Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method for safety packaging network message

A network message and message technology, which is applied in the direction of secure communication devices, digital transmission systems, electrical components, etc., can solve the problems of not supporting manual configuration security association, inability to use TLS security mechanism, NAT friendliness, etc., to achieve Enhance security, prevent replay attacks, apply flexible effects

Active Publication Date: 2006-11-08
HUAWEI TECH CO LTD
View PDF0 Cites 31 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] At present, there are generally two methods for secure encapsulation of network packets: network layer security technology IPsec and transport layer security technology TLS technology; but their applications have certain limitations, especially in NGN and IMS and other packet-based In the service network of the network, the following will be described respectively, so that the defects of the prior art can be seen at a glance
[0012] However, the IPsec of the prior art has the following defects: its application has a serious problem of friendliness with NAT, and there are many NAT devices in the actual network environment
Secondly, the use of TLS can only be used in the TCP environment, and the current UDP application will become more and more extensive, especially in the NGN and IMS environments, most of the protocols will use the UDP protocol, resulting in the inability to use the security mechanism of TLS
Moreover, it does not support manual configuration to establish security associations, or other application layer security association establishment methods, such as the IMS AKA security association establishment method defined in the 3GPP specification

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for safety packaging network message
  • Method for safety packaging network message
  • Method for safety packaging network message

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0043] Various preferred embodiments of the present invention will be described in more detail below in conjunction with the accompanying drawings.

[0044] The method for secure encapsulation of network messages in the present invention does not involve the negotiation process of security associations. After the secure encapsulation protocol of the message obtains arbitrarily long network messages, it performs encapsulation, encryption, and authentication processing, and finally forms an encrypted The application layer message for integrity check is sent to the transport layer for sending.

[0045] The encapsulation format example description of the network message of the inventive method is as follows:

[0046] First, the original signaling message is encapsulated, and the format of the encapsulated message is:

[0047] struct{

[0048] uint48 seq_num;

[0049] uint16 length;\\fragment length;

[0050] opaque fragment[SignalPlaintext. length]...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a network message security package method. It contains generating application layer message; package head generating one random numbers as initial sequence number, serial number added 1 in transmitting one message, using serial number and message length bytes as package head added to message top; load filling its finally bytes meaning filling length; ciphering message; message authentication code message authenticating code calculation; transmitting security packaged signaling message package IP / UDP or TCP head. The present invented method adopts application layer package mode therefore being not related to network address translation equipment NAT, enhancing security.

Description

technical field [0001] The invention relates to a message encapsulation method, in particular to a method for implementing secure encapsulation of network messages. Background technique [0002] In various business network architectures based on packet networks such as NGN and IP Multimedia Subsystem IMS, message security is a basic requirement, and there should be a means to provide source authentication, integrity, Security features such as confidentiality and anti-replay. These features are generally obtained by using various signature, hash, and encryption security algorithms, but the combination of these basic security algorithms can achieve the best security and meet specific application environments, which is not disclosed in the prior art. [0003] At present, there are generally two methods for secure encapsulation of network packets: network layer security technology IPsec and transport layer security technology TLS technology; but their applications have certain ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L9/00H04L29/06
Inventor 刘利锋郑志彬
Owner HUAWEI TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com