Method, system and device for controlling trustable network access

A reliable access control technology, applied in the field of communications, can solve the problems of loss, waste, loss of users and manufacturers, and achieve the effect of reducing risks, avoiding service impact, and enriching service types

Inactive Publication Date: 2012-04-04
HUAWEI TECH CO LTD
View PDF0 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Even when a user purchases a terminal that meets the TCG standard and is embedded with a TPM, on the one hand, if the terminal is not frequently connected to a trusted network, the TPM embedded in the terminal and its supporting software will be idle, causing losses and waste
On the other hand, if there is a loophole in the TPM chip or its supporting software, for safety reasons, it needs to be returned to the factory for repair, which will cause huge losses to users and manufacturers

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, system and device for controlling trustable network access
  • Method, system and device for controlling trustable network access
  • Method, system and device for controlling trustable network access

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0068] see figure 2 , the embodiment of the present invention provides a method for controlling access to a trusted network, by setting a TISA (Trusted Information Sign Agent, trusted information signature agency) outside the TNC architecture of the trusted network, so as to realize the verification of the non-embedded TPM chip Effectively control the access of end users to trusted networks. The content of the method is as follows:

[0069] 101. The end user applies for registration with TISA. After TISA verifies the identity of the end user is legal, it issues the TIC Client (Client Trusted Information Collector Client, information collector client) to the end user. At the same time, the end user confirms the selected trusted Types of signatures and trusted signature criteria.

[0070] Wherein, when this step is implemented, the following method can be adopted: the end user applies for registration to TISA, and when the end user is an unregistered user, the user can log in...

Embodiment 2

[0109] see Figure 4 , an embodiment of the present invention provides a system for controlling access to a trusted network, and the system includes: a user device, a trusted network access server, and a trusted information signature mechanism;

[0110] The user equipment is used to send the trusted signature to the trusted network access server after obtaining the trusted information collector client;

[0111] The trusted network access server is used to receive the trusted signature sent by the user equipment, and send the trusted signature to the trusted information signing authority; receive the verification result returned by the trusted information signing authority after verifying the validity of the trusted signature; and Control the user equipment to access the trusted network according to the verification result;

[0112] The trusted information signature authority is used to receive the trusted signature sent by the trusted network access server, verify the validit...

Embodiment 3

[0135] see Figure 5 , an embodiment of the present invention provides a user equipment, the user equipment includes:

[0136] An acquisition module, configured to acquire a trusted information collector client;

[0137] The sending module is configured to send the trusted signature to the trusted network access server through the trusted information collector client obtained by the acquiring module.

[0138] Among them, the acquisition module specifically includes:

[0139] The application unit is used to apply for the trusted information collector client from the trusted information signing authority;

[0140] The detection and storage unit is used to detect and save the credible information after the application unit obtains the client terminal of the information collector;

[0141] A reporting unit, configured to report the credible information detected by the detection unit to the credible information signing authority;

[0142] The receiving unit is used to receive t...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a method for controlling accessing the trusted network, a system and a device thereof. The invention belongs to the communication field. The method comprises the following steps: transmitting trusted signature by a trusted information collector client to the trusted network access server; transmitting the received trusted signature by the access server to a trustedinformation signature mechanism; checking the validity of trusted signature by the trusted information signature mechanism, and returning the checked result to the access server; and controlling the accessing of user into the trusted network by the access server. The system of the invention comprises a user device, a trusted network access server and a trusted information signature mechanism. Theuser which is not inserted with TPM applies the accessing of trusted signature into the trusted network for TISA through the obtained TIC Client for avoiding the idling of TPM. When places which require improving generate in TIC Client or TISA, the places can be directly modified. The effect caused to the user is effectively prevented. The generalization of trusted network is facilitated. The risk bear by the user and the network operator is reduced.

Description

technical field [0001] The invention relates to the communication field, in particular to a method, system and equipment for controlling access to a trusted network. Background technique [0002] The rapid development of computer networks, on the one hand, has greatly improved the efficiency of people's office life, on the other hand, it has also brought about increasingly complex and endless information security issues. Traditional firewalls, intrusion detection technologies and virus prevention are only in the terminal. Resisting external attacks passively cannot fundamentally solve security problems, and cannot cope with the endless malicious attacks and viruses, especially the indiscriminate spread of malicious programs already resident in the terminal. In order to improve terminal security, TCG (Trusted Computing Group, Trusted Computing Group) proposes a trusted computing technology different from traditional security technologies. Trusted computing technology aims at...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & AuthorityPatents(China)
IPC IPC(8): H04L9/32
Inventor刘衍珩王健魏达康辉王爱民丁一兰
OwnerHUAWEI TECH CO LTD