Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A zero-copy data packet acquisition method for industrial control system network

A technology for industrial control systems and acquisition methods, which is applied in the field of zero-copy acquisition of data packets in industrial control system networks, can solve problems such as low capture rate, damage to real-time performance of data packets, packet loss or out-of-sequence packets, and achieve efficient capture Effect

Inactive Publication Date: 2017-09-08
北京华电天益信息科技有限公司 +1
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The network data flow of the industrial control system has strict real-time restrictions, such as the usual first and second types of data, even when the amount of data is not large, there is a fixed time limit (dead period) for most data packets, so network equipment Or the host will pre-allocate resources and reserve them for these real-time strict data. At this time, if the data packet acquisition program for network monitoring or collection is run on the hub host with strict policy presets, it is likely to affect the performance and policy traffic configuration. The efficiency of the host may even destroy the real-time performance of data packets; when the instantaneous flow of network data packets is very large, usually when the third type of data appears irregularly, the data packet rate of each node in the network may be very fast, so that even if the data packet The acquisition host is connected in parallel in the network, but it is very likely that the capture rate is lower than the network packet rate by using the traditional pcap packet capture method of multiple copies of the kernel user mode, resulting in packet loss or out-of-sequence packets, which becomes a bottleneck

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A zero-copy data packet acquisition method for industrial control system network
  • A zero-copy data packet acquisition method for industrial control system network
  • A zero-copy data packet acquisition method for industrial control system network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] The technical scheme of the present invention will be further explained below in conjunction with the accompanying drawings.

[0029] The invention provides a zero-copy acquisition method for a data packet used in an industrial control system network, comprising the following steps:

[0030] Step 1, load the kernel module, and specify the network interface that needs to obtain the data packet; that is, set the name of the network card.

[0031] Step 2, initialize the kernel module, which includes allocating the shared memory area of ​​the kernel module and the user program, and the shared memory area is allocated in the user state area.

[0032] Among them, the shared memory area is formed by mapping between the kernel module and the user state. The main method is: use the alloc_pages function to apply for a physical page, then use vmap to map the applied physical page to the kernel module, and then pass the vm_insert_page function to apply for the physical page Insert...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a data packet zero-copy acquiring method for an industrial control system network. By using improved and optimized zero-copy technology, the invention improves efficiency and instantaneity of data packet acquisition process by reducing the times of copying interface data and some control structures. The 'Zero-copy' technology, which bypasses the system protocol stack and reaches directly from a network card physical layer to a user application, may obtain easily in real time a network data packet at a ultra speed; meanwhile, in a manner that a data packet capturing host of the invention is located in parallel at a side of other network host, the method of the invention collects data and does not influence transfer of data packet which is originally in the network, and thus the invention achieves high-effective capturing of data.

Description

technical field [0001] The invention belongs to network security technology, in particular to a zero-copy acquisition method for data packets used in industrial control system networks. Background technique [0002] In the industrial network system, the security of the system is very important, so some application systems are needed to ensure the security and stability of the system, such as intrusion detection system, security audit system and so on. These systems need to capture, analyze and record the data packets in the network. At the same time, in order to ensure that the normal communication activities of the system are not affected, the system is usually designed as a bypass of the data link layer. [0003] In order to meet this requirement, the usual method is to capture packets through the libpcap interface library. The packet capture mechanism of libpcap is to add a bypass process at the data link layer. When a data packet arrives at the network interface and is ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 吴克河安思成丁雪伟王晓翔崔文超李佳玮
Owner 北京华电天益信息科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com