Network terminal access control method based on bypass control technology

An access control and network terminal technology, applied in the field of network security, can solve problems such as inability to prevent attacks and risks, network terminal security threats, etc., and achieve good network adaptability, good practicability, and high reliability.

Pending Publication Date: 2021-11-26
STATE GRID HUNAN ELECTRIC POWER +2
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] However, the existing traditional firewall and anti-virus technology can no longer prev

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network terminal access control method based on bypass control technology

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0029] The compatibility of the desktop management system needs to be compatible with the company’s desktop terminal management system to ensure that the log information is finally sent to the network and information security risk monitoring and early warning platform through the desktop management system. The access client must meet the technical specifications for the interface with the desktop client, including:

[0030] (1) Access the client to detect the running status and version information of the desktop management client;

[0031] (2) The access client reports its own running status and version to the desktop management client;

[0032] (3) The access client pushes the terminal user prompt message to the desktop management client, and the desk management client performs a pop-up window prompt;

[0033] (4) The access client obtains the terminal registration information in the desk management client,

[0034] (5) The access management terminal must meet the technical ...

Embodiment 2

[0037] Log management, local access log record storage, storage time not less than 6 months, access log record query; query based on MAC address, IP address, fingerprint, user, department information, at least according to device IP, MAC address, department Sorting and displaying results; log management of illegal private connection, illegal counterfeiting, and network-to-network abnormal events, including precise query and fuzzy query, and providing a response handling interface to block suspicious terminals at the port level; abnormal behavior of HUB and layer-2 devices log management, and can provide a response and disposal interface to block suspicious terminals at the port level; log management of terminal security baseline network access inspection status, including precise query and fuzzy query, and statistics of device network access based on time, department, and operating system dimensions. Report the access log and terminal security baseline inspection log to the man...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a network terminal admission control method based on a bypass control technology. The method comprises: a step of constructing a bypass mirror image blocking admission mechanism; a step of constructing an SNMP port control network access mechanism; a step of constructing an access mechanism of the 802.1 x network; a step of constructing a transparent bridge access mechanism; a step of constructing a policy routing admission mechanism; and a step of performing access control on the network terminal by adopting the constructed access mechanism. According to the invention, identity authentication and security state inspection of the access equipment are realized, and the short board of information security vulnerabilities is blocked; effective identification and distinguishing and accurate access control of in-network and in-network terminals accessed through equipment are realized; the network structure of the current user does not need to be transformed, and the method can be flexibly deployed in the network and has good network adaptability; and finally, the method has multi-level self-security measures, can ensure the security and reliability of system operation, can provide the active defense capability of the terminal, and is high in reliability and good in practicability.

Description

technical field [0001] The invention belongs to the technical field of network security, and in particular relates to a network terminal admission control method based on bypass control technology. Background technique [0002] In recent years, with the emergence of new concepts and technologies such as cloud computing, Internet of Things, mobile Internet, and smart city networks, the future network is developing in the direction of mobility, universalization, and big data. At the same time, this will inevitably bring more new security risks. For governments, enterprises and institutions, in addition to guarding against traditional viruses, Trojan horses, backdoors, DDoS attacks, and various application-layer-based attacks, they must also try their best to solve illegal and Access, host security, resource abuse issues. The unilateral security protection mode provided by traditional firewall equipment, antivirus software, patch distribution system, and vulnerability scanner...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/08H04L29/06
CPCH04L67/1095H04L63/0209H04L63/101
Inventor 封靖川孙毅臻严敏佳戴大维田峥陈中伟黎曦李琪瑶
Owner STATE GRID HUNAN ELECTRIC POWER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap