A label-based network authorization management method and system

A network authorization and management method technology, applied in the label-based network authorization management method and system field, can solve the problems of complicated management, difficult to achieve refinement, dynamic adjustment, and ineffective management, etc., to achieve simple management and network Authorization management is convenient and fine-grained effect control

Active Publication Date: 2021-06-11
杭州商湾网络科技有限公司
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] Traditional networks use firewall devices to supervise inbound and outbound north-south network traffic, and release or block specific traffic based on some custom security rules. This method is relatively complicated to manage and cannot be directly and effectively managed according to applications and devices. It is even more impossible to monitor the east-west traffic of the enterprise internal network
[0004] In short, in the management of existing network security policy rules, it is difficult to achieve refined and dynamically adjustable methods

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A label-based network authorization management method and system
  • A label-based network authorization management method and system
  • A label-based network authorization management method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047] In the following, the present invention will be further explained in conjunction with an exemplary tag-type network authorization management system, so as to provide a thorough understanding of the present invention. The present invention involves the following modules:

[0048] Such as figure 1 As shown, a label-based network authorization management method includes the following steps:

[0049] 1) Set the user identity authentication module according to the deployment environment. The user identity authentication module is mainly used for user access management, and the access mode supports 802.1x authentication, and authentication methods such as MAC address. The user identity authentication module will synchronize the user identity information defined in the management platform. After the user's access authentication is completed, the access device information (IP address, user information, MAC address, etc.) is reported to the management platform in real time.

...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a label-based network authorization management method and system, and aims to realize a simple and convenient network authorization management method in a dynamically changing network. According to the user identity authentication module, the user's identity information is uploaded to the management platform in real time, and the management platform generates user label data and user-defined application label data, and synchronizes them to the label synchronization module, and converts them into binary labels that can be used in the label matching module data. The label matching module of the operating system kernel module uses the interval tree (interval-tree) retrieval algorithm and matching cache to quickly match all data packets with application labels and user labels, and perform corresponding traffic operations (blocking) through different matching results or release).

Description

technical field [0001] The invention relates to the technical field of IP, in particular to a tag-based network authorization management method and system. Background technique [0002] The rapid development of IT has changed the face of the network boundary, and many enterprises adopt cloud, big data analysis and automation to accelerate the delivery of applications, thereby driving business development. As access to applications becomes easier, the network becomes more complex, and network security becomes critical, requiring a more refined approach to network authorization management. [0003] Traditional networks use firewall devices to supervise inbound and outbound north-south network traffic, and release or block specific traffic based on some custom security rules. This method is relatively complicated to manage and cannot be directly and effectively managed according to applications and devices. It is even more impossible to monitor the east-west traffic of the int...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/0227H04L63/0236H04L63/0254H04L63/0263H04L63/101
Inventor 严燕冬黄慧攀
Owner 杭州商湾网络科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap