Path quality analysis method of encrypted network based on flow analysis

A network path and quality analysis technology, applied in the direction of data exchange network, digital transmission system, electrical components, etc., can solve the problems that the network path quality cannot be obtained, and there is no good solution

Inactive Publication Date: 2015-11-18
COMP APPL RES INST CHINA ACAD OF ENG PHYSICS +1
View PDF5 Cites 20 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Therefore, the quality of the network path cannot be obtained by analyzing the TCP protocol header and payload in the IP data packet; (2) In an encrypted network, in order to improve security, hosts in the network often prohibit various active measurement data packets, such as the ping command generated ICMP
[0007] Therefore, there is no good solution for the end-to-end path quality detection of encrypted networks.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Path quality analysis method of encrypted network based on flow analysis
  • Path quality analysis method of encrypted network based on flow analysis
  • Path quality analysis method of encrypted network based on flow analysis

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] As the best implementation mode of the present invention, its content includes: in the end-to-end encrypted network with IPsec, the IPsec protocol will use encryption algorithm to verify, encrypt and re-encapsulate the data packet transmitted from the upper layer. Therefore, the IP header information in the data packet can be used to analyze the data packet. Regardless of whether the ESP protocol or the AH protocol is used, an IP header, the external IP header, will be added in front of the data packet. In the present invention, the session to which the data packet belongs is determined by analyzing the source address and destination address of the external IP header of the data packet received by the measurement point and the SPI information in the IPsec header.

[0033] The IPsec header inserted when the IPsec encryption protocol verifies and encrypts the data packet provides the basis for the analysis of the present invention. In the protocol standard, it is stipula...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a path quality analysis method of the encrypted network based on flow analysis. The method comprises that A) a random intermediate node in the communication process of the encrypted network is selected as a measurement point, and the network flow is collected; B) an encrypted data packet received by the measurement point is analyzed to obtain source and target addresses of an IP header and an SPI of an IPsec header, and the source and target addresses of the IP header and the SPI of the IPsec header determine a session; and C) all data packets of the same session are analyzed, the packet loss number is calculated according to serial number information in the IPsec protocol headers of the data packets, and the packet loss index of the whole link is calculated finally. The method can obtain quality information of encrypted IPsec communication paths by analyzing the encrypted IPsec data packets.

Description

technical field [0001] The invention relates to the technical field of network path quality analysis methods, more precisely, an encrypted network path quality analysis method based on traffic analysis in the case of encrypted network traffic. Background technique [0002] At present, the domestic network coverage is continuously expanding, and the average speed of the network is also continuously increasing. For users, it means that the service quality of the network is good. In most cases, the network has indeed improved, but this does not mean that the user's online experience has improved, because it is possible to encounter network congestion, resulting in indirect abnormal network performance for users. To quickly detect faults caused by factors such as network lines and congestion, after years of research, the following measurement techniques can be used to achieve: [0003] (1) Active measurement. Parameters such as network status and performance are obtained by a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/26H04L29/06
CPCH04L43/0829H04L63/0485
Inventor 吴世洲赵强黄鹂声田晓霞
Owner COMP APPL RES INST CHINA ACAD OF ENG PHYSICS
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap