Unlock instant, AI-driven research and patent intelligence for your innovation.

Host security protection physical card based on fpga and its data processing method

A security protection and host technology, applied in transmission systems, electrical components, etc., can solve problems such as a single firewall, loss of service capability, network congestion, etc., and achieve the effects of shortening development time, convenient online updates, and ensuring security

Active Publication Date: 2021-03-16
HUNAN DATANG XIANYI TECH CO LTD +1
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Network attacks against network service providers occur frequently, causing network congestion, paralysis, and loss of service capabilities. Intentional or unintentional illegal operation of hosts causes hosts to be destroyed, resulting in production failures
Network security technology is increasingly attracting people's attention. For the complexity of network attacks and intrusion methods, a single firewall, intrusion detection system and other protection methods are increasingly unable to meet people's needs.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Host security protection physical card based on fpga and its data processing method
  • Host security protection physical card based on fpga and its data processing method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0028] This embodiment discloses an FPGA-based physical card for host security protection.

[0029] Such as figure 1 with figure 2 As shown, the security protection physical card of the present embodiment includes an FPGA chip and a digital signal processor connected thereto and a memory (comprising a memory and a cache), and also includes: a communication interface for communicating with a protected host (such as figure 1 indicated by the PCI interface or figure 2 PCIE interface shown).

[0030] In this embodiment, a virtual identity authentication unit, a data encryption unit, an intrusion detection unit, a firewall unit, a trap unit, and a rule policy unit are respectively set in the configurable logic module of the FPGA chip. Among them, the rule policy unit establishes a logical association with the identity authentication unit, data encryption unit, intrusion detection unit, firewall unit, trap unit, and rule policy unit to carry out linkage according to various spe...

Embodiment 2

[0039] Corresponding to the above-mentioned security protection physical card, this embodiment discloses a data processing method based on an FPGA-based host security protection physical card, which mainly includes:

[0040] The physical card monitors the process of the protected host, and calls the identity authentication unit, data encryption unit, intrusion detection unit, firewall unit, and trap unit set in the FPGA chip configurable logic module to use the rules and policies inherent in the unit and the protected host Various specifications and policies formulated by the upper-layer application perform security protection linkage.

[0041] Specifically, the security protection linkage of this embodiment includes the following aspects:

[0042] a. The identity authentication unit identifies legal users and illegal users accessing the protected host and prevents illegal users from operating;

[0043] b. The data encryption unit encrypts the data transmission of the key pro...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of computer security, and discloses an FPGA-based host security protection physical card and a data processing method thereof, so as to ensure the security of the host. The safety protection physical card of the present invention is mainly to respectively set virtual identity authentication unit, data encryption unit, intrusion detection unit, firewall unit, trap unit and rule policy unit in the configurable logic module of FPGA chip; Rule policy unit and identity authentication unit , data encryption unit, intrusion detection unit, firewall unit, trap unit, and rule policy unit to establish a logical association for linkage according to various specifications and policies formulated by the local inherent and upper-layer applications of the protected host; and the intrusion detection unit is also used for recording A rule that triggers an alarm, and the format of the rule is converted and then sent to the rule policy unit for loading and execution by the firewall unit.

Description

technical field [0001] The invention relates to the technical field of computer security, in particular to an FPGA-based host security protection physical card and a data processing method thereof. Background technique [0002] While the development of the network brings convenience to people, it also causes a series of new problems. Network attacks against network service providers occur frequently, causing network congestion, paralysis, and loss of service capabilities. Intentional or unintentional illegal operations of hosts cause hosts to be destroyed, resulting in production failures. Network security technology has attracted people's attention day by day. Aiming at the complexity of network attacks and intrusion methods, a single firewall, intrusion detection system and other protection methods are increasingly unable to meet people's needs. A new direction of development is to improve the security of the system by combining multiple protection methods. Contents of ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/02H04L63/0428H04L63/08H04L63/1416
Inventor 刘文哲林玥廷徐展强卢建刚李世明王彬邹光球张成煜向春波谢小鹏李理龙建平刘巍
Owner HUNAN DATANG XIANYI TECH CO LTD