A security association backup method and device

A security and alliance technology, applied in the field of communication, can solve problems such as service interruption of the peer device and failure of anti-replay check

Active Publication Date: 2019-05-07
HANGZHOU DPTECH TECH
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, because the sequence number of the security association on the backup device is inconsistent with that of the peer device, the packets sent by the backup device fail the anti-replay check on the peer device, which in turn interrupts the service with the peer device.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A security association backup method and device
  • A security association backup method and device
  • A security association backup method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] In order to make the purpose, technical solution and advantages of the present application clearer, the solution of the present application will be further described in detail below with reference to the accompanying drawings.

[0020] In order to solve the problems in the prior art, the present invention provides a security association backup method and device.

[0021] figure 1 It is a schematic diagram of a dual-machine backup system applied in the present invention, including a master device, a backup device, and a peer device for mutual backup. Both the master device and the backup device may be VPN gateway devices.

[0022] Please refer to figure 2 , is a schematic diagram of the processing flow of the security association backup method provided by the present invention, the security association backup method can be applied to the master device in the dual-machine backup system, and the dual-machine backup system also includes a backup device, wherein the backu...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention provides a security alliance backup method. The method includes the following steps that: a plurality of VPN session connections with an opposite-end device are established, a security alliance corresponding to the plurality of VPN session connections is obtained through negotiation; one of the VPN session connections is bound with a master device, another one or more VPN session connections are respectively bound with one or more standby devices; and the security alliance corresponding to the plurality of VPN session connections which is obtained through negotiation is backed up to the standby devices, so that at least one standby device can exchange messages with the opposite-end device through the VPN session connections bound with the standby devices and according to the backed-up security alliance of the standby devices when the master device fails. With the security alliance backup method and the security alliance backup apparatus of the invention adopted, the business of the opposite-end device will not interrupt assuredly.

Description

technical field [0001] The invention relates to the technical field of communications, in particular to a security association backup method and device. Background technique [0002] With the increase of demands for remote access and remote office, more and more VPN (Virtual Private Network, virtual private network) gateway devices are deployed. The use of dual-machine backup in the prior art can effectively improve the stability of the VPN gateway device, that is, deploy multiple master devices and backup devices that are mutually backup. [0003] In the dual-machine backup system, the primary device in the VPN gateway device processes the received traffic, and the backup device detects the running status of the primary device. When the master device receives the traffic sent by the peer device, the sequence number of the security association of the master device also changes (increases) accordingly. However, because the standby device does not receive traffic synchronous...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/24H04L29/08H04L12/46
CPCH04L12/4641H04L41/0668H04L67/1095H04L67/148
Inventor 孔伟政刘宇驰王之云
Owner HANGZHOU DPTECH TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap