1.Overview
This system changes the entire network communication into the peer-to-peer encrypt communication, point-to-network encrypt communication, network-to-network encrypt communication with permission of management. Based on the compatibility with the existing network switching and routing, the transmission data are encrypted, access must pass identification authentication and access between hosts are strictly controlled and audited by the ACL.
According to different level of encryption, level of permission, it divides the entire network into several encrypted sections based on standard security requirement; the static key exchange and dynamic key exchange are used to control access permissions, create secure encrypted data transmission channel or transparent data transmission channel, in order to achieve access control in the physical layer.
The system using network access authentication management and network communication encryption technology, completely record the operational logs which involves sensitive information, in order to audit and pursue the liability afterwards, so that the data transmission, exchange and information processing in the network are safe and reliable, thereby preventing data attack, network intrusion, leakage of internal information and other security risks fundamentally.
The system fundamentally solves the “within-net security” problem.
2.Main functions and features:
- The link layer opens routing and switching protocol and transmits IP data packet only;
- The data above the network layer are fully encrypted;
- Mutual access must pass authentication;
- Access Control List (ACL) based on the equipment;
- The entire network can be divided into a number of encrypted sections in accordance of basic security requirements by different permitted distributions.
- Change the entire network communications into encrypted communications with permitted administration;
- The data attack, network intrusion and other security risks are fundamentally prevented.
3.Application fields
Local area network and dedicate network
- Internal office network of Power Grid, Mining, Metallurgy, Petrol, Water and Gas supply etc.
- Traffic Control network