Network architecture based on SDP component and terminal equipment security protection method oriented to novel network

Network architecture based on SDP component and terminal equipment security protection method oriented to novel network

The invention belongs to the technical field of network security, and particularly relates to a network architecture based on an SDP component and a terminal equipment security protection method oriented to a novel network, under a three-layer plane architecture consisting of an application plane, a...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: ZU SHUODI, SUN ZHONGXIN, ZHANG PENG, YI PENG, QU YANZE, WANG LIANG, ZHOU KUN, HU YUXIANG, FU MIN
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention belongs to the technical field of network security, and particularly relates to a network architecture based on an SDP component and a terminal equipment security protection method oriented to a novel network, under a three-layer plane architecture consisting of an application plane, a control plane and a data plane, the SDP component is used for performing security control on access terminal equipment of the data plane; the method comprises the following steps of: deploying a multi-stage application gateway for detecting a malicious terminal based on a trust threshold among an SR network domain outer node, an SR network domain ingress router and network service resources in a data plane; the multi-level application gateway at least comprises a first-level application gateway used for carrying out network access communication level identity verification on the terminal equipment accessed to the SR network domain and a second-level application gateway used for carrying out resource access level i