A distributed encryption service gateway and its implementation method

An encryption service and encryption server technology, applied in the field of distributed encryption service gateways, can solve the problems of inability to meet system throughput and network data processing capabilities, consuming a lot of resources and energy, and high application development costs. Satisfying safety requirements, safe use and increased effectiveness of flexible control

Active Publication Date: 2020-08-21
北京江南博仁科技有限公司
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In order to solve the low security of existing gateways and cannot meet the system's requirements for throughput and network data processing capabilities, gateway security solutions require application developers to spend a lot of resources and energy in technical fields that have nothing to do with their core business logic , leading to problems such as high application development costs and long development cycles, the present invention provides a high-security, high-reliability, high-deployment flexibility, and scalable distributed encryption service gateway and implementation method

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A distributed encryption service gateway and its implementation method
  • A distributed encryption service gateway and its implementation method
  • A distributed encryption service gateway and its implementation method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0040] Such as figure 1 As shown, Embodiment 1 of the present invention provides a distributed encryption service gateway, including the basic network service subsystem 1, the security service subsystem 2, and the communication service subsystem 3 of the same communication. The basic network service subsystem 1, The security service subsystem 2 communicates with user applications through the communication service subsystem 3, wherein,

[0041] The basic network service subsystem 1 is used to provide basic network service functions, and to receive the security service request sent by the user application through the network, to filter the security service request, and to Service requests perform load balancing on network resources.

[0042] In actual use, the basic network service subsystem 1 is used to separate the control plane of the traditional network from the data forwarding plane, realize programmable control of the underlying hardware through the software platform in t...

Embodiment 2

[0059] Such as figure 2 As shown, on the basis of Embodiment 1, the present invention further defines that the basic network service subsystem 1 includes a communication infrastructure module 101, a control module 102, an API interface module 103, a business application module 104, and an interface service module 105 ;

[0060] The infrastructure module 101 is used to be responsible for processing, forwarding and collecting status based on network data, and the infrastructure module 101 is also used to collect status information of network equipment, the network equipment is preferably several network servers, the status information Including operating data and performance data, the operating data includes traffic status information, the actual number of online users, and / or the number of user applications being processed, and / or the amount of data being downloaded, and / or the actual number of visits, so The performance data includes memory usage information and CPU usage in...

Embodiment 3

[0070] Such as Figure 4 As shown, Embodiment 3 of the present invention further defines on the basis of Embodiment 1 that the security service subsystem 2 includes a communicating data I / O module 201, an instruction processing module 202, an encryption server cluster 203, and a security service interface module 204. The data I / O module 201 is configured to receive the assigned security service request, and simultaneously put the security service request into a request queue and send it to the instruction processing module 202; the instruction processing module 202 uses When performing polling processing on the security service request, generate instruction information at the same time, and send the instruction information to the encryption server cluster 203 through the data I / O module 201, and the encryption server cluster 203 is used for The instruction information is subjected to response processing and a response result is generated, and sent to the instruction processing...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a distributed encrypted service gateway and an implementation method thereof. The gateway comprises a basic network service sub-system, a security service sub-system and a communication service sub-system communicating with each other, wherein both the basic network service sub-system and the security service sub-system communicate with a user application via the communication service sub-system. The method comprises the steps of providing a basic gateway; configuring the basic network service sub-system and the communication service sub-system on the basic gateway; and configuring the security service sub-system on the basic gateway, thus acquiring the distributed encrypted service gateway, wherein the security service sub-system provides security service for the basic gateway via an encrypted server cluster can be accesses remotely. According to the gateway and the implementation method thereof provided by the invention, security service, network service and reliable and flexible gateway of application server for the user application via the distributed software and hardware system module, extremely high redundancy and expansibility are provided, the Internet application security requirement in the age of big data can be met, and a reliable path is provided for secure utilization and flexible control of the network.

Description

technical field [0001] The invention relates to the technical field of computer network and information security, in particular to a distributed encryption service gateway and its realization method. Background technique [0002] With the development of computer network technology, especially the rapid development of big data and cloud computing technology, network access and data traffic have also increased rapidly. At the same time, network security problems are becoming more and more serious, and traditional security solutions are facing impact. , For example, the hardware security model does not have the ability to expand and cannot flexibly adapt to the cloud model, and the local gateway encryption technology cannot meet the throughput requirements in the big data environment. All in all, traditional solutions have been difficult to simultaneously meet the requirements of security, deployment and expansion flexibility, and massive data processing capabilities. [0003]...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/08H04L12/66H04L12/803H04L12/24
CPCH04L12/66H04L41/0654H04L41/0663H04L41/069H04L41/0893H04L41/22H04L47/125H04L63/0227H04L63/0428H04L63/10H04L67/1044
Inventor 戴宇星
Owner 北京江南博仁科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap