment accessed to an Internet of things gateway and cloud interaction in real time, and the terminal interaction flow is defined as transmission flow for data transmission from a terminal to the cloud, and comprises single transmission flow and total data transmission flow;
the system comprises a test module, a collecting module and a control unit, wherein the test module is used for periodically testing a terminal accessed to an Internet of things gateway according to terminal interactive flow acquired in real time and is connected with the collecting module, the test module comprises a channel selecting unit, a calculating unit, an adjusting unit and a correcting unit, a plurality of communication channels are arranged in the channel selecting unit, the channel capacities of the communication channels are different, the channel selecting unit is used for selecting a communication channel of the terminal and a cloud terminal for interaction, the channel selecting unit is connected with the calculating unit, the calculating unit is used for calculating a standard flow range of the terminal and the cloud terminal for interaction according to total data transmission flow in a period and is connected with the adjusting unit, the adjusting unit is used for selecting an error adjusting coefficient according to total data transmission flow in the test period to adjust a flow error in the standard flow range, and the adjusting unit is also used for correcting the error adjusting coefficient according to total data transmission time in the test period, the calibration unit is connected with the calibration unit and is used for calibrating a communication channel between the terminal and the cloud end after the test period according to the flow error regulation state;
the storage module is used for storing the terminal interaction flow acquired by testing and the calculated standard flow range and is connected with the testing module;
the analysis module is used for analyzing the safety of the terminal according to the interactive flow acquired in real time and is connected with the test module;
and the control module is used for controlling the access of the terminal according to the security analysis result of the terminal and is connected with the analysis module.
Particularly, this embodiment the system is applied to the high in the clouds to carry out real time monitoring to the security at single thing networking terminal in the intelligence house, if carry out security monitoring to the intelligent audio amplifier who inserts the gateway, through the mutual flow of real-time acquisition terminal and high in the clouds, with monitor terminal's security, when mutual flow is unusual, in time block the access at terminal, in order to improve the security that thing networking terminal accessed.
Specifically, when the test module tests a terminal of an access gateway, the computing unit is provided with a test period T, the channel selecting unit selects a communication channel with a channel capacity of R0 to perform data interaction between the terminal and a cloud terminal in the test period T, R0 is a preset channel capacity, a starting point of the test period is a time node to which the terminal is accessed, the computing unit obtains a total data transmission flow G and a data transmission frequency H of the terminal in the test period T, calculates an average flow Δ G, and sets Δ G = G/H, the computing unit sets a standard flow range of the terminal interacting with the cloud terminal to Δ G ± p0, p0 is a flow error, and sets p0= Gs-G, where Δ Gs is a maximum flow rate of single transmission in the test period.
Specifically, the standard traffic range proposed in the present application is described with reference to the specific embodiment, for example, when the smart speaker is used as a terminal, the total traffic of data transmission in a test period is 100Mb, the number of data transmission times is 20, and the maximum traffic of single transmission is 8Mb, the standard traffic range is 5 ± 3Mb, that is, 2-8 Mb.
Specifically, in the test process of the test module in this embodiment, the normal range of the transmission flow of the terminal is tested by acquiring the transmission flow and the transmission frequency during the terminal interaction in the preset period, the standard flow range of the terminal is acquired through the test to monitor the flow during the terminal interaction, and the abnormal flow transmission is blocked in time through the monitoring, so that the safety of the internet of things is improved. It can be understood that, this embodiment does not specifically limit the interaction behavior, and the interaction behavior may be a cloud instruction or a test module instruction, and those skilled in the art may set the interaction behavior according to actual conditions, and only the test requirements need to be satisfied.
Specifically, after the calculating unit calculates the standard flow range of the interaction between the terminal and the cloud, the adjusting unit compares the total data transmission flow G in the acquired test period with the preset total data transmission flow G0, and adjusts the flow error p0 according to the comparison result, wherein,
if G is less than or equal to G0, the adjusting unit judges that the total flow of data transmission in the period is within a preset flow range, and does not adjust the flow error p 0;
if G > G0, the adjusting unit judges that the total flow of data transmission in the period exceeds a preset flow range, adjusts the flow error to p0 ', sets p 0' = p0 × r, and sets the error adjustment coefficient to be 1 < r < 1.2.
Specifically, the adjustment process proposed in the present application is described with reference to the specific embodiment, for example, the smart speaker is used as a terminal, the total data transmission flow is 100Mb, the total preset data transmission flow is 90Mb, at this time, the flow error needs to be adjusted, the flow error is 3Mb, the adjustment coefficient is 1.1, the adjusted flow error is 3.3, and the accuracy of the standard flow range is improved by increasing the flow error.
Specifically, in this embodiment, the adjusting unit adjusts the flow error by comparing the total data transmission flow G in the test period with a preset value, and if the total data transmission flow G is greater than the preset value, it is proved that the transmission flow has a large error and the accuracy of the standard flow range needs to be increased, and when adjusting, the adjusting unit selects a preset adjusting coefficient to adjust, so as to improve the efficiency of monitoring the safety of the terminal of the internet of things.
Specifically, when the adjusting unit adjusts, the adjusting unit compares the total data transmission time tz in the collected test period with the preset total data transmission time tz0, and corrects the set error adjusting coefficient r according to the comparison result, wherein,
if tz is less than or equal to tz0, the adjusting unit judges that the data transmission time is short, selects a preset correction coefficient s to correct an error adjusting coefficient r, sets r '= r × s for the corrected error adjusting coefficient r', and sets s to be more than 1 and less than 1.1;
if tz is larger than tz0, the adjusting unit judges that the data transmission time is normal and does not carry out correction.
Specifically, the correction process proposed in the present application is described with reference to the specific embodiment, for example, when the smart speaker is used as a terminal, the total data transmission time is 40 minutes, the total preset transmission time is 50 minutes, at this time, the total data transmission time is smaller than the preset value, the error adjustment coefficient r is 1.1, the correction coefficient is 1.05, and the corrected error adjustment coefficient r' =1.1 × 1.05, the error adjustment coefficient is increased by correction, so that the standard flow range is increased, and the accuracy of the standard flow range is further improved.
Specifically, in this embodiment, the adjusting unit modifies the adjusting coefficient to be affected by the total data transmission time, and if the total data transmission time is smaller than a preset value, the transmission speed is fast, and the adjusting unit increases the adjusting coefficient to increase the flow error, so that the standard flow range is increased, and the accuracy of the standard flow range is further improved.
Specifically, the correction unit acquires a flow rate difference Δ Gv within a test period, sets Δ Gv = | G-G0|, and corrects the communication channel according to the adjustment state of the flow rate error p0, when correcting the communication channel,
when the flow error p0 is not adjusted by the adjusting unit, if delta Gv < [ delta ] Gv0, no correction is performed, delta Gv0 is a preset flow difference, and if delta Gv ≧ delta Gv0, the correcting unit selects a communication channel with a channel capacity of R1 as a communication channel after the test period, and sets R1= R0-R0 x ([ delta ] Gv-delta ] Gv 0)/[ delta ] Gv;
when the adjusting unit adjusts the flow error p0, if delta Gv < [ delta ] Gv0, the correcting unit does not correct the error, and if the delta ] Gv is larger than or equal to the delta ] Gv0, the correcting unit selects a communication channel with a channel capacity of R2 as a communication channel after the test period, and sets R2= R0+ R0 x ([ delta ] Gv-delta ] Gv 0)/[ delta ] Gv 0.
Specifically, in this embodiment, after the adjusting unit has adjusted the traffic error and determines the standard traffic range, in order to avoid data loss during the interaction process, the correcting unit corrects the communication channel for communication between the terminal and the cloud according to the adjustment state to change the channel capacity of the communication channel, so as to avoid data loss during the transmission process, when the adjusting is not performed, it is verified that the total traffic of data transmission is within the preset value, at this time, if the calculated traffic difference is smaller than the preset value, the difference between the total traffic of transmission and the preset value is not large, and the communication channel is not corrected, otherwise, the channel capacity is reduced according to the difference value to correct the communication channel, when the adjusting the traffic error, it is verified that the total traffic of data transmission is larger than the preset value, at this time, if the calculated traffic difference is smaller than the preset value, the difference between the total traffic of transmission and the preset value is not large, and the communication channel is not corrected, and otherwise, the channel capacity is increased according to the difference value to correct the communication channel, so that data are prevented from being lost in transmission, the data transmission monitoring precision is improved, and the efficiency of safety monitoring of the terminal of the Internet of things is further improved.
Specifically, when analyzing the security of the terminal, the analysis module obtains a time point Tb when the terminal interacts with the cloud, compares the time point Tb with a preset interaction time period Tb0, and determines the security of the terminal for the first time according to a comparison result, wherein,
if Tb belongs to Tb0, the analysis module carries out secondary judgment on the safety of the terminal according to the single transmission flow of the terminal acquired in real time;
if Tb ∉ Tb0, the analysis module judges that the terminal has the risk of being stolen, and the control module blocks the access of the terminal.
Specifically, when the analysis module performs the secondary determination on the security of the terminal, the analysis module compares the terminal single transmission flow Gk acquired in real time after the test period with the standard flow range of the terminal acquired by the test module, and performs the secondary determination on the security of the terminal according to the comparison result, wherein,
when Gk is less than delta G-p0, the analysis module judges that the single transmission flow of the terminal does not reach the standard, and the risk of network failure exists;
when the delta G-p0 is not less than Gk not less than delta G + p0, the analysis module judges that the safety of the terminal meets the requirement;
and when the delta G + p0 is less than Gk, the analysis module judges that the single transmission flow of the terminal exceeds the standard and the virus risk exists.
Specifically, in this embodiment, the analysis module performs a first determination on the security of the terminal according to a time point Tb when the terminal interacts with the cloud, and performs a second determination on the security of the tested terminal according to a standard flow range calculated in a test period, so as to perform security monitoring on the terminal in real time to determine the security state of the terminal, thereby further improving the security monitoring efficiency on the terminal.
Specifically, when the analysis module determines that the terminal has a network fault risk, the control module alarms the terminal, the analysis module obtains the number W of times of alarming after the terminal accesses the gateway and compares the number W with a preset alarm number W0, the control module controls the access of the terminal according to the comparison result, wherein,
when W < W0, the control module keeps the access of the terminal;
when W is larger than or equal to W0, the control module blocks the access of the terminal and forbids the access of the terminal within t0 time, t0 is preset black-drawing time, and when the terminal is accessed again, the control module calculates the terminal safety factor of the terminal so as to enhance the control of the access of the terminal.
Specifically, a terminal safety factor C is set in the control module, C =0.3 xwk +0.7 xp is set, Wk is the historical alarm frequency of the terminal, P is the historical blocking frequency of the terminal, the control module compares the calculated terminal safety factor C with a preset terminal safety factor C0, and controls the access of the terminal according to the comparison result, wherein,
when C is less than or equal to C0, the control module keeps the access of the terminal;
when C > C0, the control module blocks and permanently forbids the access of the terminal.
Specifically, after the analysis module determines that the terminal has a network failure risk, the control module is used for alarming, the control module also limits the access of the terminal according to the alarming times of the terminal, so as to ensure the safety of the access of the terminal, the terminal has safety risk if the terminal is alarmed for a plurality of times, the safety of the internet of things is effectively ensured by blocking the access of the terminal in time, when the access of the terminal is blocked, the control module is also provided with black time within which the terminal cannot be accessed, so that the safety of the Internet of things can be further ensured, thereby improving the security monitoring efficiency of the terminal, and, when the terminal, which is blocked from access due to the alarm, is accessed again, the control module strengthens the monitoring of the terminal by calculating the terminal safety factor C of the terminal, the safety of the Internet of things is improved, and therefore the safety monitoring efficiency of the terminal is further improved.
Specifically, when the analysis module determines that the terminal has a virus risk, the control module blocks the access of the terminal and sets the black time of the terminal, and when the black time is set, the control module obtains the blocked times E of the terminal on the current day, compares the blocked times E with the preset blocking times E0, and sets the black time of the terminal according to the comparison result, wherein,
when E < E0, the control module sets the black drawing time of the terminal as t1, sets t1= t0+ t0 × E/E0, and forbids the access of the terminal in the black drawing time;
when E is larger than or equal to E0, the control module forbids the access of the terminal permanently.
Specifically, in this embodiment, after the analysis module determines that the terminal has a virus risk, the control module may effectively ensure the security of the internet of things by blocking access in time, and the control module sets the black time for the terminal by blocking times, and extends the black time each time the terminal is blocked, and when the blocking times reach a preset value, the access of the terminal is permanently prohibited, and the access of the terminal is limited to further ensure the security of the internet of things, thereby further improving the security monitoring efficiency for the terminal.
So far, the technical solutions of the present invention have been described in connection with the preferred embodiments shown in the drawings, but it is easily understood by those skilled in the art that the scope of the present invention is obviously not limited to these specific embodiments. Equivalent changes or substitutions of related technical features can be made by those skilled in the art without departing from the principle of the invention, and the technical scheme after the changes or substitutions can fall into the protection scope of the invention.

Claims (10)

1. A terminal security cloud control system based on the Internet of things is characterized by comprising,
the acquisition module is used for acquiring terminal interaction flow of terminal equipment accessed to the gateway of the Internet of things and cloud interaction in real time;
the system comprises a test module, a collecting module and a control unit, wherein the test module is used for periodically testing a terminal accessed to an Internet of things gateway according to terminal interactive flow acquired in real time and is connected with the collecting module, the test module comprises a channel selecting unit, a calculating unit, an adjusting unit and a correcting unit, a plurality of communication channels are arranged in the channel selecting unit, the channel capacities of the communication channels are different, the channel selecting unit is used for selecting a communication channel of the terminal and a cloud terminal for interaction, the channel selecting unit is connected with the calculating unit, the calculating unit is used for calculating a standard flow range of the terminal and the cloud terminal for interaction according to total data transmission flow in a period and is connected with the adjusting unit, the adjusting unit is used for selecting an error adjusting coefficient according to total data transmission flow in the test period to adjust a flow error in the standard flow range, and the adjusting unit is also used for correcting the error adjusting coefficient according to total data transmission time in the test period, the calibration unit is connected with the calibration unit and is used for calibrating a communication channel between the terminal and the cloud end after the test period according to the flow error regulation state;
the storage module is used for storing the terminal interaction flow acquired by testing and the calculated standard flow range and is connected with the testing module;
the analysis module is used for analyzing the security of the terminal according to the interactive flow acquired in real time and is connected with the test module, and the analysis module is also used for judging the security of the terminal for the first time according to the time point of the interaction between the terminal and the cloud end and judging the security of the terminal for the second time according to the single transmission flow of the terminal acquired in real time;
and the control module is used for controlling the access of the terminal according to the security analysis result of the terminal and is connected with the analysis module.
2. The Internet of things-based terminal security cloud control system according to claim 1, when the test module tests the terminal of the access gateway, the computing unit is provided with a test period T, the channel selection unit selects a communication channel with channel capacity R0 to perform data interaction between the terminal and the cloud end in a test period T, wherein R0 is preset channel capacity, the starting point of the test period is a time node for terminal access, the calculating unit obtains the total data transmission flow G and the data transmission times H of the terminal in the test period T, and calculating an average flow rate Δ G, and setting Δ G = G/H, wherein the calculating unit sets a standard flow rate range of interaction between the terminal and the cloud end as Δ G +/-p 0, p0 is a flow rate error, and p0= Gs- Δ G, and Gs is the maximum flow rate of single transmission in a test period.
3. The terminal security cloud system based on the internet of things of claim 2, wherein when the adjusting unit adjusts the traffic error p0, the adjusting unit compares the total collected data transmission traffic G in the test period with a preset total data transmission traffic G0, and adjusts the traffic error p0 according to the comparison result, wherein,
if G is less than or equal to G0, the adjusting unit judges that the total flow of data transmission in the period is within a preset flow range and does not adjust the flow error p 0;
if G > G0, the adjusting unit judges that the total flow of data transmission in the period exceeds a preset flow range, adjusts the flow error to p0 ', sets p 0' = p0 × r, and sets the error adjustment coefficient to be 1 < r < 1.2.
4. The Internet of things-based terminal security cloud control system according to claim 3, wherein the adjusting unit compares the total data transmission time tz in the collected test period with a preset total transmission time tz0 when correcting the error adjustment coefficient, and corrects the set error adjustment coefficient r according to the comparison result, wherein,
if tz is not greater than tz0, the adjusting unit judges that the data transmission time is short, selects a preset correction coefficient s to correct the error adjustment coefficient r, sets the corrected error adjustment coefficient to be r ', sets r' = r × s, and sets s to be greater than 1 and less than 1.1;
if tz is larger than tz0, the adjusting unit judges that the data transmission time is normal and does not carry out correction.
5. The Internet of things-based terminal security cloud control system according to claim 4, wherein when the correction unit corrects the communication channel, the correction unit obtains a flow difference Δ Gv in a test period, sets Δ Gv = | G-G0|, and corrects the communication channel according to an adjustment state of a flow error p0,
when the flow error p0 is not adjusted by the adjusting unit, if delta Gv < [ delta ] Gv0, no correction is performed, delta Gv0 is a preset flow difference, and if delta Gv ≧ delta Gv0, the correcting unit selects a communication channel with a channel capacity of R1 as a communication channel after the test period, and sets R1= R0-R0 x ([ delta ] Gv-delta ] Gv 0)/[ delta ] Gv;
when the adjusting unit adjusts the flow error p0, if delta Gv < [ delta ] Gv0, the correcting unit does not correct the error, and if the delta ] Gv is larger than or equal to the delta ] Gv0, the correcting unit selects a communication channel with a channel capacity of R2 as a communication channel after the test period, and sets R2= R0+ R0 x ([ delta ] Gv-delta ] Gv 0)/[ delta ] Gv 0.
6. The Internet of things-based terminal security cloud control system according to claim 1, wherein the analysis module acquires a time point Tb of interaction between the terminal and the cloud when analyzing the security of the terminal, compares the time point Tb with a preset interaction time period Tb0, and judges the security of the terminal for the first time according to a comparison result, wherein,
if Tb belongs to Tb0, the analysis module carries out secondary judgment on the safety of the terminal according to the single transmission flow of the terminal acquired in real time;
if Tb ∉ Tb0, the analysis module judges that the terminal has the risk of being stolen, and the control module blocks the access of the terminal.
7. The Internet of things-based terminal security cloud control system of claim 6, wherein when the analysis module performs secondary judgment on the security of the terminal, the analysis module compares the terminal single-transmission flow Gk acquired in real time after the test period with the standard flow range of the terminal acquired by the test module through testing, and performs secondary judgment on the security of the terminal according to the comparison result, wherein,
when Gk is less than delta G-p0, the analysis module judges that the single transmission flow of the terminal does not reach the standard, and the risk of network failure exists;
when the delta G-p0 is not less than Gk not less than delta G + p0, the analysis module judges that the safety of the terminal meets the requirement;
and when the delta G + p0 is less than Gk, the analysis module judges that the single transmission flow of the terminal exceeds the standard and the virus risk exists.
8. The Internet of things-based terminal security cloud control system of claim 7, wherein the control module gives an alarm to a terminal when the analysis module determines that the terminal has a network fault risk, the analysis module obtains the number W of times that the terminal is alarmed after accessing a gateway and compares the number W with a preset alarm number W0, and the control module controls the access of the terminal according to the comparison result,
when W < W0, the control module keeps the access of the terminal;
when W is larger than or equal to W0, the control module blocks the access of the terminal and forbids the access of the terminal within t0 time, t0 is preset black-drawing time, and when the terminal is accessed again, the control module calculates the terminal safety factor of the terminal so as to enhance the control of the access of the terminal.
9. The internet-of-things-based terminal security cloud control system according to claim 8, wherein a terminal security coefficient C is set in the control module, C =0.3 xWk +0.7 xP is set, Wk is the historical alarm frequency of the terminal, P is the historical blocking frequency of the terminal, the control module compares the calculated terminal security coefficient C with a preset terminal security coefficient C0, and controls the access of the terminal according to the comparison result, wherein,
when C is less than or equal to C0, the control module keeps the access of the terminal;
when C > C0, the control module blocks and permanently prohibits access by the terminal.
10. The Internet of things-based terminal security cloud control system of claim 7, wherein when the analysis module determines that a terminal has a virus risk, the control module blocks access of the terminal and sets a black-out time of the terminal, and when the black-out time is set, the control module obtains the blocked times E of the terminal on the day, compares the blocked times E with a preset blocking times E0, and sets the black-out time of the terminal according to a comparison result, wherein,
when E < E0, the control module sets the black drawing time of the terminal as t1, sets t1= t0+ t0 × E/E0, and forbids the access of the terminal in the black drawing time;
when E is larger than or equal to E0, the control module forbids the access of the terminal permanently.
CN202210512435.9A 2022-05-12 2022-05-12 Terminal security cloud control system based on Internet of things Active CN114726648B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210512435.9A CN114726648B (en) 2022-05-12 2022-05-12 Terminal security cloud control system based on Internet of things

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210512435.9A CN114726648B (en) 2022-05-12 2022-05-12 Terminal security cloud control system based on Internet of things

Publications (2)

Publication Number Publication Date
CN114726648A true CN114726648A (en) 2022-07-08
CN114726648B CN114726648B (en) 2022-08-23

Family

ID=82230389

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210512435.9A Active CN114726648B (en) 2022-05-12 2022-05-12 Terminal security cloud control system based on Internet of things

Country Status (1)

Country Link
CN (1) CN114726648B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115038113A (en) * 2022-08-09 2022-09-09 平行世界(深圳)文化科技有限公司 Broadcast television program transmission system
CN115243389A (en) * 2022-07-18 2022-10-25 北京思存通信技术有限公司 Data analysis system based on Bluetooth data transmission

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11194832A (en) * 1998-01-07 1999-07-21 Kubota Corp Flow rate control method
CN103168497A (en) * 2011-10-17 2013-06-19 华为技术有限公司 Method, device and system for processing signalling resource overload and transmission resource overload
CN107465696A (en) * 2017-07-03 2017-12-12 南京骏腾信息技术有限公司 Security risk intellectuality management-control method based on SaaS cloud service patterns
CN108933731A (en) * 2017-05-22 2018-12-04 南京骏腾信息技术有限公司 Intelligent gateway based on big data analysis
CN109510834A (en) * 2018-12-07 2019-03-22 北京神州绿盟信息安全科技股份有限公司 A kind of security strategy delivery method and device
WO2019157333A1 (en) * 2018-02-08 2019-08-15 Nussbaum Jared Peeirs:passive evaluation of endpoint identity and risk as a surrogate authentication factor
CN112769904A (en) * 2020-12-25 2021-05-07 中标慧安信息技术股份有限公司 Method and system for controlling information flow of Internet of things middlebox

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11194832A (en) * 1998-01-07 1999-07-21 Kubota Corp Flow rate control method
CN103168497A (en) * 2011-10-17 2013-06-19 华为技术有限公司 Method, device and system for processing signalling resource overload and transmission resource overload
CN108933731A (en) * 2017-05-22 2018-12-04 南京骏腾信息技术有限公司 Intelligent gateway based on big data analysis
CN107465696A (en) * 2017-07-03 2017-12-12 南京骏腾信息技术有限公司 Security risk intellectuality management-control method based on SaaS cloud service patterns
WO2019157333A1 (en) * 2018-02-08 2019-08-15 Nussbaum Jared Peeirs:passive evaluation of endpoint identity and risk as a surrogate authentication factor
CN109510834A (en) * 2018-12-07 2019-03-22 北京神州绿盟信息安全科技股份有限公司 A kind of security strategy delivery method and device
CN112769904A (en) * 2020-12-25 2021-05-07 中标慧安信息技术股份有限公司 Method and system for controlling information flow of Internet of things middlebox

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
何明等: "物联网通信管道安全控制方案", 《电信技术》 *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115243389A (en) * 2022-07-18 2022-10-25 北京思存通信技术有限公司 Data analysis system based on Bluetooth data transmission
CN115243389B (en) * 2022-07-18 2023-03-03 北京思存通信技术有限公司 Data analysis system based on Bluetooth data transmission
CN115038113A (en) * 2022-08-09 2022-09-09 平行世界(深圳)文化科技有限公司 Broadcast television program transmission system
CN115038113B (en) * 2022-08-09 2022-11-11 平行世界(深圳)文化科技有限公司 Broadcast television program transmission system

Also Published As

Publication number Publication date
CN114726648B (en) 2022-08-23

Similar Documents

Publication Publication Date Title
CN114726648B (en) Terminal security cloud control system based on Internet of things
CN111126824B (en) Multi-index correlation model training method and multi-index anomaly analysis method
EP1779592B1 (en) Supervising arrangement
CN107508815B (en) Early warning method and device based on website traffic analysis
EP2144382A1 (en) Method and device for passive optical network (pon) failure detection, as well as passive optical network (pon) system
CN112242971B (en) Traffic abnormality detection method and device, network equipment and storage medium
CN110650060A (en) Processing method, equipment and storage medium for flow alarm
CN114338372B (en) Network information security monitoring method and system
CN113985178A (en) Charging pile state detection method, device, equipment and storage medium
CN117176473B (en) Client information management method and system based on Internet of things
CN113709083A (en) Network attack detection control method, device, base station and computer storage medium
CN111817290A (en) Voltage control strategy for power information physical system under attack of data tampering
US20120157004A1 (en) Method and device for testing performance of radio network cell
CN116344012A (en) Diagnosis and treatment log medical management system of (a)
CN116106648A (en) Intelligent monitoring method for power distribution cabinet
CN115834177A (en) Smart power grid safety monitoring method and device and storage medium
US6718169B1 (en) Method for determining a confidence limit
CN116527191B (en) Equipment management method and system of optical fiber time service system
CN113515786A (en) Method and device for detecting whether device fingerprints collide or not by combining wind control system
CN117390707B (en) Data security detection system and detection method based on data storage equipment
CN117220416B (en) Smart power grid electric power information safety transmission system
KR101964050B1 (en) Apparatus, method and computer program for controlling polling
CN117455465B (en) Analysis management system based on multi-stage operation data of equipment internet of things platform
CN113438323B (en) Safety monitoring device based on area of interest of Internet of things
CN115549989A (en) Network security protection method and network security protection system thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant