Method, device and system for network interception
First Claim
1. A method for network interception, comprising:
- obtaining a matching rule by parsing an interception policy;
analyzing received data by adopting a deep packet inspection (DPI);
selecting an analysis result according to the matching rule so as to obtain intercept related information (IRI) of service data to be intercepted; and
obtaining content of communication (CC) corresponding to the IRI of the service data to be intercepted by associating with a unique feature identifier, and taking the IRI of the service data to be intercepted and the corresponding CC as an interception result, wherein the received data are obtained by adopting data preprocessing to filter packet data according to a service customizing rule obtained by parsing the interception policy.
5 Assignments
0 Petitions
Accused Products
Abstract
A method, a device, and a system for network interception are provided. The method for network interception includes the following steps. A matching rule obtained by parsing an interception policy. Received data are selected by adopting a deep packet inspection (DPI) according to the matching rule so as to obtain an interception result, in which the received data are obtained by adopting data preprocessing to filter packet data according to a service customizing rule obtained by parsing the interception policy. The system for network interception includes a service probe server (SPS) and a service analyze server (SAS). Thus, various packet data services transmitted over an Internet protocol (IP) network can be intercepted.
20 Citations
11 Claims
-
1. A method for network interception, comprising:
-
obtaining a matching rule by parsing an interception policy; analyzing received data by adopting a deep packet inspection (DPI); selecting an analysis result according to the matching rule so as to obtain intercept related information (IRI) of service data to be intercepted; and obtaining content of communication (CC) corresponding to the IRI of the service data to be intercepted by associating with a unique feature identifier, and taking the IRI of the service data to be intercepted and the corresponding CC as an interception result, wherein the received data are obtained by adopting data preprocessing to filter packet data according to a service customizing rule obtained by parsing the interception policy. - View Dependent Claims (2, 3, 4)
-
-
5. A service analyze server (SAS), comprising:
-
an interception policy processing unit, adapted to parse an interception policy so as to obtain a service customizing rule and a matching rule; and a data selecting unit, comprising; an analyzing subunit, adapted to analyze data sent by a service probe server (SPS) by adopting a deep packet inspection (DPI); a selecting subunit, adapted to select an analysis result of the analyzing subunit according to the matching rule obtained by the interception policy processing unit so as to obtain intercept related information (IRI) of service data to be intercepted; and an interception result generating subunit, adapted to generate an interception result according to the IRI of the service data to be intercepted obtained by the selecting subunit, wherein the data sent by the SPS are obtained by the SPS by adopting data preprocessing to filter packet data according to the service customizing rule obtained by parsing the interception policy.
-
-
6. A system for network interception, comprising a service probe server (SPS) and a service analyze server (SAS), wherein
the SPS is adapted to obtain packet data of an Internet protocol (IP) network and filter the obtained packet data by adopting a data preprocessing technique according to a service customizing rule obtained by the SAS; - and
the SAS is adapted to parse an interception policy to obtain the service customizing rule and a matching rule, and select the data filtered by the SPS by adopting a deep packet inspection (DPI) according to the matching rule so as to obtain an interception result, wherein the interception result comprises intercept related information (IRI) of service data to be intercepted by selecting the data filtered by the SPS according to the matching rule and content of communication (CC) corresponding to the IRI. - View Dependent Claims (7, 8, 9, 10, 11)
- and
Specification