Unlock instant, AI-driven research and patent intelligence for your innovation.

User Id-based Android application traffic filtering method and system

A technology that applies traffic and filtering methods, applied in the field of network security, can solve the problems of difficult analysis of private protocols or encrypted traffic, time-consuming and labor-intensive problems, and achieve the effect of saving manual operation costs

Active Publication Date: 2021-05-14
HARBIN INST OF TECH
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The other is to purify network traffic manually, that is, to use human knowledge and experience to analyze data traffic, but this method depends on human knowledge structure and experience, which is time-consuming and laborious, and it is difficult for some private protocols or encrypted traffic. Efficient analysis directly by humans

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • User Id-based Android application traffic filtering method and system
  • User Id-based Android application traffic filtering method and system

Examples

Experimental program
Comparison scheme
Effect test

specific Embodiment approach 1

[0034] Specific implementation mode one: refer to figure 1 Describe this implementation mode, a kind of Android application flow filtering method based on userId of this implementation mode, comprises the following steps:

[0035] Step 1, read the userId (user authentication code) of the specified application from the Android device;

[0036] Obtain the said userId from the / data / system / packages.xml file of the Android device. / data / system / packages.xml is generated by PackageManagerService.java, which records all the attributes, permissions and other information of the APK installed in the system. When the APK in the system is installed, deleted, or upgraded, the file will be updated: the information in the file is divided into the following parts:

[0037] 1) permission block: it contains the information of all defined permissions in the system;

[0038] 2) package block: it contains detailed information of all installed apps in the system;

[0039] 3) shared-user block: ...

specific Embodiment approach 2

[0060] Specific implementation mode two, refer to figure 2 Describe this embodiment mode, a kind of Android application flow filtering system based on userId, comprise userId acquisition unit, iptables rule setting unit, and traffic acquisition and storage unit; Said userId acquisition unit is used to acquire the userId of specified application; Said iptables rule The setting unit is used to set iptables rules, label the flow of the userId upstream, put the data packet carrying the flow label into the NFLOG message pool, and set a label for the message pool; the flow acquisition and preservation The unit is used to obtain data packets from the NFLOG message pool and save them as pcap files.

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a user Id-based Android application traffic filtering method and system, and belongs to the technical field of network security. The method comprises the following steps: step 1, reading a user Id of a specified application from an Android device; step 2, using iptables to mark a flow label on a specified user Id (User Id); step 3, writing an iptables rule, putting the INPUT data packet and the OUTPUT data packet of the user Id with the flow label into an NFLOG message pool, and assigning a label to the NFLOG message pool; and step 4, obtaining a pure flow set corresponding to the target user Id from the NFLOG message pool. The problem that the application network traffic cannot be accurately analyzed due to the fact that the application traffic is mixed in one network is solved.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a userId-based Android application traffic filtering method and system. Background technique [0002] With the rapid development of the Internet, various Internet applications continue to emerge, and the scale of network traffic also increases. A large part of the network traffic is Android application traffic. The network traffic generated by Android devices is identified and analyzed. Network traffic management and malicious traffic detection are of great significance. [0003] When an Android device is running an application, the network traffic generated by all applications is mixed into one network, so it is impossible to accurately analyze the network traffic of a single application mixed into one network. [0004] There are several approaches to traditional web application traffic filtering. One is port-based application traffic filtering, but with the rapid inc...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/0227H04L63/1425H04L63/1441
Inventor 余翔湛葛蒙蒙赵跃史建焘刘立坤王久金冯帅宋赟祖李精卫韦贤葵石开宇车佳臻
Owner HARBIN INST OF TECH