Method, device and system for processing dynamic host configuration protocol (DHCP) message
一种动态主机配置、消息发送方的技术,应用在通信领域,能够解决DHCP消息安全机制不能得到保证、单播地址易被假冒、网络客户端恶意配置等问题,达到密钥管理方便、配置方便、提高安全性的效果
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment 1
[0043] we can refer to image 3 , image 3 It is a flow chart of a method for processing a DHCP message in Embodiment of the present invention, specifically:
[0044] Block diagram 301, receiving a DHCP message, the source address of the DHCP message is CGA, and the DHCP message carries the signature data of the sender of the DHCP message;
[0045] In the specific implementation of the present invention, the source address of the sender of the DHCP message is CGA, and when generating the CGA, the sender of the DHCP message needs to deploy its own public key and private key in advance. There is a one-to-one correspondence between the public key and the private key. The CGA is a special type of IPv6 address, including subnet prefix and interface identifier. The CGA interface identifier is generated by the sender of the DHCP message through the first confusion algorithm according to the sender's public key and the CGA parameters. The sender of the DHCP message signs the DHCP ...
Embodiment 3
[0079] Such as Figure 13 as shown, Figure 13 It is a schematic diagram of a device for processing DHCP messages according to Embodiment 3 of the present invention;
[0080] An embodiment of the present invention provides a device for processing DHCP messages, including
[0081] The receiving unit 1301 is used to receive a DHCP message, the source address of the DHCP message is the CGA of the sender of the DHCP message, and the DHCP message carries the signature data of the sender of the DHCP message; the address verification unit 1302 is used to verify the CGA; the The address verification unit specifically uses the public key of the sender of the DHCP message and the CGA parameters to verify the CGA. The signature verification unit 1303 is configured to verify the signature data; the signature verification module specifically uses the public key of the sender of the DHCP message to verify the signature data. The payload processing unit 1304 is configured to process the p...
Embodiment 4
[0087] An embodiment of the present invention provides a system for processing DHCP messages, including: a DHCP server, which is used to interact with a network client on a DHCP message; when the DHCP server receives a message sent by a network client, the interaction is specifically: receiving DHCP message, the source address of the DHCP message is CGA, the DHCP message carries the signature data of the sender of the DHCP message; the CGA and the signature data are verified; when the CGA and the signature data are verified, the DHCP message is processed load;
[0088] and / or
[0089] When the DHCP server sends a message to the network client, the interaction is specifically:
[0090] Sign the DHCP message according to the private key of the DHCP message sender, generate a second DHCP message that includes the signature data, and the source address of the second DHCP message is the CGA;
[0091] Send the second DHCP message.
[0092] In addition, the system also includes ...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap