Safety traceability device suitable for IPv6/IPv4 access service

A security and encryption security technology, applied in the field of communication, can solve the problems of application adaptation difficulties, large security risks of IPv4/IPv6 source traceability methods, and high resource overhead, so as to protect stability and security, reduce system overhead and system resources. low cost effect

Active Publication Date: 2022-03-04
北京英迪瑞讯网络科技有限公司
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] In view of this, in order to solve the problems of high security risk, high resource overhead, and difficult application adaptation of the existing IPv4 / IPv6 traceability methods, the present invention is based on the stateless translation technology and invented an encrypted and secure real-time traceability method and historical traceability method. Form a unified stateless security traceability device

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Safety traceability device suitable for IPv6/IPv4 access service
  • Safety traceability device suitable for IPv6/IPv4 access service

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0058] Based on the stateless translation technology, the present invention invents an encrypted and secure real-time traceability method and a historical traceability method to form a unified stateless security traceability device. The device does not need to query the log, and can realize real-time IPv4 / IPv6 traceability directly through the encrypted API, which consumes very little system resources and can greatly reduce system overhead; the device is based on the stateless translation technology of the network layer, so it is suitable for all applications. Including encryption and private applications; the device does not modify the content of data packets, and is compatible with existing IPv4 firewalls, which will not increase security risks. At the same time, encryption technology is used to ensure end-to-end information hiding of traceability queries, and middlemen cannot intercept and tamper. Greatly protect the stability and security of the traceability system.

[005...

Embodiment 2

[0136] Based on the implementation of Embodiment 1, this embodiment provides a method for implementing the security traceability device applicable to IPv6 / IPv4 access services described in Embodiment 1. Such as figure 2 shown.

[0137] According to the second aspect of the present disclosure, a method for implementing the above-mentioned security traceability device suitable for IPv6 / IPv4 access services is proposed, including the following steps:

[0138] S100. Install and configure the stateless translation gateway, based on the stateless translation gateway running business traffic normally;

[0139] S200. Install the real-time traceability facility and the historical traceability facility on the stateless translation gateway, and respectively configure at least one of the local query traceability interface, the high-performance remote query traceability interface, and the management traceability interface ;

[0140] S300. Send an encrypted traceability request, judge t...

Embodiment 3

[0147] Based on the implementation of Embodiment 1, this embodiment provides a local query and traceability method in combination with the local query traceability interface.

[0148] According to the third aspect of the present disclosure, a traceability method for local query based on the above-mentioned secure traceability device suitable for IPv6 / IPv4 access services is proposed, including the following steps:

[0149] S111. The management user logs in to the stateless translation gateway, and performs user authority verification and authentication;

[0150] S121. Input a traceability request including traceability parameters;

[0151] S131. Determine whether the traceability parameters match the limited format of the local query traceability interface through the local query traceability interface: if yes, use the local query traceability interface according to the IPv6 / IPv4 stateless flexible mapping table Query in real time and return structured output data; otherwise,...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a security traceability device suitable for IPv6 / IPv4 access service. The security traceability device comprises a stateless translation gateway and a traceability device. Based on a stateless translation technology, an encryption security real-time traceability method and a historical traceability method are invented, and a unified stateless security traceability device is formed. According to the device, real-time IPv4 / IPv6 traceability can be realized directly through an encrypted API without querying a log, the consumption of system resources is extremely low, and the system overhead can be greatly reduced; the device is based on a network layer stateless translation technology, so that the device is suitable for all applications including encryption and private applications; the device does not modify the content of a data message, is compatible with an existing IPv4 firewall, does not increase the security risk, guarantees the hiding of end-to-end information of traceability query through employing an encryption technology, cannot achieve the interception and tampering of a man-in-the-middle, and greatly protects the stability and security of a traceability system.

Description

technical field [0001] The present disclosure relates to the technical field of communications, and in particular to a security traceability device and method suitable for IPv6 / IPv4 access services. Background technique [0002] As an internationally recognized next-generation Internet core protocol, IPv6 has sufficient address space and advanced protocol features. However, IPv6 is not compatible with IPv4, so for existing IPv4 services, additional upgrade technologies are needed to ensure their interconnection with IPv6 Internet. [0003] One possible way is dual-stack technology, that is, the IPv4 server and internal network are transformed into IPv4 / IPv6 dual-stack, so that IPv6 users can access newly upgraded IPv6 services through IPv6 links, and IPv4 users can access original IPv6 services through IPv4 links. Some IPv4 services. However, according to the "IPv6 Network Security White Paper" of the China Academy of Information and Communications Technology, the dual-sta...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40H04L61/2503H04L41/0213H04L101/686
CPCH04L63/0236H04L63/0428H04L61/2542H04L41/0213H04L2463/146Y02D30/50
Inventor 王桥倩韩国梁包丛笑李星
Owner 北京英迪瑞讯网络科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap