CN116248302A - SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system - Google Patents

SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system Download PDF

Info

Publication number
CN116248302A
CN116248302A CN202211456227.8A CN202211456227A CN116248302A CN 116248302 A CN116248302 A CN 116248302A CN 202211456227 A CN202211456227 A CN 202211456227A CN 116248302 A CN116248302 A CN 116248302A
Authority
CN
China
Prior art keywords
module
mobile terminal
ssl vpn
security
ssl
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211456227.8A
Other languages
Chinese (zh)
Inventor
张丽娟
邓建锋
吴昊
王依云
赖宇阳
梁志宏
肖焯
黄宝鑫
母天石
谭红华
连晨
许露珉
李慧娟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Southern Power Grid Digital Platform Technology Guangdong Co ltd
Original Assignee
China Southern Power Grid Digital Platform Technology Guangdong Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Southern Power Grid Digital Platform Technology Guangdong Co ltd filed Critical China Southern Power Grid Digital Platform Technology Guangdong Co ltd
Priority to CN202211456227.8A priority Critical patent/CN116248302A/en
Publication of CN116248302A publication Critical patent/CN116248302A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/18Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/16Implementing security features at a particular protocol layer
    • H04L63/168Implementing security features at a particular protocol layer above the transport layer
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/50Reducing energy consumption in communication networks in wire-line communication networks, e.g. low power modes or reduced link rate

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses an SSL VPN communication tunnel module, an application monitoring module and a mobile terminal safety access system, which are characterized by comprising the following components: the method comprises the steps of carrying out identity security authentication and carrying out information data transmission in the process of accessing the mobile terminal to an intranet application server; and in the process that the mobile terminal accesses to the intranet application server, a standard SSL protocol is used for establishing an SSL VPN tunnel with SSL VPN gateway equipment, and access authority management, log management and SSL VPN service are added on the basis of the SSL protocol in the SSL VPN encryption channel. The invention protects the safety of user data connection, the user obtains the resources which can access the enterprise network, encrypts the data transmission by adopting the national secret GM SSL encryption algorithm, improves the safety transmission capability of the mobile data, and prevents the enterprise information from being stolen in the transmission process.

Description

SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system
Technical Field
The invention relates to the technical field of communication, in particular to an SSL VPN communication tunnel module, an application monitoring module and a mobile terminal safety access system.
Background
As networks become more widely used, network security issues become more important. With the increasing popularity of the internet, users can access network resources anytime and anywhere. For enterprises, branches and business associates quickly and conveniently realize remote office through a remote access VPN technology, and are urgent needs. Conventional VPN technologies, such as IPsec and L2TP, although meeting remote access requirements, require user management and access rights control for specific resources by enterprises with continuous diversification of network resources, and such VPN technologies are difficult to meet the requirements of enterprises. To solve the above problems SSL VPN technology has been developed. SSL VPN is simple to use, and any terminal provided with a browser can be used. SSL VPN also has rich resource access control functions, can be managed based on users, and provides users with different types of resource access requirements. Internal data of enterprises can be stolen maliciously, and security problems are becoming serious.
Therefore, the SSL VPN communication tunnel module, the application monitoring module and the mobile terminal safety access system are provided, and user data connection safety is protected.
Disclosure of Invention
The invention aims to provide an SSL VPN communication tunnel module so as to solve the problem that the existing data transmission is unsafe.
In order to achieve the above purpose, the present invention provides the following technical solutions:
an SSL VPN communication tunnel module for protecting user data connection security, comprising the steps of: the method comprises the steps of carrying out identity security authentication, carrying out information data transmission in the process of accessing the mobile terminal to an intranet application server, and carrying out encryption transmission through an SSL VPN encryption channel after connection; and in the process that the mobile terminal accesses to the intranet application server, a standard SSL protocol is used for establishing an SSL VPN tunnel with SSL VPN gateway equipment, and access authority management, log management and SSL VPN service are added on the basis of the SSL protocol in the SSL VPN encryption channel.
Further, in the step of identity security authentication, the identity security authentication is unified identity authentication, and the unified identity authentication is at least one of Ukey authentication, user authentication, certificate authentication, short message authentication and RUDIUS server authentication.
Further, the process of encrypting the transmission of the important data after the access is as follows:
and (3) carrying out encryption packaging processing on the transmitted data by adopting a national cipher GM SSL encryption algorithm library, establishing an encryption link between the mobile terminal and a VPN gateway in an SSL VPN encryption channel by adopting an SM2/SM3/SM4/RSA encryption algorithm, and encrypting the data transmission.
Further, access authority management, log management and SSL VPN service are added on the basis of SSL protocol in an SSL VPN encryption channel; the access rights management comprises resource access rights management and application rights management and control; SSL VPN service comprises TCP/L4 VPN, web reverse proxy and data encryption and decryption; the log management includes an independent log center, user/administrator logs.
Further, the application monitoring module is characterized in that the application monitoring module is used for monitoring an application program installed in the mobile terminal when the mobile terminal accesses the intranet application server, and a mobile terminal user is connected with the internet through a secure tunnel and then is connected with the intranet application server through an SSL VPN tunnel.
Further, the mobile terminal includes: the framework of the application platform can be divided into three layers: when the mobile terminal accesses the data service of the enterprise intranet, an operating system is firstly started on the platform layer, the mobile terminal applies the mobile application program of the service layer, the component layer judges whether the started mobile application program is credible or not according to the SSL VPN security tunnel tool of the mobile terminal and the basic commercial cryptographic algorithm tool of the mobile terminal, if so, the mobile application program is allowed to access the enterprise intranet through the equipment service layer, and the data transmission is carried out through the data security service layer, otherwise, the access is not allowed.
Further, the mobile terminal comprises a terminal security module and a terminal experience module; the terminal security module comprises a security access mechanism module, a terminal security check module and a national encryption and decryption algorithm module; the terminal experience comprises a system high compatibility module, a lightweight client module and a multiple acceleration mechanism module.
Further, the component layer comprises a mobile end SSL VPN security tunnel tool and a mobile end basic commercial cryptographic algorithm tool; the mobile end SSL VPN security tunnel tool comprises an engine calling module, a tunnel management module, a key certificate module, a strategy acquisition module, a connection management module and a security detection module; the mobile terminal basic commercial cryptographic algorithm tool comprises a cryptographic operation module, a cryptographic management module and a security audit module; the password operation module is used for encrypting and decrypting information, the password management module is used for managing and modifying the passwords of the mobile terminal, and the security audit module is used for filtering and performing security audit on security audit irrelevant data in communication data.
Further, the application layer includes a core function module, a basic function module and other modules, the core function module includes a dedicated tunnel function, an identity authentication function and a security audit function, and the basic function module includes a connection status function, a tunnel whitelist function and a key management function.
Further, the application also provides a mobile terminal safety access system, which comprises a mobile terminal, an intranet application server, the SSL VPN communication tunnel module and the application monitoring module;
the mobile terminal is provided with an application program and is monitored by a monitoring module, the mobile application program is started correctly, and the SSL VPN communication tunnel module and the intranet application server carry out information encryption transmission.
Compared with the prior art, the invention has the beneficial effects that: the invention protects the safety of user data connection, the user obtains the resources which can access the enterprise network, encrypts the data transmission by adopting the national secret GM SSL encryption algorithm, improves the safety transmission capability of the mobile data, and prevents the enterprise information from being stolen in the transmission process.
Drawings
FIG. 1 is a schematic diagram of an embodiment of the present invention;
FIG. 2 is a block diagram of a mobile application platform according to an embodiment of the present invention;
fig. 3 is a step diagram of protecting user data connection security by the SSL VPN communication tunnel module according to an embodiment of the present invention;
Detailed Description
The following description of the embodiments of the present invention will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present invention, but not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
Referring to fig. 1-3, the present invention provides an SSL VPN communication tunnel module for protecting user data connection security, which is characterized by comprising the following steps: the method comprises the steps of carrying out identity security authentication, carrying out information data transmission in the process of accessing the mobile terminal to an intranet application server, and carrying out encryption transmission through an SSL VPN encryption channel after connection; and in the process that the mobile terminal accesses to the intranet application server, a standard SSL protocol is used for establishing an SSL VPN tunnel with SSL VPN gateway equipment, and access authority management, log management and SSL VPN service are added on the basis of the SSL protocol in the SSL VPN encryption channel.
Further, in the step of identity security authentication, the identity security authentication is unified identity authentication, and is Ukey authentication or user authentication or certificate authentication or short message authentication or RUDIUS server authentication.
Further, the process of encrypting the transmission of the important data after the access is as follows:
and (3) carrying out encryption packaging processing on the transmitted data by adopting a national cipher GM SSL encryption algorithm library, establishing an encryption link between the mobile terminal and a VPN gateway in an SSL VPN encryption channel by adopting an SM2/SM3/SM4/RSA encryption algorithm, and encrypting the data transmission.
Further, access rights management and log management are added on the basis of SSL protocol in SSLVPN encryption channels.
Further, the application monitoring module is characterized by being used for monitoring an application program installed in the mobile terminal when the mobile terminal accesses the intranet application server.
The mobile terminal user connects the internet through the secure tunnel and then connects the intranet application server through the SSL VPN tunnel, as shown in figure 1, the terminal comprises a terminal security module and a terminal experience module, the terminal security module comprises a security access mechanism, a terminal security check and a national encryption and decryption algorithm, and the terminal experience comprises a system high compatibility, a lightweight client and a multiple acceleration mechanism; a mobile network security tunnel, a 3G/4G network, wiFi and APN access points;
further, the identity security authentication is unified identity authentication, and the unified identity authentication is at least one of Ukey authentication, user authentication, certificate authentication, short message authentication and RUDIUS server authentication configuration;
further, the access rights management includes resource access rights management and application rights management and control; SSL VPN service comprises TCP/L4 VPN, web reverse proxy and data encryption and decryption; the log management comprises an independent log center, a user/manager log; the business server comprises a mail system, an OA system and a CRM system; the authentication server contains LDAP, ruius, and CA certificate servers.
Further, the SSL VPN tunnel may query the individual security tunnels for detailed information including the device to which the security tunnel belongs, creation time, user ID and connection status. The SSL VPN gateway forwards the access request of the user and provides accessible intranet server resources for the user.
Further, the framework of the mobile application platform of the present invention can be divided into three layers: when the application layer, the component layer and the platform layer mobile terminal access the data service of the enterprise intranet, an operating system is started at the platform layer, the mobile terminal applies the mobile application program of the service layer, the component layer judges whether the started mobile application program is credible or not according to the SSL VPN security tunnel tool of the mobile terminal and the basic commercial cryptographic algorithm tool of the mobile terminal, if so, the mobile application program is allowed to access the enterprise intranet through the equipment service layer, and data transmission is carried out through the data security service layer, otherwise, the access is not allowed.
Further, the application layer comprises a core function module, a basic function module and other modules, wherein the core function module comprises a special tunnel function, an identity authentication function and a security audit function, and the basic function module comprises a connection state function, a tunnel white list function and a key management function;
further, the component layer comprises a mobile end SSL VPN security tunnel tool and a mobile end basic commercial cryptographic algorithm tool, wherein the mobile end SSL VPN security tunnel tool comprises an engine calling module, a tunnel management module, a key certificate module, a strategy acquisition module, a connection management module and a security detection module; the mobile terminal basic commercial cryptographic algorithm tool comprises a cryptographic operation module, a cryptographic management module and a security audit module; the password operation module is used for encrypting and decrypting information, the password management module is used for managing and modifying the passwords of the mobile terminal, and the security audit module is used for filtering and performing security audit on security audit irrelevant data in communication data.
Further, the platform layer comprises an IOS system, an Android system or a Harmony system; independent uploading and unified management of the platform applications can be supported Android, harmony, iOS.
Further, the application also provides a mobile terminal safety access system, which comprises a mobile terminal, an intranet application server, the SSL VPN communication tunnel module and the application monitoring module;
the mobile terminal is provided with an application program and is monitored by the monitoring module, the mobile application program is started correctly, and the communication tunnel module and the intranet application server carry out information encryption transmission.
Although embodiments of the present invention have been shown and described, it will be understood by those skilled in the art that various changes, modifications, substitutions and alterations can be made therein without departing from the principles and spirit of the invention, the scope of which is defined in the appended claims and their equivalents.

Claims (10)

1. An SSL VPN communication tunnel module for protecting user data connection security, comprising the steps of: the method comprises the steps of carrying out identity security authentication, carrying out information data transmission in the process of accessing the mobile terminal to an intranet application server, and carrying out encryption transmission through an SSL VPN encryption channel after connection; and in the process that the mobile terminal accesses to the intranet application server, a standard SSL protocol is used for establishing an SSL VPN tunnel with SSL VPN gateway equipment, and access authority management, log management and SSL VPN service are added on the basis of the SSL protocol in the SSL VPN encryption channel.
2. The SSL VPN communication tunnel module according to claim 1, wherein: and carrying out identity security authentication in the identity security authentication step, wherein the identity security authentication is unified identity authentication, and the unified identity authentication is at least one of Ukey authentication, user authentication, certificate authentication, short message authentication and RUDIUS server authentication.
3. The SSL VPN communication tunnel module according to claim 1 or 2, wherein: the process of encrypting the transmission of the important data after the access is as follows:
and (3) carrying out encryption packaging processing on the transmitted data by adopting a national cipher GM SSL encryption algorithm library, establishing an encryption link between the mobile terminal and a VPN gateway in an SSL VPN encryption channel by adopting an SM2/SM3/SM4/RSA encryption algorithm, and encrypting the data transmission.
4. The SSL VPN communication tunnel module according to claim 1, wherein: adding access authority management, log management and SSL VPN service on the basis of SSL protocol in SSL VPN encryption channel; the access rights management comprises resource access rights management and application rights management and control; SSL VPN service comprises TCP/L4 VPN, web reverse proxy and data encryption and decryption; the log management includes an independent log center, user/administrator logs.
5. The application monitoring module is characterized by being used for monitoring an application program installed in the mobile terminal when the mobile terminal accesses the intranet application server, and enabling a mobile terminal user to be connected with the Internet through a secure tunnel and then connected with the intranet application server through an SSL VPN tunnel.
6. The application monitoring module of claim 5, wherein the mobile terminal comprises: the framework of the application platform can be divided into three layers: when the mobile terminal accesses the data service of the enterprise intranet, an operating system is firstly started on the platform layer, the mobile terminal applies the mobile application program of the service layer, the component layer judges whether the started mobile application program is credible or not according to the SSL VPN security tunnel tool of the mobile terminal and the basic commercial cryptographic algorithm tool of the mobile terminal, if so, the mobile application program is allowed to access the enterprise intranet through the equipment service layer, and the data transmission is carried out through the data security service layer, otherwise, the access is not allowed.
7. The application monitoring module of claim 5, wherein the mobile terminal comprises a terminal security module and a terminal experience module; the terminal security module comprises a security access mechanism module, a terminal security check module and a national encryption and decryption algorithm module; the terminal experience comprises a system high compatibility module, a lightweight client module and a multiple acceleration mechanism module.
8. The application monitoring module of claim 6, wherein the component layer comprises a mobile-side SSL VPN secure tunnel tool and a mobile-side basic commercial cryptographic algorithm tool; the mobile end SSL VPN security tunnel tool comprises an engine calling module, a tunnel management module, a key certificate module, a strategy acquisition module, a connection management module and a security detection module; the mobile terminal basic commercial cryptographic algorithm tool comprises a cryptographic operation module, a cryptographic management module and a security audit module; the password operation module is used for encrypting and decrypting information, the password management module is used for managing and modifying the passwords of the mobile terminal, and the security audit module is used for filtering and performing security audit on security audit irrelevant data in communication data.
9. The application monitoring module of claim 6, wherein the application layer comprises a core function module, a base function module and other modules, the core function module comprising a dedicated tunnel function, an identity authentication function and a security audit function, the base function module comprising a connection status function, a tunnel whitelist function and a key management function.
10. The mobile terminal safety access system comprises a mobile terminal, an intranet application server, the SSL VPN communication tunnel module and the application monitoring module;
the mobile terminal is provided with an application program and is monitored by a monitoring module, the mobile application program is started correctly, and the SSL VPN communication tunnel module and the intranet application server carry out information encryption transmission.
CN202211456227.8A 2022-11-21 2022-11-21 SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system Pending CN116248302A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211456227.8A CN116248302A (en) 2022-11-21 2022-11-21 SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211456227.8A CN116248302A (en) 2022-11-21 2022-11-21 SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system

Publications (1)

Publication Number Publication Date
CN116248302A true CN116248302A (en) 2023-06-09

Family

ID=86633767

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211456227.8A Pending CN116248302A (en) 2022-11-21 2022-11-21 SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system

Country Status (1)

Country Link
CN (1) CN116248302A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN118400228A (en) * 2024-06-26 2024-07-26 深圳奥联信息安全技术有限公司 Security remote management system for terminal equipment

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN118400228A (en) * 2024-06-26 2024-07-26 深圳奥联信息安全技术有限公司 Security remote management system for terminal equipment

Similar Documents

Publication Publication Date Title
CN107122674B (en) Access method of oracle database applied to operation and maintenance auditing system
CN201194396Y (en) Safe gateway platform based on transparent proxy gateway
US20070143408A1 (en) Enterprise to enterprise instant messaging
CN103248479A (en) Cloud storage safety system, data protection method and data sharing method
WO2019062666A1 (en) System, method, and apparatus for securely accessing internal network
CN111918284B (en) Safe communication method and system based on safe communication module
CN110912929B (en) Safety control middle platform system based on regional medical treatment
CN115549932B (en) Security access system and access method for massive heterogeneous Internet of things terminals
CN111277607A (en) Communication tunnel module, application monitoring module and mobile terminal security access system
CN111970232A (en) Safe access system of intelligent service robot of electric power business hall
CN115499177A (en) Cloud desktop access method, zero-trust gateway, cloud desktop client and server
CN116248302A (en) SSL VPN communication tunnel module, application monitoring module and mobile terminal safety access system
Fang et al. Research on iOS remote security access technology based on zero trust
CN201252570Y (en) Security gateway client end device
CN114697963A (en) Terminal identity authentication method and device, computer equipment and storage medium
CN113794563A (en) Communication network security control method and system
CN115835194B (en) NB-IOT terminal safety access system and access method
CN111698203A (en) Cloud data encryption method
CN116723555A (en) Terminal access and data distribution method and system based on 5G-R
Liu et al. Research on Secure Access Technology of Electric Power Wireless Private Network Based on Hybrid Encryption
Cai et al. Data security framework for electric company mobile apps to prevent information leakage
CN116015961B (en) Control processing method, security CPE, system and medium of down-hanging terminal equipment
CN114900372B (en) Resource protection system based on zero trust security sentinel system
CN113688427B (en) System for preventing managed data source from being abused based on block chain
Xue et al. Research on the Security Assessment of Cloud Communication in Intelligent Connected Vehicle

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication