CN102393887B - Application centralized management system and method based on Linux security module (LSM) mechanism - Google Patents
Application centralized management system and method based on Linux security module (LSM) mechanism Download PDFInfo
- Publication number
- CN102393887B CN102393887B CN201110181668.7A CN201110181668A CN102393887B CN 102393887 B CN102393887 B CN 102393887B CN 201110181668 A CN201110181668 A CN 201110181668A CN 102393887 B CN102393887 B CN 102393887B
- Authority
- CN
- China
- Prior art keywords
- application
- application data
- module
- core control
- hard core
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Stored Programmes (AREA)
Abstract
The invention provides an application centralized management system and an application centralized management method based on a Linux security module (LSM) mechanism. The system comprises a strategy configuration module, a core management module and at least two execution modules connected with the core management module, wherein the strategy configuration module is used for acquiring an application management strategy comprising at least one application data processing instruction and sending the application management strategy to the core management module; the core management module is used for receiving application data and the application management strategy, and sending the application data to the first execution module according to the application management strategy; the first execution module is used for receiving the application module, executing application processing corresponding to the application data processing instruction on the application data and sending the processed application data to the core processing module; and the second execution module is used for receiving the processed application data from the core management module and executing application processing corresponding to the application data processing instruction on the processed application data. By the application centralized management system and the application centralized management method based on the LSM mechanism, diversified service processing on the application data is realized according to a requirement.
Description
Technical field
The present invention relates to communication technical field, particularly relate to a kind of application centralized management system based on LSM (Linux Security Module, Linux security module) base and method.
Background technology
Along with informationalized fast development, new application technology continues to bring out, and original application technology also expands rapidly, the thing followed, and the compatibility issue between each application technology becomes ever more important.
In prior art, on the one hand, incompatible between the application technology for different business content of same manufacturer, an application technology is applied after data, and other application technology just has no chance again to process same application data; On the other hand, new application technology is incompatible with application technology before, and namely existing application technology can not realize dynamic expansion according to the development of application technology; Again on the one hand, the application technology of different vendor is also incompatible.To apply the short message service of mobile terminal very widely at present, mobile phone safe software vendor develops multiple note safety management product, but various note safety management product of the prior art is all based on single processing mode, diversified process cannot be realized, such as: user application data cannot carry out virus treated, rubbish filtering and short message managing simultaneously, limits diversified business processing mode.
Summary of the invention
For above-mentioned defect, the invention provides a kind of application centralized management system based on LSM base and method, carrying out diversified business processing for realizing application data as required.
The invention provides a kind of application centralized management system based on LSM base, comprise tactful configuration module, hard core control module and at least two execution modules with described hard core control model calling, wherein:
Strategy configuration module, for obtaining application management strategy and described application management strategy being sent to described hard core control module; Wherein, described application management strategy comprises at least one application data processing instruction;
Hard core control module, for receiving the application data from LSM, and receiving the described application management strategy from described tactful configuration module, according to described application management strategy, the described application data received being sent to the first execution module;
First execution module, for receiving the application data that described hard core control module sends, and performs the application process corresponding with described application data processing instruction to described application data; Application data after process is sent to described hard core control module, sends to the second execution module to process the application data after described process to make described hard core control module;
Second execution module, for receiving the application data after described process that described hard core control module sends, and performs the application process corresponding with described application data processing instruction to the application data after described process.
The present invention also provides a kind of based on management method in LSM base application sets, comprising:
Strategy configuration module obtains application management strategy and described application management strategy is sent to described hard core control module, and wherein, described application management strategy comprises at least one application data processing instruction;
Described hard core control module receives the application data from LSM, and receives the described application management strategy from described tactful configuration module, according to described application management strategy, the described application data received is sent to the first execution module;
First execution module receives the application data that described hard core control module sends, and performs the application process corresponding with described application data processing instruction to described application data; Application data after process is sent to described hard core control module, sends to the second execution module to process the application data after described process to make described hard core control module;
Second execution module receives the application data after the described process of described hard core control module transmission, and performs the application process corresponding with described application data processing instruction to the application data after described process.
According to the application centralized management system based on LSM base of the present invention and method, obtain by tactful configuration module the application management strategy that comprises at least one application data processing instruction due to hard core control module and according to application management strategy application data be sent to the execution module for performing application data processing instruction, due to application management strategy can be dynamically arranged as required, can the centralized management of multiple applied business of dynamic expansion or reduction so achieve, thus application data carries out diversified business processing as required.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is the structural representation of a kind of application centralized management system based on LSM base in the embodiment of the present invention;
Fig. 2 is the structural representation of the another kind in the embodiment of the present invention based on the application centralized management system of LSM base;
Fig. 3 is a kind of process flow diagram based on management method in the application sets of LSM base in the embodiment of the present invention.
Embodiment
For making the object of the embodiment of the present invention, technical scheme and advantage clearly, below in conjunction with the accompanying drawing in the embodiment of the present invention, technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.
Fig. 1 is the structural representation of a kind of application centralized management system based on LSM base in the embodiment of the present invention.This system adopts LSM mechanism, construct one based on Linux platform, the platform of the multinomial business that can support same application technology, wherein, application technology is such as sms technique, and multinomial business is such as the virus scan business and rubbish filtering business etc. that perform for sms technique.Particularly, need to realize the interface that in the registration structure security_operations of LSM mechanism, business is relevant, the definition of this concrete structure can with reference to the linux version source code of correspondence (this linux version source code be the state of the art).
As shown in Figure 1, this system comprises three parts, and a part is the tactful configuration module for obtaining application management strategy; A part is the hard core control module that the data interception for realizing bottom is analyzed, some is for two execution modules of upper layer application process and displaying (in the present embodiment, be introduced for two execution modules, be respectively the first execution module and the second execution module).Strategy configuration module and hard core control model calling, and between hard core control module with each execution module, adopt exclusive communication path to be connected.Introduce the course of work of this system below:
Strategy configuration module, for obtaining application management strategy and described application management strategy being sent to described hard core control module; Wherein, described application management strategy comprises at least one application data processing instruction;
Hard core control module, for receiving the application data from LSM, and receiving the described application management strategy from described tactful configuration module, according to described application management strategy, the described application data received being sent to the first execution module;
First execution module, for receiving the application data that described hard core control module sends, and performs the application process corresponding with described application data processing instruction to described application data; Application data after process is sent to described hard core control module, sends to the second execution module to process the application data after described process to make described hard core control module;
Second execution module, for receiving the application data after described process that described hard core control module sends, and performs the application process corresponding with the application data processing instruction after described process to the application data after described process.
Such as: the first execution module is filtering junk short messages module, the second execution module is SMS encryption module, and the application management strategy in tactful configuration module is the note data from LSM, first carries out rubbish filtering process, then is encrypted.Hard core control module receives the note data from LSM, and the application management strategy received from described tactful configuration module, according to this application management strategy, the note data of reception is sent to the first execution module and carries out rubbish filtering process, after first execution module has carried out rubbish filtering process to note data, note data after process is sent to hard core control module, hard core control module is again according to application management strategy, note data after the rubbish filtering process of reception is sent to the second execution module, is encrypted.
After second execution module is encrypted the note data after rubbish filtering process, can be ended process flow process, also according to other application management strategy, the data after encryption can be sent to other execution module, correspondingly, also comprise multiple execution module, to perform corresponding process, comprise multiple execution module as shown in Figure 2, Fig. 2 is the another kind of structural representation based on the application centralized management system of LSM base in the embodiment of the present invention.For the disposition that there is two or more execution module, similar to the above embodiments, do not repeat them here.
Application centralized management system based on LSM base according to the above embodiment of the present invention, obtain by tactful configuration module the application management strategy that comprises at least one application data processing instruction due to hard core control module and according to application management strategy application data be sent to the multiple execution modules for performing application data processing instruction, application management strategy can be dynamically arranged as required, achieving can the centralized management of applied business of multiple dynamic expansion or reduction, thus application data carries out diversified business processing as required.
Respectively tactful configuration module, hard core control module and execution module are described in detail below.
One, tactful configuration module
At the present embodiment based in the application centralized management system of LSM base, tactful configuration module is for obtaining application management strategy and described application management strategy being sent to described hard core control module; Wherein, described application management strategy comprises at least one application data processing instruction.Particularly, this tactful configuration module can receive the dynamic strategy configuration of user, and it can be realized by routine interface, also can be realized by configuration file, and strategy setting can take similar following enumeration definition to realize:
Two, hard core control module
At the present embodiment based in the application centralized management system of LSM mechanism, hard core control module is for receiving the application data from LSM, and the described application management strategy received from described tactful configuration module, and according to described application management strategy the application data of reception is sent to and processes corresponding execution module for performing with the application of described application data processing instruction, wherein, application management strategy comprises at least one application data processing instruction.Particularly, hard core control module need realize with lower interface:
Realize the interface that LSM mechanism requires; The different corresponding business interfaces realizing the requirement of LSM mechanism is had according to the difference of required process business, such as when short message service will be realized, the interface realized is needed to comprise: net_spy_inint, hook_socket_sendmsg, hook_socket_recvmsg, hook_socket_bind, hook_socket_connect and hook_socket_accept etc.Interface is when intercepting and capturing application data, application data can carry out protocol level Data Analysis, thus judge whether this application data meets the standard pre-set, such as: judge whether this application data belongs to the scope of business of this application centralized management system, and when meeting, sending this application data to execution module and waiting for result feedback; Wherein, can be set up the as required any communication path of user for sending the private communication path of application data, such as socket or registered callbacks function etc.
Application data is sent to multiple execution module according to described application management strategy by hard core control module, receives the application data after execution module process, and is forwarded to next execution module and processes, thus achieves diversified business processing.
Realize registration interface, service registry is carried out for execution module, thus when after intercepting and capturing application data, application data can be sent to registered execution module, to make execution module application data process, in hard core control module, each execution module is marked by unique corresponding application identities, such as realized by enumerated value, and the application process performed by execution module should be corresponding with the application data processing instruction included by application management strategy respectively;
Meanwhile, also can comprise and realize nullifying interface, for when no longer needing current execution module to provide service, nullify interface release execution module by this realization, from hard core control module, namely deleting the relevant information of this execution module;
Setting up socket server, for connecting with client, or realizing registered callbacks interface, carry out data transmit-receive with execution module afterwards;
Implementation strategy configuration interface, for receiving application management strategy from tactful configuration module.
Three, execution module
At the present embodiment based in the application centralized management system of LSM base, the application data that execution module sends for receiving described hard core control module, and the application process corresponding with described application data processing instruction is performed to described application data.
Particularly, relatively independent between execution module and hard core control module, and when comprising multiple execution module, separate between the plurality of execution module, communicate with hard core control module respectively, that is: receive application data from hard core control module respectively, received application data is processed accordingly and result is returned hard core control module.Can be developed by different manufacturers from multiple execution modules of hard core control model calling and realize, carry out respective analyzing and processing for concrete business, and can be completely compatible with the execution module realizing other business.
More specifically, in this application centralized management system based on LSM base, the application management strategy of answering support policy configuration module to configure with multiple execution modules of hard core control model calling, namely at least comprises the application that can be respectively used to the application data processing instruction performed included by application management strategy and processes corresponding execution module.Wherein, an execution module corresponds to an application data processing instruction.Such as when this application centralized management system is used for SMS service management and the application management strategy of configuration be to note execution virus scan module, encrypted acknowledgment, secret inspection and rubbish filtering time, then at least should comprise four execution modules, be respectively: virus scan module, Encryption Decryption module, private checking module and filtering junk short messages module.
Execution module also needs the application data after by process to return to hard core control module, sends to other execution module to carry out subsequent treatment the application data after process to make hard core control module.
Execution module also for according to application management strategy, judges whether to need the application data after described process to send to described hard core control module.
Also can be used for other arbitrary application managements according to the application centralized management system based on LSM base of above-described embodiment, such as GPRS related service is managed, correspondingly, virus scan module, traffic statistics module etc. can be comprised with multiple execution modules of hard core control model calling.
Application centralized management system based on LSM base according to the above embodiment of the present invention, obtain by tactful configuration module the application management strategy that comprises at least one application data processing instruction due to hard core control module and according to application management strategy application data be sent to the execution module for performing application data processing instruction, due to application management strategy can be dynamically arranged as required, can the centralized management of multiple applied business of dynamic expansion or reduction so achieve, thus application data carries out diversified business processing as required.
Further, at above-described embodiment based in the application centralized management system of LSM base, hard core control module comprises:
Policy unit, for receiving and storing the described application management strategy from described tactful configuration module;
Application data resolution unit, for receiving the application data from LSM, and carries out protocol analysis to received application data, if know that described application data meets preassigned through resolving, then described application data is sent to communication unit; Wherein, this preassigned can be the scope of business of this application centralized management system that user limits, such as when this application centralized management system is only for processing note data, then this preassigned for received application data be note data, now, if know that it is not note data after resolving the application data received, then subsequent treatment is not carried out to it;
Described communication unit, for being that described application data works out routed path according to described application management strategy, and to route to the execution module for performing the application process corresponding with described application data processing instruction according to routed path by described application data.
Particularly, after communication unit obtains application data from application data resolution unit, according to policy unit store application management strategy be described application data work out routed path, for note, when application management strategy comprises following four application data processing instructions: note virus scan instruction, SMS encryption confirms instruction, when note secret checks instruction and the instruction of note rubbish filtering, communication unit is by hard core control module and virus scan module, encrypted acknowledgment module, secret checking module and rubbish filtering module (virus scan module, encrypted acknowledgment module, secret checking module and rubbish filtering module are execution module) between communication interface be defined as the routed path of this application data.Such as first application data is sent to virus scan module to be carried out virus scan process by virus scan module to this application data (in this instance, application data is such as note) and virus scan result to be back to communication unit; Communication unit again this application data is sent to encrypted acknowledgment module with by encrypted acknowledgment module to its be encrypted confirmation and encrypted acknowledgment result is back to communication unit; Similarly, communication continues this application data to be sent to secret checking module and rubbish filtering module successively, thus, realize the multinomial application process same note being carried out successively to virus scan, encrypted acknowledgment, secret inspection and rubbish filtering.
Preferably, timing device is provided with in this communication unit, this timing device starts when application data is sent to execution module by communication unit, if after arrival Preset Time, when communication unit does not receive the result that execution module returns yet, then assert time-out, no longer continue to wait for, start to perform next operation (such as application data being sent to another execution module), and to the corresponding error message of user feedback.
Further, at above-described embodiment based in the application centralized management system of LSM base, hard core control module also comprises:
Registering unit, for obtaining the registration information that described execution module sends, and responding described registration information, connecting with described execution module.
Particularly, execution module needs to carry out service registry to the registering unit of hard core control module, and to set up the communication path between hard core control module and execution module, communication between the two can be adopted web socket or be realized by technology such as registered callbacks.
Further, at above-described embodiment based in the application centralized management system of LSM base, tactful configuration module comprises:
Whether Authority Verification unit, possess strategy configuration authority for checking the user of input application management strategy;
Strategy acquiring unit, for obtaining the described application management strategy of the user's input possessing described strategy configuration authority and described application management strategy being sent to described hard core control module.
According to the application centralized management system based on LSM base of above-described embodiment, owing to being provided with the Authority Verification unit for carrying out authorization check in tactful configuration module, so only have specific, to have strategy configuration authority user's (being such as system manager) can be configured the application management strategy of this application centralized management system, thus improve the security of this application centralized management system.
Fig. 3 is a kind of process flow diagram based on management method in the application sets of LSM base in the embodiment of the present invention.As shown in Figure 3, this note method for managing security comprises the following steps:
Step S100, tactful configuration module obtains application management strategy and described application management strategy is sent to described hard core control module, and described application management strategy comprises at least one application data processing instruction;
Step S200, hard core control module receives the application data from LSM, and receives the described application management strategy from described tactful configuration module, according to described application management strategy, the described application data received is sent to the first execution module.
Step S300, the first execution module receives the application data that described hard core control module sends, and performs the application process corresponding with described application data processing instruction to described application data; Application data after process is sent to described hard core control module, sends to the second execution module to process the application data after described process to make described hard core control module;
Step S400, the second execution module receives the application data after the described process of described hard core control module transmission, and performs the application process corresponding with described application data processing instruction to the application data after described process.
Realizing based on the application centralized management system based on LSM base of management method in the application sets of LSM base by above-mentioned any embodiment of above-described embodiment.
Particularly, above-described embodiment based on the application sets of LSM base in management method, in advance according to the execution module that application centralized management system has, in the tactful configuration module of application centralized management system, configure application management strategy, and by tactful configuration module, configured application management strategy is sent to hard core control module.
When hard core control module is by included interface application data, application data carries out protocol level Data Analysis, thus judge whether this application data meets the standard pre-set, whether such as this application data belongs to the scope of business that this application centralized management system manages, and when judged result is for being, according to the application management strategy formerly received, application data is sent to corresponding execution module, wherein, corresponding execution module refers to the execution module for performing the application data processing instruction included by application management strategy.
According to above-described embodiment based on management method in the application sets of LSM base, obtain by tactful configuration module the application management strategy that comprises at least one application data processing instruction due to hard core control module and according to application management strategy application data be sent to the execution module for performing the application process corresponding with application data processing instruction, due to application management strategy can be dynamically arranged as required, can the centralized management of multiple applied business of dynamic expansion or reduction so achieve, thus application data carries out diversified business processing as required.And this application data can be arbitrary application data, such as, be note or GPRS.
Further, above-described embodiment based on the application sets of LSM base in management method, hard core control module receives described application management strategy, also comprises before according to described application management strategy the application data of reception being sent to the step of the execution module for performing the application process corresponding with described application data processing instruction:
Described hard core control module obtains the registration information that described execution module sends, and connects in response to described registration information and described execution module.
Further, above-described embodiment based on the application sets of LSM base in management method, hard core control module receives described application management strategy, and the step of the execution module be sent to the application data of reception for performing the application process corresponding with described application data processing instruction according to described application management strategy comprises:
Described application management strategy is received from described tactful configuration module;
Receiving from the application data of LSM, and carry out protocol analysis to received application data, if know that described application data meets preassigned through resolving, is then that described application data works out routed path according to described application management strategy;
According to described routed path described application data routed to and process corresponding execution module for performing with the application of described application data processing instruction.
Further, above-described embodiment based on the application sets of LSM base in management method, tactful configuration module obtains application management strategy and the step described application management strategy being sent to described hard core control module comprises:
Whether the user of inspection input application management strategy possesses strategy configuration authority;
Obtain the described application management strategy of the user's input possessing described strategy configuration authority and described application management strategy is sent to described hard core control module.。
According to above-described embodiment based on management method in the application sets of LSM base, due to tactful configuration module, the user to input application management strategy carries out strategy configuration authority verification, and only obtain the described application management strategy inputted by the user of inspection, thus avoid application management strategy and be arbitrarily modified, improve the reliability and safety of management method in this application sets.
Last it is noted that above embodiment is only in order to illustrate technical scheme of the present invention, be not intended to limit; Although with reference to previous embodiment to invention has been detailed description, those of ordinary skill in the art is to be understood that: it still can be modified to the technical scheme described in foregoing embodiments, or carries out equivalent replacement to wherein portion of techniques feature; And these amendments or replacement, do not make the essence of appropriate technical solution depart from the spirit and scope of various embodiments of the present invention technical scheme.
Claims (10)
1. based on an application centralized management system for Linux security module LSM base, it is characterized in that, comprise tactful configuration module, hard core control module and at least two execution modules with described hard core control model calling, wherein:
Strategy configuration module, for obtaining application management strategy and described application management strategy being sent to described hard core control module; Wherein, described application management strategy comprises at least two kinds of application data processing instructions;
Hard core control module, for receiving the application data from LSM, and the described application management strategy received from described tactful configuration module, the first application data processing instruction included by described application management strategy, is sent to the described application data received and processes the first corresponding execution module with the application of described first application data processing instruction;
First execution module, for receiving the application data that described hard core control module sends, and performs the application process corresponding with described first application data processing instruction to described application data; Application data after process is sent to described hard core control module, to make the second application data processing instruction of described hard core control module included by described application management strategy, the application data after described process is sent to and processes the second corresponding execution module with the application of described second application data processing instruction and process;
Second execution module, for receiving the application data after described process that described hard core control module sends, and performs the application process corresponding with described second application data processing instruction to the application data after described process.
2. the application centralized management system based on LSM base according to claim 1, it is characterized in that, described first execution module, also for according to application management strategy, judges whether to need the application data after described process to send to described hard core control module.
3. the application centralized management system based on LSM base according to claim 1, is characterized in that, described hard core control module comprises:
Policy unit, for receiving and storing the described application management strategy from described tactful configuration module;
Application data resolution unit, for receiving the application data from LSM, and carries out protocol analysis to received application data, if know that described application data meets preassigned through resolving, then described application data is sent to communication unit;
Communication unit, for being that described application data works out routed path according to described application management strategy, and routes to described first execution module according to described routed path by described application data.
4. the application centralized management system based on LSM base according to claim 1, is characterized in that, described hard core control module also comprises:
Registering unit, for obtaining the registration information that execution module sends, responding described registration information, connecting with described execution module.
5. the application centralized management system based on LSM base according to claim 1, is characterized in that, described tactful configuration module comprises:
Whether Authority Verification unit, possess strategy configuration authority for checking the user of input application management strategy;
Strategy acquiring unit, for obtaining the described application management strategy of the user's input possessing described strategy configuration authority, is sent to described hard core control module by described application management strategy.
6., based on a management method in the application sets of LSM base, it is characterized in that, comprising:
Strategy configuration module obtains application management strategy and described application management strategy is sent to hard core control module, and wherein, described application management strategy comprises at least two kinds of application data processing instructions;
Described hard core control module receives the application data from LSM, and the described application management strategy received from described tactful configuration module, the first application data processing instruction included by described application management strategy, is sent to the described application data received and processes the first corresponding execution module with the application of described first application data processing instruction;
First execution module receives the application data that described hard core control module sends, and performs the application process corresponding with described first application data processing instruction to described application data; Application data after process is sent to described hard core control module, to make the second application data processing instruction of described hard core control module included by described application management strategy, the application data after described process is sent to and processes the second corresponding execution module with the application of described second application data processing instruction and process;
Second execution module receives the application data after the described process of described hard core control module transmission, and performs the application process corresponding with described second application data processing instruction to the application data after described process.
7. according to claim 6ly to it is characterized in that based on management method in the application sets of LSM base,
First execution module, according to application management strategy, judges whether to need the application data after described process to send to described hard core control module.
8. according to claim 6 based on management method in the application sets of LSM base, it is characterized in that, described hard core control module receives described application management strategy, the step that the described application data received is sent to the first execution module is comprised according to described application management strategy:
Described application management strategy is received from described tactful configuration module;
Receiving from the application data of LSM, and carry out protocol analysis to received application data, if know that described application data meets preassigned through resolving, is then that described application data works out routed path according to described application management strategy;
According to described routed path, described application data is routed to described first execution module.
9. according to claim 6 based on management method in the application sets of LSM base, it is characterized in that, hard core control module receives the application data from LSM, and receive from the described application management strategy of described tactful configuration module, also comprise before according to described application management strategy the described application data received being sent to the step of described first execution module:
Described hard core control module obtains the registration information that execution module sends, and responds described registration information, connects with described execution module.
10. according to claim 6ly it is characterized in that based on management method in the application sets of LSM base, described tactful configuration module obtains application management strategy and also the step that described application management strategy is sent to hard core control module is comprised:
Whether the user of inspection input application management strategy possesses strategy configuration authority;
Obtain the described application management strategy of the user's input possessing described strategy configuration authority and described application management strategy is sent to described hard core control module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110181668.7A CN102393887B (en) | 2011-06-30 | 2011-06-30 | Application centralized management system and method based on Linux security module (LSM) mechanism |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110181668.7A CN102393887B (en) | 2011-06-30 | 2011-06-30 | Application centralized management system and method based on Linux security module (LSM) mechanism |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102393887A CN102393887A (en) | 2012-03-28 |
| CN102393887B true CN102393887B (en) | 2015-06-17 |
Family
ID=45861210
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110181668.7A Expired - Fee Related CN102393887B (en) | 2011-06-30 | 2011-06-30 | Application centralized management system and method based on Linux security module (LSM) mechanism |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102393887B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104202454B (en) * | 2014-09-24 | 2017-12-08 | 福建联迪商用设备有限公司 | The method and system that a kind of handset compatibility test case performs automatically |
| CN106096400B (en) * | 2016-06-06 | 2019-10-01 | 中国科学院信息工程研究所 | A kind of parallel LSM framework implementation method of linux kernel |
| CN106295355B (en) * | 2016-08-11 | 2019-02-26 | 南京航空航天大学 | A kind of active safety support method towards Linux server |
| CN109088921B (en) * | 2018-07-24 | 2021-05-28 | 广东浪潮大数据研究有限公司 | Write operation processing method and device and computer readable storage medium |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101777098A (en) * | 2009-01-12 | 2010-07-14 | 肖凡 | Personal code group manager and management system thereof |
| CN102034058A (en) * | 2010-11-25 | 2011-04-27 | 中国联合网络通信集团有限公司 | Method for controlling safety of application software and terminal |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2005301576A (en) * | 2004-04-09 | 2005-10-27 | Hitachi Ltd | Method for controlling data communication system, data communication system and information processor |
| CN101106748A (en) * | 2006-07-11 | 2008-01-16 | 华为技术有限公司 | A content filtering system, device and method for mobile network |
-
2011
- 2011-06-30 CN CN201110181668.7A patent/CN102393887B/en not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101777098A (en) * | 2009-01-12 | 2010-07-14 | 肖凡 | Personal code group manager and management system thereof |
| CN102034058A (en) * | 2010-11-25 | 2011-04-27 | 中国联合网络通信集团有限公司 | Method for controlling safety of application software and terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102393887A (en) | 2012-03-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10863022B2 (en) | Using automatically collected device problem information to route and guide users' requests | |
| CN110402569B (en) | Bulk registration and configuration of devices | |
| CN104378342B (en) | Many accounts verification method, Apparatus and system | |
| CN106911648B (en) | Environment isolation method and equipment | |
| CN103973741A (en) | Method and device for performing remote debugging in cloud system | |
| CN103139157B (en) | A kind of based on the network communication method of socket, Apparatus and system | |
| CN107204873B (en) | Method for switching target domain name resolution server and related equipment | |
| WO2015021905A1 (en) | Software updating method, system, and device | |
| CN110677383B (en) | Firewall wall opening method and device, storage medium and computer equipment | |
| CN102393887B (en) | Application centralized management system and method based on Linux security module (LSM) mechanism | |
| CN101197711A (en) | Method, device and system for implementing unified authentication management | |
| CN112565439B (en) | Internet of things communication method and system | |
| CN104244243B (en) | Terminal peripheral hardware control method, Machine To Machine gateway and communication system | |
| CN111726328B (en) | Method, system and related device for remotely accessing a first device | |
| CN112804202B (en) | Multi-internetwork data security interaction method and device, server and storage medium | |
| WO2014036902A1 (en) | Method and apparatus for gateway management terminal | |
| CN113114503B (en) | Deployment method and device based on application delivery network requirements | |
| US8995992B1 (en) | Method and system for secure mobile device number lookup and modification | |
| CN103023940A (en) | Method and device for transmitting data between PC (Personal Computer) and mobile terminal | |
| CN111447273A (en) | Cloud processing system and data processing method based on cloud processing system | |
| US9294865B2 (en) | Enhanced system and method for custom programming of large groups of phones without requiring additional equipment | |
| CN105471582A (en) | Resource obtaining method and system and related device | |
| CN112637540B (en) | Multi-client audio and video call connection method, device, equipment and storage medium | |
| WO2020233085A1 (en) | Information processing method and device, and storage medium | |
| CN106506520B (en) | A kind of authentication method and device based on single-sign-on |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C53 | Correction of patent of invention or patent application | ||
| CB02 | Change of applicant information |
Address after: 611731 Chengdu high tech Zone, Sichuan, West Park, Qingshui River Applicant after: Huawei Symantec Technologies Co., Ltd. Address before: 611731 Chengdu high tech Zone, Sichuan, West Park, Qingshui River Applicant before: Chengdu Huawei Symantec Technologies Co., Ltd. |
|
| COR | Change of bibliographic data |
Free format text: CORRECT: APPLICANT; FROM: CHENGDU HUAWEI SYMANTEC TECHNOLOGIES CO., LTD. TO: HUAWEI DIGITAL TECHNOLOGY (CHENGDU) CO., LTD. |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20150617 Termination date: 20190630 |