Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

Multi-core intelligent network card platform-based ultrahigh-bandwidth network security audit method

A smart network card and bandwidth network technology, applied in the direction of electrical components, transmission systems, etc., can solve the problems of not small crossing distance, restricting the popularization and popularization of proprietary hardware architecture, and achieve the effect of application strategy security and strong reliability

Inactive Publication Date: 2012-08-01
SHANGHAI GAIQI INFORMATION TECH
View PDF5 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0012] In response to these problems, technologies such as ASIC chips, network processors, and multi-core processors have emerged one after another, and have more or less solved the above problems from different levels and angles. However, with the rapid improvement of network performance and the rapid enrichment of business functions Compared with the growth rate, these architectures have not been popularized rapidly, and there is still a large gap between excellent chip capabilities and mature application products. This distance restricts the popularity and popularization of the above-mentioned proprietary hardware architectures in the field of security gateways.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Multi-core intelligent network card platform-based ultrahigh-bandwidth network security audit method
  • Multi-core intelligent network card platform-based ultrahigh-bandwidth network security audit method
  • Multi-core intelligent network card platform-based ultrahigh-bandwidth network security audit method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] The present invention will be further described now in conjunction with accompanying drawing.

[0028] Such as figure 1 Shown, the present invention uses following steps:

[0029] A. Configure the smart network card multi-core platform: including DPI engine configuration, filter keyword set setting, application protocol configuration, encryption and decryption setting, and compression algorithm configuration;

[0030] B. The smart network card multi-core platform receives and processes the original message: by configuring the PCI-EXPRESS bus transmission, the smart network card multi-core platform processes the original network data message, and its processing includes data packet reassembly, decryption, deep detection, content filtering, classification, etc. And transfer the processed application data to the X86 CPU platform via the PCI-EXPRESS bus, see figure 2 ;

[0031] C. In-depth inspection and auditing of application data: audit the application data after in-...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the field of computer network security, in particular to a multi-core intelligent network card platform-based ultrahigh-bandwidth network security audit method. The method is characterized in that the method includes the following steps that: a multi-core intelligent network card platform is configured; raw messages are received and processed by the multi-core intelligent network card platform; the deep inspection and audit of application data are carried out; and subsequent processing is carried out after audit. Adopting the multi-core intelligent network card platform, the method provides an effective acceleration scheme for a variety of fields, such as network security, flow monitoring, service analysis and signaling test, and can be applied in 100G ultrahigh bandwidth; meanwhile, the mode of shunting the service process is adopted, the application strategy is secure and highly reliable, the deep inspection technology is adopted as well, and thereby the method realizes the functional requirements of network application level security audit, flow control, enterprise level application security policy implementation and the like.

Description

technical field [0001] The invention relates to the field of computer network security, in particular to an ultra-high bandwidth network security audit method based on an intelligent network card multi-core platform. Background technique [0002] With the increasing number of network applications, the demand for bandwidth is also rising, which poses a challenge to the actual software and hardware solutions for security audits. How to realize the security of enterprise applications without sacrificing performance or paying less performance costs Auditing is the focus of successful design. [0003] The technology of in-depth detection is mainly the combination of the technology of application state detection firewall and the technology of identification of application layer data flow, to efficiently identify various applications on the network, and to realize the detection of network application level through the detection of application flow data. Functional requirements suc...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 谢卫葛云生
Owner SHANGHAI GAIQI INFORMATION TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products