JPH09162876A - Atm communication system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To hold the secrecy of ATM communication by previously communicating/deciding a scramble rule between originating/terminating points and scrambling/de-scrambling transmission content information of an ATM cell which is transmitted/received in accordance with the rule. SOLUTION: When the transfer indication of information is given from the application AP of an originating terminal PC-a to a path control part 5, the path control part 5 gives the indication to make information into the cell to a CLAD part 6, and gives the scramble rule which is set between the originating/terminating terminals PC-a and PC-b to a scrambler 7. The scrambler 7 scrambles information of payload in the cell. When the terminating terminal PC-b receives cell information transmitted from a transmission/reception part 8, the scrambler 7 receives transmission information by restoring payload information into an original form with a de-scramble algorithm indicated from the application AP through the bus control part 5.

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an ATM (asynchronous transfer mode) communication system, and more particularly to a technique effective when applied to an ATM communication system for confidential information communication.

[0002]

2. Description of the Related Art The development of ATM technology is progressing at a rapid pace, and the construction of products / networks that actually employ ATM technology has become a reality.

On the other hand, the use of data communication networks is not limited to companies, but is widely incorporated into social life.
Therefore, the problem is the confidentiality of information, and prompt solutions / measures are required.

The current ATM communication system is composed of a calling terminal, an ATM switch interposed between the calling terminals, and a transmission line in which a virtual connection connecting them is set, and a virtual connection is set between the calling terminals. Fixed or dynamic setting (PVC or SV
C) is generally used for communication.

In the confidentiality communication of information in the conventional ATM communication system, for example, all the information transmitted from the transmitting terminal is decomposed into a plurality of ATM cells and transmitted on the virtual connection of the transmission line, and the ATM exchange switches to these cells. By switching to a predetermined output destination transmission line with reference to the provided header information, the cell is delivered to the receiving terminal,
At the receiving terminal, these cells were assembled to obtain information.

[0006]

SUMMARY OF THE INVENTION As a result of studying the above prior art, the present inventor has found the following problems.

In the communication described in the above-mentioned prior art, the content of the cell passing through each virtual connection can be relatively easily decoded by the third party continuously intercepting the cell, and the false communication is also possible. It will be possible.

That is, there has been a problem that sufficient protection is not provided for maintaining confidentiality of information.

An object of the present invention is to provide a technique capable of maintaining the confidentiality of ATM communication.

The above and other objects and novel features of the present invention will become apparent from the description of the present specification and the accompanying drawings.

[0011]

SUMMARY OF THE INVENTION Among the inventions disclosed in the present application, the outline of a representative one will be briefly described.
It is as follows.

An ATM having a plurality of communication terminals for transmitting and receiving information, a transmission path to which the plurality of communication terminals are respectively connected and network construction, and a plurality of ATM exchanges for switching connection of the transmission paths In the communication system, the communication terminal includes ATM cell disassembling / assembling means for converting information to be transmitted into ATM cells, and path control means for performing channel setting, monitoring, and cell transmission / reception control with a communication terminal as a transmission destination. A scramble means for scrambling and descrambling the transmission content information cellized by the ATM cell disassembling / assembling means and a transmitting / receiving means for establishing line synchronization between the transmission path and controlling transmission / reception of ATM cells. Prepare

Further, information to be transmitted to the communication terminal is
Line synchronization is established between the ATM cell disassembling / assembling means for converting to TM cells, the path control means for setting and monitoring the channel between the destination communication terminal and the transmission / reception control of the cell, and the transmission path, A transmission / reception means for setting transmission / reception of ATM cells by setting a plurality of virtual connections on the transmission path, and a virtual for spreading transmission contents information cellized by the ATM cell disassembly / assembly means on the plurality of virtual connections. Connection scrambling means.

According to the above-mentioned means, the scramble rule is previously communicated / arranged between the origination and departure points, and the transmission content information of the ATM cell to be transmitted / received is scrambled / descrambled according to the rule, whereby a specific point is specified Even if the communication information on the virtual connection is intercepted, it is impossible to simply steal the information, so AT
It is possible to maintain the confidentiality of M communication.

Further, the number of virtual connections / virtual connection numbers set between the originating and destination points and the algorithm for spreading ATM cells between the virtual connections are determined, and communication is performed based on this rule. It is impossible to extract meaningful information only by monitoring a specific virtual connection, and it is impossible to steal it as significant information without knowing the virtual connection that constitutes a set and the diffusion algorithm between those virtual connections. Therefore, the confidentiality of ATM communication can be maintained.

The structure of the present invention will be described below together with embodiments.

In all the drawings for explaining the embodiments, parts having the same function are designated by the same reference numerals, and the repeated description thereof will be omitted.

[0018]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS FIG. 1A is a diagram for explaining the configuration of an ATM communication system which is a first embodiment of the present invention.

In the ATM communication system of the first embodiment, as shown in FIG. 1 (a), a communication terminal originates (a receiving terminal PC-a and a receiving terminal PC-b) and its originating terminal PC-a to incoming. ATM switch 1 (hereinafter referred to as SW) interposed between terminals PC-b
Abbreviated) and a virtual connection 3 (hereinafter abbreviated as VC) set in the transmission path 2.

FIG. 1 (b) is a block diagram for explaining the internal structure of the calling terminal PC-a and the called terminal PC-b (hereinafter collectively referred to as the calling terminal) of the first embodiment. .

As shown in FIG. 1 (b), the originating / terminating terminals PC-a and b of the first embodiment receive an instruction from the user and, via an application AP that realizes a desired task and a transmission line 2. Channel setting, monitoring, determination of scramble rule between SW1 accommodating the terminal and the other terminal,
The path control unit 5 that controls transmission / reception of cells and the information that the application AP wants to transmit / receive are converted into ATM cells A
TM cell disassembly / assembly section 6 (hereinafter abbreviated as CLAD section)
And a so-called physical control such as establishing line synchronization between the scrambler 7 that scrambles and descrambles the payload information in the cell based on the scramble rule of the path control unit 5 and the transmission line 2, and transmits and receives the cell 4. , ATM
It is composed of a transmission / reception unit 8 that performs layer control.

As a method of setting the VC3 in the ATM communication system of the first embodiment, a method of fixedly setting in advance in a configuration definition (so-called PVC) and a method of dynamically setting the VC3 every time transfer information is generated. There is a setting method (so-called SVC), but since it is not directly related here, it is assumed that the VC3 is set by one of the methods.

FIG. 2 is a diagram showing an ATM cell format, in which information such as data, voice and image is divided into 48 bytes (= Perloy load 22), and a virtual path number or a virtual channel number indicating a destination is added to this. And fixed-length ATM cells added with a header 21 (= 5 bytes) indicating information attributes and the like are transmitted and exchanged.

Communication processing in the ATM communication system of the first embodiment described above will be described below.

First, when the information transfer instruction is given from the application AP of the calling terminal PC-a to the path control unit 5, the path control unit 5 instructs the CLAD unit 6 to make the information into cells, and the scrambler 7 To the terminal PC-a,
The scramble rule set between b is given.

As a result, the information from the application AP is made into cells by the CLAD unit 6, and then the information of the payload 22 in the cells is scrambled by the scrambler 7.

Then, the scrambled cell information is transferred to the transmission / reception unit 8 via the bus control unit 5, and is transmitted to the destination (incoming terminal PC-b) by the transmission / reception unit 8.

In the receiving terminal PC-b, when the cell information transmitted by the transmitter / receiver 8 is received, the scrambler 7 uses the descramble algorithm instructed by the application AP via the bus controller 5 to extract the payload information. Receive the transmitted information by restoring to the form of.

The scrambler algorithm at this time may use a method of simply reversing the head-tail, a method of shifting one byte by one byte from the normal position according to the order of the divided cells, or the like.

A method of spreading the payload part based on key information such as a random number pattern may also be used.

In any case, paying attention to the fact that the payload 22 has a fixed length of 48 bytes, and if it is spread in this range, the algorithm will be simple and a large amount of work memory for processing and processing load will not be required for confidentiality. It is possible to realize highly reliable ATM communication.

Furthermore, by performing random number diffusion on the entire payload information of a plurality of cells, the confidentiality of information can be dramatically improved.

Next, a second embodiment of the present invention will be described with reference to FIG. 3 in which a plurality of VCs are set with a communication partner and the confidentiality of information is enhanced by spreading ATM cells in the meantime.

As shown in FIG. 3, the calling and terminating terminals PC-a and b of the ATM communication system according to the second embodiment are replaced with the pass-through terminals instead of the scrambler / descrambler 7 of the calling and receiving terminals PC-a and b. The control unit 5 is configured to include a VC scrambler that performs ATM cell spreading based on the number of VCs / VC numbers to be used and the inter-VC spreading algorithm, which is determined with the partner terminal.

Communication processing in the ATM communication system of the second embodiment described above will be described below.

First, when a communication instruction of information is given from the application AP of the transmitting terminal PC-a to the path control unit 5, the CLAD unit 6 converts the information into ATM cells and V
The data is passed to the C scrambler 9 and transmitted by the transmission / reception unit 8. In the reception terminal PC-b, the transmission / reception unit 8 receives the transmission information,
The VC scrambler 9 descrambles the received information. These series of operations are similar to those of the above-described embodiment.

The VC scrambler 9 scrambles the VC on the basis of the spreading rule from the path control unit 5. For example, it is assumed that _three VCs VC ₁ , VC ₂ and VC ₃ are set. For example, the cells from the CLAD unit 6 are simply transmitted in the order of VC ₁ → VC ₂ → VC ₃ , or VC ₃ → VC ₃ →
One example is VC ₂ → VC ₃ → VC _1, ... Randomly spreading and transmitting.

At this time, it is essential that these VCs pass through the same transmission line and the same exchange, and the definitions of the priority class, the discard class, and the service attribute must be the same.

Further, even though the plurality of paths are set to use the same transmission line and the same exchange, it is necessary to note that the order inversion may occur in the SW5. It is necessary to allow a certain amount of time to cover the fluctuation of delay time between the transmission of the cell and the transmission of the next cell. Alternatively, since the ATM adaptation layer type 5 (AAL5) or the like has the sequence number information in the payload information, the VC scrambler 9 on the receiving side needs the order control based on these pieces of information.

As described above, it is possible to maintain the confidentiality of ATM communication by diffusing cells among a plurality of VCs for communication, and to use it in combination with the first embodiment described above. It goes without saying that the confidentiality can be significantly improved by doing so.

Next, a third embodiment in which a means for maintaining confidentiality is added to the SW1 shown in FIG. 1A and the communication is performed through a plurality of SW1s will be described with reference to FIG.

In the third embodiment, communication via two SW1s will be taken up.

SW1 in the ATM communication system of the third embodiment controls the entire SW1, as shown in FIG.
That is, the CPU 11 that performs the setting / release control of the VC, the control instruction of each part inside the device, the operation monitoring, and the like
Cell switch 11 for switching ATM cells transmitted and received via the transmission line 2 (specifically, A
The switching operation is performed by referring to the header information of the TM cell) and the scrambler 7 (7-1, 7-2) described above.
And a transmitter / receiver 8 (8-1 to 8-4).

Communication processing in the ATM communication system of the above-mentioned third embodiment will be described below.

In the communication in the ATM communication system of the third embodiment, first, as shown in FIG.
Set the scramble rule to be used for the communication between the originating and terminating ATM exchanges accommodating a and b (it goes without saying that the applicable rule can be fixed or dynamically determined at each communication). Then, the cell 4 transmitted from the transmission terminal PC-a is switched by the cell switch 10 via the transmission / reception unit 8-1 of SW1-1 and transmitted to the scrambler 7-1.

Here, the scrambler 7-1 scrambles the payload information in the cell based on the instruction from the CPU, and then sends it to the relay transmission line 2 via the transmission / reception unit 8-2.

In SW1-2 on the receiving side, the transmitting / receiving section 8-3 extracts a cell and transfers it to the scrambler 7-2. The scrambler 7-2 restores the payload information to the original form by the descramble algorithm instructed by the CPU,
After switching by the cell switch 10, the transmitting / receiving unit 8-
4, transmitted to the receiving terminal PC-b via the transmission line 2.

By doing so, the confidentiality of communication between the two originating and terminating ATM exchanges SW1 can be maintained without increasing the burden on the originating and terminating side for protecting the confidentiality and increasing the cost.

Further, in the present invention, the communication via the two SW1s (the case where the originating and destination stations are directly connected) is taken as an example, but even if there are several stages of relay stations between them, there is no problem. However, in this case, the scrambling algorithm may be changed to link-by-link, or the relay station may pass through, so that the confidentiality of ATM communication can be maintained.

Further, FIG. 4 has been described with respect to an example in which the elements of the above-described first embodiment are realized on the ATM exchange, but the same confidentiality can be obtained even if the elements of the second embodiment are realized between the originating and destination exchanges. It is possible to realize ATM communication that maintains the property.

Furthermore, by combining the above-mentioned three embodiments, the confidentiality of information can be maintained.

As described above, the invention made by the present inventor
Although the present invention has been described in detail with reference to the embodiment, the present invention is not limited to the embodiment, and it is needless to say that various changes can be made without departing from the scope of the invention.

[0053]

The effects obtained by the representative ones of the inventions disclosed in the present application will be briefly described as follows.

The confidentiality of communication can be maintained by disabling the theft of information by a third party in the middle of the calling and receiving terminals.

By maintaining confidentiality between the originating and terminating ATM exchanges, the confidentiality of ATM communication can be enhanced without increasing the functional load on the terminal and increasing the cost.

[Brief description of the drawings]

FIG. 1 is a diagram for explaining a configuration of an ATM communication system which is a first embodiment of the present invention.

FIG. 2 is a diagram for explaining a configuration of an ATM cell format of this embodiment.

FIG. 3 is a diagram for explaining a configuration of an ATM communication system which is a second embodiment of the present invention.

FIG. 4 is a diagram for explaining a configuration of an ATM communication system which is a third embodiment of the present invention.

[Explanation of symbols]

1 ... ATM switch (SW), 2 ... transmission line, 3 ... virtual connection (VC), 4 ... ATM cell (cell), P
C-a, PC-b ... Originating / arriving terminal, AP ... Application, 5 ... Path control unit, 6 ... ATM cell disassembly / assembly unit (C
LAD), 7 ... Scrambler, 8 ... Transceiver, 9 ... VC
Scrambler, 10 ... Cell switch, 11 ... CPU.

Claims (3)

[Claims] 1. A plurality of communication terminals for transmitting and receiving information, a plurality of communication terminals to which the plurality of communication terminals are respectively connected, and a network-constructed transmission path, and a plurality of ATM exchanges for switching connection of the transmission paths. In the ATM communication system, the communication terminal is an AT that converts information to be transmitted into ATM cells.
M-cell disassembling / assembling means, a path control means for setting and monitoring a channel between the destination communication terminal and cell transmission / reception control, and transmission content information cellized by the ATM cell disassembling / assembling means. An ATM communication system comprising: a scramble means for performing scrambling and descrambling; and a transmitting / receiving means for establishing line synchronization with the transmission path and controlling transmission / reception of ATM cells. 2. A plurality of communication terminals for transmitting and receiving information, a plurality of communication terminals to which the plurality of communication terminals are respectively connected, and a network-constructed transmission line, and a plurality of ATM exchanges for switching connection of the transmission lines. In the ATM communication system, the communication terminal is an AT that converts information to be transmitted into ATM cells.
M-cell disassembling / assembling means, path control means for setting and monitoring channels between the destination communication terminal and cell transmission / reception control, and line synchronization is established between the transmission path and the transmission path. Transmission / reception means for setting a plurality of virtual connections and controlling transmission / reception of ATM cells; and virtual connection scramble means for diffusing the transmission content information cellized by the ATM cell disassembling / assembling means onto the plurality of virtual connections. An ATM communication system comprising: 3. A plurality of communication terminals for transmitting and receiving information, a plurality of communication terminals to which the plurality of communication terminals are respectively connected, network-constructed transmission paths, and a plurality of ATM exchanges for switching connection of the transmission paths. In the ATM communication system, the ATM switch sets / sets a virtual connection.
A means for performing release control, a control instruction for each part inside the device, and an operation monitoring, a cell switch means for switching an ATM cell transmitted / received via the transmission path, a scramble and a descramble of transmission information of the ATM cell. An ATM communication system characterized by scrambling means for performing the above, or virtual connection scrambling means for spreading transmission information of the ATM cell over a plurality of virtual connections in a transmission path.