CN102509032A - Implementation method of print security monitoring system based on Windows underlying driver - Google Patents
Implementation method of print security monitoring system based on Windows underlying driver Download PDFInfo
- Publication number
- CN102509032A CN102509032A CN2011102846270A CN201110284627A CN102509032A CN 102509032 A CN102509032 A CN 102509032A CN 2011102846270 A CN2011102846270 A CN 2011102846270A CN 201110284627 A CN201110284627 A CN 201110284627A CN 102509032 A CN102509032 A CN 102509032A
- Authority
- CN
- China
- Prior art keywords
- out task
- print out
- printing
- inspection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Abstract
The invention provides an implementation method of a print security monitoring system based on a Windows underlying driver, which relates to the field of computer software and is mainly used for monitoring, managing and auditing the print of various documents. By establishing a print application server and a print database server, all network printers are connected with the print application server in a network or USB (Universal Serial Bus) data line manner and provide service for the outside in a sharing manner; a user client is connected to a shared printer through a client access controller and submits a print task to a print service program of the server; and the print service program sends the task to a print task monitoring program packaged in a Windows underlying driver (i.e. print processor) for processing, performs information interaction with the print database server and finally pushes to the printer for printing.
Description
Technical field
The present invention relates to computer software fields, be mainly used in monitoring, manage and examine the printing situation of various files, is a kind of the realize bottom layer driving of monitoring printing and application relevant with monitoring.
Background technology
National security is maintained secrecy, and the situation is tense, and the leakage of a state or party secret emerges in an endless stream, and presses for from management and technical elements and constantly improve safe and secret work; Company's leakage of a state or party secret is of common occurrence, and various safe and secret measures remain further to be improved and be perfect; The power informatization industry is revealed away in order to prevent the approach that secret papers are printed through document; The realization and the application of printer monitor have been studied emphatically; Form the perfect monitoring printing system of a cover; This system monitoring is thorough, comprehensive, pervasive, and is better compatible to the printer of various models and brand.
Summary of the invention
The objective of the invention is from the print out task of the network printer is kept watch on and controlled.What the present invention proposed is a kind of printing safety monitoring system implementation method based on the Windows bottom layer driving; Bottom embeds the monitoring printing run time version between the network printer and subscription client; Must print through just being pushed to printer after the inspection of monitoring printing software when the user submits to print out task to print, finally realize the monitoring of print out task.
The technical scheme that the present invention realizes is following:
At print application server of LAN deployed and print data storehouse server.The all-network printer all is connected on this print application server through netting twine or USB connecting line, and with the mode of sharing service is provided externally.All subscription clients can only be through this server access controller could access printer and realize print out task.The monitoring printing run time version is installed on this server, is just carried out monitor code before, determine after safety inspection whether printer is printed this task when the user submits to print out task to give printer prints.Print data storehouse server is used for carrying out information interaction with print monitor.
When printing through this monitoring software, print out task specifically may further comprise the steps:
1) subscription client connects before the printer sharing of printing server, must be through the inspection of client-access controller;
2) after inspection was passed through, subscription client was connected to the printer sharing of print application server and submits print out task to;
3) service of the Windows system print on printing server PrintSpooler receives print out task, and print file are generated printable file layout;
4) print service PrintSpooler calls print monitor (print out task watchdog routine run time version is embedded in the Windows print processor program);
5) print monitor calling task information security inspection run time version carries out audit, the inspection of task, and check result is returned a print monitor;
6) after inspection was passed through, print monitor was given true printer processes program with print out task, and final the realization printed.
Further scheme of the present invention can be:
The network transmission protocol between said subscription client and print application server, print application server and the network printer is supported the optional encryption security feature.
Further scheme of the present invention can be:
Said network transmission protocol message content adopts the special purpose system algorithm to encrypt.
Further scheme of the present invention can be:
The safety inspection step of said print monitor comprises:
1) whether the inspection subscription client network address, port, agreement, hardware NIC address information meet the security strategy of setting;
2) legitimacy of inspection subscription client login authentication information (user name, password, certificate);
3) whether there is sensitive information in the print job information of inspection subscription client;
4) in print out task, add watermark, to reach functions such as file real and fake discrimination, copyright protection.
The invention has the beneficial effects as follows:
1) the present invention checks and record the legitimacy of its print out task before print out task begins, and finally determines whether to allow to print, and guarantees that the safety of print out task is carried out.Legal print out task writes down audit, and print What backs up file, has improved the evidence obtaining ability that secret document is revealed;
2) the present invention combines cleverly and utilizes Windows print service message mechanism to trigger print control code; Can be not extra take Windows system resource; For illegal print job, then can finish current print out task thread, can not cause legal print out task to stop up;
3) the present invention monitors print out task from the print service bottom, comprehensively, thoroughly, need not various printer driver are customized and transform, and is flexible, pervasive; Realized the doulbe-sides' victory of print system security and availability.
Description of drawings
The inventive method synoptic diagram 1, wherein 1-7 representes execution sequence.
Embodiment
The design of print monitor
Print monitor is divided into and is client-access controller and print out task watchdog routine.
The client-access controller is to be deployed on the print application server access port; When connecting printer, the user need pass through the client-access controller; The client-access controller inspection network address, port, agreement, hardware NIC address information are carried out legitimacy; The legitimacy of inspection login authentication information will connect printer permissions at last and give client.
The print out task watchdog routine is through the print processor in the encapsulation printer driver, realizes safety inspection and control to print out task through print processor.Need set up print job information database information platform in implementation procedure.Comprise following monitoring step:
1) intercepts and captures print out task, obtain user name that print out task start time, print out task submit to, document printing title, print state information, print out task number;
2) call dynamic link library, connect database, in database table, insert print job information so that print out task is write down audit;
3) print job information safety inspection;
4) sending print What prints to true printer;
5) call dynamic link library, connect database, in database, upgrade the print out task status information;
6) call dynamic link library, backup document printing content;
7) finish the monitoring printing flow process.
The configuration of printing server
Set up the print application server, connect the network printer through network or usb data line, foundations needs the user account of use printer, and user's authority is limited in only allows the user to submit print out task to, and can not managing printing task queue and printer.Set up print data storehouse server, be used for print monitor and database information and carry out alternately.Set up corresponding print job information table, the print job information look-up table is used for inspection and the audit of keeper to print out task.
The configuration of printer
The print processor of customization is installed, and print processor is applied to this printer; In the printer attribute, printer is set shares printing the user; The use background printing is set, so that program is accepted printing faster; Begin when being arranged on background processed last page to print; Be provided with and keep the document of printing.
A typical interactive examples: the subscription client user connects the print application server; Input login authentication information; After the print application server is checked the network address, port, agreement, hardware NIC address, the login authentication information of subscription client, give subscription client, after subscription client connects printer with the authority that connects printer; Print out task is submitted to the system print service routine, print through being pushed to printer after the inspection of print out task watchdog routine.
Claims (4)
1. the printing safety monitoring system implementation method based on the Windows bottom layer driving is characterized in that, when subscription client is monitored printing through this method, comprises following steps:
1) subscription client must be through the inspection of client-access controller before the printer sharing that connects printing server;
2) after inspection was passed through, subscription client was connected to the printer sharing of print application server and submits print out task to;
3) service of the Windows system print on printing server PrintSpooler receives print out task, and print file are generated printable file layout;
4) print service PrintSpooler calls print out task watchdog routine (the print monitor run time version is encapsulated in the Windows print processor);
5) print out task monitor call print job information safety inspection run time version is audited, is checked, check result is returned a print out task watchdog routine;
6) after inspection was passed through, the print out task watchdog routine was given printer processes with print out task, and final the realization printed.
2. a kind of printing safety monitoring system implementation method based on the Windows bottom layer driving according to claim 1 is characterized in that client-access controller inspection step comprises in the said step 1):
Whether the inspection subscription client network address, port, agreement, hardware NIC address information meet the security strategy of setting; The legitimacy of inspection subscription client login authentication information (user name, password, certificate).
3. a kind of printing safety monitoring system implementation method according to claim 1 based on the Windows bottom layer driving; It is characterized in that said step 4) print out task watchdog routine is encapsulated in (being print processor) in the bottom layer driving, and this is applied in the printer.
4. a kind of printing safety monitoring system implementation method based on the Windows bottom layer driving according to claim 1 is characterized in that said step 4) print out task watchdog routine operating procedure comprises:
1) intercepts and captures print out task, obtain user name that print out task start time, print out task submit to, document printing title, print state information, print out task number;
2) call dynamic link library, connect database, in database table, insert print job information so that print out task is write down audit;
3) print job information safety inspection;
4) sending print What prints to true printer;
5) call dynamic link library, connect database, in database, upgrade the print out task status information;
6) call dynamic link library, backup document printing content;
7) finish the monitoring printing flow process.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110284627.0A CN102509032B (en) | 2011-09-23 | 2011-09-23 | Implementation method of print security monitoring system based on Windows underlying driver |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110284627.0A CN102509032B (en) | 2011-09-23 | 2011-09-23 | Implementation method of print security monitoring system based on Windows underlying driver |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102509032A true CN102509032A (en) | 2012-06-20 |
| CN102509032B CN102509032B (en) | 2014-09-10 |
Family
ID=46221115
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110284627.0A Active CN102509032B (en) | 2011-09-23 | 2011-09-23 | Implementation method of print security monitoring system based on Windows underlying driver |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102509032B (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102799440A (en) * | 2012-07-24 | 2012-11-28 | 深圳市深信服电子科技有限公司 | Print auditing method and system under Windows system |
| CN102819612A (en) * | 2012-08-29 | 2012-12-12 | 北京鼎盾信息科技有限公司 | Full text search method based on print documents |
| CN103605487A (en) * | 2013-11-18 | 2014-02-26 | 江苏敏捷科技股份有限公司 | Method for transparently capturing print data |
| CN104794403A (en) * | 2015-04-03 | 2015-07-22 | 深圳冀东之星科技开发有限公司 | Secure information monitoring and printing method and system |
| CN104794404A (en) * | 2015-04-03 | 2015-07-22 | 深圳冀东之星科技开发有限公司 | Information secure printing monitoring method with intelligent consumable material and system thereof |
| US9340006B2 (en) | 2014-03-03 | 2016-05-17 | Ctpg Operating, Llc | System and method for remotely monitoring the status of a security printer, monitoring and controlling the number of secure media transactions by a security printer, and authenticating a secure media transaction by a security printer |
| CN106981141A (en) * | 2017-05-09 | 2017-07-25 | 马鞍山澄果电子科技有限公司 | A kind of Internet of Things printing device and lease monitoring management system |
| CN108229184A (en) * | 2017-12-22 | 2018-06-29 | 沈阳通用软件有限公司 | A kind of reliable Print auditing method based on android system |
| CN108376056A (en) * | 2018-02-09 | 2018-08-07 | 浙江印歌网络科技有限公司 | Method of printing and device |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040263900A1 (en) * | 2003-06-30 | 2004-12-30 | Nguyen Amanda Giang-Tien | System and method for automatic configuration |
| CN1808415A (en) * | 2005-01-22 | 2006-07-26 | 鸿富锦精密工业(深圳)有限公司 | Multi-point file print control system and method |
| CN101078976A (en) * | 2006-04-24 | 2007-11-28 | 株式会社理光 | Print system |
| CN101140504A (en) * | 2006-09-05 | 2008-03-12 | 鸿富锦精密工业(深圳)有限公司 | Print job monitoring system and method |
| JP4198154B2 (en) * | 2003-02-26 | 2008-12-17 | サイエンスパーク株式会社 | Electronic computer storing print control program, program and program recording medium |
| CN101458614A (en) * | 2007-12-14 | 2009-06-17 | 元镁科技股份有限公司 | Output monitoring system, method and computer readable medium |
| CN101770351A (en) * | 2009-01-06 | 2010-07-07 | 佳能株式会社 | Print system, print server, control method thereof, and program |
-
2011
- 2011-09-23 CN CN201110284627.0A patent/CN102509032B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4198154B2 (en) * | 2003-02-26 | 2008-12-17 | サイエンスパーク株式会社 | Electronic computer storing print control program, program and program recording medium |
| US20040263900A1 (en) * | 2003-06-30 | 2004-12-30 | Nguyen Amanda Giang-Tien | System and method for automatic configuration |
| CN1808415A (en) * | 2005-01-22 | 2006-07-26 | 鸿富锦精密工业(深圳)有限公司 | Multi-point file print control system and method |
| CN101078976A (en) * | 2006-04-24 | 2007-11-28 | 株式会社理光 | Print system |
| CN101140504A (en) * | 2006-09-05 | 2008-03-12 | 鸿富锦精密工业(深圳)有限公司 | Print job monitoring system and method |
| CN101458614A (en) * | 2007-12-14 | 2009-06-17 | 元镁科技股份有限公司 | Output monitoring system, method and computer readable medium |
| CN101770351A (en) * | 2009-01-06 | 2010-07-07 | 佳能株式会社 | Print system, print server, control method thereof, and program |
| JP2010160579A (en) * | 2009-01-06 | 2010-07-22 | Canon Inc | Print system, print server, control method thereof, and program |
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102799440A (en) * | 2012-07-24 | 2012-11-28 | 深圳市深信服电子科技有限公司 | Print auditing method and system under Windows system |
| CN102799440B (en) * | 2012-07-24 | 2014-12-31 | 深圳市深信服电子科技有限公司 | Print auditing method and system under Windows system |
| CN102819612A (en) * | 2012-08-29 | 2012-12-12 | 北京鼎盾信息科技有限公司 | Full text search method based on print documents |
| CN103605487A (en) * | 2013-11-18 | 2014-02-26 | 江苏敏捷科技股份有限公司 | Method for transparently capturing print data |
| US9340006B2 (en) | 2014-03-03 | 2016-05-17 | Ctpg Operating, Llc | System and method for remotely monitoring the status of a security printer, monitoring and controlling the number of secure media transactions by a security printer, and authenticating a secure media transaction by a security printer |
| US9604445B2 (en) | 2014-03-03 | 2017-03-28 | Ctpg Operating, Llc | System and method for extracting triggered data from a variable data string and embedding the triggered data into a secure barcode |
| US10201967B2 (en) | 2014-03-03 | 2019-02-12 | Ctpg Operating, Llc | System and method for securing a device with a dynamically encrypted password |
| US10279583B2 (en) | 2014-03-03 | 2019-05-07 | Ctpg Operating, Llc | System and method for storing digitally printable security features used in the creation of secure documents |
| CN104794404A (en) * | 2015-04-03 | 2015-07-22 | 深圳冀东之星科技开发有限公司 | Information secure printing monitoring method with intelligent consumable material and system thereof |
| CN104794403A (en) * | 2015-04-03 | 2015-07-22 | 深圳冀东之星科技开发有限公司 | Secure information monitoring and printing method and system |
| CN106981141A (en) * | 2017-05-09 | 2017-07-25 | 马鞍山澄果电子科技有限公司 | A kind of Internet of Things printing device and lease monitoring management system |
| CN108229184A (en) * | 2017-12-22 | 2018-06-29 | 沈阳通用软件有限公司 | A kind of reliable Print auditing method based on android system |
| CN108229184B (en) * | 2017-12-22 | 2023-10-03 | 三六零数字安全科技集团有限公司 | Reliable printing audit method based on Android system |
| CN108376056A (en) * | 2018-02-09 | 2018-08-07 | 浙江印歌网络科技有限公司 | Method of printing and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102509032B (en) | 2014-09-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102509032B (en) | Implementation method of print security monitoring system based on Windows underlying driver | |
| AU780201B2 (en) | Remote printing of secure and/or authenticated documents | |
| US7661147B2 (en) | System for controlling use of digitally encoded products | |
| EP2755162B1 (en) | Identity controlled data center | |
| US9131169B2 (en) | Apparatus, license determining method, recording medium | |
| US9336369B2 (en) | Methods of licensing software programs and protecting them from unauthorized use | |
| US20070283170A1 (en) | System and method for secure inter-process data communication | |
| US20110311046A1 (en) | Image Forming System, Image Forming Apparatus, and Method in which an Application is Added | |
| US8555074B2 (en) | Method and apparatus for processing information, and computer program product | |
| CA3008199A1 (en) | Securing webpages, webapps and applications | |
| CN104123508A (en) | Design method based on intranet data security protection engine | |
| CN103763313A (en) | File protection method and system | |
| WO2010003328A1 (en) | Processing method and device of rights object | |
| US20080320601A1 (en) | Providing access rights to portions of a software application | |
| CN1815946A (en) | Method for realizing digital information safety access | |
| CN104951712A (en) | Data safety protection method in Xen virtualization environment | |
| WO2012170960A1 (en) | Method and apparatus for file assurance | |
| KR101377352B1 (en) | Digital rights management (drm) method and equipment in small and medium enterprise (sme) and method for providing drm service | |
| US20120047074A1 (en) | Methods of protecting software programs from unauthorized use | |
| US10270742B2 (en) | Cryptographic service with output redirection | |
| EP3432188B1 (en) | Secure print policy enforcement | |
| JP2008046830A (en) | Image output device, electronic manuscript submission system, and program | |
| US8355508B2 (en) | Information processing apparatus, information processing method, and computer readable recording medium | |
| KR101057743B1 (en) | A system for distributing secured documents to outside users | |
| JP6208645B2 (en) | License management method and license management system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: NANJING NARI CO., LTD. STATE ELECTRIC NET CROP. Free format text: FORMER OWNER: NANJING NARI CO., LTD. Effective date: 20130206 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20130206 Address after: Nan Shui Road Gulou District of Nanjing city of Jiangsu Province, No. 8 210003 Applicant after: State Grid Electric Power Research Insititute Applicant after: Nanjing Nari Co., Ltd. Applicant after: State Grid Corporation of China Address before: Nan Shui Road Gulou District of Nanjing city of Jiangsu Province, No. 8 210003 Applicant before: State Grid Electric Power Research Insititute Applicant before: Nanjing Nari Co., Ltd. |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20171114 Address after: 211106 Jiangning City, Nanjing Province, the integrity of the road No. 19, Co-patentee after: NARI Technology Development Co., Ltd. Patentee after: State Grid Electric Power Research Insititute Co-patentee after: State Grid Corporation of China Address before: Nan Shui Road Gulou District of Nanjing city of Jiangsu Province, No. 8 210003 Co-patentee before: Nanjing Nari Co., Ltd. Patentee before: State Grid Electric Power Research Insititute Co-patentee before: State Grid Corporation of China |