Unlock instant, AI-driven research and patent intelligence for your innovation.

Network node self-learning security filtering method and device

A network node and security filtering technology, applied in computer security devices, instruments, electrical digital data processing, etc., can solve frequent joining and exiting of business terminals, large network bandwidth occupation of system performance, and signaling interaction between business management servers and network nodes Frequency and other issues, to reduce signaling interaction, reduce the number of effects

Active Publication Date: 2020-09-22
浙江信网真科技股份有限公司
View PDF12 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] However, in the prior art, the service management server sends a whitelist notification message to the network node for each service terminal. Due to the frequent joining and exiting of service terminals, the signaling interaction between the service management server and the network nodes is very frequent, causing system Performance and network bandwidth are relatively large, and the number of entries in the access control list of network nodes is very tight

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network node self-learning security filtering method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] In order to make the purpose, technical solution and advantages of the present application clearer, the present application will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present application, not to limit the present application.

[0035] In a centralized management information system, with the development of business, there will be more control entries allowed by the white list on the network node, and the corresponding white list control items will also be added to the network node on the path from the business terminal to other terminals that it needs to interact with. entry. Although the white list will be continuously added and deleted according to the different stages of the business, the control table items of the forwarding chips of the network nodes are still very tight. In addition, after the service termi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a network node self-learning security filtering method and device, and the method comprises the steps that a network node carries out the self-learning of the attribute information of forwarded data, generates a corresponding control table entry according to an optimization condition when the attribute information of the data meets the optimization condition, and deletes anoriginal data table entry of a business terminal; the optimization condition is sent to a service management server, so that the service management server judges whether the data forwarding of the service terminal meets the optimization condition or not, and does not send white list increase and decrease information to the network node if the data forwarding of the service terminal meets the optimization condition, otherwise, sends white list increase and decrease information to the network node. Therefore, signaling interaction between the service management server and the network node is reduced, and the number of control table entries on the network node is also reduced.

Description

technical field [0001] The invention belongs to the technical field of access control, in particular to a security filtering method and device for network node self-learning. Background technique [0002] In a centralized management information system, the management server has interactive information between all network devices, so that through centralized control of network nodes, a white list can be issued, and control entries can be added to network nodes to realize data forwarding control . The control entry for controlling data forwarding is generally an access control list supported by all network nodes. [0003] However, due to the limited specifications of the control table items of network nodes, the use of static access control lists will lead to excessive specifications and cannot be applied to systems with complex services. The dynamic access control list is added / deleted in time by the management server as it interacts with the service terminal. Even so, the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/62H04N21/258H04N21/472
CPCG06F21/6218H04N21/25808H04N21/47202G06F2221/2141
Inventor 王真震许志峰韩剑锋
Owner 浙江信网真科技股份有限公司