82results about How to "Reduce the likelihood of an attack" patented technology

The invention provides a method for connecting an incoming call to a Bluetooth headset, which comprises the following steps: S1, when a calling request from a calling mobile phone is received, a prompt message of whether the Bluetooth headset needs to be connected is output; S2, a receiving user inputs the connection order of connecting to the Bluetooth headset according to the prompt message, and starts a Bluetooth module according to the connection order to search the matched Bluetooth headset and display a matching result; and S3, the target Bluetooth headset selected from the matching result by the user is acquired, communication connection between the incoming call and the target Bluetooth headset is established, and after the connection is succeeded, communication with the calling mobile phone is carried out through the target Bluetooth headset. The invention also provides a system for connecting the incoming call to the Bluetooth headset. According to the method for connecting the incoming call to the Bluetooth headset, a user does not need to hang up the incoming call when answering the incoming call and directly communicates with the calling mobile phone through the searched target Bluetooth headset, the user experience is greatly improved, and the operation is very convenient.

The invention discloses a resident identification card network reading system, which consists of background management system (BMS) and reading terminal system (RTS), wherein the BMS installs SAM_V safety modular for resident identification card electronic information operation processing or other hardware safety control equipment with the same code arithmetic function; the RTS installs radio frequency reading without SAM_V safety modular; the BMS and RTS communicate through private or common local (LAN) or wide area (WAN) network; the RTS sends the electronic information which is stored in the resident identification card chip to BMS to carry out code arithmetic function; after BMS code arithmetic function, the information is sent to RTS; TRS realizes reading, displaying, checking, storing and outputting resident identification card information.

The invention discloses a safety detection method and device for a Web application system, aims at providing the safety detection method and device which can conduct dual detection including the local detection and the cloud end detection and are high in safety performance for the Web application system, and belongs to the technical field of network safety. Safety detection on the Web application system is achieved through the detection method including the steps of local safety detection, cloud end safety detection and permeation tests. The method and the system are used for safety detection of the Web application system.

The invention provides a DHCP (Dynamic Host Configuration Protocol) anti-attacking method which is applied to being used as network equipment of a DHCP client. The method comprises the following steps of: A, storing a DHCP Offer message received by the DHCP client and/or information carried by a DHCP ACK (Acknowledgement Character) message, wherein the information at least comprises a source IP (Internet Protocol) address of the message and a server identification; and B, comparing whether the source IP address of the same message is the same as the server identification or not; if not, determining that the message is sent by an attacker. The DHCP anti-attacking method disclosed by the invention can be used for sufficiently utilizing the characteristics of a DHCP interaction process to prevent DHCP attacks and greatly reducing the possibility that the DHCP client is attacked by various means.

The invention discloses a method and a device for detecting ARP message validity, which is applied in a system including a gateway device. The method comprises the following steps: the gateway device receives the ARP message and judges whether an inlet interface of the ARP message is a three-layer interface or not; if so, then the gateway device extracts a transmitting terminal internet protocol IP address in the ARP message and implements route searching by taking the transmitting terminal IP address in the ARP message as a target address to obtain the information of a corresponding outlet interface; when the obtained information of the outlet interface is consistent with the information of the inlet interface of the received ARP message, the ARP message is a valid ARP message; when the obtained information of the outlet interface is inconsistent with the received information of the inlet interface of the ARP message, the ARP message is an attack message. The method and the device for detecting ARP message validity realize the detection on invalid ARP messages.

The invention discloses a method for preventing short-term bifurcation and double-spend attack on a block chain network. The method comprises the following steps: adding a CA certificate issuing and updating center to the block chain network; transforming the block data structure, adding signature and public key fields based on CA certificate; adding certificate validity verification of signatureand public key to the consensus algorithm of block chain network nodes; improving consensus algorithm; in the improved consensus algorithm, adding short bifurcation malicious double-spend attack riskidentification. The method has small modification to the original chain, is easy to realize, only increases the CA center and modifies and adds the necessary consensus algorithm, can effectively reduce the possibility of short-term bifurcation double-spend attack, and provides effective real-name system evidence for the judicial investigation after the event through the real-name system CA certificate.

The present invention discloses a graded group key management method based on line geometry, which comprises the following steps: step 1. a central controller selects a finite field F, a mapping F and a constant for the use of groups and a N-dimension private vector for each sub-group; step 2. the central controller selects a mapping parameter r and maps the private vectors into a group of new vectors in a vector space; step 3. the central controller selects a sub-group key for each sub-group, constructs n linear equations and solves the linear equations, wherein the solutions of the linear equations are public vectors and n groups of public vectors form a public matrix; and the central controller further sends the public matrix and the mapping parameter r to all sub-group controllers via a public channel broadcast or multicast; and step 4. the sub-group controllers calculate confidential vector thereof and carry out a linear conversion on the confidential vector and the public matrix to obtain a group of key vectors. The graded group key management method is simple and flexible and is capable of avoiding violent attacks.

The invention provides an input method, an input device and an electronic device. Corresponding setting for a textbox and characters input to the textbox is carried out to enable a common textbox to have the characteristic of a password box. Therefore, when the input method is adopted, the input is the input supporting a multi-language character password; furthermore, a preset password display object rather than the input characters is displayed to guarantee the security of the input password. A user can set familiar languages or characters as the password, for example, the user can set Chinese characters as the password. Therefore, according to the method, as the input is the input supporting the multi-language character password, convenience is brought to memorization by using a local language character password, and the possibility of being attacked by a hacker is reduced indirectly. In addition, the method also can set the pattern of a password display object based on a need to form different password covering characters, so that the covering characters can fully guarantee the security of password input.

The embodiment of the invention discloses a user-equipment (UE) information monitoring method, device and system, wherein the method includes: the monitoring device generates a monitoring event report of the UE when detecting a monitoring event of the UE which needs to be monitored; according to an internal identification of the UE, an intermediate device which forwards the monitoring event report of the UE is determined; and the internal identification of the UE and the monitoring event report of the UE are sent to the intermediate device so that the intermediate device acquires an external identification of the UE and the address of a corresponding monitoring server according to the internal identification of the UE and sends the external identification of the UE and the monitoring event report of the UE to the monitoring server according to the acquired address of the monitoring server. The UE information monitoring method, device and system are capable of improving monitoring-event report sending accuracy of the UE.

The invention relates to a reversible skin color smoothing method with a reversible information hiding function and an original image recovery method thereof. Compared with the prior art, the reversible skin color smoothing method solves the defects that hidden information is easy to find and skin color smoothing processing is irreversible. The method comprises the following steps: obtaining an original image; hiding the secret information; extracting a skin color region; performing reversible skin color smoothing. According to the invention, a behavior hiding effect of skin color smoothness is realized; Namely, the original content is hidden by the face beautification image with the high visual quality characteristic, and the hidden information and the skin color are smooth and reversible, so that the attention and doubt of an attacker on the secret-carrying image are reduced, the possibility that the secret-carrying image is attacked is reduced, and the security of the image is further improved.

The invention discloses a classified net-cage fish cultivating method. The method comprises the following steps: 1, providing an inner net cage and an outer net cage, wherein the inner net cage is positioned at one corner of the outer net cage, the mesh diameters of a top wall and a bottom wall of the inner net cage are 3 to 7cm, four side walls are watertight, the inner net cage is partitioned into three layers of box bodies through two interlayer plates, the mesh diameter of the first interlayer plate from top to bottom is 0.2 to 0.3cm, and the mesh diameter of the second interlayer plate is 1 to 2cm; 2, stocking fish fries in the outer net cage; 3, when the chest circumference of each fish fry does not reach the mesh diameter of the inner net cage, adding fish feeds into the inner net cage, when the chest circumference of a certain fish fry exceeds the mesh diameter of the inner net cage, adding the feeds into the outer net cage for 20 to 30min firstly, then adding the feeds into the inner net cage for 2 to 3min, and pumping water by using a water pump every day, so that water flow which flows from top to bottom is formed in the inner net cage. According to the classified net-cage fish cultivating method, fishes of different body types can be effectively separated, and the possibility that smaller fishes are attacked is reduced.

The method is used for realizing a security communication between the first base station and second base station. The first base station comprises: at least one first proxy server. It comprises: 202) the first base station sends a first message to the second base station; the first message comprises a first network address of first proxy server and a first ID of the first base station; 204) the second base station responds to the first message, and according to the ID of the first base station, sends a connection request message to the first base station; the first base station responds to the connection request message, and sends a confirmation message to the second base station. By the invention the address of base station is not opened on the public network so as to reduce the possibility of getting a network attack.

The invention relates to the technical field of information security, and discloses a flow control mechanism suitable for online identity authentication. The mechanism provides a strict flow management and control method for online identity authentication, namely after a marking client browser is locked, strict read-write management and control are carried out on a Session object in a communication session, and strict verification management and control are carried out on Cookies contents, therefore even if the Session ID or Coolies contents and other information are leaked, the hackers can also be prevented from posing the identities of legal users by using these resources to prevent the further leakage of the user information, thereby greatly reducing the possibility of information leakage and hacker attacks, and ensuring the security of the online identity authentication process.

The invention provides a gateway attack prevention method and device. The method comprises the steps: obtaining the number of access requests received by each interface of a gateway in a unit time; determining an unsafe interface based on the comparison of the obtained number of access requests received by the interface of the gateway in a unit time with the threshold value of the number of access requests received by the interface in a unit time, wherein the threshold value is determined in advance based on the maximum number of load access requests of the interface in a unit time and the proportion of the counted mean load saturation degree of the interface to the sum of the mean load saturation degrees of all interfaces of the gateway; and determining the address of an unsafe visitor at the unsafe interface based on the number of requests of the visitor, visiting the unsafe interface, for access to the unsafe interface in the unit time. The method reduces the possibility of taking the frequent visit of a normal user as the attack while recognizing the address of the unsafe visitor more accurately.

The invention provides a secure communication method based on a smart card, wherein, the method comprises the following steps of: receiving an inserted smart card and a user name and password input bya user; wherein, the smart card stores the result data for calculating the registration information of the user completed registration in a server; and the method comprises the steps of: receiving the inserted smart card and the user name and password input by the user. Verifying whether the user is the holder of the smart card according to the result data, the user name and the password input bythe user; Output step: after verifying that the user is the holder of the smart card, calculating the user name and the password input by the user by using a preset algorithm, and sending the calculation result to the server as login information. The invention also provides a secure communication system based on a smart card. The technical proposal provided by the invention can effectively improve the safety of data.

The invention provides a mobile user position privacy protection method for avoiding attacks performed through circular region overlapping parts, and relates to the field of position privacy protection. The method comprises the following steps that: firstly, a user sends a request Q (a current position of the user, the number of query results and the like) to intermediate proxy equipment; the intermediate equipment converts a real position of the user into a circular region, specifies a value which is greater than a confidence level needed by the user and the number of query results, and sends a request Q' to an LBS (Location Based Service) server provider; an LBS finds points of interest satisfying a condition with a query processing method, puts the points of interest satisfying the condition into a set V', and returns the V' to the intermediate equipment; and the intermediate equipment screens the V', and returns a screening result to the user. Through adoption of the method, the attacks performed through the circular region overlapping parts are effectively avoided when the user queries a server, and the position privacy of the user can be protected more accurately. The mobile user position privacy protection method is suitable for protecting privacy of the user position when the user queries surrounding points of interest.

The embodiment of the invention provides a secret key management method, a secret key use method, a secret key use device and equipment. The method comprises the steps: receiving a registration request sent by a user side, and enabling the registration request to comprise an identity identification of a user; generating a user key corresponding to the identity identifier; splitting the user key into a plurality of key slices; and combining the key slices according to a preset rule and then sending the key slices to each key node for storage, wherein each key node comprises a trusted mechanism node and a client node. According to the embodiment of the invention, the user key is split into the key slices, one part is stored in the credible institution node, and the other part is stored in the client node, so that the user key is not easy to lose; meanwhile, the user secret keys are dispersed in different secret key nodes, the possibility that all the nodes are attacked by the network is extremely low, the user secret keys are not prone to leakage, and the safety of the user secret keys is guaranteed.

The invention discloses an enterprise safety protection system based on a white list mechanism. The enterprise safety protection system comprises a fingerprint information detection module, a logic comparison module, a white list screening module, a black list storage module and a priority judgment module, aiming at the defects that an existing terminal white list protection system is low in recognition precision and is easily attacked, an active and passive dual detection technology is adopted and is matched with an active filtering logic design of a priority judgment module, so that the attack possibility is greatly reduced, the blocking and priority processing effects of a white list are improved, and the time delay condition of terminal login is reduced to a certain extent; the dual-detection data is identified under the synchronous clock through the terminal type dictionary, thereby achieving high-precision terminal identification protection; and through scientific lag time function design, the identification range and the identification precision of the method are greatly increased, and more realizable technical means are added for safe white list architecture design.