Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Improved network authentication detection method and system

A network authentication and network technology, applied in the field of network security, which can solve the problems of not forcing the establishment of TLS security channels and being vulnerable to man-in-the-middle attacks.

Inactive Publication Date: 2020-02-28
武汉思普崚技术有限公司
View PDF3 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0002] In the existing SDN network, it is not mandatory to establish a TLS security channel between the controller and the switch, and the default state is disabled, which makes the network vulnerable, and there may be clear text communication between the controller and the switch, which can be intercepted by any third party Or modify the content of communication between the two parties, which is vulnerable to man-in-the-middle attacks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Improved network authentication detection method and system
  • Improved network authentication detection method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0050] The preferred embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings, so that the advantages and features of the present invention can be more easily understood by those skilled in the art, so as to define the protection scope of the present invention more clearly.

[0051] figure 1 The flow chart of the improved network authentication detection method provided by this application, the method includes:

[0052] Obtain network traffic data and identify network types based on network characteristics;

[0053] According to the characteristics of known network attack types, analyze and extract the feature vector of the attack data in the network traffic data; based on the feature vector of the attack data, construct a noise simulation network attack model, and apply this model to randomly generate various known types network attacks and complex network attacks;

[0054] Using the noise simulation network attack...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an improved network authentication detection method and system. The method comprises the following steps: establishing a security encryption channel between a controller and a switch, adding a trusted authority CA to authenticate and sign the controller and the switch, realizing bidirectional authentication between the controller and the switch, and performing key negotiation between the controller and the switch to realize targeted improvement of SDN network vulnerability; meanwhile, analyzing and constructinga noise simulation network attack model; training the noise simulation network attack model by using real network attack traffic, and after the noise simulation network attack model is trained, accessing the noise simulation network attack model to amachine learning module to serve as a simulation attack source of the machine learning module to attack and train the machine learning module uninterruptedly, thereby helping to improve the detection capabilityof the machine learning module.

Description

technical field [0001] The present application relates to the technical field of network security, in particular to an improved network authentication detection method and system. Background technique [0002] In the existing SDN network, it is not mandatory to establish a TLS security channel between the controller and the switch, and the default state is disabled, which makes the network vulnerable, and there may be clear text communication between the controller and the switch, which can be intercepted by any third party Or modify the communication content between the two parties, which is vulnerable to man-in-the-middle attacks. There is no certificate verification between the controller and the switch. Attackers can easily intercept the request sent by the controller to the switch, pretend to be the controller to communicate with the switch, and obtain all the communication content between the switch and the controller. [0003] At the same time, a new network attack d...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06G06N20/00H04L12/24
CPCG06N20/00H04L41/145H04L63/0869H04L63/0884H04L63/1416
Inventor 段彬
Owner 武汉思普崚技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com