Method and apparatus for preventing aggression in packet communication system

A technology of packet communication and feature information, which is applied in the field of network communication, can solve problems such as preventing attacks in the packet communication system well, and achieve the effects of avoiding payment, reducing security risks, and saving network resources

Inactive Publication Date: 2009-07-29
HUAWEI TECH CO LTD
View PDF0 Cites 22 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0011] It can be seen that the existing technical solutions still cannot solve the problem of effectively preventing attacks on the terminals of the packet communication system.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and apparatus for preventing aggression in packet communication system
  • Method and apparatus for preventing aggression in packet communication system
  • Method and apparatus for preventing aggression in packet communication system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0041] In this embodiment, the data gateway detects the TCP / IP error message sent by the terminal, determines that the external data stream currently received by the terminal is malicious attack data, and blocks it.

[0042] Since the function of blocking malicious attack messages in the embodiment of the present invention can be implemented on the data gateway, it can also be implemented on the firewall between the data gateway and the external service network, and even the data gateway can be integrated with the firewall. Therefore, for ease of description , The following description does not limit specific physical entities.

[0043] Reference figure 1 The steps of the method for preventing attacks in the packet communication system provided by the embodiment of the present invention are as follows:

[0044] Step S101, the terminal receives an unexpected data packet from the outside;

[0045]The external attack source sends malicious attack data to the terminal. The attack sou...

Embodiment 2

[0068] In this embodiment, a logical network entity, a security policy management entity, is set in the packet communication system, and when the terminal receives unexpected external data, it sends a message to the security policy management entity to request the shielding of the external data flow.

[0069] Refer to image 3 The steps of the method for preventing attacks in the packet communication system provided in this embodiment are as follows:

[0070] Step S301: The terminal establishes a link to the data gateway, and obtains the report address of the security policy management entity.

[0071] The reporting address of the security policy management entity can be configured in the terminal; or the reporting address of the security policy management entity can be configured on the data gateway, and when the terminal is connected to the network, it interacts with the gateway to obtain the reporting address of the security policy management entity; or in the network Other netw...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an attack preventing method of a packet communicating system, which comprises the following steps: an error message sent by a host when unexpected data packages are received and carries characteristic information of the data packages is obtained; corresponding shielding rules are generated according to the characteristic information; and subsequent data packages are filtered by the shielding rules. The invention further provides a corresponding device. The attack preventing method and the device of the packet communicating system can notify network to shield malicious data streams when packet sub-domain terminals receive external malicious attack, thus greatly reducing the safety risk of the terminals, saving network resources, avoiding user payment for junk data, and saving the power source consumption of the terminals, especially mobile terminals.

Description

Technical field [0001] The present invention relates to the field of network communication technology, in particular to a method and device for preventing attacks in a packet communication system. Background technique [0002] With the development of telecommunications technology, in addition to the original basic services in the circuit domain such as voice and short messages, services in the packet domain have also developed rapidly. According to the access method, they can be divided into fixed access and mobile access. Access usually refers to broadband access, including wireless local area network (WLAN); while mobile access includes packet domain services provided by various mobile communication networks, such as GPRS / UMTS and future evolution of SAE networks, CDMA networks, and TD-SCDMA networks. WiMax network and so on. [0003] The terminal (mobile or fixed) establishes a link connection with the data gateway, and allocates an IP address from the data gateway or other IP...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24
Inventor 银宇
Owner HUAWEI TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap