JP2000224228A - Communication controller and method for controlling it - Google Patents

Abstract

PROBLEM TO BE SOLVED: To continue providing of a service for a user by precisely sort-setting the priority order of the queue of inputted information and successively processing them so as to protect resources against an extremely bad attach from outside. SOLUTION: A resource protection part 16 executes the disposal of an input event and the adjustment of the number of connections based on the established state of connection and the state of resources at a communication control part 15 through a data control part 14, executes pattern division based on a prescribed rule, namely the combination of sending and receiving address based on the message of an event inputted to an event receiving part 12, registers a queue to which a priority order is set for each pattern of a message according to the effectiveness of the service fixed by judging reference the principal object of which is continuing of the service and disposes of an excessive message. By specifically setting according to each element of a message such as the situation of the resources, the sending and receiving addresses, etc., like this, the processing of the input event of attacking property is delayed and reduced.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a communication control device optimal for protecting resources on a network and a control method of the communication control device.

[0002]

2. Description of the Related Art Reliable data communication on a network is realized by exchanging control events for controlling data communication between a transmitting side and a receiving side in accordance with procedures. However, malicious activities such as the issuance of events for controlling network communication to specific network devices at the same time, or the repeated deliberate abandonment of control procedures in the middle by some people who abuse the network. Attacks are performed for the purpose of destroying relay devices on the network.

[0003] Therefore, a method adopted to avoid the above-mentioned attack will be described below. First, for example, in an exchange of a large-scale network in a public network, there is a method of avoiding an attack by monitoring the CPU usage of a system operating on the network. Specifically, if the CPU utilization indicates a value that can be considered to be excessive for the operation of the system, an outgoing call that is considered abnormal is sent from the exchange of the network to the trunk device that accommodates the calling terminal. An instruction to regulate the event from the side port is automatically issued, so that the event does not physically reach the exchange.

In a large-scale public network, there is a method for preventing an attack by installing a traffic control device for monitoring the entire network. Specifically, when the traffic control device determines that the congestion in the specific area is abnormal, the traffic control device sends a destination address to the congested specific area to the exchange of the network. An instruction is automatically issued to restrict the outgoing call.

[0005] In this case, an attack may be avoided by directly intervening by a network administrator by restricting outgoing calls having a destination address to a congested specific area.

For example, in the case of the Internet, when a network administrator determines that a device such as a server or a gateway receives an excessive amount of control messages, the network administrator directly intervenes, and There is a method that does not provide the service itself by closing itself.

Further, in the case of the Internet, there is a method in which a network administrator registers the data as advance data within a range in which a network address of a user accommodated in a device such as a router connected to an external network can be confirmed. is there. Specifically, when the router receives a message from a network address for which data has not been registered, the router does not send the message to an external network.

[0008]

By the way, the method of monitoring the CPU usage rate of a system operating on a network is an effective method for a system in which the CPU mainly controls only communication. However, there is a problem that routers on the Internet perform various control processes autonomously, and CPU usage does not always indicate CPU usage for communication control operation in a system on a network. Occurs.

The method of installing a traffic control device for monitoring the entire network is an effective method for a network based on a hierarchical network configuration such as a public network. A problem arises in that it is difficult to introduce a network that cannot be monitored.

[0010] Further, in the method in which the network administrator directly intervenes and regulates the network, it is necessary to monitor the network for 24 hours. This is not practical for a general company or a private network. Since the service is stopped, there is a problem that the service is completely stopped.

In the method of registering the network address accommodated in the router as data in advance,
Since it is impossible to register and manage all of the network addresses, there is a problem that the reliability cannot be denied.

[0012] The present invention has been made in view of the above-mentioned circumstances, and protects resources in an exchange in a self-defense manner even if it is attacked from the outside, and further provides services to users. An object of the present invention is to provide a continuous communication control device and a control method of the communication control device.

[0013]

According to an aspect of the present invention, there is provided a communication control apparatus for connecting a transmitting terminal and a receiving terminal, wherein the priority is determined in advance in a communication control device interposed in a network. A plurality of set queuing means, a control unit that classifies input information received from the transmitting terminal according to a predetermined classification rule, and assigns the queuing means to one of the queuing means; Processing means for sequentially processing the input information according to the priority of each of the queuing means. According to a second aspect of the present invention, in the communication control device according to the first aspect, the processing means performs the processing at a frequency corresponding to the priority of each of the queuing means. According to a third aspect of the present invention, in the communication control device according to the first aspect, the predetermined classification rule is determined based on the content of each element of the input information. According to a fourth aspect of the present invention, in the communication control device according to the first aspect, the control unit classifies according to the predetermined classification rule, and discards a device that meets a predetermined discarding condition. Features. According to a fifth aspect of the present invention, in the communication control device according to the fourth aspect, the predetermined discarding condition is that the number of the same data as the data created based on the content of each element of the input information is equal to , Is determined based on whether the value is larger than a predetermined set value. According to a sixth aspect of the present invention, in the control method of the communication control device for connecting a transmitting terminal and a receiving terminal in a network, a plurality of queuing steps in which priorities are set in advance; The received input information is classified according to a predetermined classification rule, and the control step of allocating the input information to any one of the queuing steps, and the input information assigned to each of the queuing steps is given a priority in each of the queuing steps. And a processing step for sequentially performing the processing according to the order. According to a seventh aspect of the present invention, in the control method of the communication control device according to the sixth aspect, the processing is performed at a frequency corresponding to a priority of each of the queue processes. The invention according to claim 8 is the control method of the communication control device according to claim 6, wherein the predetermined classification rule is determined based on the content of each element of the input information. According to a ninth aspect of the present invention, in the control method of the communication control device according to the sixth aspect, the control step classifies according to the predetermined classification rule, and discards a job that satisfies a predetermined discarding condition. It is characterized by doing. According to a tenth aspect of the present invention, in the control method of the communication control device according to the ninth aspect,
The predetermined discard condition is determined based on whether or not the number of the same data as the data created based on the content of each element of the input information is larger than a predetermined set value. And

[0014]

DETAILED DESCRIPTION OF THE INVENTION [1. Configuration] [1-1. Overall Configuration] FIG. 1 shows a functional configuration of a communication control device according to an embodiment of the present invention. As shown in FIG. 1, the communication control device 1 includes a resource protection unit 16 that protects resources by following a predetermined rule. Further, the communication control device 1 mainly includes an event receiving unit 12 that receives a message from the outside, an event sending unit 13 that mainly transmits a message to the outside, and data that manages data handled by the communication control device 1. The control unit 14 includes a control unit 14 and a communication control unit 15 that controls connection. less than,
Each component will be described.

[1-2. Configuration of Event Receiving Unit 12] The event receiving unit 12 has a function of receiving a message transmitted from the transmitting port 10 as an internal event, a function of transmitting a protocol message to the transmitting port 10, and a function of transmitting the message. And a function of transferring information necessary for communication control to the data control unit 14 as a transaction.

FIG. 2 shows a detailed configuration of the event receiving unit 12 and the resource protecting unit 16. As shown in FIG.
The event receiving unit 12 has a scheduler 21 that schedules the timing for receiving the input event 22. The scheduler 21 periodically circulates through the queue group 20, and according to a predetermined schedule, the queue 2
Take out input events one by one from 0a-20e,
It has a function of taking in the event receiving unit 12.

[1-3. Configuration of Event Sending Unit 13] The event sending unit 13 has a function of transmitting / receiving a communication control message to / from the receiving side port 10, a function of receiving a message transmitted from the receiving side port 10 as an event, and a function of It has a function of confirming the normality of the received event content, and a function of transferring information necessary for communication control to the data control unit 14 as a transaction.

[1-4. Configuration of Data Control Unit 14] The data control unit 14 has a function of transmitting and receiving a transaction of communication control information between the event receiving unit 12 and the event sending unit 13. Further, the data control unit 14 has a function of transmitting and receiving information necessary for communication control to and from the communication control unit 15 in a transaction.

Further, the data control unit 14 has a function of ascertaining the communication state based on the contents of the received transaction and storing it in a database. For example, the number of the connected line is stored in a database. Further, the data control unit 14 has a function of detecting the outgoing route where the receiving terminal exists by searching the routing data stored in the database using the destination address of the received transaction as a key. By storing data in the database, the network administrator can grasp the connection status of the line and the like based on the stored data, which can be used as a judgment material for efficient operation. .

[1-5. Configuration of Communication Control Unit 15] The communication control unit 15 has a function of performing control for performing reliable data communication between the terminal on the transmitting side and the terminal on the receiving side. For example, connection setting in ATM, TC
This corresponds to a function of guaranteeing the data order in P.

[1-6. Configuration of Resource Protection Unit 16] The resource protection unit 16 has a function of adjusting the number of connections to be processed in the system by making a determination based on the resource status including the status of the connection being set in the system. .

As shown in FIG. 2, the resource protection unit 16 automatically changes the message pattern according to a predetermined rule based on the message content of the input event 22 received by the event reception unit 12. Event control for registering the input event 22 in the queues 20a to 20e for which the priority is set or discarding an excessively received message in accordance with the service effectiveness determined for each pattern. It has a part 23. As a predetermined rule, for example, when a plurality of events having the same combination of the destination address are received, the event is registered in the queues 20b to 20e whose priority is set lower than usual. As a result, even when many continuous and high-speed messages are transmitted to the system, the system can be used without depleting resources.

[2. Operation] [2-1. Operation of Resource Protector 16 and Event Receiver 12] Next, Resource Protector 16 and Event Receiver 12
Will be described with reference to FIG. First, when the event receiving unit 12 receives an input event 22 from the outside, the event receiving unit 12 transmits information on the input event 22 to the resource protection unit 16. Resource protection unit 16
In the event control unit 23, the information of the input event 22 received from the event receiving unit 12 is divided into patterns according to a predetermined rule, and the priority is set according to the validity of the service in the pattern. Queue 2
0a to 20e are registered. The priority in this case refers to the priority when the event receiving unit 12 actually receives the processing of the input event 22.

The priority changes according to the number of input events 22, and the change is made according to a predetermined algorithm. As the predetermined algorithm, for example, there is a case where the priority is changed depending on the number of input events registered in the queue. A specific example will be described below.

First, the priority 2 queue 20b having the second priority and the priority 3 queue having the third priority
It is assumed that there are three input events in the priority 20 queue 20b and four input events in the priority 3 queue 20c. Thereafter, when two input events are added to the priority 2 queue 20b, the number of input events registered at the priority 2 becomes five, which is smaller than the number of input events registered at the priority 3 More. In such a case, the priorities set for the priority 2 and priority 3 queues are exchanged. Note that the first priority queue 20a having the first priority is a queue existing from the beginning, and a normal input event 22 determined to have no abnormality is registered.

Also, the input event 2 divided into patterns
2 is registered in the queues 20a to 20e with an index provided for each of the outgoing address and the outgoing port number which are information of the input event 22.

An input event 22 registered in the queue 20
Is taken into the event receiving unit 12 according to a schedule predetermined by the scheduler 21. As a predetermined schedule, for example, each queue 2
0a to 20c is circulated 10 times.
Five of the laps take out one input event 22 from the priority 1 queue 20a, and three of ten laps take out one input event 22 from the priority 2 queue 20b. Two of them are queues 20c of priority 3.
For example, there is a method of reducing the ratio of extracting as the priority lowers, such as extracting one input event 22 from the group. When the input event 22 is fetched by using the scheduler 21, the input event 22 is determined based on the priority, irrespective of the index such as the originating address assigned to the queues 20a to 20e.

[2-2. Operation of Distributing Events by Resource Protecting Unit 16] Next, FIGS. 3 and 4 show an example of an operation in which the resource protecting unit 16 determines the priority based on the validity of the criterion for the purpose of continuing the service. Show.

[2-2-1. Operation When Accepting by Single Port] First, an operation example when the transmitting side port 10 is single will be described with reference to FIG. As a first pattern example, when the input event 22 is continuously called from a specific originating address to a specific destination address, it can be regarded as an attack on a node such as an exchange. In the first pattern example, the validity of the criterion for prioritizing the continuation of the service is set in the order of the number of remaining resources, the combination of the destination and destination addresses, and the source port number in descending order. The input event 22 includes an event control unit 23
In the first pattern example, the priority of the queue is determined by the combination of the destination address and the destination port number. Are set in this order.

As a second pattern example, input event 2
In the case where 2 is continuously called from a specific calling address to an arbitrary destination address, it can be regarded as an attack on a node such as an exchange. In the second pattern example, the validity of the criterion for prioritizing the continuation of the service is set in the order of the number of remaining resources, the originating address, and the originating port number from the highest. The input events 22 are determined by the event control unit 23 in descending order of validity, and
The priority is assigned to the queue in which the priority at the time of taking in the queue 1 is set. In the second pattern example, the priority of the queue is set in the order of the originating address and the originating port number.

As a third pattern example, input event 2
2 is continuously called from an arbitrary calling address to a specific destination address, a similar situation generally occurs as a congestion phenomenon at the time of event occurrence. Not considered a process. However, when it is necessary to protect the system, the regulation based on the destination address is effective. In the third pattern example, the validity of the criterion when the continuation of the service is prioritized is set in the order of the number of remaining resources, the destination address, and the port number in descending order. The input events 22 are determined by the event control unit 23 in descending order of validity, and are assigned to queues for which priorities have been set when being taken in by the scheduler 21. The priority of the queues in the third pattern example is , Destination address, and port number.

As a fourth pattern example, input event 2
In the case where 2 is successively called from an arbitrary calling address to an arbitrary destination address, it is not regarded as abnormal processing because normal service may be performed. However, depending on the number of remaining resources, regulation by the port number is effective as required. In the fourth pattern example, a criterion for prioritizing service continuation is set to the number of remaining resources.

The validity is set in the order described in each pattern described above for the following reason. First, the reason why the validity of the judgment based on the number of remaining resources is set to the highest is that the number of remaining resources is the most basic element in defending the system. Next, the reason why the validity of the judgment based on the originating / arrival address is set higher than the validity of the judgment based on the originating port number is that if the restriction is imposed on the originating port number, all messages accepted by the port cannot be processed. This is because, when priority is given to the continuation of the service, it is better to increase the effectiveness of the regulation by the destination address whose range is smaller than the port number.

By setting the validity in this way, for example, in the case of the first pattern, the resource protection unit 1
When the input event 22 is received, the event control unit 23 determines the first processing based on the number of remaining resources. When there is a remaining resource, the event control unit 23 receives the input event 22. Only in
Discard input events. Then, as a second process, the input event 22 is accepted if it does not occur consecutively, and the target Event 22 having a combination of destination addresses
Lower priority or discard. Further, as a third process, judging from the port number of the input event 22,
If the event has not occurred continuously, the input event 22 is accepted. If the event has occurred continuously, the priority of the input event 22 having the target port number is lowered or discarded.

[2-2-2. Operation when Accepting at a Plurality of Ports] Next, an operation example when there are a plurality of transmitting side ports 10 will be described with reference to FIG. Note that the reason for setting the validity and the operation for each pattern are the same as in the case of accepting a single port. As a first pattern example, when the input event 22 is continuously called from a specific calling address to a specific destination address, it is generally determined that the input event 22 cannot be generated from a plurality of ports. . In the first pattern example, the validity of the criterion for prioritizing the continuation of the service is set in the order of the number of remaining resources and the combination of the destination address and the destination address in descending order.

As a second pattern example, input event 2
In the case where a call is continuously made from a specific call-out address to an arbitrary call-in address, it is generally determined that the call cannot be generated from a call from a plurality of ports. In the second pattern example, the validity of the criterion for prioritizing the continuation of the service is set in the order of the number of remaining resources and the originating address from the higher one.

As a third pattern example, input event 2
2 is continuously called from an arbitrary calling address to a specific destination address, a similar situation generally occurs as a congestion phenomenon at the time of event occurrence. Not considered a process. However, when it is necessary to protect the system, the regulation based on the destination address is effective. In the third pattern example, the validity of the criterion for prioritizing the continuation of the service is set in the order of the number of remaining resources and the destination address in descending order.

As a fourth pattern example, input event 2
In the case where 2 is successively called from an arbitrary calling address to an arbitrary destination address, it is not regarded as abnormal processing because normal service may be performed. Therefore, the number of remaining resources is regulated as needed. In the fourth pattern example, a criterion for prioritizing service continuation is set to the number of remaining resources.

[2-3. Operation of Resource Protection Unit 16] Next, an operation example of the resource protection unit 16 will be described with reference to FIG. When the input event 22 occurs, the event accepting unit 12 transmits, for example, a port number and a source address of the information of the input event 22 to the resource protection unit 16 (Step 10). Then, the resource protection unit 16
Then, through the data control unit 14, the state of establishment and the state of the connection in the communication control unit 15 are detected,
It is determined whether or not there is a free connection control resource for the entire system (step 11).

If it is determined in step 11 that there is no free connection control resource (step 1).
1; No), the input event 22 is discarded, and the input event 22 is released from the event receiving unit 12 (step 1).
7). On the other hand, if it is determined in step 11 that the connection control resources are free (step 1).
1; Yes), a list is created using the combination of the source address and destination address of the input event 22 as a key, and it is determined in the resource protection unit 16 whether there is a process using the same source / destination address combination. (Step 1
2).

If it is determined in step 12 that there is a process by the same combination of the destination address in the resource protection unit 16 (step 12; Yes), the process proceeds to step 18. On the other hand, if it is determined in step 12 that there is no process by the same combination of the destination address in the resource protection unit 16 (step 12; No), a list is created using the source address of the input event 22 as a key, It is determined in the resource protection unit 16 whether there is a process with the same source address (step 13).

If it is determined in step 13 that there is a process by the same combination of the source addresses in the resource protection unit 16 (step 13; Yes), the process proceeds to step 21. On the other hand, if it is determined in step 13 that there is no processing by the same combination of the source addresses in the resource protection unit 16 (step 1).
3; No), a list is created using the destination address of the input event 22 as a key, and it is determined in the resource protection unit 16 whether there is a process using the same destination address (step 14).

If it is determined in step 14 that there is a process with the same destination address in the resource protection unit 16 (step 14; Yes), the process proceeds to step 24.
Move to On the other hand, if it is determined in step 14 that there is no process with the same destination address in the resource protection unit 16 (step 14; No), a list is created using the port number of the input event 22 as a key, and It is determined whether there is a process with the same port number in the protection unit 16 (step 15).

If it is determined in step 15 that there is a process with the same port number in the resource protection unit 16 (step 15; Yes), the process proceeds to step 2
Move to 7. On the other hand, if it is determined in step 15 that there is no process with the same port number in the resource protection unit 16 (step 15; No), the process is registered in the queue 20a of the first priority, which is a normal queue. (Step 15), and the process ends.

If it is determined in step 12 that there is a process by the same combination of the destination address in the resource protection unit 16 (step 12; Ye
s) It is determined whether the number of times of processing by the same combination of the destination address exceeds a predetermined number of times (step 18). If it is determined in step 18 that the number of times of processing by the same combination of the destination address does not exceed the predetermined number of times (step 18; N
o), it is registered in the queue 20b of the second highest priority, which is a queue using a combination of the destination address as a key (step 19), and the process is terminated. On the other hand, if it is determined in step 18 that the number of times of processing by the same combination of destination addresses exceeds the predetermined number of times (step 18; Yes), the queue 20b having the second highest priority is
Discard events exceeding the set number of times (Step 2
0), and the process ends. As described above, when the processing by the combination of the same destination address is continuously generated, it can be determined that there is a possibility that the communication control apparatus 1 is attacked.

If it is determined in step 13 that there is a process with the same source address in the resource protection unit 16 (step 13; Yes), the number of processes with the same source address is equal to the predetermined set number of times. Is determined (step 21). If it is determined in step 21 that the number of times of processing using the same source address does not exceed the predetermined number of times (step 2).
1; No), register with the queue 20c of the third priority, which is a queue using the originating address as a key (step 22),
The process ends. On the other hand, in the determination of step 21,
If the number of times of processing by the same source address exceeds the predetermined number of times (step 21; Yes), the event exceeding the number of times is discarded from the third priority queue 20c (step 21). 23), end the process. . In this way, when the processes with the same originating address occur continuously, it can be determined that there is a possibility of an attack on the communication control device 1.

If it is determined in step 14 that there is a process with the same destination address in the resource protection unit 16 (step 14; Yes), the number of times of processing with the same destination address is equal to the predetermined set number of times. Is determined (step 24). If it is determined in step 24 that the number of times of processing using the same destination address does not exceed a predetermined number of times (step 2).
4; No), register it in the queue 20d of the fourth priority, which is a queue using the destination address as a key (step 25),
The process ends. On the other hand, in the determination of step 24,
If the number of times of processing with the same destination address exceeds the predetermined number of times (step 24; Yes), the event exceeding the number of times is discarded from the fourth priority queue 20d (step 24). 26), end the process.

If it is determined in step 15 that there is a process with the same port number in the resource protection unit 16 (step 15; Yes), the number of processes with the same port number is determined in advance. It is determined whether or not the set number of times has been exceeded (step 27). Step 2
If it is determined in step 7 that the number of times of processing using the same port number does not exceed the preset number of times (step 27; No), the queue of the fifth priority, which is a queue using the port number as a key, Register to 20e (Step 2
8), end the process. On the other hand, if it is determined in step 27 that the number of times of processing using the same port number exceeds the predetermined number of times (step 27; Ye
s) The events exceeding the set number of times are discarded from the fifth priority queue 20e (step 29), and the process ends.

[3. Effect of the present embodiment] As described above, when restricting the input event 22 from the calling terminal, the resource availability, the presence / absence of the combination of the destination address, the presence of the source address, and the presence of the destination address By judging in the order of the existence status of the outgoing port numbers (steps 11 to 15), it is possible to make detailed settings in accordance with each element, thereby minimizing the adverse effect of stopping the service. Can be suppressed.

The priority of the process is set lower than usual in accordance with the presence status of the combination of the destination address and the destination address, the presence status of the destination address, and the presence status of the source port number (step 19, step 22, step 25, step 28), the processing of the input event 22 which may be an attack can be delayed. Further, as a result of delaying the processing, a timeout occurs due to the waiting of the processing, so that the number of input events 22 that can be attacked can be reduced.

If it is determined that the combination of the destination address and the destination address, the destination address, the destination address, and the source port number are present in excess continuously, the event is discarded. (Step 20, Step 23, Step 26, Step 2
9) Since the resource can be prevented from being dropped, the resource can be protected as a result.

[3. Modifications] [3-1. First Modification] In the above-described embodiment, the originating address is included in the information of the input event 22 as an element. However, the information element of the input event 22 may not necessarily include the originating address. When the originating address is not included, the same effect as in the above-described embodiment can be obtained by performing the processing except for the determination based on the originating address.

[3-2. Second Modification] In the above-described embodiment, the scheduler 21 sets the queues 20 a to 20, whose priorities are set, according to a predetermined schedule.
e, the input events 22 are sequentially taken out. However, an emergency queue is set separately from the queues 20a to 20e described above, and when the input event 22 is registered in the emergency queue, the Alternatively, the input event 22 may be extracted from the emergency queue. This allows
When performing special processing that requires urgency, even when there are many other input events 22 and the queue is crowded,
Processing can be performed with priority.

[3-3. Third Modification] In the above-described embodiment, the information registered in the queues 20a to 20e is the index associated with the input event 22, but may be the information of the input event 22 itself. In short, it is only necessary to be able to determine what input event 22 is registered for each of the queues 20a to 20e.

[3-4. Fourth Modification] In the embodiment described above, the scheduler 21 takes out the input events 22 one by one from the queues 20a to 20e. However, a plurality of input events 22 may be taken out at one time. In short, it is only necessary that the processing of the input event 22 can be sequentially performed according to the priority order.

[3-5. Fifth Modification] In the above-described embodiment, the event receiving unit 12 and the event sending unit 13 are provided separately, but they may be combined into one due to the configuration.
In short, it suffices if a function capable of transmitting and receiving between the terminal on the transmitting side and the terminal on the receiving side is provided.

[0057]

As described above, according to the present invention, a communication control apparatus and a communication control that protect resources in an exchange even if they are attacked from the outside and continue to provide services to users. An apparatus control method can be provided.

[Brief description of the drawings]

FIG. 1 is a diagram showing a functional configuration of a communication control device according to an embodiment of the present invention.

FIG. 2 is a diagram illustrating a detailed configuration of an event reception unit and a resource protection unit in the embodiment.

FIG. 3 is a diagram illustrating an example 1 in which the resource protection unit according to the embodiment determines a priority based on the validity of a criterion when a service is to be continued.

FIG. 4 is a diagram illustrating an example 2 in which the resource protection unit according to the embodiment determines a priority based on the validity of a determination criterion when a service is to be continued.

FIG. 5 is a flowchart illustrating an operation example of a resource protection unit in the embodiment.

[Explanation of symbols]

 DESCRIPTION OF SYMBOLS 1 ... Communication control device 2 ... Terminal (transmission terminal, reception terminal) 12 ... Event reception part 16 ... Resource protection part 20 ... Queue (queue means) 22 ... Input Event (input information) 23: Event control unit (control unit) 21: Scheduler (processing means)

Continued on the front page (72) Inventor Yukio Sato 9-1-1 Konan, Minato-ku, Tokyo NTT Communicationware Co., Ltd. F-term (reference) 5K026 AA19 GG10 5K030 GA15 HA10 HB17 HC01 JA07 KX11 KX18 LB19 LC09 LC18 LE05 5K051 AA03 FF03 JJ11 9A001 CC02 CZ07 JJ18 LZ09

Claims (10)

[Claims] 1. A communication control device interposed in a network for connecting a transmitting terminal and a receiving terminal, wherein a plurality of queuing means having priorities set in advance, and input information received from the transmitting terminal are predetermined. A control unit that classifies the input information assigned to any one of the queue units according to the assigned classification rule, and sequentially processes the input information assigned to each of the queue units in accordance with the priority order of each of the queue units. And a communication control device. 2. The communication control device according to claim 1, wherein said processing means performs processing at a frequency corresponding to the priority of each of said queuing means. 3. The communication control device according to claim 1, wherein the predetermined classification rule is determined based on the content of each element of the input information. 4. The communication control device according to claim 1, wherein the control unit classifies according to the predetermined classification rule and discards a device that meets a predetermined discarding condition. Control device. 5. The communication control device according to claim 4, wherein the predetermined discarding condition is determined in advance by the number of the same data as the data created based on the content of each element of the input information. A communication control device that determines whether the value is greater than a set value. 6. A control method of a communication control device for connecting a transmitting terminal and a receiving terminal interposed in a network, comprising: a plurality of queuing steps in which priorities are set in advance; and input information received from the transmitting terminal. Is classified according to a predetermined classification rule, and a control step of allocating to any of the queuing steps, and the input information allocated to each of the queuing steps in order according to the priority of each of the queuing steps, And a processing step of performing processing. 7. The control method for a communication control device according to claim 6, wherein the processing step is performed at a frequency corresponding to the priority of each of the queuing steps. 8. The control method for a communication control device according to claim 6, wherein the predetermined classification rule is determined based on the content of each element of the input information. Method. 9. The control method for a communication control device according to claim 6, wherein the control step classifies according to the predetermined classification rule, and discards one that satisfies a predetermined discard condition. A control method for a communication control device. 10. The control method for a communication control device according to claim 9, wherein the predetermined discarding condition is that the number of the same data as the data created based on the content of each element of the input information is: A method for controlling a communication control device, wherein a determination is made based on whether the value is greater than a predetermined set value.