Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and system for establishing secure channel

A technology of secure channel and establishment method, which is applied in the direction of secure communication devices, transmission systems, digital transmission systems, etc., can solve problems such as difficulty in certificate management, and achieve the effects of preventing common DDoS attacks, facilitating security authentication, and increasing flexibility

Active Publication Date: 2017-01-04
COMBA TELECOM SYST CHINA LTD
View PDF4 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Based on the above situation, the present invention proposes a method and system for establishing a secure channel, which realizes the establishment of a secure channel between VNF instances in different security domains, and solves the problem of difficult implementation of certificate management in a virtualized environment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for establishing secure channel
  • Method and system for establishing secure channel
  • Method and system for establishing secure channel

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] In order to make the objectives, technical solutions and advantages of the present invention clearer, the present invention will be further described in detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are only used to explain the present invention, and do not limit the protection scope of the present invention.

[0037] In one embodiment, a method for establishing a secure channel, such as figure 2 shown, including the following steps:

[0038] Step S201: Receive, through the second virtualized network function management device and the first virtualized network function management device, a second cross-certificate sent by the second virtualized network function instance, where the second cross-certificate includes a second signature;

[0039] Step S202: verifying whether the second signature is correct according to the pre-stored signature information;

[0040] Step S20...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method and system for establishing a secure channel. The method comprises a step of receiving a second cross certificate sent by a second virtual network function instance, a step of verifying whether the second signature of the second cross certificate is correct according to pre-stored signature information, a step of obtaining a stored first cross certificate when the verification is correct, a step of inquiring the local certificate revocation list of second certificate management mechanism interconnection end through a first management channel according to an interconnection agreement agreed in advance, a step of verifying whether the first cross certificate and the second cross certificate are valid or not according to the certificate revocation list, a step of sending a second virtual network function instance to the first certificate when the verification is valid, a step of sending a communication IP address to the second virtual network function instance after a preset verification time, a step of receiving the message returned by the second virtual network function instance, and a step of establishing a secure channel based on the message. According to the method and the system, the establishment of the secure channel between VNF instances in different security domains is realized, and the problem of the difficult realization of certificate management in a virtual environment is solved.

Description

technical field [0001] The present invention relates to the field of communication technologies, in particular to a method and system for establishing a secure channel. Background technique [0002] The goal of NFV (Network Function Virtualization) is to replace private and dedicated network element equipment by improving industry-standard server, storage and network equipment. The NFV architecture has two advantages, one is that the cost of standard equipment is low, which can save huge investment costs; the other is an open API (Application Programming Interface, application programming) interface, which can obtain more flexible network capabilities. [0003] The virtual network architecture formulated by NFV includes: VNF (Virtualised Network Function, virtualized network function) instance, EM (Element Management, network element management), NFVI (NFV Infrastructure, NFV infrastructure), VIM (Virtualised Infrastructure Managers, management virtual infrastructure), NFVO...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/46H04L9/32
CPCH04L9/3247H04L9/3268H04L12/4633H04L63/0272H04L63/0823
Inventor 余筱李剑荣黄汉钊马超
Owner COMBA TELECOM SYST CHINA LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com