A video security access management method and system
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Patents(China)
- Current Assignee / Owner
- SHENZHEN QISHAN TECH CO LTD
- Filing Date
- 2025-07-10
- Publication Date
- 2026-06-23
AI Technical Summary
Existing video security access management systems rely on single-dimensional protocols and permission verification in access control, failing to consider multiple dimensions. Abnormal traffic cleaning lacks a tiered handling mechanism, resulting in a high false positive rate, low automation, and difficulty in coping with large-scale network environments.
By verifying the matching of terminal admission rules with access information, calculating request frequency and classifying and cleaning traffic, identifying abnormal links based on packet loss rate, and adjusting transmission strategies, multi-dimensional verification and automated processing are achieved.
It improved the interception rate of unauthorized access, reduced the false positive rate, achieved security and automation of video data, ensured the priority transmission of critical videos, and improved resource utilization and transmission stability.
Smart Images

Figure CN120528697B_ABST
Abstract
Description
Technical Field
[0001] This invention relates to the field of video security technology, specifically to a video security access management method and system. Background Technology
[0002] Video surveillance faces various security threats, among which the theft and alteration of video content is the most common security threat.
[0003] According to patent application CN116846684B, a video security access management method and system are disclosed. The method involves acquiring access video data and encrypted weather data; decrypting the encrypted weather data to obtain decrypted weather data; acquiring verification weather data based on basic access information; performing access verification on the decrypted weather data based on the verification weather data; and playing the access video data after successful verification. This method can acquire access video data and encrypted weather data from access management data. It only requires decrypting and verifying the encrypted weather data before playing the access video data. In video security access management, there is no need to encrypt the entire video surveillance data, reducing the workload of encryption processing and eliminating the need for large amounts of computing resources for encryption and decryption. Furthermore, it can verify against video theft and tampering, ensuring secure access and use of the video data.
[0004] However, while existing technologies can achieve basic access control and traffic monitoring, they have the following shortcomings:
[0005] The access matching logic is too simplistic and cannot take into account the multi-dimensional verification of protocols and permissions.
[0006] Abnormal traffic cleaning lacks a tiered handling mechanism, resulting in a high false positive rate.
[0007] Link anomaly handling relies on manual intervention, has a low degree of automation, and is difficult to cope with large-scale network environments. Summary of the Invention
[0008] To address the shortcomings of existing technologies, this invention provides a video security access management method and system that solves the problem of classifying links based on packet loss rate and intelligently adjusting transmission strategies by combining MTU and priority.
[0009] To achieve the above objectives, the present invention provides the following technical solution: a video security access management method, which includes the following steps:
[0010] Verify whether the terminal access rules match the access video information, and generate a signal that allows or disallows access.
[0011] Analyze the allowed access signals, calculate the request frequency of allowed access IPs, compare with preset values to generate abnormal signals, determine the abnormality level, and clean up traffic;
[0012] Dynamic perception analysis is performed on the accessed video, and normal or abnormal links are divided according to the packet loss rate. Based on the packet loss rate and the threshold, they are further divided into first-level and second-level abnormal links.
[0013] For analysis of first-level abnormal links, if they can be skipped, the routing strategy is adjusted; if they cannot be skipped, priority transmission or fragmentation processing signals are generated based on the relationship between MTU and data volume.
[0014] The priority transmission analysis signal is processed by weighting and summing the real-time demand index and bandwidth occupancy index of the real-time transmitted video to obtain the priority index, and then transmitting them in descending order. The segmentation processing signal is processed by segmenting the real-time transmitted video into segments based on the transmission average value corresponding to the first-level abnormal link, and then transmitting the video transmission information.
[0015] The abnormal links at level 2 are adapted and processed. Normal links that meet the real-time transmission adaptation criteria are selected based on the maximum transmission unit of normal links and recorded as links to be analyzed. They are then adapted and processed according to priority indicators to generate video transmission information.
[0016] As a further aspect of the present invention, the specific method for generating the allow or disallow access signal is as follows:
[0017] Obtain the terminal access rules and access video information, and determine whether the two match. If either the access protocol or access permission is not satisfied, generate an access-disallowed signal; otherwise, generate an access-allowed signal.
[0018] As a further aspect of the present invention, the specific method for analyzing the allowed access signal is as follows:
[0019] The system acquires the IP source of the video to be accessed and obtains the number of requests within time t. It calculates the corresponding request frequency and compares the request frequency with a preset value. If the request frequency is greater than the preset value, an abnormal request analysis signal is generated; otherwise, if the request frequency is less than the preset value, a normal request monitoring signal is generated.
[0020] Next, the generated abnormal request analysis signals are analyzed to obtain the request frequency. If the frequency exceeds the threshold by 10%, a level 1 warning signal is generated; if the frequency exceeds the threshold by 50%, a level 2 warning signal is generated; and if the frequency exceeds the threshold by 100%, a level 3 warning signal is generated. At the same time, abnormal traffic is identified based on the IPS feature library and intercepted. The obtained abnormal traffic is also cleaned.
[0021] As a further aspect of the present invention, the specific method for performing dynamic perception analysis on the accessed video is as follows:
[0022] The transmission link number is denoted as i, and i = 1, 2, ..., j, where j represents the number of transmission links. The packet loss rate is obtained and denoted as Pi, and compared with the packet loss rate threshold. If the packet loss rate Pi is greater than the packet loss rate threshold, it is marked as an abnormal link; otherwise, it is marked as a normal link.
[0023] The abnormal links are labeled as a, and a = 1, 2, ..., b, where b represents the number of abnormal links. Links with a packet loss rate less than 50% of the packet loss rate threshold are labeled as first-level abnormal links, and links with a packet loss rate exceeding 50% of the packet loss rate threshold are labeled as second-level abnormal links. The first-level abnormal links are obtained and labeled as a1, and a1 = 1, 2, ..., b1. The second-level abnormal links are labeled as a2, and a2 = 1, 2, ..., b2, where b1 + b2 = b.
[0024] As a further aspect of the present invention, the specific method for analyzing the first-level abnormal link is as follows:
[0025] Obtain all first-level abnormal links and their corresponding routing policies, and determine whether the transmission can be skipped. If the transmission can be skipped, generate routing policy adjustment information; otherwise, generate link adjustment signals.
[0026] The link adjustment signal is analyzed to obtain the MTU value corresponding to the first-level abnormal link a1 and compare it with the data volume corresponding to the real-time transmitted video. If the former is greater than the latter, the real-time transmitted video is transmitted in a hierarchical manner according to its priority, and a priority transmission analysis signal is generated. Conversely, if the former is less than the latter, the real-time transmitted video is segmented and a segmentation processing signal is generated.
[0027] As a further aspect of the present invention, the specific method for processing the priority transmission analysis signal is as follows:
[0028] Obtain the real-time transmitted video corresponding to the first-level abnormal link a1 and denote it as Qa1, where Q = 1, 2, ..., H, and H represents the type of real-time transmitted video, according to the formula... The real-time requirement index is calculated, where T is the allowable delay, according to the formula. Calculate the broadband occupancy index;
[0029] According to the formula The priority index RQa1 corresponding to the real-time transmitted video Qa1 is calculated, where and The weighting coefficients are used to transmit real-time video according to priority indicators from largest to smallest.
[0030] As a further aspect of the present invention, the specific method for adapting the secondary abnormal link is as follows:
[0031] Obtain the secondary abnormal links, normal links and their real-time transmission speeds, and obtain the video transmission volume of the abnormal links. Compare the video transmission volume with the MTU of the normal links to filter out the links that can be carried and to be analyzed.
[0032] The links to be analyzed are arranged in descending order of real-time transmission speed. The priority index of the abnormal link videos is calculated and sorted in descending order. The video of the abnormal link with the highest priority is adapted in turn based on the fastest link to be analyzed, thus completing the round-robin processing.
[0033] A video security access management system, the system comprising:
[0034] Access information acquisition module, which is used to acquire terminal access rules and access video information, match the two, generate an access allowed signal or an access denied signal, and transmit the former to the normal access analysis module.
[0035] The normal access analysis module is used to analyze the allowed access signals, calculate the request frequency of the corresponding access IP source, compare it with the preset value, generate abnormal request analysis signals, determine the abnormal level corresponding to the request frequency, then identify abnormal traffic and clean it, and finally transmit the cleaned access video to the dynamic perception analysis module.
[0036] The dynamic perception and analysis module is used to perform dynamic perception and analysis on the access video. It classifies the transmission links into normal links and abnormal links based on the packet loss rate. At the same time, it performs secondary classification of abnormal links based on the packet loss rate to generate first-level abnormal links and second-level abnormal links. Then, the two are transmitted to the link adaptation and processing module.
[0037] The link adaptation processing module is used to adapt and process first-level and second-level abnormal links. It obtains first-level abnormal links and performs skip transmission to generate link routing policy adjustment information. At the same time, for cases where skip transmission is not possible, it compares the real-time transmitted video with the value of the maximum transmission unit to generate priority transmission analysis signal or segmentation processing signal.
[0038] The priority transmission analysis signal is processed to analyze the real-time demand index and bandwidth occupancy index of real-time transmitted video. At the same time, a weighted sum is performed to obtain the priority index, and the video is transmitted in descending order of priority. The segmentation processing signal is processed to segment the real-time transmitted video according to the transmission average value corresponding to the first-level abnormal link and then transmit it to generate video transmission information, which is also transmitted to the access management information output module.
[0039] The abnormal links at level 2 are adapted and processed. Normal links that meet the real-time transmission adaptation criteria are selected based on the maximum transmission unit of normal links and recorded as links to be analyzed. They are then adapted and processed according to priority indicators to generate video transmission information, which is then transmitted to the access management information output module.
[0040] The access management information output module is used to transmit the accessed video based on the acquired video transmission information.
[0041] This invention provides a video security access management method and system. Compared with the prior art, it has the following advantages:
[0042] This invention improves the illegal access interception rate by integrating four layers of verification: terminal type, protocol whitelist, and device / personnel permissions, compared to the traditional single IP / MAC binding. It calculates the request frequency based on the time window t and accurately identifies the attack level by combining a three-level early warning mechanism. Compared to fixed threshold strategies, it reduces the false positive rate. It integrates security policy blocking with switch hardware linkage to achieve a second-level response from traffic identification to physical blocking.
[0043] This invention classifies abnormal links into Level 1 and Level 2 based on packet loss rate. Level 1 abnormal links prioritize route redirection or MTU adaptation, while Level 2 abnormal links trigger link reconstruction, improving transmission stability. Priority is calculated based on a weighted average of real-time demand and bandwidth usage indicators to ensure priority transmission of critical video and reduce video stuttering. In Level 2 abnormal link scenarios, links with an MTU greater than the video transmission capacity are automatically selected for analysis and adapted in round-robin order of speed and priority to improve resource utilization. Dynamic fragmentation based on the average transmission value of Level 1 abnormal links reduces packet loss retransmission rate compared to a fixed fragmentation strategy. Attached Figure Description
[0044] Figure 1 This is a diagram illustrating the steps and methods of the present invention;
[0045] Figure 2 This is a system block diagram of the present invention. Detailed Implementation
[0046] The technical solutions of the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are only some embodiments of the present invention, and not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative effort are within the scope of protection of the present invention.
[0047] Example 1, please refer to Figure 1 This application provides a video security access management method, which specifically includes the following steps:
[0048] Step S1: Obtain terminal access rules, which include terminal type restrictions (e.g., camera, NVR), access protocol whitelist (e.g., RTSP, GB28181), permission levels (e.g., "read-only", "read-write", "management"), and IP / MAC address binding requirements. Obtain video information corresponding to the video to be accessed, including access protocol and access permissions. Specific access permissions are represented by the permissions of the corresponding device and personnel. Match the obtained video information with the terminal access rules. If they match, it means that the access protocol (e.g., the RTSP protocol version and port number reported by the device) and access permissions (including device permissions—e.g., preview / control permissions for "camera 1") and personnel permissions—e.g., the role permissions of the account "admin") satisfy the terminal access rules, and an access permission signal is generated. Conversely, if they do not match, it means that either the access protocol or access permissions are not satisfied, and an access disallowed signal is generated. For the generated access disallowed signal, obtain its corresponding exception reason and transmit the generated exception reason to the corresponding administrator.
[0049] The specific matching method is as follows:
[0050] Protocol matching: Check whether the access protocol is in the protocol whitelist of the admission rules (e.g., if the rule requires the use of the GB28181 protocol, it will not match if the device uses RTSP).
[0051] Permission matching:
[0052] Device permissions: Verify whether the device to be connected has the operation permissions required by the rules (e.g., if the rules require the device to support "PTZ control", the device will not match if it only supports "preview").
[0053] User permissions: Verify whether the role of the accessing account matches the rule level (e.g., if the rule requires "management" permissions, the account will not match if it is "read-only").
[0054] Overall judgment:
[0055] When the protocol, device permissions, and personnel permissions all meet the access rules, an access permission signal is generated.
[0056] If the protocol does not match, or if either the device or personnel permissions are not met, an access-disallowed signal will be generated.
[0057] Step S2: Analyze the generated access permission signal, obtain the IP source of the video to be accessed, and obtain the number of requests within time t. The specific value of time t is set by the operator. Calculate the corresponding request frequency. Request frequency = number of requests within time t ÷ time t. For example, if there are 150 requests within 5 minutes (300 seconds), the frequency is 0.5 times / second. Compare the request frequency with a preset value. If the request frequency is greater than the preset value, an abnormal request analysis signal is generated. Conversely, if the request frequency is less than the preset value, a normal request monitoring signal is generated.
[0058] Next, the generated abnormal request analysis signals are analyzed to obtain the request frequency and determine the corresponding abnormality level based on the request frequency. Specifically, the request frequency is matched with the level judgment range, and there are three abnormality levels: if the frequency exceeds the threshold by 10%, a level 1 warning signal is generated; if the frequency exceeds the threshold by 50%, a level 2 warning signal is generated; and if the frequency exceeds the threshold by 100%, a level 3 warning signal is generated. At the same time, abnormal traffic is identified based on the IPS signature library. For example, if the HTTP request contains the string ".. / .. / etc / passwd", it may be a path traversal attack, which is intercepted and processed. The obtained abnormal traffic is also cleaned, and the cleanup of abnormal traffic is carried out in the following aspects:
[0059] Security-based cleaning
[0060] Path: [Access Control] > [Behavioral Rules] > [Security Policy]
[0061] Configuration: Add a new policy "Reject Abnormal Traffic", set the source zone to "External Network", the destination IP to "Internal Network Server", the service type to "All", and the action to "Reject".
[0062] Example: Block all access from public IP addresses to internal port 80, allowing only whitelisted IP addresses to pass through. The path is [Terminal Whitelist] > Add Trusted IP.
[0063] Hardware acceleration and coordinated cleaning
[0064] Path: [Access Control] > [Switch Interaction]
[0065] Configuration: Enter the SNMP server IP and community name, enable "Switch-linked blocking", and set a timeout of 5 seconds. When an abnormal MAC address is detected, the linked switch will add it to the blacklist.
[0066] Example: A terminal frequently changes its MAC address to launch an attack. The device, in conjunction with the switch, blocks the MAC address and physically disconnects the connection.
[0067] Step S3: Perform dynamic perception analysis on the access video, obtain all transmission links and label them as i, where i = 1, 2, ..., j, and j represents the number of transmission links. At the same time, obtain the packet loss rate corresponding to transmission link i and label it as Pi, where packet loss rate = number of lost packets ÷ number of sent packets. Then, compare the corresponding packet loss rate Pi with the packet loss rate threshold. The specific value of the packet loss rate threshold is set by the operator. If the packet loss rate Pi is greater than the packet loss rate threshold, the corresponding transmission link is marked as an abnormal link. Conversely, if the packet loss rate Pi is less than the packet loss rate threshold, the corresponding transmission link is marked as a normal link.
[0068] All abnormal links are obtained and labeled as a, where a = 1, 2, ..., b, and b represents the number of abnormal links. Then, the packet loss rate Pa of abnormal link a is compared with the corresponding packet loss rate threshold. Links with a packet loss rate less than 50% of the packet loss rate threshold are labeled as first-level abnormal links, and links with a packet loss rate exceeding 50% of the packet loss rate threshold are labeled as second-level abnormal links. At the same time, the first-level abnormal links are obtained and labeled as a1, where a1 = 1, 2, ..., b1, and the second-level abnormal links are labeled as a2, where a2 = 1, 2, ..., b2, where b1 + b2 = b.
[0069] Step S4: Obtain all first-level abnormal links and their corresponding routing policies. Here, the routing policy specifically refers to the corresponding transmission path. Determine whether the transmission can be skipped. Here, skipping the transmission specifically means directly skipping the corresponding first-level abnormal link when transmitting video. If the transmission can be skipped, it means that there is no impact on video transmission, and then the routing policy adjustment information is generated. Otherwise, if the transmission cannot be skipped, it means that there is an impact on video transmission, and then the link adjustment signal is generated.
[0070] The generated link adjustment signal is analyzed to obtain the MTU value (maximum transmission unit) corresponding to the first-level abnormal link a1, and the data volume corresponding to the real-time transmitted video is obtained. The relationship between the two is determined. If the former is greater than the latter, specifically the MTU value is greater than the data volume, then the real-time transmitted video is transmitted in a hierarchical manner according to the priority, and a priority transmission analysis signal is generated. Conversely, if the former is less than the latter, specifically the MTU value is less than the data volume, then the real-time transmitted video is segmented, and a segmentation processing signal is generated.
[0071] Next, the generated priority transmission analysis signal is processed to obtain the real-time transmission video corresponding to the first-level abnormal link a1 and denoted as Qa1, where Q=1, 2, ..., H, and H represents the type of real-time transmission video. Then, the corresponding real-time requirement index and bandwidth usage index are calculated respectively, and the two are weighted and summed to obtain the corresponding priority index. Then, the real-time transmission video is transmitted according to the priority index from large to small.
[0072] The specific method for determining real-time demand metrics is based on the formula. The real-time requirement index is calculated, where T is the allowable delay, and the specific value is determined by the maximum allowable delay for real-time video transmission.
[0073] The specific calculation method for broadband occupancy index is based on the formula. ;
[0074] The obtained real-time demand indicators and broadband usage indicators Perform a weighted summation according to the formula The priority index RQa1 corresponding to the real-time transmitted video Qa1 is calculated, where and These are the corresponding weight coefficients;
[0075] The generated segmented signal is analyzed to obtain the average transmission value of the first-level abnormal link a1 within time t1. The real-time transmitted video is segmented based on the average transmission value, and the segmented real-time transmitted video is transmitted simultaneously.
[0076] Step S5: Obtain all secondary abnormal links and all normal links, and obtain the real-time transmission speed corresponding to the normal links. Here, the real-time transmission speed is represented as the average transmission speed. Then, obtain the real-time transmitted video corresponding to the secondary abnormal links and obtain its transmission volume. At the same time, compare the transmission volume of the real-time transmitted video with the maximum transmission unit of the normal links, and filter the normal links that meet the transmission volume as links to be analyzed. Here, the links to be analyzed are those whose maximum transmission unit is greater than the transmission volume. Then, perform adaptation analysis on the real-time transmitted video according to the real-time transmission speed corresponding to the links to be analyzed.
[0077] Obtain all links to be analyzed and their corresponding real-time transmission speeds, and sort them from highest to lowest real-time transmission speed. Then, obtain the secondary abnormal link a2 and its corresponding real-time transmission video. Simultaneously, calculate the priority index corresponding to the real-time transmission video and sort it from highest to lowest priority index. Then, take the link to be analyzed with the highest real-time transmission speed as the standard and adapt it to the real-time transmission video with the highest priority index in the secondary abnormal link a2. In this way, perform round-robin adaptation processing on all secondary abnormal links in order.
[0078] Example 2, please refer to Figure 2 This application provides a video security access management system, which includes: an access information acquisition module, a normal access analysis module, a dynamic perception analysis module, a link adaptation processing module, and an access management information output module;
[0079] Access information acquisition module, which is used to acquire terminal access rules and access video information, match the two, generate an access allowed signal or an access denied signal, and transmit the former to normal access analysis module. The specific processing method is the same as the processing process of step S1 in embodiment one.
[0080] The normal access analysis module is used to analyze the allowed access signal, calculate the request frequency of the corresponding access IP source, compare it with the preset value, generate the abnormal request analysis signal, determine the abnormal level corresponding to the request frequency, then identify the abnormal traffic and clean it, and finally transmit the cleaned access video to the dynamic perception analysis module. The specific processing method is the same as the processing process of step S2 in embodiment one.
[0081] The dynamic perception and analysis module is used to perform dynamic perception and analysis on the access video. It classifies the transmission links into normal links and abnormal links based on the packet loss rate. At the same time, it performs secondary classification on the abnormal links based on the packet loss rate to generate first-level abnormal links and second-level abnormal links. The specific processing method is the same as the processing process in step S3 of embodiment one. Then, the two are transmitted to the link adaptation processing module.
[0082] The link adaptation processing module is used to adapt and process first-level and second-level abnormal links. It obtains first-level abnormal links and performs skip transmission to generate link routing policy adjustment information. At the same time, for cases where skip transmission is not possible, it compares the real-time transmitted video with the value of the maximum transmission unit to generate priority transmission analysis signal or segmentation processing signal.
[0083] The priority transmission analysis signal is processed to analyze the real-time demand index and bandwidth occupancy index of the real-time transmitted video. At the same time, a weighted sum is performed to obtain the priority index, and the video is transmitted in descending order of priority. The segmentation processing signal is processed to segment the real-time transmitted video and transmit it after using the transmission average value corresponding to the first-level abnormal link as the standard. Video transmission information is generated and transmitted to the access management information output module. The specific processing method is the same as the processing process in step S4 of embodiment one.
[0084] The abnormal links at level 2 are adapted and processed. Normal links that meet the real-time transmission adaptation criteria are selected based on the maximum transmission unit of normal links and recorded as links to be analyzed. They are then adapted and processed according to priority indicators to generate video transmission information and transmit it to the access management information output module. The specific processing method is the same as the processing process in step S5 of embodiment 1.
[0085] The access management information output module is used to transmit the accessed video based on the acquired video transmission information.
[0086] The data in the above formulas are all calculated using numerical values, without substituting the units of the parameters. In addition, the contents not described in detail in this specification are all prior art known to those skilled in the art.
[0087] The above embodiments are only used to illustrate the technical methods of the present invention and are not intended to limit it. Although the present invention has been described in detail with reference to preferred embodiments, those skilled in the art should understand that modifications or equivalent substitutions can be made to the technical methods of the present invention without departing from the spirit and scope of the technical methods of the present invention.
Claims
1. A method for video security access management, the method comprising: The method includes the following steps: Verify whether the terminal access rules match the access video information, and generate a signal that allows or disallows access. Analyze the allowed access signals, calculate the request frequency of allowed access IPs, compare with preset values to generate abnormal signals, determine the abnormality level, and clean up traffic; Dynamic perception analysis is performed on the accessed video, and normal or abnormal links are divided according to the packet loss rate. Based on the packet loss rate and the threshold, they are further divided into first-level and second-level abnormal links. For analysis of first-level abnormal links, if they can be skipped, the routing strategy is adjusted; if they cannot be skipped, priority transmission or fragmentation processing signals are generated based on the relationship between MTU and data volume. The priority transmission analysis signal is processed by weighting and summing the real-time demand index and bandwidth occupancy index of the real-time transmitted video to obtain the priority index, and then transmitting them in descending order. The segmentation processing signal is processed by segmenting the real-time transmitted video into segments based on the transmission average value corresponding to the first-level abnormal link, and then transmitting the video transmission information. The abnormal links at level 2 are adapted and processed. Normal links that meet the real-time transmission adaptation criteria are selected based on the maximum transmission unit of normal links and recorded as links to be analyzed. They are then adapted and processed according to priority indicators to generate video transmission information.
2. The method of claim 1, wherein, The specific method for generating the allow or disallow access signal is as follows: Obtain the terminal access rules and access video information, and determine whether the two match. If either the access protocol or access permission is not satisfied, generate an access-disallowed signal; otherwise, generate an access-allowed signal.
3. The method of claim 1, wherein, The specific method for analyzing the permitted access signal is as follows: The system acquires the IP source of the video to be accessed and obtains the number of requests within time t. It calculates the corresponding request frequency and compares the request frequency with a preset value. If the request frequency is greater than the preset value, an abnormal request analysis signal is generated; otherwise, if the request frequency is less than the preset value, a normal request monitoring signal is generated. Next, the generated abnormal request analysis signals are analyzed to obtain the request frequency. If the frequency exceeds the threshold by 10%, a level 1 warning signal is generated; if the frequency exceeds the threshold by 50%, a level 2 warning signal is generated; and if the frequency exceeds the threshold by 100%, a level 3 warning signal is generated. At the same time, abnormal traffic is identified based on the IPS feature library and intercepted. The obtained abnormal traffic is also cleaned.
4. The method of claim 1, wherein, The specific method for performing dynamic perception analysis on the accessed video is as follows: The transmission link number is denoted as i, and i = 1, 2, ..., j, where j represents the number of transmission links. The packet loss rate is obtained and denoted as Pi, and compared with the packet loss rate threshold. If the packet loss rate Pi is greater than the packet loss rate threshold, it is marked as an abnormal link; otherwise, it is marked as a normal link. The abnormal links are labeled as a, and a = 1, 2, ..., b, where b represents the number of abnormal links. Links with a packet loss rate less than 50% of the packet loss rate threshold are labeled as first-level abnormal links, and links with a packet loss rate exceeding 50% of the packet loss rate threshold are labeled as second-level abnormal links. The first-level abnormal links are obtained and labeled as a1, and a1 = 1, 2, ..., b1. The second-level abnormal links are labeled as a2, and a2 = 1, 2, ..., b2, where b1 + b2 = b.
5. The method of claim 1, wherein, The specific method for analyzing the first-level abnormal links is as follows: Obtain all first-level abnormal links and their corresponding routing policies, and determine whether the transmission can be skipped. If the transmission can be skipped, generate routing policy adjustment information; otherwise, generate link adjustment signals. The link adjustment signal is analyzed to obtain the MTU value corresponding to the first-level abnormal link a1 and compare it with the data volume corresponding to the real-time transmitted video. If the former is greater than the latter, the real-time transmitted video is transmitted in a hierarchical manner according to its priority, and a priority transmission analysis signal is generated. Conversely, if the former is less than the latter, the real-time transmitted video is segmented and a segmentation processing signal is generated.
6. The method of claim 1, wherein, The specific method for processing the priority transmission analysis signal is as follows: The corresponding real-time transmission video in the first abnormal link a1 is acquired and recorded as Qa1, and Q=1, 2, …, H, wherein H represents the type of the real-time transmission video, and the formula is The real-time requirement index is calculated, wherein T is the allowed delay, and the formula is The wideband occupation index is calculated. According to the formula The priority index RQa1 corresponding to the real-time transmitted video Qa1 is calculated, where and The weighting coefficients are used to transmit real-time video according to priority indicators from largest to smallest.
7. The video security access management method according to claim 1, characterized in that, The specific method for adapting and handling abnormal secondary links is as follows: Obtain the secondary abnormal links, normal links and their real-time transmission speeds, and obtain the video transmission volume of the abnormal links. Compare the video transmission volume with the MTU of the normal links to filter out the links that can be carried and to be analyzed. The links to be analyzed are arranged in descending order of real-time transmission speed. The priority index of the abnormal link videos is calculated and sorted in descending order. The video of the abnormal link with the highest priority is adapted in turn based on the fastest link to be analyzed, thus completing the round-robin processing.
8. A video security access management system, used to execute the video security access management method according to any one of claims 1-7, characterized in that, The system includes: Access information acquisition module, which is used to acquire terminal access rules and access video information, match the two, generate an access allowed signal or an access denied signal, and transmit the former to the normal access analysis module. The normal access analysis module is used to analyze the allowed access signals, calculate the request frequency of the corresponding access IP source, compare it with the preset value, generate abnormal request analysis signals, determine the abnormal level corresponding to the request frequency, then identify abnormal traffic and clean it, and finally transmit the cleaned access video to the dynamic perception analysis module. The dynamic perception and analysis module is used to perform dynamic perception and analysis on the access video. It classifies the transmission links into normal links and abnormal links based on the packet loss rate. At the same time, it performs secondary classification of abnormal links based on the packet loss rate to generate first-level abnormal links and second-level abnormal links. Then, the two are transmitted to the link adaptation and processing module. The link adaptation processing module is used to adapt and process first-level and second-level abnormal links. It obtains first-level abnormal links and performs skip transmission to generate link routing policy adjustment information. At the same time, for cases where skip transmission is not possible, it compares the real-time transmitted video with the value of the maximum transmission unit to generate priority transmission analysis signal or segmentation processing signal. The priority transmission analysis signal is processed to analyze the real-time demand index and bandwidth occupancy index of real-time transmitted video. At the same time, a weighted sum is performed to obtain the priority index, and the video is transmitted in descending order of priority. The segmentation processing signal is processed to segment the real-time transmitted video according to the transmission average value corresponding to the first-level abnormal link and then transmit it to generate video transmission information, which is also transmitted to the access management information output module. The abnormal links at level 2 are adapted and processed. Normal links that meet the real-time transmission adaptation criteria are selected based on the maximum transmission unit of normal links and recorded as links to be analyzed. They are then adapted and processed according to priority indicators to generate video transmission information, which is then transmitted to the access management information output module. The access management information output module is used to transmit the accessed video based on the acquired video transmission information.