CN103684922B - Outlet information privacy checking detection platform system based on SDN (self-defending network) and detection method - Google Patents

Outlet information privacy checking detection platform system based on SDN (self-defending network) and detection method Download PDF

Info

Publication number
CN103684922B
CN103684922B CN201310716971.1A CN201310716971A CN103684922B CN 103684922 B CN103684922 B CN 103684922B CN 201310716971 A CN201310716971 A CN 201310716971A CN 103684922 B CN103684922 B CN 103684922B
Authority
CN
China
Prior art keywords
module
detection
censorship
controller
sdn
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201310716971.1A
Other languages
Chinese (zh)
Other versions
CN103684922A (en
Inventor
柯宗贵
杨育斌
程丽明
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Bluedon Information Security Technologies Co Ltd
Original Assignee
Bluedon Information Security Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Bluedon Information Security Technologies Co Ltd filed Critical Bluedon Information Security Technologies Co Ltd
Priority to CN201310716971.1A priority Critical patent/CN103684922B/en
Publication of CN103684922A publication Critical patent/CN103684922A/en
Application granted granted Critical
Publication of CN103684922B publication Critical patent/CN103684922B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Abstract

The invention discloses an outlet information privacy checking detection platform system based on an SDN (self-defending network). The system comprises a privacy checking detection module and a controller cluster control module, wherein the controller cluster control module comprises a state distribution/synchronization module, a domain management module, a distributed storage management module, an exchanger sharing control module and an exchanger interface communication module. The privacy checking detection module is deployed on a privacy checking detection server and comprises a daily security examination module, an internet surfing behavior control module, a suspicious terminal detection module, a Trojan horse detection module, a platform operation and maintenance management module, a self-security guarantee module, a policy database, a virus characteristic pattern base and a characteristic rule base. In addition, the invention further discloses a detection method of an outlet information privacy checking detection platform based on the SDN. Security of the internet outlet information privacy checking detection platform system can be greatly improved, and the flow burden of a service network is relieved.

Description

Outlet information censorship detection platform system based on SDN and detection method
Technical field
The present invention relates to technical field of network security, more particularly, to the outlet information censorship based on SDN detect Plateform system and detection method.
Background technology
With the fast development of China's economic society, informationization also develops continuous, and a business/organization is daily Inevitably need in office to contact with internet, mutual transmission information.This brings safe and secret first to business/organization The significant challenge of aspect, need to prevent leakage security information that employee is not intended to/has a mind to, prevent outsider illegally obtain enterprise/ The security information of tissue;In addition interior employee is required for the consumption of site resource and internet behavior etc. obtaining control being beneficial to enterprise Being normally carried out of industry/tissue routine work.
To business/organization, all mobile Internet outlets carry out unified secrecy inspection to outlet information censorship detection platform Check and survey.Primary study enters to all mobile Internet abnormal behaviours of business/organization internet, wooden horse behavior and transmission information Row unified supervision, makes user find in the very first time and dispose all kinds of events.Examine the data by the Internet transmission for the analysis, examine Check the mark analysis to the information of interconnection Web realease, is capable of identify that the network behavior of terminal abnormal, and can find that virus and wooden horse are stolen The behavior of data;The behavior of divulging a secret can be carried out with strict monitoring, obtain necessary information to trace responsible person concerned;Ensure flat The safety of platform data, prevents secondary divulging a secret.
For example, the patent of invention of Application No. 201210435961.6 provides a kind of network computerized information and protects Close detection method, comprises the following steps:Network server end is associated with computer client;Setting network server end detects plan Slightly;Determine computer client inspection policies;File dynamic real-time monitor is reported to the police.The present invention passes through active detecting and passive detection The pattern combining, inspection result unification is carried out Macro or mass analysis, points out computer client to be processed accordingly.By meter The self-defined function of white name list containing sensitive words information of calculation machine client, improves accuracy rate and the recall precision of censorship.Pass through The unified of the censorship strategy of network server end sets and issues, and realizes the file dynamic real-time monitor of computer client Report to the police, automatically check and early warning mechanism, from technological means, improve employee's secrecy prevention awareness, evade enterprise and divulge a secret risk.
The patent of invention of Application No. 200310114937.3 is related under the cooperative working environment of technical field of network security Leakage of information crime prevention system and its implementation.Including:Client and service end two parts, client is arranged on every to be needed to grasp Make on the computer of protected file, for execution protection operation;Service end is installed on independent computer in a network, is used for Execution monitors and controls the computer of client, management certificate and key, to user in client to protected file, client Pass through network connection with service end.Method includes:The identity of checking user and authority;Execution decryption oprerations;To the literary composition being opened The part moment monitors;Make encryption to preserving content, the content being so saved on disk is all the information of encryption forever, so Ensure that file to be copied to by any way elsewhere is all encryption.Fundamentally solve under cooperative working environment Leakage of information problem, and various applied environments have all been made to consider, availability is high.
Above-mentioned technology is to associate network server end with computer client in former network, then on this server Setting network server end inspection policies, determine computer client inspection policies, to carry out the detection of information privacy;In addition right File dynamically carries out monitor in real time.This technology carries out censorship work in legacy network, with former operation system and be stored in In one network, there is great potential safety hazard:Easily cause secondary divulge a secret, in addition also volume is caused to the flow load in former network Outer burden.
In addition, the utility model of Patent No. 200820192655.3 is related to a kind of Intelligent multifunctional safety gateway, by Linux kernel and at least two network interface cards are constituted, and its linux kernel is connected with each other with each network interface card respectively, is characterized in:Linux Kernel is connected with each other with ip packet filter module, flow-control module, L7 and P2P module also by interface, and an internal task is adjusted Degree module is connected with each other with linux kernel, ip packet filter module, flow-control module, L7 and P2P module respectively, internal task Scheduler module is connected with user also by an interactive interface module.The utility model collection router, flow control, VPN And firewall functionality is, it is possible to provide IP-based flow control function, intelligent router feature, VPN dial-up access Server capability and network firewall and NAT address translation feature, substitute expensive and function phase to single multiple private network Network equipment, not only stable and reliable for performance, and also with low cost.All working amount is pressed onto intelligent multifunction safety net by this technology Close, by all of work, such as ip packet filter module, flow-control module, L7 and P2P module etc. all concentrate on an equipment Complete, in addition flow system flow and original operation system also and exist in consolidated network.
Content of the invention
The present invention in order to solve prior art middle outlet information privacy check detection platform system security not high enough and The flow effect shortcoming of legacy network efficiency or the deficiency producing, employs a kind of outlet information based on SDN secrecy Checking the scheme of detection platform system, it is achieved thereby that strengthening outlet information censorship detection platform security of system, mitigating Business network flow is born.
Based on the outlet information censorship detection platform system of SDN, it is by censorship detection module and control Device clustered control module composition.
Wherein controller clustered control module coordinates to the controller cluster in platform and controls, and with support SDN Switch communicated, it includes state distribution/synchronization module, point domain management module, distributed storage management module, exchanges Machine Compliance control module, exchange interface communication module.
Controller clustered control module uses southbound interface agreement by exchange interface communication module and supports the friendship of SDN Change planes and communicated, realize the synchronization of the flow table between multi-controller using other modules.
Censorship detection module is deployed on censorship detection service device, examines module, online row by daily concerning security matters For control module, suspicious terminal detection module, trojan horse detection module, platform operation management module, inherently safe assurance module and Policy database, virus characteristic pattern base, characterization rules storehouse composition.
Wherein daily concerning security matters examine that module is responsible for Email, and file transmits, microblogging, blog, the examination of network forum; Internet behavior control module be responsible for HTTP, FTP, SMTP, POP3, Web Mail, QQ, MSN, community/forum/video/game, The monitor audit of the P2P delivery means such as BT/ electricity donkey/sudden peal of thunder etc..
Suspicious terminal detection module includes domain name detection module, IP address detection module, and SSL channel detecting module is upper and lower Row flow proportional detection module.
The extraordinary wooden horse domain name feature of trojan horse detection module detection, extraordinary wooden horse IP address feature, extraordinary wooden horse data content Feature.
Platform operation management module includes Centralized management of policy module, retrieval analysis module, operation management module.
Inherently safe assurance module includes mark and identification module, platform operations log pattern, security service module, clock Synchronization module, safety certificate module.
The detection method of the outlet information censorship detection platform based on SDN, the step of the method is as follows:Platform After the completion of initialization, support that the switch of SDN forwards to the packet entering switch according to the flow table item issuing, if any Packet meets the condition of outlet information censorship detection platform secret and safe threat, that is, mate the flow table of safe and secret threat , support that the switch of SDN extracts the IP data packet head of this packet and tcp data packet header forms an alarm data packet and sends To controller, simultaneously by this data packet discarding, controller notifies censorship detection module to carry out correlation after receiving warning information Operation, censorship detection module record security threatens daily record, and sends notice to third party's fail-safe software control system;If any Packet meets the condition of outlet information censorship detection platform secret and safe threat, supports that the switch of SDN replicates this number Be sent to controller according to bag, simultaneously by this packet press-in waiting list with wait issue flow table indicate how process, controller Then it is further forwarded to censorship detection module, by censorship detection module, this packet is detected, such as detect Find this security data packet no to divulge a secret then and notify the controller sending information to be checked to send data it is desirable to switch shines former target Bag;Find that this data is surrounded by security threat or situation of divulging a secret as detected, then censorship detection module generates such packet Flow table item is simultaneously distributed to related controller, and the flow table item that oneself is assigned to by controller is issued to the exchange of this controller management Machine, notifies to send the packet that the switch of information to be checked is processed press-in waiting list by the flow table newly issuing;If packet Do not comply with case above, then send packet as before.
The beneficial effect that technical solution of the present invention is brought:
Outlet information censorship detection platform system based on SDN utilizes SDN technology, can be by outlet information The flow separation related to censorship that censorship detection platform produces, on another network, solves possible " two Secondary divulge a secret " etc. the security threat of system and flow load problem, can greatly lift Internet exportation information privacy inspection detection Plateform system security, also mitigates business network flow burden simultaneously.
Brief description
In order to be illustrated more clearly that the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing Have technology description in required use accompanying drawing be briefly described it should be apparent that, drawings in the following description be only this Some embodiments of invention, for those of ordinary skill in the art, on the premise of not paying creative work, acceptable Other accompanying drawings are obtained according to these accompanying drawings.
Fig. 1 is the functional structure chart of the outlet information censorship detection platform system based on SDN;
Fig. 2 is the subdivision flow diagram of the outlet information censorship detection platform system based on SDN;
Fig. 3 is the network topological diagram of the outlet information censorship detection platform system based on SDN;
Fig. 4 is the outlet information censorship detection platform System Initialization Procedure figure based on SDN;
Fig. 5 is the detection method flow chart of the outlet information censorship detection platform based on SDN.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Site preparation description is it is clear that described embodiment is only a part of embodiment of the present invention, rather than whole embodiments.It is based on Embodiment in the present invention, it is every other that those of ordinary skill in the art are obtained under the premise of not making creative work Embodiment, broadly falls into the scope of protection of the invention.
Outlet information censorship detection platform system based on SDN can be directed to all internets of business/organization, shifting Dynamic Internet exportation carries out unified censorship detection.Censorship detection module passes through SDN controller from the friendship supporting SDN The place of changing planes collects related data flow and is analyzed, to all abnormal behaviours, wooden horse behavior and transmission in business/organization Intranet Information carries out unified supervision, so that user is found in the very first time and dispose all kinds of events.Examine analysis by the Internet transmission Data, examines that analysis, to the information of interconnection Web realease, is capable of identify that abnormal network behavior, and can find that virus and wooden horse are stolen Take the behavior of data, the behavior of divulging a secret can be carried out with strict monitoring, obtain necessary information tracing responsible person concerned it is ensured that The safety of platform data, prevents secondary divulging a secret.
Be illustrated in figure 1 the functional structure chart of the outlet information censorship detection platform system based on SDN, its by Censorship detection module and controller clustered control module composition.
Wherein controller clustered control module coordinates to the controller cluster in platform and controls, and with support SDN Switch communicated, it includes state distribution/synchronization module, point domain management module, distributed storage management module, exchanges Machine Compliance control module, exchange interface communication module.Controller clustered control module is made by exchange interface communication module Communicated with the switch supporting SDN with southbound interface agreement, realized flow table between multi-controller using other modules Synchronous.Censorship detection module is deployed on censorship detection service device, examines module, internet behavior control by daily concerning security matters This is six big for molding block, suspicious terminal detection module, trojan horse detection module, platform operation management module, inherently safe assurance module Module and policy database, virus characteristic pattern base, these three databases of characterization rules storehouse composition.Wherein daily concerning security matters examine mould Block is responsible for Email, and file transmits, microblogging, blog, the examination of network forum;It is right that internet behavior control module is responsible for The P2P transmission such as HTTP, FTP, SMTP, POP3, Web Mail, QQ, MSN, community/forum/video/game, BT/ electricity donkey/sudden peal of thunder The monitor audit of instrument etc.;Suspicious terminal detection module includes domain name detection module, IP address detection module, SSL Air conduct measurement Module, uplink and downlink flow proportional detection module;The extraordinary wooden horse domain name feature of trojan horse detection module detection, extraordinary wooden horse IP address Feature, extraordinary wooden horse data content feature;Platform operation management module includes Centralized management of policy module, retrieval analysis module, Operation management module;Inherently safe assurance module includes mark and identification module, platform operations log pattern, security service mould Block, clock synchronization module, safety certificate module.
Outlet information censorship detection platform system based on SDN is based on SDN technology, by former network, goes out message The network of breath both censorship detection platform is separated.Censorship detection module and SDN controller cluster, support SDN Switch be connected to form an independent network, this network is carried out high level security control, such outlet information The correlative flow of censorship detection platform system and SDN control flow to share the network of same high safety rank it is ensured that being The security of system, and platform is preferably minimized to the performance impact of former network.Business/organization related system platform is continuing with Original network, legacy network flow is hardly affected by outlet information censorship detection platform system.Specifically as Fig. 2 institute Show, bold portion is former network traffics, platform is not changed to this;Flow shown in chain-dotted line controls flow for SDN, and this is SDN controller and the flow of switch communication;Flow shown in thick dashed line is censorship detection flows, and this partial discharge is to prop up Hold the flow to be checked that the switch of SDN is selected from former network traffics according to flow table, by flow table rule from switch certain Individual port is sent to the network at SDN controlling stream place.
It is illustrated in figure 3 the network topological diagram of the outlet information censorship detection platform system based on SDN.In figure Solid line network is the network topology structure of original undertaking/organization internal;Dotted line network is SDN controller and the switch supporting SDN The network that " network and the outlet information censorship detecting system " of communication works.
It is the outlet information censorship detection platform System Initialization Procedure figure based on SDN as shown in Figure 4.It is based on After the outlet information censorship detection platform system of SDN starts, censorship detection module tuning controller cluster, from Switch obtains network topology situation, divides the switch scope that each controller is controlled, then according to policy database, virus Feature mode storehouse, these three databases of characterization rules storehouse lay down a regulation and list flow table item, flow table item are dealt into respectively the control of correlation Device processed, the flow table item that oneself is assigned to by controller is issued on the switch of this controller management, and so far plateform system is initial Change end-of-job.
It is illustrated in figure 5 the overhaul flow chart of the outlet information censorship detection platform based on SDN.Platform is initial After the completion of change, support that the switch of SDN forwards to the packet entering switch according to the flow table item issuing, if any data Bag meets the condition of outlet information censorship detection platform secret and safe threat, that is, mate the flow table item of safe and secret threat, Support that the switch of SDN extracts the IP data packet head of this packet and tcp data packet header forms an alarm data packet and is sent to Controller, simultaneously by this data packet discarding, controller notifies censorship detection module to carry out related behaviour after receiving warning information Make, censorship detection module record security threatens daily record, and send notice etc. to third party's fail-safe software control system;If any Packet meets the condition of outlet information censorship detection platform secret and safe threat, supports that the switch of SDN replicates this number Be sent to controller according to bag, simultaneously by this packet press-in waiting list with wait issue flow table indicate how process, controller Then it is further forwarded to censorship detection module, by censorship detection module, this packet is detected, such as detect Find this security data packet no to divulge a secret then and notify the controller sending information to be checked to send data it is desirable to switch shines former target Bag, such as detection find this data to be surrounded by security threat or situation of divulging a secret that then censorship detection module generates the stream of such packet List item is simultaneously distributed to related controller, and the flow table item that oneself is assigned to by controller is issued to the exchange of this controller management Machine, notifies to send the packet that the switch of information to be checked is processed press-in waiting list by the flow table newly issuing;If packet Do not comply with case above, then send packet as before.
The outlet information censorship detection platform system based on SDN that above embodiment of the present invention provided and Detection method is described in detail, and specific case used herein is explained to the principle of the present invention and embodiment State, the explanation of above example is only intended to help and understands the method for the present invention and its core concept;Simultaneously for this area Those skilled in the art, according to the thought of the present invention, all will change, to sum up institute in specific embodiments and applications State, this specification content should not be construed as limitation of the present invention.

Claims (4)

1. the outlet information censorship detection platform system based on SDN is it is characterised in that this system is examined by censorship Survey module and controller clustered control module composition;
Wherein controller clustered control module coordinates to the controller cluster in platform and controls, and the friendship with support SDN Change planes and communicated, it includes state distribution/synchronization module, point domain management module, distributed storage management module, switch is common Enjoy control module, exchange interface communication module;
Controller clustered control module uses southbound interface agreement by exchange interface communication module and supports the switch of SDN Communicated, realized the synchronization of the flow table between multi-controller using other modules;
Censorship detection module is deployed on censorship detection service device, examines module, internet behavior control by daily concerning security matters Molding block, suspicious terminal detection module, trojan horse detection module, platform operation management module, inherently safe assurance module and strategy Database, virus characteristic pattern base, characterization rules storehouse composition;
Wherein daily concerning security matters examine that module is responsible for Email, and file transmits, microblogging, blog, the examination of network forum;Online Behavior- Based control module is responsible for HTTP, FTP, SMTP, POP3, Web Mail, QQ, MSN, community/forum/video/game, P2P The monitor audit of delivery means;
Suspicious terminal detection module includes domain name detection module, IP address detection module, SSL channel detecting module, uplink and downlink stream Amount ratio detection module;
The extraordinary wooden horse domain name feature of trojan horse detection module detection, extraordinary wooden horse IP address feature, extraordinary wooden horse data content feature;
Platform operation management module includes Centralized management of policy module, retrieval analysis module, operation management module;
Inherently safe assurance module includes mark and identification module, platform operations log pattern, security service module, and clock is synchronous Module, safety certificate module.
2. system according to claim 1 is it is characterised in that after the startup of this system, censorship detection module coordinates control Device cluster processed, obtains network topology situation from switch, divides the switch scope that each controller is controlled, then according to strategy Database, virus characteristic pattern base, these three databases of characterization rules storehouse lay down a regulation and list flow table item, and flow table item is sent out respectively To related controller, the flow table item that oneself is assigned to by controller is issued on the switch of this controller management, is so far System initial work terminates.
3. system according to claim 1 is it is characterised in that censorship detection module and SDN controller in this system Cluster, the switch of support SDN are connected to form an independent network, carry out high level security control in this network, So the correlative flow of outlet information censorship detection platform system and SDN control flow to share the net of same high safety rank Network is it is ensured that the security of system, and platform is preferably minimized to the performance impact of former network.
4. the detection method of the outlet information censorship detection platform based on SDN is it is characterised in that the step of the method As follows:After the completion of platform initialization, support that the switch of SDN is carried out to the packet entering switch according to the flow table item issuing Forward, meet the condition of outlet information censorship detection platform secret and safe threat if any packet, that is, mate safe and secret The flow table item threatening, supports that the switch of SDN extracts the IP data packet head of this packet and tcp data packet header forms an alarm Packet is sent to controller, and simultaneously by this data packet discarding, controller notifies censorship detection mould after receiving warning information Block carries out associative operation, and censorship detection module record security threatens daily record, and sends out to third party's fail-safe software control system Send notice;Meet the condition of outlet information censorship detection platform secret and safe threat if any packet, support the exchange of SDN Machine replicates this packet and is sent to controller, simultaneously by this packet press-in waiting list with wait issue flow table indicate how locate Reason, controller is then further forwarded to censorship detection module, by censorship detection module, this packet is examined Survey, such as this security data packet of detection discovery is no divulged a secret and then notified to send the controller of information to be checked it is desirable to switch shines former target Send packet, such as detection finds that this data is surrounded by security threat or situation of divulging a secret, then the generation of censorship detection module is such The flow table item of packet is simultaneously distributed to related controller, and the flow table item that oneself is assigned to by controller is issued to this controller pipe The switch of reason, notifies to send the packet that the switch of information to be checked is processed press-in waiting list by the flow table newly issuing;As Fruit packet does not comply with case above, then send packet as before.
CN201310716971.1A 2013-12-23 2013-12-23 Outlet information privacy checking detection platform system based on SDN (self-defending network) and detection method Active CN103684922B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310716971.1A CN103684922B (en) 2013-12-23 2013-12-23 Outlet information privacy checking detection platform system based on SDN (self-defending network) and detection method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310716971.1A CN103684922B (en) 2013-12-23 2013-12-23 Outlet information privacy checking detection platform system based on SDN (self-defending network) and detection method

Publications (2)

Publication Number Publication Date
CN103684922A CN103684922A (en) 2014-03-26
CN103684922B true CN103684922B (en) 2017-02-15

Family

ID=50321301

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310716971.1A Active CN103684922B (en) 2013-12-23 2013-12-23 Outlet information privacy checking detection platform system based on SDN (self-defending network) and detection method

Country Status (1)

Country Link
CN (1) CN103684922B (en)

Families Citing this family (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104023034B (en) * 2014-06-25 2017-05-10 武汉大学 Security defensive system and defensive method based on software-defined network
CN105450502B (en) * 2014-09-19 2018-10-09 南京审计大学 The Email that software-oriented defines network denies suppression system and its suppressing method
CN104601557B (en) * 2014-12-29 2018-12-21 广东顺德中山大学卡内基梅隆大学国际联合研究院 A kind of malicious websites means of defence and system based on software defined network
CN106254338B (en) * 2016-07-29 2019-09-06 新华三技术有限公司 Message detecting method and device
CN106982149B (en) * 2016-12-29 2019-10-01 ***股份有限公司 Message mirror-image method and network flow monitoring management system based on SDN
CN107124301A (en) * 2017-04-12 2017-09-01 东华大学 A kind of campus network network structure based on SDN
CN108011825B (en) * 2017-11-10 2020-07-28 深圳市泰信通信息技术有限公司 Multi-network equipment interconnection reality method and system based on software defined network
CN109857332A (en) * 2017-11-30 2019-06-07 北京京穗蓝盾信息安全技术有限公司 A kind of method and device of magnetic disk of virtual machine file security inspection
CN109905251B (en) * 2017-12-07 2020-12-18 北京金山云网络技术有限公司 Network management method, device, electronic equipment and storage medium
CN108449230B (en) * 2018-03-15 2020-07-03 达闼科技(北京)有限公司 Network performance detection system, method and related device
CN108712364B (en) * 2018-03-22 2021-01-26 西安电子科技大学 Security defense system and method for SDN (software defined network)
CN110602119A (en) * 2019-09-19 2019-12-20 迈普通信技术股份有限公司 Virus protection method, device and system
CN113206719B (en) * 2021-03-16 2023-04-11 网络通信与安全紫金山实验室 Clock synchronization method, system and storage medium based on SDN master clock
CN113271292B (en) * 2021-04-07 2022-05-10 中国科学院信息工程研究所 Malicious domain name cluster detection method and device based on word vectors

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2069961A1 (en) * 2006-09-21 2009-06-17 Samsung Electronics Co., Ltd. Apparatus and method for providing domain information
CN101951384A (en) * 2010-09-29 2011-01-19 南京信息工程大学 Distributed security domain logic boundary protection method

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2069961A1 (en) * 2006-09-21 2009-06-17 Samsung Electronics Co., Ltd. Apparatus and method for providing domain information
CN101951384A (en) * 2010-09-29 2011-01-19 南京信息工程大学 Distributed security domain logic boundary protection method

Also Published As

Publication number Publication date
CN103684922A (en) 2014-03-26

Similar Documents

Publication Publication Date Title
CN103684922B (en) Outlet information privacy checking detection platform system based on SDN (self-defending network) and detection method
Liu et al. A survey: Typical security issues of software-defined networking
CN104506507B (en) A kind of sweet net safety protective system and method for SDN
EP2721801B1 (en) Security measures for the smart grid
CN109768880A (en) A kind of network topology distant place visualizing monitor method towards electric power monitoring system
KR101375813B1 (en) Active security sensing device and method for intrusion detection and audit of digital substation
CN102571476B (en) A kind of method and apparatus of monitoring terminal command line in real time
CN103227797A (en) Distributive management system of information network security for power enterprises
Holtz et al. Building scalable distributed intrusion detection systems based on the mapreduce framework
Wang et al. A centralized HIDS framework for private cloud
Joshi et al. Early detection of distributed denial of service attack in era of software-defined network
CN114978697A (en) Network information system endogenous security defense method, device, equipment and medium
Genge et al. An approach for cyber security experimentation supporting sensei/IoT for smart grid
McCary et al. Smart grid attacks and countermeasures
CN116232770B (en) Enterprise network safety protection system and method based on SDN controller
CN112383573A (en) Security intrusion playback equipment based on multiple attack stages
CN108933707B (en) Safety monitoring system and method for industrial network
Li et al. A defense model study based on IDS and firewall linkage
CN111107035B (en) Security situation sensing and protecting method and device based on behavior identification
CN116458120A (en) Protecting network resources from known threats
CN110572353A (en) Cloud computing network security service
Yi et al. Research of campus network security system based on intrusion detection
CN108848093A (en) Route computing unit and apparatus for network node
Jarmakiewicz et al. Evaluation of the cyber security provision system for critical infrastructure
Yi The Network Security Analysis System Design Based on B/S Structure: An Approach Research

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20210324

Address after: No.16, Tianhui Road, Tianhe District, Guangzhou, Guangdong 510000

Patentee after: BLUEDON INFORMATION SECURITY TECHNOLOGIES Co.,Ltd.

Address before: 510665 20-21 / F, building a, information port, No.16 Keyun Road, Tianhe District, Guangzhou City, Guangdong Province

Patentee before: Bluedon Information Security Technology Corp.,Ltd.

PP01 Preservation of patent right
PP01 Preservation of patent right

Effective date of registration: 20220422

Granted publication date: 20170215