Sharing file operation filtering method based on SMB protocol

A technology for sharing files and filtering methods, applied in electrical components, transmission systems, etc., can solve problems such as inability to effectively identify files, lack of effective filtering rules, increase system burden, etc., to ensure resource security, difficult to interfere, and safe high sex effect

Active Publication Date: 2015-06-03
HARBIN ENG UNIV
View PDF4 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] (1) The monitoring technology based only on the file filtering driver can only monitor the target files in the local stand-alone system, and cannot effectively identify the files newly downloaded to the local machine, and the monitoring granularity is poor; (2) Known file monitoring The system generally implements global monitoring, lacks effective filtering rules, and increases the burden on the system; (3) users often need to install a specific client to access the browser, and the upgrade and maintenance of the monitoring system needs to be operated one by one on the client

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Sharing file operation filtering method based on SMB protocol
  • Sharing file operation filtering method based on SMB protocol
  • Sharing file operation filtering method based on SMB protocol

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] The present invention will be further described below in conjunction with the accompanying drawings.

[0020] This method provides an effective solution for the monitoring of shared file downloads and the full life cycle management of offline use. This method captures the monitoring file by monitoring and analyzing the content of the SMB protocol message in the first time the file is downloaded to the local, and performs parallel encryption operations on it; on the basis of ensuring resource security, the entire filtering operation is transparent to the user. Ensure resource monitoring granularity.

[0021] The invention is a shared file operation filtering method, which realizes the management and control of the operation behavior in the life cycle of the target file through protocol analysis, kernel drive filtering and security combination strategy. Its workflow is as follows:

[0022] Keep monitoring and data packet analysis on ports 139 and 445 of the system. Wind...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a method for file filtration, in particular to a sharing file operation filtering method based on the SMB protocol. The sharing file operation filtering method comprises the following steps: holding monitoring and data packet analysis on the ports (139 and 445) of a system; performing step-by-step operation of IP filtration, SMB-step filtration and file name acquisition on a captured data packet; automatically adding file types which meet user-defined monitoring rules and corresponding file names into an operation filtration monitoring list; converting a network data packet to local monitoring, continuously monitoring the progress of a local drive through the system, acquiring file creation information, and acquiring newly created file names; comparing basic information such as names and capacities of local newly created files with those of files in the monitoring list; monitoring the local progress through a resident system, and acquiring operation information of files. As the method is based on analysis filtration strategies of application layer protocol and nucleus filtration driving of an operation system, the operation is visible, hard to interfere and high in security.

Description

technical field [0001] The invention relates to a file filtering method, in particular to a shared file operation filtering method based on the SMB protocol. Background technique [0002] With the rapid development of computer network technology, the acquisition, sharing and dissemination of information has become more convenient, but the risk of information leakage has also increased. Within the government and enterprises, important documents are circulated and shared among multiple people, increasing the possibility of data leakage. How to effectively manage the security of shared files has become the focus and research hotspot of the current government and enterprises. [0003] The monitoring and management of file operation behavior can be realized through file operation filtering technology, which is an effective means of file monitoring. Based on the Windows file operating system, the file operation filtering technology mainly relies on intercepting file operation re...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/08
CPCH04L63/0227H04L67/06
Inventor 孙建国李佳楠李博权
Owner HARBIN ENG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap