Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network cloud security optimization method and system based on SGX and related medium

An optimization method and a safe technology, applied in the field of cloud-network integration, can solve problems such as enclave single point of failure and resource limitation, and achieve the effect of solving single point of failure and resource limitation

Pending Publication Date: 2022-04-01
E SURFING IOT CO LTD
View PDF11 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Embodiments of the present invention provide an SGX-based network cloud security optimization method, device, computer equipment, and storage medium, aiming to solve the problems of enclave single-point failure and resource limitation, realize support for large-scale network elements, and SGX optimized for reliability

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network cloud security optimization method and system based on SGX and related medium
  • Network cloud security optimization method and system based on SGX and related medium
  • Network cloud security optimization method and system based on SGX and related medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are some of the embodiments of the present invention, but not all of them. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0032] It should be understood that when used in this specification and the appended claims, the terms "comprising" and "comprises" indicate the presence of described features, integers, steps, operations, elements and / or components, but do not exclude one or Presence or addition of multiple other features, integers, steps, operations, elements, components and / or collections thereof.

[0033] It should also be understood that the terminology used ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a network cloud security optimization method and device based on SGX and a related medium, and the method comprises the steps: carrying out the analysis of a virtual network function descriptor, and obtaining the related configuration of a virtual network function component; establishing a virtual host and a plurality of SGX enclaves mutually mapped with the virtual network component; performing local authentication on the credibility of each SGX enclave, and setting an authentication key for each SGX enclave; obtaining a mapping relationship between the SGX enclave and the virtual network function component based on the authentication key; when a first SGX enclave in the plurality of SGX enclaves initiates an interaction request to a second SGX enclave, allocating a session key to the first SGX enclave and the second SGX enclave; and performing identity authentication on the first SGX enclave and the second SGX enclave according to the mapping relationship, and performing data interaction according to the session key after the identity authentication is passed. According to the method, the problems of enclave single-point failure and resource limitation can be solved, large network elements are supported, and the SGX is optimized to improve the reliability.

Description

technical field [0001] The present invention relates to the technical field of cloud-network integration, in particular to an SGX-based network cloud security optimization method, system and related media. Background technique [0002] SGX (Software Guard Extensions) is a CPU architecture extension technology that uses a new set of instruction sets and memory access mechanisms to deploy a secure and trusted execution environment (SGXenclave, SGX) on the host hardware that is completely independent of the host OS. Enclave), which supports defense against OS privileged domain attacks. The features of SGX are naturally suitable for cloud computing scenarios, support virtualization and resource sharing environments, and provide hardware encryption protection security zones independent of operating systems and virtualization resources to minimize the attack surface and enhance data protection. [0003] In the process of network cloud hosting, virtualization layer technologies su...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40
Inventor 陈天黄勇军陈楠吴斯栋王雪艳林睦楷
Owner E SURFING IOT CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com