Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and equipment for processing messages

A processing method and message technology, applied in the field of communications, can solve problems such as potential security risks, inability to process authentication request messages in time, and RADIUS server processing performance degradation, and achieve the effect of enhancing stability and robustness

Inactive Publication Date: 2011-09-14
NEW H3C TECH CO LTD
View PDF3 Cites 20 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] Because the RADIUS protocol stipulates that as long as the client's authentication or accounting message conforms to the format and other basic requirements of the RADIUS protocol, the RADIUS server needs to respond, which leads to potential security risks; that is, an attacker can use multiple clients to quickly and continuously send Authentication request packets, so that the RADIUS server needs to process a large number of authentication request packets, and cannot process normal authentication request packets sent by non-attackers in time, thus forming an attack
[0004] In the existing technology, no protection measures are taken for the authentication request message sent by the attacker, and the processing method is the same as that of the normal authentication request message, which causes the decline of the processing performance of the RADIUS server

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and equipment for processing messages
  • Method and equipment for processing messages
  • Method and equipment for processing messages

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] The present invention provides a message processing method, which is applied to a system including an authentication server (such as a RADIUS server), a network access device, and a client. The authentication server sends an authentication request message, and the authentication request message can carry information such as the user name, client IP address, and client MAC address.

[0039] In the present invention, it is necessary to maintain an authentication failure times record table (such as a HASH table) on the authentication server. Initially, the authentication failure times record table is empty, and the index (i.e. the key of the HASH table) of the authentication failure times record table is the identification information ( That is, the fingerprint string in the HASH table), the identification information can be realized through the client IP address (framed-ip-address), or through the client MAC address (calling-station-id), or through the client IP address an...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method and equipment for processing messages. The method comprises the steps that an authentication server receives an authentication request message from a client terminal; if items corresponding to marking information exist in an authentication failure time record table, the authentication server queries authentication failure time corresponding to the marking information in the items; and if the authentication failure time exceeds a prearranged threshold, the authentication server abandons the authentication request message. In the invention, protective measures can be taken on the authentication request message of an attacker so that an RADIUS server has certain attack resistance, thereby reinforcing the stability of the RADIUS server.

Description

technical field [0001] The present invention relates to the technical field of communication, in particular to a message processing method and equipment. Background technique [0002] RADIUS (Remote Authentication Dial In User Service) is a network access device (such as a switch, router, firewall, etc.) that works at the network access layer and reports requests from clients to The protocol for carrying authentication, authorization, accounting and configuration information between the RADIUS server (used to verify user identity information and respond according to the response policy) , and has the following characteristics: using client / server structure, using shared keys to ensure network transmission security, good scalability, and flexible authentication mechanism. [0003] Because the RADIUS protocol stipulates that as long as the client's authentication or accounting message conforms to the format and other basic requirements of the RADIUS protocol, the RADIUS serve...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24
Inventor 钟桂荣
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com