30results about How to "Prevent spoofing attacks" patented technology

The invention discloses a method and a device for preventing switch ports from MAC address transfer, which relate to the access network security technology of an Ethernet switch and aim to solve the problem that MAC address transfer prevention cannot be effectively realized on an Ethernet switch chip of the switch in the prior art. The method comprises the following steps: setting the MAC address transfer prevention authority of each port of the switch chip in the switch; disenabling automatic MAC address leaning functions of all the ports; modifying a forwarding strategy of unknown source MAC address packets of the ports to indicate the unknown MAC address packets are not to be forwarded, and starting the MAC address learning and ageing interruption of the ports; when new source MAC address messages are received, determining a learning strategy according to the configuration of the ports and database record information; and if MAC address ageing information is received, updating database record. The switch comprises the switch chip, a priority setting module, a database module and a management CPU.

The invention belongs to the field of information security, and particularly relates to a transparent data integrity auditing and transparent encrypted data deduplication protocol based on a block chain. The scheme of the invention comprises four modules: parameter initialization, encryption key acquisition, bidirectional upheaval checking, transparent integrity auditing and transparent de-duplication. Compared with the prior art, the protocol can resist the bias audit and delay audit of the cloud server, and meanwhile, the situation that the cloud server claims an erroneous duplicate removal level to charge additional fees can be avoided. According to the protocol, single-point failure attacks and exhaustion attacks can be prevented, and bidirectional ownership proof of a user and a cloud server can be provided. The invention realizes a secure and effective protocol based on the block chain, and can simultaneously realize transparent data integrity auditing and transparent data de-duplication.

The invention provides a method and a device for media access control forced forwarding of an address resolution protocol (ARP) message. The method specifically includes that when an ARP request message is not an ARP message of a request gateway or a server, a sending end media access control (MAC) of the ARP request message is transformed to be a gateway MAC, and the ARP request message is sent in a broadcast mode; entries of a session table are established, and information of the ARP request message is recorded in the entries of the session table; and a sending end internet protocol (IP) and a target IP of an ARP response message are matched with a target IP and a sending end IP in the entries of the session table, when the matching result is successful and the ARP response message is not an ARP message of a response gateway or a server, a sending end MAC of the ARP response message is transformed to be a gateway MAC and a target MAC of the ARP response message is transformed to be a sending end MAC in the entries of the session table which is successfully matched, and the ARP response message is sent in an unicast mode. By means of the method and the device, IP address conflict in the network can be accurately and effectively detected.

The invention relates to the technical field of biological recognition, and is used for face recognition. The invention particularly discloses a face recognition method and device, computer equipmentand a storage medium. The method comprises the steps of acquiring a to-be-detected image; performing color space conversion on the to-be-detected image to obtain a target image corresponding to the to-be-detected image in a preset color space; extracting a local binary pattern characteristic value of the target image, and performing histogram statistics according to the local binary pattern characteristic value to obtain a local binary pattern histogram; inputting the obtained local binary pattern histogram into a pre-trained classification model for classification detection to obtain a detection result; and performing face image recognition according to the detection result. According to the method, the efficiency and accuracy of face recognition can be improved, and face recognition spoofing attacks are prevented.

The invention relates to the technical field of biological recognition, and is used for face recognition. The invention particularly discloses a face recognition method and device, computer equipmentand a storage medium. The method comprises the steps of acquiring a to-be-detected image; performing color space conversion on the to-be-detected image to obtain a target image corresponding to the to-be-detected image in a preset color space; extracting a local binary pattern characteristic value of the target image, and performing histogram statistics according to the local binary pattern characteristic value to obtain a local binary pattern histogram; inputting the obtained local binary pattern histogram into a pre-trained classification model for classification detection to obtain a classification result; and performing face image recognition according to the classification result. According to the method, the efficiency and accuracy of face recognition can be improved, and face recognition spoofing attacks are prevented.

The invention provides a system and method for detecting and relieving ARP attacks based on an SDN cloud environment. The system comprises a network information maintenance module, a real-time detection and defense module, a timing monitoring and relieving module and a flow table item control module. The method comprises a starting stage; acquiring network information; detecting and defending an ARP attack stage in real time; and regularly monitoring and relieving an ARP attack stage. SDN technology is used in the invention, an ARP request packet and an ARP reply packet are detected; ARP spoofing attacks are detected in real time by analyzing ARP packets; a forged packet is discarded to prevent damage of ARP spoofing attack to the host; in addition, ARP storm attacks can be distinguished by regularly acquiring ARP flow and detecting flow statistical data of ports of the edge SDN switch, the flow of the corresponding ports can be timely blocked, the influence of the ARP storm attacks on the cloud network is relieved, and the security of the cloud computing network is comprehensively protected.

The invention relates to a network security method based on a wireless firewall. In the method, the wireless firewall acts on an MAC (Media Access Control) layer of OSI (Open System Interconnection) and comprises an intrusion detection and prevention module, a first frame hook and a second frame hook, wherein, the intrusion detection and prevention module is positioned in a user space of a system; the first frame hook is connected with a kernel space and the user space of the operating system, one end of the first frame hook is arranged in a wireless LAN (local area network) card driver in the kernel space of the operating system, the other end of the first frame hook is arranged in the user space and is connected with the intrusion detection and prevention module, the first frame hook transfers a frame received by the wireless LAN card driver to the intrusion detection and prevention module, and then the frame is sent back to the driver through the frame hook or is deleted after being processed by the module; and one end of the second frame hook is arranged in the wireless LAN card driver in the kernel space of the operating system, and the other end of the second frame hook is arranged in the user space and is connected with a frame encapsulation module. By adopting the network security method, the hacker attack resistance can be strengthened and the availability of the wireless network is improved.

The invention relates to a network security maintenance method of a local area network, in particular to a method for preventing the local area network from being attacked by address resolution protocol spoofing. The method solves and prevents the address resolution protocol spoofing by adopting bidirectional binding. The method comprises the following steps of: binding the IP of a security gateway and an MAC address on a PC; and binding the IP of a user host and the MAC address on the security gateway. The method can guarantee the smoothness and safety in using the network and the facilities in the network.

The invention belongs to the technical field of computer network security, and relates to an efficient routing protocol for simultaneously providing anonymity and responsibility investigation capability in a network layer, in particular to a routing method with metadata privacy protection and source responsibility investigation capabilities. According to the method of the invention, a group signature is attached to a message network layer to realize the balance between anonymity and responsibility. The group signature in the message can provide wide and efficient responsibility investigation,and the authenticity of the message can be verified by any router on a path in a non-interaction mode, so that the communication overhead during message verification is eliminated. Meanwhile, the privacy of the sender is protected by the group signature, so that the signer in the group cannot be distinguished by entities outside the group. In addition, in order to further reduce the verification overhead of the group signature, a challenge-based separation verification mechanism is designed. Compared with pre-calculation and batch verification, the separate verification mechanism can reduce the verification load of the specified router to a greater extent, thereby improving the efficiency of the protocol.

The invention provides an ARP spoofing attack prevention method. The ARP spoofing attack prevention method comprises the following steps executed on a switch: receiving a message; when the destination IP address of the message is the message of the direct network segment, judging whether a route of the destination IP address exists, and when the route does not exist, sending an ARP data packet. The security device executes the following steps: receiving the ARP data packet; judging whether the ARP data packet is sent based on a request, and if not, generating and distributing an ARP request data packet corresponding to the ARP data packet; receiving an ARP response data packet corresponding to the ARP request data packet; and judging whether the input port of the ARP response data packet is consistent with the input port of the ARP data packet: if not, judging that the ARP spoofing attack occurs.

The embodiment of the invention provides a living body judgment method and device. The method comprises the steps of obtaining a human face eye region of a to-be-recognized target in an infrared scene; inputting the human face eye area into a pre-configured living body recognition model for recognition to obtain a recognition result; and judging whether the to-be-identified target is a living bodytarget or not according to the identification result to obtain a judgment result. Therefore, the face living body judgment can be simply and efficiently carried out, so that the authenticity of the face is accurately distinguished, the security system is prevented from being attacked by lawbreakers through face duplication and spoofing, and the security in a security scene is further improved.

The invention provides a lightweight control channel communication protection method and system in an OpenFlow network, and relates to the field of communication. The lightweight control channel communication protection method in the OpenFlow network comprises the following steps: respectively presetting unique seed values for an OpenFlow controller and an OpenFlow switch; respectively hashing thetwo seed values to generate an equipment private key; enabling the two equipment private keys to respectively generate equipment public keys by using an asymmetric cryptographic algorithm; processingthe equipment public key of the OpenFlow controller by utilizing a hash function, and taking the generated hash value as a controller message authentication code for identifying the OpenFlow controller; and the OpenFlow controller and the equipment private key and the equipment public key of the OpenFlow switch generate a shared key through a key negotiation algorithm. According to the invention,the problems of low communication security and high energy consumption of the OpenFlow network are solved.

The invention provides a communication security guarantee method for an intelligent lock of power supply equipment. The communication security guarantee method comprises the following steps: step S10, a management server receives an unlocking request for the selected intelligent lock from a mobile terminal; step S11, the management server and the intelligent lock perform a key negotiation process, and both the management server and the intelligent lock obtain a key for the unlocking operation; step S12, the management server encrypts the unlocking instruction by using the secret key, and transmits the encrypted unlocking instruction to the intelligent lock through the NB-IOT network; step S13, the intelligent lock decrypts the unlocking instruction by adopting the negotiated secret key, and performs unlocking operation according to the unlocking instruction; and S14, the intelligent lock feeds back an unlocking result to the management server. The invention further provides a corresponding system. According to the invention, the security of the intelligent lock in the communication process can be improved.