A method and device for transmitting key information

A transmission method and key technology, applied in the field of communication, can solve the problems of limited number of deployed GMs, limited network scale of GDVPN system, etc., and achieve the effect of expanding the scale of deployment

Active Publication Date: 2018-10-09
NEW H3C TECH CO LTD
View PDF9 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] When there are a large number of GMs in the GDVPN system, the KS needs to periodically send key update messages to each GM, resulting in the KS needing to send a large number of key update messages in each sending cycle, resulting in network failures in the GDVPN system. The scale will be limited by the CPU (Central Processing Unit, central processing unit) performance of KS, and the number of GMs that can be deployed in the GDVPN system is limited

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and device for transmitting key information
  • A method and device for transmitting key information
  • A method and device for transmitting key information

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0039] Aiming at the problems existing in the prior art, an embodiment of the present invention provides a key information transmission method, which is applied to a system including distributing KS, transferring KS, accessing KS and GM. In the embodiment of the present invention, in a GDVPN system including multiple KSs, by grading the multiple KSs, the lower-level KSs register with the upper-level KSs and serve as clients of the upper-level KSs. In the GDVPN system including multiple levels of KS, the highest level of KS is distribution KS, the lowest level of KS is access KS, and other levels of KS are transit KS. For example, assuming that KSs are divided into four levels, the KSs of the first level are distribution KSs, the KSs of the second level and the KSs of the third level are transit KSs, and the KSs of the fourth level are access KSs. Further, with figure 2 It is a schematic diagram of the application scenario of the embodiment of the present invention. Assuming ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a key information transmission method and equipment. The key information transmission method comprises the steps that a KS determines the classification role of the KS; when the classification role of the KS is a distribution KS, the distribution KS generates a security strategy and key information and issues the security strategy and the key information to a lower-level KS of the distribution KS; when the classification role is a transition KS, the transition KS receives a security strategy and key information from an upper-level KS of the transition KS, the security strategy and the key information are stored locally and are issued to a lower-level KS of the transition KS; when the classification role is an access KS, the access KS receives a security strategy and key information of an upper-level KS of the access KS, and the security strategy and the key information are stored locally; the access KS determines the security strategy and the key information corresponding to a group where GMs are located, and the currently determined security strategy and key information are issued to the GMs in a unicast mode. In the key information transmission method and equipment, the network scale of a GDVPN system is no longer limited by the performance of CPUs of the KSs.

Description

technical field [0001] The present invention relates to the technical field of communication, in particular to a method and equipment for transmitting key information. Background technique [0002] GDVPN (Group Domain Virtual Private Network, Group Domain Virtual Private Network) provides a group-based IPsec (Internet Protocol Security, IP protocol security) security model. A group is a collection of security policies, and all members belonging to the same group share the same security policies and keys. [0003] Such as figure 1 As shown, it is a schematic diagram of the network of the GDVPN system. KS (Key Server, key server) manages different security policies and keys by dividing different groups, and GM (Group Member, group member) joins the corresponding group to Obtain the security policy and key corresponding to this group from the KS. [0004] Specifically, the GM sends the group ID (identification) of the group it belongs to to the KS. According to the group ID...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L9/08
CPCH04L9/0819H04L63/062
Inventor 罗忠海
Owner NEW H3C TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap