Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Trusted separate gateway

An isolated gateway and trusted technology, applied in the gateway field, can solve the problem that the security protection capability of the gateway device and the network forwarding performance cannot be taken into account at the same time.

Active Publication Date: 2011-04-06
706 INST SECOND RES INST OF CHINAAEROSPACE SCI & IND
View PDF3 Cites 20 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] The purpose of the present invention is to provide a trusted isolation gateway, which solves the problem that the security protection capability of the current gateway equipment and the network forwarding performance cannot be taken into account at the same time

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Trusted separate gateway
  • Trusted separate gateway
  • Trusted separate gateway

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0026] A trusted isolation gateway, comprising: external network main board 1, internal network main board 2, network interface module A 4, network interface module B 8 and security isolation card 3, also includes: multi-core network processor A 5, multi-core network Processor B 9 , start-up guide module A 6 , start-up guide module B 10 , safety control module A 7 , safety control module B 11 , internal network protocol processing 13 and external network protocol processing board 12 . Wherein, the composition of security control module A 7 and security control module B 11 is the same, including: packet classification unit 22, access control unit 15, protocol proxy unit 16, content detection unit 21, anti-network attack unit 14, anti-virus unit 17 , a trusted access unit 20, a file transfer unit 18 and a security audit unit 19. Wherein, the data packet classification unit 22 is used to classify the data packets, the access control unit 15 is used to control the forwarding of th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a trusted separate gateway comprising an extranet mainboard (1), a network interface module A (4) and a security separate card (3) and also comprising a multi-core network processor A (5), an enablement guide module A (6), a security control module A (7), an intranet protocol processing board (13) and an extranet protocol processing board (12), wherein the network interface module A (4), the multi-core network processor A (5), the enablement guide module A (6) and the security control module A (7) are respectively connected with the extranet mainboard (1). After the trusted separate gateway is enabled, the enablement guide module A (6) calls the multi-core network processor A (5) to load the security control module A (7), and an enablement guide module B (10) calls a multi-core network processor B (9) to load a security control module B (11) to enter the working state. The invention gives consideration to the security protection capacity and the network forwarding speed.

Description

technical field [0001] The invention relates to a gateway, in particular to a trusted isolation gateway. Background technique [0002] A gateway is an important network security device. At present, common gateway devices at home and abroad include firewalls, unified threat management systems, and anti-virus gateways. These gateway devices all adopt a single-host structure, which is composed of a mainboard and a network interface card. Based on the TCP / IP protocol, the network data packet header and load are matched and filtered for access control. However, these gateway devices have the following deficiencies: the access control method based on data packet filtering is weak in protection; it cannot defend against network attacks based on the TCP / IP protocol; it cannot prevent important information from leaking through the network; the device itself has loopholes, which may become Springboard for attackers. Due to the above-mentioned deficiencies, another network security d...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/66H04L29/06
Inventor 张继业郭旭东郭丽娜刘向东袁玉峰
Owner 706 INST SECOND RES INST OF CHINAAEROSPACE SCI & IND
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com