An Solution of Network Service Oriented Operator Network Intrusion Prevention

Similar documents
The Application Analysis and Network Design of wireless VPN for power grid. Wang Yirong,Tong Dali,Deng Wei

Research on Approach of Equipment Status and Operation Information Acquisition Based on Equipment Control Bus

Wireless Smart Home Security System Based on Android

The Application of Wireless Sensor in Aquaculture Water Quality Monitoring

The Research of the Digital Environmental Protection Intellectualization Platform

Study of Smart Home System based on Zigbee Wireless Sensor System. Jie Huang 1

Design and Implementation of Aquarium Remote Automation Monitoring and Control System

On Design and Implementation of Locomotive Video Monitoring System. Haifeng Yuan, Jie Peng

Design of Desert Plant Monitoring System Based on SI446X Wireless Radio Frequency Communication

Research on Multi-service Unified Bearing Electric Power Communication Access Network Bao Feng1,a, Yang Li1, Yang Hu1, Yan Long2, Yongzhong Xie3

Web-based Building Energy Consumption Monitoring and Conservation Service DONG Wei1, a

Huawei Railway Communication Service Solution Guide

Agriculture Wireless Temperature and Humidity Sensor Network Based on ZigBee Technology

Exploration of Fault Diagnosis Technology for Air Compressor Based on Internet of Things

A Field Monitor System of Rodpumped Wells Based on GPRS

Intelligent Three-dimensional Layout Design of Video Cameras in Substations

Research on 3G Terminal-Based Agricultural Information Service

The Application of CAN Bus in Intelligent Substation Automation System Yuehua HUANG 1, a, Ruiyong LIU 2, b, Peipei YANG 3, C, Dongxu XIANG 4,D

Design of Coal Mine Comprehensive Parameters Monitoring System Based on DSP

Moving The Complex To The Understandable

Design and Implementation of Remote Medical Monitoring System for. Homecare

Chapter 2 The Research on Wireless Positioning Base on ZigBee

ICTs for inclusive social and economic development in Japan

The Integrated Design for Micro - environment Monitoring System of Showcase in Museum

Research and Realization of HART Protocol Based on Wireless Short Range Network Technology Kaiyuan Meng 1, a, Qingnian Cao 2, b

Introduction to Information Technology Turban, Rainer and Potter John Wiley & Sons, Inc. Copyright 2005

Application of Wireless Communication and GIS in Agricultural Environment Monitoring

Smart City Solution & Case Study. LG Uplus

Research on Heterogeneous Communication Network for Power Distribution Automation

Temperature Control System of Cold Storage

Analysis of Space-Ground Integrated Information Network Architecture and Protocol

2017 2nd International Conference on Communications, Information Management and Network Security (CIMNS 2017) ISBN:

The Discussion of 500kV Centralized Monitoring System for Large Operation and Large Maintenance Mode

Research on Two - Way Interactive Communication and Information System Design Analysis Dong Xu1, a

An Agricultural Tri-dimensional Pollution Data Management Platform based on DNDC Model

Design of Underground Current Detection Nodes Based on ZigBee

Simulation and Realization of Wireless Emergency Communication System of Digital Mine

Microcontroller-Based Wireless Sensor Networks Prof. Kasim M. Al-Aubidy Philadelphia University

Control System for Electrical Exploding Wire Opening Switch Experimental Equipment

The research of key technologies in the fifth-generation mobile communication system Su Lina1, a, Chen Wen2,b, Chen Ping3,c, Lu Yanqian4,d

The Design of Electronic Color Screen Based on Proteus Visual Designer Ting-Yu HOU 1,a, Hao LIU 2,b,*

The Design of Water Quality Monitoring Cloud Platform Based on. BS Architecture

An Agricultural Tri-dimensional Pollution Data Management Platform Based on DNDC Model

Review of IEC/EN Standards for Data Exchange between Smart Meters and Devices

The framework of next generation automatic weather station in China

Wireless Monitoring in Freeway

Hazard Management Cayman Islands

The Design of Embedded Remote Intelligent Automotive Monitoring System based on GSM. Lijun Gao

An Intelligent Retrieval Platform for Distributional Agriculture Science and Technology Data

, ,China. Keywords: CAN BUS,Environmental Factors,Data Collection,Roll Call.

Research on Heterogeneous Network Integration in Distribution Communication Network

The intelligent weather station system based on Arduino

Huawei elte Solution Success Case for Zhengzhou Metro Project

Definitions and General Terms

REGIONAL COUNTRY INFORMATION SERVICE PLATFORM BASED ON HYBRID NETWORK

A Novel Intrusion Detection Method for WSN Sijia Wang a, Qi Li and Yanhui Guo

Intelligent IP Video Surveillance

Design of Campus one-finger Service System Based on Fingerprint Identification

Fig Data flow diagram and architecture when using the TCUP Cloud Server for PaaS for the Developers and large

Introduction to Networks and the Internet

Research on Computer Network Virtual Laboratory based on ASP.NET. JIA Xuebin 1, a

Realization of Time Synchronization Server Based on C/S

IP Video Surveillance Network Solution

Video Architectures Eyes on the Future: The Benefits of Wireless Technology for Fixed Video Surveillance

The SCADA Connection: Moving Beyond Auto Dialers

Intelligent Computer Room Management Platform Based on RF Card

Geospatial Information Service Based on Ad Hoc Network

Design of Coal Mine Power Supply Monitoring System

Wireless Communication Systems. Lesson Outline

NETSMART Network Management Solutions

Leading the way in IP based communications & global solutions

INTERNET BASED FLEET MANAGEMENT USING GPS AND GSM/GPRS

The Study and Implementation of Text-to-Speech System for Agricultural Information

Serial Communication Based on LabVIEW for the Development of an ECG Monitor

CAN EMTC IOT BE SUPPORTED OVER THE HFC NETWORK

ITS (Intelligent Transportation Systems) Solutions

An intelligent LED landscape lighting system

Design in the Authentication and Billing System Based on Radius and 802.1x Protocol

OMNICOMM ON-BOARD TERMINALS

Research on Technologies in Smart Substation

Module 5 Local Area Networks

X.25 Substitution. Maintaining X.25 services over a fully supported NGN/IP infrastructure. The Challenge. How it Works. Solution

Chapter 2. Literature Survey. 2.1 Remote access technologies

Design of Temperature and Humidity Data Acquisition System. Based on ARM

Intercom Systems in Combat Vehicles (R)evolution

The Analysis and Research of IPTV Set-top Box System. Fangyan Bai 1, Qi Sun 2

LANCOM Techpaper Advanced Routing and Forwarding (ARF)

KIBABII UNIVERSITY COLLEGE DEPARTMENT COMPUTER SCIENCE & IT ANSWER ALL QUESTIONS IN SECTION A AND ANY TWO QUESTIONS IN SECTION B

China Telecommunication Technology Labs

MODERNIZATION OF AUTOMATIC SURFACE WEATHER OBSERVING SYSTEMS AND NETWORKS TO UTILIZE TCP/IP TECHNOLOGY

Mobile and Sensor Systems

COMPANY PROFILE LIPA MAJI NA

Area Covered is small Area covered is large. Data transfer rate is high Data transfer rate is low

WZRDnet. A Low-Power Wireless Ad-Hoc Mesh Network for Austere Tactical Environments. February 14, 2018

INTRODUCTION TO WIRELESS COMMUNICATION

Design of Greenhouse Temperature and Humidity Monitoring System Based on ZIGBEE Technique Ming Xin 1,a, Wei Zhongshan 1,b,*

Study ON Remote Medical Monitoring System Based ON MSP430 AND CC2530

Monitoring system for photovoltaic plants Issue 2.0. energy from nature

Research of tooling test signal collection and analysis Guozhuang Liang 1, a, Xuan Chen 1,b,Yufeng Yao 2,c

JURUMANI MERAKI CLOUD MANAGED SECURITY & SD-WAN

Transcription:

International Symposium on Computers & Informatics (ISCI 2015) An Solution of Network Service Oriented Operator Network Intrusion Prevention Jie Li, Yang Li DIGITAL CHINA(CHINA)LIMITED, Beijing, China adigital9898@sina.com Abstract An anti-intrusion system is provided, including the front-end information collection system, network operator platform, or operating system and peripheral systems. The system can prevent network intrusion efficiently. Keywords: Intrusion prevention, monitoring, data logger Introduction Intrusion prevention is related to all aspects of society in important areas, important units such as airports, cultural monuments, military installations, government agencies, radio, television, communication systems, etc., the security work of these units is extremely important, it is also the focus of security. However, for the airport, 10 km from the periphery or for a few kilometers of the district boundary, need around the clock security, to protect the security of these places would be the application of advanced unmanned technology to achieve timely warning, real-time remote control and timely monitoring. Enclosures intrusion prevention system consists of anti-intrusion section, the ground portion of the anti-intrusion, anti-intrusion underground part, to achieve the enclosures to achieve all-weather, real-time monitoring of all-time. System Architecture The whole anti-intrusion system is divided into the front-end information collection system, network operators, platform or operating system and peripheral systems, which is shown in fig 1. 2015. The authors - Published by Atlantis Press 1198

Front-end system Operation platform Peripheral systems Front-end video system Front-end detection system Operation system Monitoring terminal Internet of Things support platform BSS - Monitoring terminal Seating systems Application systems Fig1. System overview The front-end Information collection system is responsible for collecting video, audio, alarm signals. Other front-end systems and video surveillance zone is responsible for collecting data sensing probe tip detection system by sensor networks. Front-end information collection systems need to have a high level of detection ability, which can eliminate interference from weather, the environment, animals and other intrusion detection systems. The system can use a variety of combined sensing means, taking into account the important area of special geographical environment, climatic conditions and electromagnetic environment, observational data from the front or the verdict of a number of different sensors are fused to form a more complete, more accurate judgment, the next important area of the complex environment to achieve all-weather, all-time safe and reliable monitoring. The video surveillance system is very important in intelligent video image recognition and other functions. The network Include a variety of fixed network, mobile network, such as leased line, ADSL, WLAN, Ethernet, GSM /WCDMA /LTE and so on. operation network for the data acquisition system front-end information collected to provide reliable carrier-class transmission channels, combined with operating system or platform (video monitoring center platform, networking and business support platform, BSS-OSS), will further promote the important areas to enhance security capabilities, help explore the establishment of anti-intrusion system wide business model, expand coverage intrusion prevention system information to the user, provide users with real-time, remote management and early warning at the same time, provide operators with comprehensive information services to changes provide important content providers. Peripheral systems face a variety of system users directly, can show the anti-intrusion system information section. 1199

Figure2. system architecture The elements of the system are shown is fig 2. Sensors Sensors collect the data required for the application in the monitoring target environment, can access video surveillance and data collection terminal through the fusion of data logger, can also directly access the video surveillance and data collection terminal fusion. Data logger 1200

Data logger connected sensors via RS485, RS232, USB and other interfaces, data can be collected from the sensors and stored. Data logger can be connected via a gateway integration RS485, RS232, USB, Ethernet, wireless and other interfaces, to achieve access to data from the data collection instrument and reverse control. Data collection instrument input interface includes digital input interface, analog input interface and digital input interface. The client can send control command to the data collection instrument through the platform, the integration gateway such as start, on time and so on. Front-end video surveillance system Video front-end surveillance system with intelligent image recognition function, access network video surveillance system through the integration gateway, is the system's front-end intelligent recognition module. It can be realized from the input video to identify the required information, and outputs the recognition result. Required network video surveillance platform can be customized integration policy configuration to the gateway, and then press configure policies to control video surveillance systems through the integration of front-end gateway. Fusion Gateway Gateway integration with video capture, audio capture, digital acquisition, data acquisition and intelligent image analysis function, specific device optionally supports several of capacity. Each capability should be based on the application needs to support multiple channels. Information interaction between the gateway and the network video surveillance platform includes original monitoring class of business, networking data. The original class of business use the existing monitoring network video surveillance integration gateway management, and sensor data fusion gateway collection, identification class data networking protocol in accordance send business management platform Things encapsulated or through networking platform forwarded to the user application systems, network video surveillance platform to match the relevant data and video, subtitles superimposed, alarm linkage process. Network transmission systems Network transmission systems include various network operators, such as leased line, ADSL, WLAN, Ethernet, GSM/WCDMA/LTE. Network video surveillance platform Network video surveillance platform is responsible for the integration of video surveillance and data collection terminal access and management, network video 1201

surveillance platform configurable data acquisition and integration gateway intelligent recognition features, requirements can be configured gateway transmission mode for each data channel, including the protocol (TCP, UDP, SMS), select the direct connection /forwarded through the data processing unit, the destination address (directly connected). Network video surveillance platform includes a data processing unit, a data processing unit for network video surveillance platform belongs to NE, accepting its management, may exist depending on a variety of industry applications, data processing unit, a data processing unit functions include: 1) data exchange with Internet of Things Platform, 2) data processing, based on industry applications, there may be different treatment in different ways; 3) data forwarding, networking platforms will be forwarded to the application data from the system; 4) data storage. Internet of Things support platform This platform responsible for terminal management and monitoring, and provide industry application data forwarding function for intermediate platform application system. The main functions include terminal access control, networking terminal management, application system access, data forwarding industry applications, operations management, self-service terminal management interface and platform management. The management platform can support operators, terminal manufacturers, industrial customers, SP and other relevant administrator or operator terminal management. The support platform and network video surveillance platform exchange information through a standard interface protocol. BOSS BOSS system comprising: 1) billing and settlement system for processing billing data collection and grant price, settlement. 2) business and accounting systems, operating system, user acceptance and processing of service requests, billing system is the formation of user traffic usage billing. 3) customer service system. Customer service system to provide customers with quick and convenient service; and open new business in future cases, the system can provide the appropriate functionality to ensure timely. 4) decision support system, through dynamic, selectively collect and update the data source at the Ministry of useful information and business-related information, intelligently analyze, process, forecasting, simulation, and ultimately to the decision-making at all levels of management or professional provide timely, scientific and effective analytical reports, good information and intelligence support. Application system 1202

Application system connect video surveillance applications platform and networking business support platform, and provide terminal management capabilities and sensor data forwarding capability for applications. The system can use data and video through a unified interface calls. Video information can acquired from video monitoring center platform, sensor data acquired from networking support platform. User monitoring terminal is the user interface with the central platform, responsible for the information provision, and the user's actions feedback. The surveillance terminals including video wall monitor, PC client, WEB client, and mobile client. Seating systems Provide friendly graphical interface, easy operation, intuitive, efficient, support universal seating system features system settings and permissions management, and also supports video linkage based GIS platform, real-time display alarm location and the surrounding geographic information to improve the duty officer processing speed. Front-end information system Gateway device is data and interface control interface between the sensor network and other network, is the key to the physical world of information and information fusion of human society, is the link between the disorder and the real physical data business applications connected. Uplink transmission of data fusion gateway is divided into two categories, for demanding security and QOS settings, such as airports, integration gateway transmit data to back-end systems via dedicated network; other occasions such as school, community, integration gateway transmit data through public transport network. Operating network Anti-intrusion data (including video, audio, sensor data) transmitted over the network, to ensure a higher level of security, otherwise excessive omission, false alarm and false alarm rate can influence anti-intrusion. There are three ways to achieve security data transmission of intrusion prevention, one is to provide a physical connection to the public network isolated line network, another one is to provide a virtual private network that uses VPN connected network, the last one is an intrusion prevention circuit domain transfer data via highly reliable 3G /4G network. Video monitoring center: Video monitoring center consist of service management server, media distribution servers, access servers, video management servers, video storage unit and location servers 1203

Monitoring terminal Monitoring terminal is the user interface with the central platform, responsible for the information presented to the user, and feedback the user's actions. Monitoring terminal is an important part of the video surveillance system, which is a concentrated expression system functions. Users can access monitoring terminal location information system to monitor any point of the image as well as a front-end mobile monitoring points. And can achieve many functions controlled storage, video inquiries. monitor terminal including surveillance video wall, PC client, WEB client, mobile client four forms, Application system Application system access platforms via UAAP, on the other hand get video information from the video surveillance platform. Service support platform providing integrated solutions and video surveillance platform, give full play to the advantages of screen monitor. Seating systems Seating system provides duty-friendly graphical interface, easy operation, intuitive, efficient, support universal seating system features system settings and permissions management, and also supports video-based linkage GIS platform, real-time display alarm location and the surrounding geographic information to improve duty processing speed. Conclusions An operator network intrusion prevention system is provided, and it is proved to be efficient in practice. Acknowledgements This work was financially supported by the project 2012AA01A403. References [1] Hui Xu, Xiang Chen, in :Research on Basic Problems of Cognitive Network Intrusion Prevention, Computational Intelligence and Security (CIS), 2013 9th International Conference on, 2013 1204

[2] Mirpuryan,M.S, Tavizi,T. in :A comprehensive network intrusion detection and prevention system architecture,telecommunications (IST), 2012 Sixth International Symposium on, 2012 [3] Fei He ; Yaxuan Qi, in: YACA: Yet Another Cluster-Based Architecture for Network Intrusion Prevention, Global Telecommunications Conference (GLOBECOM 2010), 2010 IEEE, 2010 [4] Jiqiang Zhai ; Yining Xie, in: Researh on Network Intrusion Prevention System Based on Snort, Strategic Technology (IFOST), 2011 6th International Forum on, 2011 [5] Karbaschian, A.R. ; Mirpuryan, M.S., in:a comprehensive design for decision engine in network intrusion detection and prevention system, Telecommunications (IST), 2012 Sixth International Symposium on, 2012 1205

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback