Communication method, security policy negotiation method and system supporting trusted network access

A technology of security policy and network access, which is applied in the field of communication, can solve the problems that policy interaction and communication schemes have not yet been proposed, and the end-to-end secure communication of heterogeneous cross-domain security policy interaction cannot be realized.
CN102215211BActive Publication Date: 2016-01-20ZTE CORP
4 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
ZTE CORP
Publication Date
2016-01-20

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses a communication method, a security policy negotiation method and system for supporting trusted network connect. The communication method is used for the communication between a trusted network connect (TNC) network and a local network for a non-trusted network connect network. The communication method comprises the following steps: the local network supports a cross-domain interface for federated trusted network connect (IF-FTNC) interface; when the TNC network requests to access a communication entity of the local network, the local network performs policy negotiation with the TNC network through the IF-FTNC interface; and if a negotiation result of the policy negotiation allows communication, the TNC network directly communicates with the local network. According to the communication method disclosed by the invention, the problems of heterogeneous cross-domain security policy negotiation and communication are solved, and the policy interaction and communication of the non-trusted network and the TNC network are realized.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The present invention relates to the technical field of communication, in particular to a communication method, a security policy negotiation method and system supporting trusted network access. Background technique

[0002] Convergence is the trend of network development, and a solution based on security policies is an inevitable choice for future network security management. With the development of network convergence, business diversity and equipment complexity make the security of the entire network more and more complicated. Therefore, complex manual configuration can no longer meet the needs of network development, and solutions based on security policies can provide network security management methods that optimize efficiency, unify security, and facilitate operation.

[0003] The purpose of the unified security policy framework is to implement unified management of security devices on the entire network based on policies, and realize the colla...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More