WO2016060555A1 - Système pour améliorer la sécurité dans un flux de travaux de réseau privé virtuel (vpn) - Google Patents
Système pour améliorer la sécurité dans un flux de travaux de réseau privé virtuel (vpn) Download PDFInfo
- Publication number
- WO2016060555A1 WO2016060555A1 PCT/MY2015/050130 MY2015050130W WO2016060555A1 WO 2016060555 A1 WO2016060555 A1 WO 2016060555A1 MY 2015050130 W MY2015050130 W MY 2015050130W WO 2016060555 A1 WO2016060555 A1 WO 2016060555A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- client
- resources
- server
- tunnels
- role
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0272—Virtual private networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
Definitions
- the tunnels can be dynamically updated. Thus if a resource becomes compromised during a VPN session the system can automatically restrict access thereto by the client during that session.
Abstract
L'invention concerne un système pour former un réseau privé virtuel comprenant un serveur (708) comprenant une ou plusieurs ressources (604), et au moins un client, un client accédant aux ressources par l'intermédiaire des opérations suivantes : le serveur reçoit (105) des détails de connexion à partir du client qui lient le client à un rôle prédéterminé (714) qui définit les droits d'accès du client aux ressources du serveur ; le serveur vérifie l'intégrité de sécurité du client ; et caractérisé en ce que, si des ressources quelconques parmi les ressources sont marquées comme étant compromises (608), un accès à ces dernières par le client est empêché.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
MYPI2014002957A MY167995A (en) | 2014-10-17 | 2014-10-17 | System for improving security in a vpn workflow |
MYPI2014002957 | 2014-10-17 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2016060555A1 true WO2016060555A1 (fr) | 2016-04-21 |
Family
ID=55746995
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/MY2015/050130 WO2016060555A1 (fr) | 2014-10-17 | 2015-10-13 | Système pour améliorer la sécurité dans un flux de travaux de réseau privé virtuel (vpn) |
Country Status (2)
Country | Link |
---|---|
MY (1) | MY167995A (fr) |
WO (1) | WO2016060555A1 (fr) |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5918008A (en) * | 1995-06-02 | 1999-06-29 | Fujitsu Limited | Storage device having function for coping with computer virus |
JP2010039994A (ja) * | 2008-08-08 | 2010-02-18 | Nippon Telegr & Teleph Corp <Ntt> | アクセス制御システム、接続制御装置および接続制御方法 |
WO2010057120A2 (fr) * | 2008-11-17 | 2010-05-20 | Qualcomm Incorporated | Accès distant à un réseau local |
WO2013095565A1 (fr) * | 2011-12-22 | 2013-06-27 | Intel Corporation | Systèmes et procédés permettant d'obtenir une protection contre les logiciels malveillants sur des dispositifs de mémorisation |
-
2014
- 2014-10-17 MY MYPI2014002957A patent/MY167995A/en unknown
-
2015
- 2015-10-13 WO PCT/MY2015/050130 patent/WO2016060555A1/fr active Application Filing
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5918008A (en) * | 1995-06-02 | 1999-06-29 | Fujitsu Limited | Storage device having function for coping with computer virus |
JP2010039994A (ja) * | 2008-08-08 | 2010-02-18 | Nippon Telegr & Teleph Corp <Ntt> | アクセス制御システム、接続制御装置および接続制御方法 |
WO2010057120A2 (fr) * | 2008-11-17 | 2010-05-20 | Qualcomm Incorporated | Accès distant à un réseau local |
WO2013095565A1 (fr) * | 2011-12-22 | 2013-06-27 | Intel Corporation | Systèmes et procédés permettant d'obtenir une protection contre les logiciels malveillants sur des dispositifs de mémorisation |
Also Published As
Publication number | Publication date |
---|---|
MY167995A (en) | 2018-10-10 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20190349405A1 (en) | Advanced metadata proxy | |
EP3014847B1 (fr) | Système de partage de fichiers hybride sécurisé | |
US8407240B2 (en) | Autonomic self-healing network | |
US9584523B2 (en) | Virtual private network access control | |
EP2239887B1 (fr) | Appareil et procédé de gestion d'utilisateurs | |
Yunus et al. | Review of SQL injection: problems and prevention | |
US20080046973A1 (en) | Preventing Unauthorized Access of Computer Network Resources | |
CN113225333A (zh) | 零信任下的网络资源访问控制方法 | |
CN106899561B (zh) | 一种基于acl的tnc权限控制方法和系统 | |
CN113347072B (zh) | Vpn资源访问方法、装置、电子设备和介质 | |
KR102020178B1 (ko) | 동적 정책 제어를 수행하는 방화벽 시스템 | |
CN105721159A (zh) | 一种操作系统身份认证方法及系统 | |
CN106685955B (zh) | 一种基于Radius的视频监控平台安全认证方法 | |
US8713640B2 (en) | System and method for logical separation of a server by using client virtualization | |
Jain et al. | A recent study over cyber security and its elements | |
US20110283351A1 (en) | How to stop external and most internal network "Hacking"attacks by utilizing a dual appliance/server arrangement that allows for the use of peering servers and/or client software running on said peering servers or on proxy servers, web servers, or other legacy equipment | |
CN115333840A (zh) | 资源访问方法、系统、设备及存储介质 | |
KR20060044494A (ko) | 인증 서버와 연동되는 네트워크 관리 시스템 및 네트워크관리 서버 | |
Kumar et al. | A survey on cloud computing security threats and vulnerabilities | |
US10158618B2 (en) | System and method for securely accessing data through web applications | |
US20050044405A1 (en) | System and method of securing a computer from unauthorized access | |
RU2724713C1 (ru) | Система и способ смены пароля учетной записи при наличии угрозы получения неправомерного доступа к данным пользователя | |
US10298588B2 (en) | Secure communication system and method | |
Soria-Machado et al. | Detecting lateral movements in windows infrastructure | |
Tutubala et al. | A hybrid framework to improve data security in cloud computing |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 15850438 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 15850438 Country of ref document: EP Kind code of ref document: A1 |