1.1 Product Architecture
The "Golden Shield SDK" secure access system consists of three core subsystems: "Secure Access Client Side Component (SDK, Shell, etc.) ", "Secure Access Server Room Cluster", and "Single Instance Control Panel".
The user changes the mode of directly connecting the backend application service from the original client side program to the client side connecting to the local secure access component through the local IP address starting with 127 through the integrated secure access component. The secure access component will dynamically select the link with the smallest delay to forward the data to the secure access computer room server cluster, and the secure access computer room server cluster will forward the data to the user's backend application server. The entire forwarding process will encrypt and verify the authenticity of the client. When the link is switched, the user connection state will be maintained to ensure that the user's TCP and UDP connections are not interrupted. At the same time, the problem of UDP packet loss and out-of-order is solved, and UDP can be achieved without packet loss and out-of-order.
1.2 [Product Features]
The "Golden Shield SDK" secure access system is a new generation of intelligent distributed cloud access system. The access nodes adopt a multi-computer room cluster deployment mode. In the case of a computer room failure or attack causing link congestion, the access channel will be automatically adjusted to other smooth nodes.
The user connection state is synchronized in real time between each computer room, and the user has no perception during the node switching process, and the user is kept
TCP and UDP connections are not interrupted.
The Golden Shield SDK secure access system is deployed on the basis of multiple computer rooms, multiple lines, and high protection. The overall protection capacity of DDOS exceeds 2TB, which can effectively prevent large-traffic DDOS attacks. All connections will be encrypted and verified to check the authenticity of the connection, filter out all unreal connections, and achieve large-scale diversified CC attacks without error. It also effectively avoids the leakage of the IP address of the user server, effectively preventing the server from being invaded.
The client side component opens multiple paths at the same time, and selects the optimal path for data forwarding. When the selected optimal path fluctuates, it will automatically re-select other new optimal paths. No matter where your server is, you can access it through the "Golden Shield" platform.
After adopting the "Golden Shield SDK" access system, the investment in access node services is greatly reduced, and the cost of server and operation and maintenance is reduced.
"Golden Shield SDK" provides access statistical logs and analysis, such as: user distribution area, usage period, historical online number, etc., to effectively help customers achieve accurate operations.
Provide a variety of forms of client side components for user integration, packaging (shell) integration, reference (call) integration, SDK (development) integration and other ways.
Supported client side: Windows, Linux, Unix, IOS, Android;
Supported server-side applications: All TCP and UDP-based server-side applications.
The professional technical team provides 365-day, 7x24-hour real-time response to help users solve all problems encountered in ordering, configuration, integration, and operation in a timely manner.