Virtualized security gateway system applicable to RDMA (Remote Direct Memory Access) network

A security gateway and virtualization technology, applied in the field of virtualized security gateway system, can solve the problem of low security performance of virtualization technology

Pending Publication Date: 2022-04-08
SHENZHEN INST OF ADVANCED TECH CHINESE ACAD OF SCI
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The embodiment of the present invention provides a virtualized security gateway system suitable for RDMA networks, so as to at least solve the technical problem of low security performance of the existing virtualization technology

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Virtualized security gateway system applicable to RDMA (Remote Direct Memory Access) network
  • Virtualized security gateway system applicable to RDMA (Remote Direct Memory Access) network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0026] In order to enable those skilled in the art to better understand the solutions of the present invention, the following will clearly and completely describe the technical solutions in the embodiments of the present invention in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments are only It is an embodiment of a part of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts shall fall within the protection scope of the present invention.

[0027] It should be noted that the terms "first" and "second" in the description and claims of the present invention and the above drawings are used to distinguish similar objects, but not necessarily used to describe a specific sequence or sequence. It is to be understood that the data so used are interchangeable under appropriate ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the field of networks, in particular to a virtualization security gateway system suitable for an RDMA (Remote Direct Memory Access) network, which comprises a virtualization rear end used for providing the use condition of a virtual machine for the RDMA network for a kernel security module by calling a global sign function and being responsible for guaranteeing a specific security mechanism, the kernel security module and the user layer security process collaboratively complete the formulation of a security policy; the kernel security module is used for collecting historical data, summarizing the historical data, and sending the historical data to a user layer security process through netlink at a preset moment to analyze and predict the historical data so as to predict and judge whether security threats exist or not; and after the prediction data is received, a security policy is formulated, and a virtualization rear end is notified to take measures to guarantee a security mechanism through a kernel notification chain. The technical problem that an existing virtualization technology is low in safety performance is at least solved.

Description

technical field [0001] The invention relates to the network field, in particular to a virtualized security gateway system suitable for RDMA networks. Background technique [0002] Different from the traditional TCP / IP network, Remote Direct Memory Access (RDMA) transfers the processing of data packets from the kernel network protocol stack to dedicated network card hardware, so that the kernel can be bypassed during data transmission. Instead, it is processed directly on the network card. Therefore, the occupation of the processor can be reduced, and the data copying from the user application space to the kernel space can be reduced. In addition, using the remote secret key verification provided by the RDMA protocol, when the connection between the sender and the receiver is established, the sender can directly transfer the data to the memory address specified by the receiver, thereby bypassing the processing of the receiver. device, further reducing the delay of data tran...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/40G06F9/455
Inventor 李永康王洋须成忠叶可江
Owner SHENZHEN INST OF ADVANCED TECH CHINESE ACAD OF SCI
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap