Unlock instant, AI-driven research and patent intelligence for your innovation.

A method and system for collecting plaintext data in a multi-layer channel of ssh protocol

A technology of clear text data and collection method, which is applied in the field of network security communication

Active Publication Date: 2019-08-20
ZHENGZHOU SEANET TECH CO LTD
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In this case, the aforementioned patent application can only collect a small amount of plaintext data in the outermost session, while the channel messages are all ciphertext, so a method that can strip the SSH channel layer by layer and collect all SSH data is needed

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and system for collecting plaintext data in a multi-layer channel of ssh protocol
  • A method and system for collecting plaintext data in a multi-layer channel of ssh protocol
  • A method and system for collecting plaintext data in a multi-layer channel of ssh protocol

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0033] The present invention will be further described now in conjunction with accompanying drawing.

[0034] figure 1 It shows a common usage scenario of using the SSH port forwarding feature: the client needs to establish a connection with the remote server; where the client and the springboard machine are located on the first network segment, and the springboard machine and the remote server are located on the second network segment, so the client The end cannot be directly connected to the remote server, and a springboard is needed. Specifically, the client uses the port forwarding function of the SSH protocol to establish an outer SSH session connection with the springboard machine. This connection includes a direct-tcpip channel, which encapsulates the memory SSH session connection between the client and the remote server . In this scenario, the client can directly access the remote server with the help of the springboard.

[0035] For this scenario, if it is necessar...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a plaintext data acquisition system within a SSH protocol multi-layer channel. The system includes a SSH conversation management module, a SSH safety packaging module, a SSH channel processing module, and a SSH data acquisition module. The SSH conversation management module is intended for receiving and transmitting a network data packets, and maintaining relation data between TCP / IP connection and SSH conversation. The SSH safety packaging module is intended for establishing a SSH conversation, maintaining SSH secret key information, decrypting and de-packaging the input data to obtain plaintext SSH messages, or outputting the plaintext SSH messages after packaging and encrypting the plaintext SSH messages. The SSH channel processing module is intended for identifying a SSH channel in a SSH conversation, and based on the type of the channel, determining whether the channel contains inner layer SSH conversation data, and maintaining the corresponding relationship between the SSH conversation data and the SSH channel. The SSH data acquisition module is intended for extracting and acquiring useful data from the plaintext SSH messages.

Description

technical field [0001] The invention relates to the field of network security communication, in particular to a method and system for collecting plaintext data in a multi-layer channel of the SSH protocol. Background technique [0002] The SSH protocol is the abbreviation of Secure Shell, developed by the Network Working Group of the IETF; SSH is a security protocol based on the application layer and the transport layer, which is currently reliable and is designed for remote login sessions and other network services. security protocol. SSH2 is the 2.x version of the SSH protocol, which is defined and described in detail in the RFC 4250 to RFC 4254 standards, and is the currently used SSH version. At present, SSH has gradually replaced protocols such as telnet, and has become the preferred protocol for remote login and transmission agent. [0003] However, the SSH protocol has the characteristics of encrypted transmission. Data collectors in the network cannot directly coll...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 宋磊郑艳伟叶晓舟刘磊
Owner ZHENGZHOU SEANET TECH CO LTD