METHOD AND APPARATUS FOR CONTROLLING DISTRIBUTED INFORMATION SYSTEM DATA STREAMS Russian patent published in 2015 - IPC H04L12/801 H04L9/32 

FIELD: physics, computer engineering.

SUBSTANCE: group of inventions relates to means of controlling data streams in secure distributed information systems. The method includes specifying a table of reference routing files of a distributed information system in test operating mode thereof, consisting of reference routing files for all authorised users when said users access information resources and services of certain network nodes of the distributed information system. After permission to transmit a data stream in a switching unit at a certain network node, routing files are generated thereon when the i-th user accesses information resources and services of the j-th network node of the distributed information system; the obtained routing files are transmitted to an access control centre. The obtained routing files are compared with reference values; the j-th network node of the distributed information system is remembered when accessed by the i-th user if the routing files do not match. The switching table is then corrected and, using the new network interaction parameters, said data stream is blocked, and transmission continues in case of a match.

EFFECT: improved security of distributed information systems.

2 cl, 4 dwg