Unlock instant, AI-driven research and patent intelligence for your innovation.

A time-based anti-replay method and device

An anti-replay and anti-time technology, applied to electrical components, transmission systems, etc., can solve problems such as packet loss by mistake, and achieve the effect of avoiding packet loss by mistake

Active Publication Date: 2017-09-15
NEW H3C TECH CO LTD
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0010] In view of this, the present application provides a time-based anti-replay method and device, which are used to solve the technical problem of packet loss caused by out-of-order packets under the condition of high-speed traffic and multi-core concurrency

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A time-based anti-replay method and device
  • A time-based anti-replay method and device
  • A time-based anti-replay method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0042] The technical solutions of the present invention will be described in detail below with reference to the accompanying drawings.

[0043] figure 1 A flow chart of the steps of a time-based anti-replay method provided by an embodiment of the present invention. The steps in this embodiment are described with the network device at the receiving end as the main body of the steps, and the sending end and the receiving end are transmitted through an IPsec tunnel. data message, the method includes:

[0044] Step 101, receiving the data message based on IPSec encapsulation sent by the sending end, recording the local absolute time stamp T2 of the receiving end at the time when the data message is received, and carrying the time stamp of the time when the data message is sent by the sending end in the data message The sender's local absolute timestamp T1;

[0045]This embodiment uses the AH header of the IPSec protocol and / or the sequence number (Sequence Number) field in the E...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

This application discloses a time-based anti-replay method and device. The present invention is based on the IPSec protocol. When the sending end encapsulates IPSec, it carries a time stamp in the original serial number field, and the receiving end combines the local time stamp based on the time stamp in the message. The time and the anti-replay time window determine whether the message is a replay message, and it is not necessary for the sending end and the receiving end to maintain time synchronization through the time synchronization protocol. The present invention can effectively avoid packet loss by mistake under the condition that the packet sending rate of the sending end is high and multi-core sends messages concurrently.

Description

technical field [0001] The invention relates to the anti-replay technology of Internet protocol messages, in particular to a time-based anti-replay method and device. Background technique [0002] Internet Protocol Security (Internet Protocol Security, IPSec) protocol is a three-layer tunnel encryption protocol formulated by IETF. This protocol provides a complete set of architecture for network data security on the IP layer. It provides security services such as data confidentiality, data integrity, data source authentication, and anti-replay (Anti-Replay) for data transmitted on the Internet. [0003] Traditional IPsec VPN adopts end-to-end technology. When a data packet is intercepted by a third party, an attacker can decipher the intercepted packet and then replay the same packet to gain illegal access by forging an identity. [0004] The IPSec protocol implements anti-replay detection through a network authentication header (Authentication Header, AH) and a sequence nu...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 宋晓欢
Owner NEW H3C TECH CO LTD