Secure communication control technique

Abstract

This invention is to improve security in a network. A communication control method for controlling communications in a network including a plurality of secure network devices having one or more predetermined security functions includes: receiving a contents request for specific contents in addition to a destination of the contents request; and carrying out a routing by using, as routing conditions, security functions to be carried out in a transmission path of the specific contents from the destination of the contents request to a source thereof and a quantitative condition of the secure network devices (for example, the number of devices, the ratio of the devices, and the like) having the security functions.

Description

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a diagram showing a system outline of an embodiment of the present invention;

FIG. 2 is a functional block diagram of a secure node;

FIG. 3 is a diagram showing an example of a security policy used at the time of a normal state;

FIG. 4 is a diagram showing a first portion of a processing flow in the embodiment of the present invention;

FIG. 5 is a diagram showing a processing flow of a security determining processing;

FIG. 6 is a diagram showing a processing flow of a confirmation processing;

FIG. 7 is a diagram showing a processing flow of a first routing processing;

FIG. 8 is a diagram showing an outline of the secure routing;

FIG. 9 is a diagram showing a processing flow of a second routing processing;

FIG. 10 is a diagram showing a network outline to explain the second routing processing;

FIG. 11 is a diagram showing a second portion of the processing flow in the embodiment of the present invention;

FIG. 12 is a diagram showing a processing flow of an admission control processing;

FIG. 13 is a diagram showing a third portion of the processing flow in the embodiment of the present invention;

FIG. 14 is a diagram to explain a first example of a header setting processing at the time of the normal state;

FIG. 15 is a diagram to explain a first example of a header setting processing at the time of an abnormal state;

FIG. 16 is a diagram showing an example of the security policy at the time of the abnormal state;

FIG. 17 is a diagram showing a second example of the header setting processing at the time of the normal state;

FIG. 18 is a diagram showing a second example of the header setting processing at the time of the abnormal state;

FIG. 19A is a schematic diagram when the secure node has a single function;

FIG. 19B is a schematic diagram when the secure node has plural functions;

FIGS. 20A and 20B are diagrams to explain consideration on an arrangement of the secure nodes;

FIG. 21 is a diagram to explain consideration on the arrangement of the secure nodes; and

FIG. 22 is a functional block diagram of a computer.

Claims

1. A communication control method for controlling communications in a network including a plurality of secure network devices having one or plurality of predetermined security functions, said communication control method comprising: receiving a contents request for specific contents and a destination of said contents request; andcarrying out a routing by using, as routing conditions, security functions to be carried out in a transmission path of said specific contents from said destination of said contents request to a source of said contents request, and a quantitative condition of said secure. network devices each having said security function.

2. The communication control method as set forth in claim 1, wherein said quantitative condition of said secure network devices each having said security function to be carried out includes a quantitative condition in subnetworks included in said transmission path between said destination and said source of said contents request.

3. The communication control method as set forth in claim 1, wherein said secure network device has at least one of: a traceability function for recording history concerning establishment of a call, a connection, a path, or a session or history concerning passing of contents or packets; a saving function for saving the transferred contents or packets; a filtering function for controlling discarding or passing of said contents or packets; and a receipt acknowledgement function for notifying said source of receipt of said transferred contents or packets, as a security function.

4. The communication control method as set forth in claim 1, further comprising: determining a security function to be carried out in said transmission path of said specific contents or a security level for identifying said security function, based on at least one of information concerning said source of said contents request, information concerning said destination of said contents request, and information concerning said specific contents.

5. The communication control method as set forth in claim 4, wherein said determining comprises: identifying a security function to be carried out in said transmission path of said specific contents for each type of information designated to be used among said information concerning said source of said contents request, said information concerning said destination of said contents request, and said information concerning said specific contents; andadopting all the identified security functions.

6. The communication control method as set forth in claim 4, further comprising: switching a security function to be carried out in said transmission path of said specific contents at a time of a normal state and at a time of an abnormal state.

7. The communication control method as set forth in claim 4, further comprising: attaching a header corresponding to said security function to be carried out in said transmission path of said specific contents or said security level for identifying said security function, to the specific contents data or packets.

8. The communication control method as set forth in claim 6, wherein said switching comprises: reflecting a result of said switching to a header to be attached to the specific contents data or packets.

9. The communication control method as set forth in claim 7, wherein said header includes said security level, and said communication control method further comprises:by said secure network device having said security function in said transmission path, identifying a security function to be carried out based on said security level included in said header, and judging whether or not said security function said secure network has should be carried out.

10. The communication control method as set forth in claim 7, wherein said header includes an action label designating said security function to be carried out, and said communication control method further comprises:by said secure network device having said security function in said transmission path, identifying a security function to be carried out based on said action label included in said header, and judging whether or not said security function said secure network device has should be carried out.

11. The communication control method as set forth in claim 3, wherein said security functions to be carried out include said traceability function, and said communication control method further comprises:receiving transfer information of said specific contents from all said secure network devices having said traceability function in said transmission path, and storing the received transfer information into a history data storage in association with said specific contents.

12. The communication control method as set forth in claim 3, wherein said filtering function passes only designated important contents or packets at a time of an abnormal state.

13. The communication control method as set forth in claim 3, wherein said saving function stores designated important contents or packets at a time of an abnormal state.

14. The communication control method as set forth in claim 3, wherein said traceability function records said history concerning the establishment of a call, a connection, a path or a session or said history concerning the passing of said specific contents or packets at a time of an abnormal state.

15. The communication control method as set forth in claim 4, wherein said determining comprises: carrying out a mode switching based on status data including either a normal state or an abnormal state.

16. The communication control method as set forth in claim 7, wherein said determining comprises: identifying a first security function to be carried out at a time of a normal state, or a first security level for identifying said security function to be carried out at the time of said normal state; andidentifying a second security function to be carried out at a time of an abnormal state, or a second security level for identifying said security function to be carried out at the time of said abnormal state, andsaid attaching comprises:attaching a header corresponding to the identified first security function or the identified first security level to said specific contents data or packets; andattaching a header corresponding to the identified second security function or the identified second security level to said specific contents data or packets.

17. The communication control method as set forth in claim 1, wherein said carrying comprises: identifying a transmission path candidate whose total cost is the minimum among a plurality of transmission path candidates of said specific contents from said destination of said contents request to said source of said contents request.

18. The communication control method as set forth in claim 1, wherein said quantitative condition of said secure network devices each having said security function is defined by a rate for a number of hops along said transmission path.

19. The communication control method as set forth in claim 2, wherein said quantitative condition in said subnetwork is defined by a number or a rate of said secure network devices in each said subnetwork.

20. A network, comprising: a plurality of secure network devices, each having at least one security function; anda unit that carries out a routing by using, as routing conditions, security functions to be carried out in a transmission path of specific contents from a destination of a contents request for said specific contents to a source of said contents request, and a quantitative condition of said secure network devices each having said security function.

21. The network as set forth in claim 20, further comprising: a unit that determines a security function to be carried out in said transmission path of said specific contents or a security level for identifying said security function, based on at least one of information concerning said source of said contents request, information concerning said destination of said contents request, and information concerning said specific contents.

22. A network, comprising: a plurality of secure network devices, each having at least one of a traceability function for recording history concerning establishment of a call, a connection, a path, or a session or history concerning passing of contents or packets, a saving function for saving the transferred contents or packets, a filtering function for controlling discarding or passing of said contents or packets, and a receipt acknowledgement function for notifying a transmission source of the transferred contents of receipt of said transferred contents, as security functions, andwherein said secure network devices are arranged at positions that are calculated based on a traffic demand and a number of hops or a distance and minimizes resource consumption caused when passing through said secure network devices.

23. A network, comprising: a plurality of secure network devices, each having at least one of a traceability function for recording history of a call, a connection, a path, or a session or history concerning passing of contents or packets, a saving function for saving the transferred contents or packets, a filtering function for controlling discarding or passing of said contents or packets, and a receipt acknowledgement function for notifying a transmission source of said transferred contents of receipt of said transferred contents as security functions, andwherein said secure network devices are arranged at a boundary of subnetworks in a wide area network.

24. A communication control method for controlling communications in a network including a plurality of secure network devices having one or plurality of predetermined security functions, said communication control method comprising: receiving a contents request for specific contents and a destination of said contents request; anddetermining a security function to be carried out by said secure network device in a transmission path of said specific contents or a security level for identifying said security function based on at least one of a source of the received contents request, said destination of the received contents request, and said specific contents.

25. The communication control method as set forth in claim 24, further comprising: determining said transmission path of said specific contents irrespectively of said security function to be carried out or said security level; andjudging whether or not a connection, a path or a session, which is established on the determined transmission path, includes all of said security functions to be carried out and satisfies a quantitative condition of said secure network devices having said security functions to be carried out.

26. The communication control method as set forth in claim 25, further comprising: rejecting said contents request, upon a negative judgment in said judging.

27. The communication control method as set forth in claim 26, further comprising: carrying out said determining and said judging again upon a negative judgment in said judging.

28. A communication control apparatus for controlling communications in a network including a plurality of secure network devices having one or plurality of predetermined security functions, said communication control apparatus comprising: a unit that receives a contents request for specific contents and a destination of said contents request; anda unit that determines a security function to be carried out by said secure network device in a transmission path of said specific contents or a security level for identifying said security function based on at least one of a source of the received contents request, said destination of the received contents request, and said specific contents.

29. A communication control apparatus for controlling communications in a network including a plurality of secure network devices having one or plurality of predetermined security functions, said communication control apparatus comprising: a unit that receives a contents request for specific contents and a destination of the contents request; anda unit that carries out a routing by using, as routing conditions, security functions to be carried out in a transmission path of said specific contents from said destination of said contents request to a source of said contents request, and a quantitative condition of said secure network devices each having said security function.

30. A network device, comprising: a unit that receives data concerning a security function to be carried out in a transmission path of specific contents for a contents request for said specific contents or data concerning a security level for identifying said security function to be carried out from a communication control apparatus; anda unit that attaches a header corresponding to said security function to be carried out in said transmission path of said specific contents or said security level for identifying said security function, to the specific contents data or packets.

31. A secure network device, comprising: a security function including at least one of: a traceability function for recording history concerning establishment of a call, a connection, a path, or a session or history concerning passing of contents or packets, a saving function for saving the transferred contents or packets, a filtering function for controlling discarding or passing of said contents or packets, and a receipt acknowledgement function for notifying a source transmission of said transferred contents of receipt of said transferred contents or packets, as a security function;a unit that receives data or packets of specific contents, which has a header corresponding to a security function to be carried out in a transmission path of said specific contents for a contents request for said specific contents or to a security level for identifying said security function to be carried out; anda unit that identifies a security function to be carried out based on said security level included in said header if said header includes said security level, and judges whether or not said security function said secure network device has should be carried out.

32. A secure network device, comprising: a security function including at least one of: a traceability function for recording history concerning establishment of a call, a connection, a path, or a session or history concerning passing of contents or packets, a saving function for saving the transferred contents or packets, a filtering function for controlling discarding or passing of said contents or packets, and a receipt acknowledgement function for notifying a source transmission of said transferred contents of receipt of said transferred contents or packets, as a security function;a unit that receives data or packets of specific contents, which has a header corresponding to a security function to be carried out in a transmission path of said specific contents for a contents request for said specific contents or to a security level for identifying said security function to be carried out; anda unit that identifies said security function to be carried out based on an action label included in said header if said header includes said action label designating said security function to be carried out, and judges whether or not said security function said secure network device has should be carried out.