Unlock instant, AI-driven research and patent intelligence for your innovation.

Method, device and equipment for application network access awareness

An application and network access technology, applied in the field of application network access perception, can solve the problems of low accuracy and poor security, and achieve the effect of improving security and increasing accuracy

Active Publication Date: 2021-12-14
BEIJING TOPSEC NETWORK SECURITY TECH +2
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Embodiments of the present invention provide a method, device and equipment for application program network access perception to solve the problems of low accuracy and poor security in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and equipment for application network access awareness
  • Method, device and equipment for application network access awareness
  • Method, device and equipment for application network access awareness

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0061] The first embodiment of the present invention provides an application program network access awareness method, such as figure 1 shown, including:

[0062] Step S101: Obtain a list of VPN resources;

[0063] The VPN client gets the resource list from the VPN server.

[0064] Step S102: Obtain the VPN resource linked by the traffic in the VPN resource list according to the received packet information of the traffic from the application program;

[0065] After the VPN client obtains the resource list, the application program sends traffic to the VPN client. After receiving the traffic, the VPN client analyzes the traffic and obtains the VPN resource linked by the traffic.

[0066] In a specific application scenario, the application program may be an APP. And the APP can be set on the same terminal as the VPN client. When using a VPN, multiple apps will send traffic to the VPN client at the same time. After the VPN client analyzes all the traffic, it will assign a specifi...

Embodiment 2

[0095] A specific application of the method for dimensioning application program network access awareness in the embodiment of the present invention is as follows: Figure 11 shown.

[0096] Step 1: The VPN client gets the resource list from the VPN server.

[0097] Step 2: An APP sends traffic to a resource of the VPN.

[0098] Step 3: The client VPN service obtains the traffic packets sent by the APP in step 2.

[0099] Step 4: Analyze the traffic message sent by the APP in step 2, and obtain the information in the message.

[0100] Step 5: According to the packet information obtained in step 4, confirm the VPN resource specifically linked by this traffic in the resource list obtained in step 1.

[0101] Step 6: Check all running processes in the proc file system, and obtain the process start information of each process.

[0102] Step 7: The process startup information obtained from step 6 is paired with the process ID.

[0103] Step 8: Store the pairing information obt...

Embodiment 3

[0109] like Image 6 As shown, the embodiment of the present invention provides an application program network access awareness device, including:

[0110] List obtaining module 601: used to obtain a list of VPN resources;

[0111] A VPN resource acquisition module 602: configured to acquire the VPN resource linked by the traffic in the VPN resource list according to the received packet information of the traffic from the application;

[0112] A process pairing information acquisition module 603: used to acquire the process pairing information of the application;

[0113] The network connection information obtaining module 604: obtain the network connection information of the traffic sent to the VPN resource;

[0114] Determining module 605: configured to determine the VPN resource tunnel of the application program link according to the process pairing information and the network connection information.

[0115] As a specific implementation of the present invention, such as...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a method, device and equipment for network access perception of application programs, wherein the method for network access perception of application programs includes: acquiring a list of VPN resources; Obtain the VPN resource linked by the traffic in the VPN resource list; obtain the process pairing information of the application program; obtain the network connection information of the traffic sent to the VPN resource; according to the pairing information and the network connection Information identifying the VPN resource tunnel to which the application is linked. Positive technical effects of increased accuracy and improved safety are achieved.

Description

technical field [0001] The present invention relates to the field of mobile network security, in particular to a method, device and equipment for application program network access awareness. Background technique [0002] The development of VPN technology can enable users to use remote access services safely and cheaply. After the VPN client establishes a connection with the VPN server and establishes a tunnel, data information can safely access the destination network through the tunnel. However, there are still security risks at the end of the tunnel. The terminal program can launch network attacks to the internal network through the VPN tunnel. Behavioral awareness of terminal programs is a prerequisite for preventing the above-mentioned cyber attacks. [0003] The existing technical solution is that the VPN client checks all traffic accessing VPN resources, and checks the system status at the same time, so as to complete the perception of the network access of the And...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/16G06F21/55
CPCG06F21/16G06F21/55
Inventor 李梓瑜陈天凯罗元
Owner BEIJING TOPSEC NETWORK SECURITY TECH