公开(公告)号：US20150326401A1

公开(公告)日：2015-11-12

申请号：US14804643

申请日：2015-07-21

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Wenjun JIN ,  Ying XIONG ,  Jiajia CHEN ,  Jiangsheng WANG

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3268 ,  H04L63/0823 ,  H04L63/123

Abstract: Embodiments of the present invention disclose a method, an apparatus, and a system for increasing network security. The method for increasing network security includes: receiving, by a network management system, a certificate message reported by a network element; generating, by the network management system, a first list; when determining that a certificate corresponding to certificate information in the first list needs to be revoked, generating, by the network management system, a certificate revocation request file according to the certificate information, and removing the certificate information in the first list from the first list; and sending, by the network management system, the certificate revocation request file to a public key infrastructure (PKI) system.

Abstract translation: 本发明的实施例公开了一种用于增加网络安全性的方法，装置和系统。 增加网络安全性的方法包括：由网络管理系统接收由网元报告的证书消息; 由网络管理系统生成第一个列表; 当确定与第一列表中的证书信息相对应的证书需要被撤销时，由网络管理系统根据证书信息生成证书吊销请求文件，并从第一列表中删除第一列表中的证书信息 ; 并由网络管理系统将证书吊销请求文件发送到公钥基础设施（PKI）系统。

公开(公告)号：US20250158923A1

公开(公告)日：2025-05-15

申请号：US19025932

申请日：2025-01-16

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Rongguo HU ,  Daming MO ,  Chang LI ,  Qi YU ,  Ying XIONG

IPC: H04L45/00 ,  H04L45/02

Abstract: A packet forwarding method, apparatus, and device, and a chip system are disclosed. The method is applied to a packet forwarding device including a processor and a coprocessor, and includes: The packet forwarding device receives a first packet, and queries a flow table based on flow identification information carried in the first packet. When a target flow entry matching the flow identification information carried in the first packet exists in the flow table, the coprocessor of the packet forwarding device forwards the first packet based on the target flow entry. The flow entry is a session entry created by the processor of the packet forwarding device based on flow identification information of any received flow, and the target flow entry is a session entry created by the processor of the packet forwarding device based on flow identification information of a first flow to which the first packet belongs.

公开(公告)号：US20190165570A1

公开(公告)日：2019-05-30

申请号：US16320853

申请日：2016-07-26

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Haichao ZHANG ,  Ying XIONG ,  Zhi XIAO

IPC: H02H9/02 ,  H02H9/04 ,  H05K9/00 ,  H01L27/02

Abstract: The present disclosure relates to electrostatic protection terminals. One example terminal includes a target interface, a protected circuit, a protection unit, a switch unit, and a switch control unit. The protected circuit is configured to suppress an electrostatic discharge (ESD) current or an electrical overstress (EOS) current. A first end of the protection unit is electrically connected to a first pin of the target interface. A second end of the protection unit is electrically connected to a second pin of the protected circuit. The first pin is any pin of the target interface. The second pin is a pin that is in the protected circuit and that needs to be electrically connected to the first pin. The switch unit is connected to the protection unit in parallel. The switch control unit is configured to control the switch unit to be open or closed.

公开(公告)号：US20170054710A1

公开(公告)日：2017-02-23

申请号：US15346357

申请日：2016-11-08

Applicant: Huawei Technologies Co., Ltd.

Inventor： Ying XIONG ,  Jiangsheng WANG ,  Chengyan FENG

IPC: H04L29/06

CPC classification number: H04L63/0823 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L9/3268

Abstract: The embodiments of the present invention disclose a certificate acquiring method and device. A virtualized network function manager (VNFM) receives a certificate application proxy message sent by a virtualized network function (VNF) instance. The VNFM uses the authentication information to authenticate the VNF instance, and when the authentication succeeds, sends a certificate application message to a certificate authority (CA). Then the VNFM receives a certificate issued by the CA, and sends the certificate to the VNF instance. In this way, through a trusted link between the VNFM and the certificate authority, the instantiated VNF instance applies for a certificate issued by the certificate authority, thereby effectively ensuring security of a management channel between the VNF instance and the VNFM

Abstract translation: 本发明的实施例公开了一种证书获取方法和装置。 虚拟化网络功能管理器（VNFM）接收由虚拟化网络功能（VNF）实例发送的证书应用代理消息。 VNFM使用认证信息对VNF实例进行身份验证，当认证成功时，向证书颁发机构（CA）发送证书申请消息。 然后，VNFM收到由CA颁发的证书，并将证书发送到VNF实例。 以这种方式，通过VNFM和证书颁发机构之间的信任链接，实例化的VNF实例会申请证书颁发机构颁发的证书，从而有效地确保VNF实例和VNFM之间的管理通道的安全性