Method and system for collecting network confidential data plaintext

A data acquisition system and data technology, applied in the field of network information security, can solve the problems of reducing SSL throughput rate, occupying more memory resources, and long response time, etc., and achieve the effect of improving SSL throughput rate, saving memory resources, and shortening response time

Active Publication Date: 2015-03-25
ZHENGZHOU SEANET TECH CO LTD
View PDF4 Cites 21 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Since the two connections are independent, there are the following problems: After the SSL/TLS proxy server obtains the data, it needs to modify the data packet load, resulting in a long response time; because the SSL/TLS proxy server needs to decrypt the da

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for collecting network confidential data plaintext
  • Method and system for collecting network confidential data plaintext
  • Method and system for collecting network confidential data plaintext

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0022] The technical solutions of the present application will be described in further detail below with reference to the drawings and embodiments.

[0023] figure 1 It is a flowchart of a method for collecting plaintext of network confidential data provided in Embodiment 1 of the present application. Such as figure 1 As shown, the method specifically includes:

[0024] In step S101, the client sends a client greeting message to the data collection system, and the data collection system records the random number of the client and then forwards the client greeting message to the server.

[0025] Specifically, the client hello message (ClientHello) sent by the client to the data acquisition system includes the client random number required for calculating the key. After receiving the greeting message from the client, the data collection system needs to record the random number, without any modification to its content, and directly forwards it to the server. The data acquisit...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a method and system for collecting a network confidential data plaintext. The method comprises the steps that on the basis that a TCP connection exists between a client side and a server side, a data collecting system is introduced, two correlative SSL/TLS connections are built between the data collecting system and the client side and the server side respectively by modifying SSL/TLS hand shaking messages, and the two connections share session keys. The data collecting system with the session keys can restore the plaintext of confidential data. The two SSL/TLS connections built between the data collecting system and the client side and the server side share the session keys, therefore, response time is shortened, the SSL throughput rate is greatly improved, internal storage resources are saved, and then the maximum user connecting number is increased.

Description

technical field [0001] The present application relates to the technical field of network information security, in particular to a secure socket layer / transport layer security (Secure Socket Layer / Transport Layer Security, SSL / TLS) protocol network confidentiality data collection method and system. Background technique [0002] The SSL / TLS protocol runs on the Transmission Control Protocol (Transmission Control Protocol, TCP) protocol and under various application layer protocols. Data communication over the Internet provides security services. SSL / TLS is a layered protocol, including the bottom record layer protocol and the upper layer change encryption description protocol, alarm protocol and handshake protocol. On the record layer, the high-level data is encapsulated into records, compressed, calculated Message Authentication Codes (MAC), encrypted, and finally sent through TCP; the data received through TCP is decrypted, verified by MAC and decompressed. provided to the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L69/16H04L9/0825H04L9/14H04L63/0281H04L63/045H04L63/0464H04L63/0823H04L63/1408H04L63/168H04L2209/76H04L63/30
Inventor 宋磊董海韬叶晓舟田静郑艳伟樊皓
Owner ZHENGZHOU SEANET TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap