Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Video security access method and system based on port selective encryption

A secure access and selective technology, applied in the field of electric power communication, can solve problems such as the inability to effectively solve the problem of safe and efficient video access, limit the number of security gateway access terminals, and reduce data transmission efficiency, so as to reduce access complexity, Increase the amount of concurrent access and meet the effect of efficient transmission

Pending Publication Date: 2022-05-13
NARI INFORMATION & COMM TECH
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, when the security gateway transmits video, it also encrypts the video stream data. The encryption of the video stream data occupies a lot of resources of the terminal, reduces the efficiency of data transmission, and limits the number of terminals connected to the security gateway.
[0004] To sum up, in the electric power industry, neither the dedicated video gateway nor the security gateway can effectively solve the problem of safe and efficient video access

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Video security access method and system based on port selective encryption

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0048] The present embodiment introduces a video secure access system based on port selective encryption, with reference Figure 1 As shown, the system includes a video terminal, a security gateway and a video master; the video terminal is installed with a video service client and a VPN client;

[0049]The video terminal negotiates authentication between the VPN client and the security gateway, establishes an SSLVPN tunnel, and negotiates authentication between the VPN client of the video terminal and the security gateway using the state secret algorithm including SM1, SM2, and SM3.

[0050] After the tunnel is established, the secure gateway pushes the port encryption configuration information and routing information to the VPN client of the video terminal, and the port encryption configuration information includes the unencrypted port range;

[0051] The VPN client of the video terminal stores the unencrypted port range information according to the port encryption configuration...

Embodiment 2

[0076] Based on the same inventive concept as Example 1, the present embodiment introduces a video secure access method based on port selective encryption performed by a video terminal, the video terminal is installed with a video service client and a VPN client;

[0077] The video terminal negotiates authentication between the VPN client and the security gateway to establish an SSLVPN tunnel.

[0078] Receive the port encryption configuration information pushed by the secure gateway, the port encryption configuration information includes a range of ports that are not encrypted;

[0079] The VPN client of the video terminal stores the port range information according to the port encryption configuration information without encryption;

[0080] The video service client of the video terminal responds to the need to send video signaling data, then determines the destination port of the video signaling data according to the mapping relationship between the preconfigured destination po...

Embodiment 3

[0090] Based on the same inventive idea as Example 1 and Example 2, the present embodiment describes a video secure access method based on port selective encryption performed by a secure gateway, comprising:

[0091] Receive negotiation messages sent by the video terminal through the VPN client, negotiate authentication with the VPN client of the video terminal, and establish an SSL VPN tunnel;

[0092] Push port encryption configuration information to the VPN client of the video terminal, the port encryption configuration information includes a range of ports that are not encrypted;

[0093]Receive encrypted video signaling packets or plaintext video stream packets issued by the video terminal through the VPN client; parse the received packets and determine the encryption type of the packets according to the parsing results;

[0094] Encrypted video signaling packets are decrypted and forwarded to the video master, and for video stream packets in clear text, they are forwarded d...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a video security access method and system based on port selective encryption. The system comprises a video terminal, a security gateway and a video master station, negotiation authentication is carried out between the video terminal and the security gateway through the VPN client, and an SSLVPN tunnel is established; the security gateway pushes port encryption configuration information to a VPN client of the video terminal, and the VPN client stores unencrypted port range information; the video service client determines a destination port of the video signaling data or the video stream data according to a pre-configured mapping relationship between the destination port and the data type, assembles a video signaling data packet and sends the video signaling data packet to the VPN client; the VPN client obtains destination port information in the data packet, judges whether the data packet needs to be encrypted, encapsulates and encrypts the video signaling data packet, directly encapsulates the video stream data packet and then sends the encapsulated video stream data packet to the security gateway; and after receiving the encrypted video signaling data packet or the plaintext video stream data packet, the security gateway judges the encryption type of the received data packet and forwards the data plaintext to the video master station. According to the invention, the video terminal can be selectively encrypted and transmitted based on the port, and the security of the data and the transmission efficiency of the video data are guaranteed.

Description

Technical field [0001] The present invention relates to the field of power communication technology, in particular a video secure access method and system based on port selective encryption. Background [0002] The video dedicated gateway is the main protective equipment for the secure access of video services in the power industry, which generally adopts video control signaling encryption and video stream data unencrypted to achieve efficient transmission of video stream data. The video dedicated gateway is only allowed to access the video terminal in line with the "Grid Video Surveillance System and Interface Part 1 Technical Requirements (B Interface Remarks)" protocol, and the above video terminal must follow the specific security interaction protocol of the video dedicated gateway (including negotiation, authentication, encryption and other communication processes, control signaling encryption during communication, video stream data is not encrypted), and the specific secur...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04N21/4408H04L9/40
CPCH04N21/4408H04L63/0272H04L63/0471H04L2463/062
Inventor 张旭东王晔郭靓韦小刚刘行金倩倩邓进张滔郑卫波纪元殷鑫鹏陆杰
Owner NARI INFORMATION & COMM TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com