Unlock instant, AI-driven research and patent intelligence for your innovation.

Message processing method and device based on MACSec network

A message processing and message technology, which is applied in the field of network communication and can solve problems affecting other services.

Pending Publication Date: 2022-03-25
SUZHOU CENTEC COMM CO LTD
View PDF0 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0016] The technical problem to be solved by the embodiments of the present invention is how to solve the problem that in the prior art, when the corresponding encryption, decryption, pass, and discard operations are performed on the MACsec message through the ACL, it will affect other services.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Message processing method and device based on MACSec network
  • Message processing method and device based on MACSec network
  • Message processing method and device based on MACSec network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] In the prior art, one method for processing MACSec plaintext messages is that after the MACsec function is enabled on a port, all messages are encrypted and decrypted, and received plaintext messages are discarded. This approach will have an impact on services such as LLDP and LACP; at the same time, packet loss will occur in the intermediate state of MACsec negotiation. Another method is to identify different traffic through an access control list (Access Control List, ACL) module, and then take corresponding encryption and decryption, pass, and discard operations as required.

[0035] For example, for the received special plaintext traffic, the ACL matches the special plaintext characteristics, and the pass operation is adopted; for the received ciphertext traffic, the ACL matches the MACSec packet characteristics, and the decryption operation is adopted; for other received plaintext traffic, configure a default ACL, take drop action. However, according to the above ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a message processing method and device based on an MACSec network, and the method comprises the steps: analyzing a received message, and enabling the obtained analysis information to be matched with a preset processing strategy; according to the preset processing strategy, selecting to carry out passing processing, discarding processing or decryption processing on the message; and executing a conventional forwarding operation on the processed plaintext message or the decrypted ciphertext message. Through the device and the method, the problem that in the prior art, when corresponding operations of encryption, decryption, passing and discarding are carried out on the MACSec message through the ACL, other management control functions are influenced can be solved.

Description

technical field [0001] The invention relates to network communication technology, in particular to a message processing method and device based on MACSec network. Background technique [0002] MACsec defines a method for data security communication based on IEEE 802 local area network. MACsec can provide users with secure MAC layer data sending and receiving services, including user data encryption, data frame integrity check, data source authenticity check and replay protection. [0003] MACsec is not a substitute for existing end-to-end IPSec, TLS and other three-layer security technologies, but their complementary technologies. MACsec uses two-layer encryption technology to provide secure data transmission of hop-by-hop devices. It is suitable for government, military, financial and other occasions that require high data confidentiality. For example, the optical transmission equipment between two switch devices in the LAN is encrypted by MACsec Technology can ensure the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40H04L69/18
CPCH04L63/0428H04L63/14H04L69/18Y02D30/00
Inventor 朱涛龚海东杨八双
Owner SUZHOU CENTEC COMM CO LTD