Dynamic service realization method and system base on service hopping and intelligent cleaning

A dynamic service and intelligent cleaning technology, which is applied in the field of network information security to achieve high security effects

Active Publication Date: 2016-09-28
中国人民解放军国防信息学院
View PDF6 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The IP network survival model based on service polymorphism proposed by the University of Electronic Science and Technology of China improves the survivability of the service system through drift transfer vulnerabilities between polymorphisms, but it is only a theoretical idea

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Dynamic service realization method and system base on service hopping and intelligent cleaning
  • Dynamic service realization method and system base on service hopping and intelligent cleaning
  • Dynamic service realization method and system base on service hopping and intelligent cleaning

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0026] figure 1 It shows the flow of the dynamic service implementation method based on service hopping and intelligent cleaning provided by the embodiment of the present invention, and only shows the part related to the embodiment of the present invention for convenience of description.

[0027] Such as figure 1 As shown, the dynamic service implementation method based on service jump and intelligent cleaning provided in this embodiment includes the following steps:

[0028] Step S1, the service hopping controller generates a random service hopping pattern based on two-dimensional time and space, and the hopping pattern includes hopping logical nodes and corresponding dwell times.

[0029] This step generates a random service jump pattern through the two dimensions of time and space. Specifically, the jump pattern generation algorithm will double-duplicate the jump logic node (space dimension) where the service is located and the residence time of a single node (time dimensi...

Embodiment 2

[0062] Figure 5 It shows the structure of the dynamic service implementation system based on service hopping and intelligent cleaning provided by the embodiment of the present invention, including a service hopping controller 1 and a service hopping proxy device 2. Preferably, the system also includes a virtualization cloud platform3. Wherein the service jump controller 1 stores a jump pattern and a drawing instance definition table, the service jump controller 2 stores a virtual machine mapping table, and the virtualization cloud platform 3 stores an IP address pool and In the virtual machine pool, when a new virtual machine is generated, the virtual machine name and IP address are obtained from the virtualization cloud platform, and when the virtual machine needs to be generated / cleaned, the IP address is allocated / reclaimed from the IP address pool.

[0063] From functional analysis, the service jump controller 1 includes:

[0064] A pattern generation unit, configured t...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a dynamic service realization method and system base on service hopping and intelligent cleaning suitable for the field of network information safety. The method comprises the following steps that a service hopping controller generates a time-space 2D based hopping pattern; the service hopping controller generates a virtual machine mapping table; the service hopping controller extracts part of information from the virtual machine mapping table to generate a service instance definition table, and the service instance definition table together with the hopping pattern is sent to a service hopping agent device; and the service hopping agent device traverses the hopping pattern, and inquires the service hopping agent device to obtain practical IP addresses and ports corresponding to present hopping logic nodes, and each hop is executed. According to schemes of the invention, virtual service hopping is combined with intelligent cleaning, and attacks of known and unknown Trojan and virus on network services can be defended actively.

Description

technical field [0001] The invention belongs to the field of network information security, specifically the field of dynamic services in active target defense, and in particular relates to a method and system for realizing dynamic services based on service transition and intelligent cleaning. Background technique [0002] Active target defense is an important security protection technology in recent years. This technology is different from previous network security research ideas. It does not pursue a perfect system against attacks, but moves the objects to be protected (such as host IP addresses, ports, Network services, etc.) to achieve the purpose of protecting the target, and increase the difficulty and cost of the attack by constantly changing (or jumping) the protected object. [0003] In the process of realizing dynamic services, how to realize the safe and efficient transition of services is the key to whether the system can actually run, but there is currently no fe...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/1441H04L63/20G06F21/14G06F2009/45595G06F9/45558G06F2009/45587
Inventor 刘建国李晓付国宾余奇戴昌裕朱春祥
Owner 中国人民解放军国防信息学院
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap