A network security access method and system based on policy context cooperation

By combining ZTNA access control and SD-WAN encrypted transmission technology with edge computing and context coding, the problem of separation between zero-trust network access technology and software-defined wide area network technology in access control and data transmission is solved. This enables continuous transmission and accurate determination of access request policy information, improving the coordination and reliability of network security access.

CN122247732APending Publication Date: 2026-06-19CHONGQING PAILING INFORMATION TECHNOLOGY CO LTD

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
CHONGQING PAILING INFORMATION TECHNOLOGY CO LTD
Filing Date
2026-04-14
Publication Date
2026-06-19

AI Technical Summary

Technical Problem

Existing zero-trust network access technologies and software-defined wide area network technologies suffer from a separation between access control and data transmission, lacking a policy semantic delivery mechanism. This leads to the separation of access control and data transmission, affecting the accuracy of access determination and the consistency of control throughout the entire process.

Method used

The system employs ZTNA access control, SD-WAN encrypted transmission, edge computing collaborative processing, Transformer-XL context encoding, Siamese network matching, BCH encoding, and GCM encrypted encapsulation technology to generate policy context labels. It also uses edge computing nodes to achieve collaborative control of access requests, ensuring continuous transmission and accurate reconstruction of policy information between the sending and receiving sides.

Benefits of technology

It improves the accuracy of access determination and the consistency of network security access, enhances cross-node collaboration capabilities, and achieves stability and reliability of access control throughout the entire process.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN122247732A_ABST
    Figure CN122247732A_ABST
Patent Text Reader

Abstract

This invention discloses a network security access method and system based on policy context collaboration, comprising the following steps: S1, intercepting access requests and extracting access quintuple sets; S2, performing admission determination and label mapping based on the access quintuple sets to obtain policy context labels; S3, performing encoding processing on the policy context labels and writing them into the original data packet; S4, performing forwarding matching and encryption encapsulation based on the labels to obtain encapsulated data packets; S5, performing verification, decryption, and stripping on the encapsulated data packets to obtain restored data packets; S6, performing decoding on the label encoding vectors in the restored data packets and writing them into the kernel tag field; S7, reading the decoding results and performing legal label matching to generate access results. This invention utilizes ZTNA access control and has advantages such as high determination accuracy, stable policy information transmission, and strong cross-node collaboration capabilities.
Need to check novelty before this filing date? Find Prior Art