METHOD OF IMPLEMENTING SECURITY POLICY RULES IN PEER-TO-PEER COMMUNICATION NETWORKS OF CYBER PHYSICAL DEVICES Russian patent published in 2020 - IPC H04L12/721 G06F21/60

Abstract RU 2714217 C1

FIELD: computer equipment.

SUBSTANCE: technical result is achieved by a method of implementing security policy rules in peer-to-peer communication networks of cyber physical devices, comprising a security policy implementation unit, in which security policy rules are formed in form of an access matrix between cyber physical devices, receive requests for network access between cyber physical devices, generate and forward control commands to cyber physical devices, by changing their routing tables and thereby determining routes of forwarding packets allowed by security policy rules from one device to another, forming safety policy rules for a peer-to-peer communication network of cyber physical devices in the form of an access matrix, in which headers of rows and columns list all cyber physical devices in the network based on their IP addresses, in the cells at the intersection of rows and columns, the authorized access flag is indicated, if access for the corresponding pair of cyber physical devices is allowed, wherein the empty cell corresponds to forbidden access.

EFFECT: technical result is high cyberstability and information security of a network of cyber physical devices.

1 cl, 3 dwg

Similar patents RU2714217C1

Title	Year	Author	Number
METHOD OF CONTROLLING ACCESS BETWEEN DEVICES IN INTER-MACHINE DATA NETWORKS	2018	Kalinin Maksim Olegovich Krundyshev Vasilij Mikhajlovich Rezedinova Evgeniya Yurevna Zegzhda Petr Dmitrievich	RU2714853C1
METHOD OF SAFE ROUTING IN PEER SELF ORGANIZATION NETWORKS	2017	Zegzhda Dmitrij Petrovich Kalinin Maksim Olegovich Krundyshev Vasilij Mikhajlovich Minin Aleksandr Andreevich	RU2668222C1
METHOD OF CONTROLLING COMMUNICATION OF SINGLE-RANGE INTERCOMPUTER DATA NETWORK	2017	Zegzhda Dmitrij Petrovich Kalinin Maksim Olegovich Zegzhda Petr Dmitrievich Krundyshev Vasilij Mikhajlovich	RU2666306C1
METHOD FOR PROTECTING COMPUTER NETWORK AGAINST INTRUSION	2021	Chajkovskij Sergej Stanislavovich	RU2758997C1
METHOD OF GENERATING A UNIVERSAL INPUT SIGNAL FOR NEURON NETWORK INTRUSION DETECTOR IN INTER-MACHINE NETWORKS	2018	Zegzhda Petr Dmitrievich Demidov Roman Alekseevich Kalinin Maksim Olegovich	RU2702274C1
METHOD FOR REMOTE MONITORING AND CONTROL OF NETWORKING INFORMATION SECURITY BASED ON USE OF DOMAIN NAME SYSTEM	2012	Markin Dmitrij Olegovich Aksamentov Maksim Sergeevich	RU2503059C1
METHOD FOR CENTRALISED CONTROL OF ACCESS OF CONTROL SYSTEMS TO ACTIVE NETWORK EQUIPMENT IN DISTRIBUTED COMPUTER SYSTEMS AND SYSTEM THEREFOR	2013	Konoplev Artem Stanislavovich Kalinin Maksim Olegovich Zegzhda Dmitrij Petrovich	RU2580815C2
METHOD OF PREDICTING AND EVALUATING SAFETY OF ACCESSIBLE STATES OF PROTECTED INFORMATION SYSTEMS	2008	Zegzhda Dmitrij Petrovich Zegzhda Petr Dmitrievich Kalinin Maksim Olegovich	RU2394271C1
MOVEMENT OF NETWORK TRAFFIC RELATIVE TO TRANSIT NET POINTS WITH DIFFERENTIATED LIMITATION	2005	Rajsik Karl Shejker Mejdzhd Ehdvard	RU2358399C2
TERMINAL CONTROL DEVICE, COMMUNICATION METHOD, COMMUNICATION SYSTEM, COMMUNICATION MODULE, PROGRAM AND INFORMATION PROCESSING DEVICE	2012	Sonoda Kentaro Simonisi Khideyuki Nakae Masayuki Yamagata Masaya Morita Joitiro	RU2586587C2

RU 2 714 217 C1

Authors

Kalinin Maksim Olegovich

Dates

2020-02-13—Published

2019-07-05—Filed