CN109033758B - License resource access method and system - Google Patents
License resource access method and system Download PDFInfo
- Publication number
- CN109033758B CN109033758B CN201810860276.5A CN201810860276A CN109033758B CN 109033758 B CN109033758 B CN 109033758B CN 201810860276 A CN201810860276 A CN 201810860276A CN 109033758 B CN109033758 B CN 109033758B
- Authority
- CN
- China
- Prior art keywords
- license
- authentication information
- target
- information
- resource request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 53
- 238000009434 installation Methods 0.000 abstract description 6
- 238000012423 maintenance Methods 0.000 abstract description 6
- 238000012795 verification Methods 0.000 description 10
- 239000003795 chemical substances by application Substances 0.000 description 9
- 238000004891 communication Methods 0.000 description 5
- 238000011217 control strategy Methods 0.000 description 4
- 238000013507 mapping Methods 0.000 description 4
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 238000007726 management method Methods 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 230000008859 change Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000007613 environmental effect Effects 0.000 description 1
- 239000012634 fragment Substances 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012797 qualification Methods 0.000 description 1
- 238000013468 resource allocation Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/105—Arrangements for software license management or administration, e.g. for managing licenses at corporate level
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Storage Device Security (AREA)
Abstract
The application provides a method and a system for accessing license resources, wherein the method comprises the following steps: after receiving an application module starting instruction, the terminal equipment sends a license resource request to the license gateway equipment; if the license gateway device detects that the authentication information in the license resource request is legal, selecting a target license server from at least one license server which can currently provide the license resources required by the application module according to a preset resource scheduling strategy, and forwarding the license resource request to the target license server; and the terminal equipment acquires the target license resource from the target license server after receiving the license service address returned by the target license server. Here, the terminal device does not need to install the license management program, so that the installation, maintenance and upgrading costs of the license management program are saved, and meanwhile, the terminal device does not need to know the address of the license server, so that the safety of the address of the license server is ensured.
Description
Technical Field
The present application relates to the field of resource access technologies, and in particular, to a method and a system for license resource access.
Background
An enterprise operation business generally needs to use a designated program or hardware resource, and the program resource generally includes an application program and a license resource corresponding to the application program, for example.
In general, an enterprise runs a purchased license resource of an application in a license server, installs the application in a terminal device, and installs a license agent or a license management program in advance on the terminal device. Before using the application program, the user configures the address of the license server to be accessed by the application program on the license agent program or the license management program in advance, and when using the application program, the user can access the target license server according to the address of the target license server configured in advance so as to acquire the license resource required by the application program.
However, in the above method for accessing license resources, a license management program needs to be installed in advance on the terminal device, and due to the fact that the system configuration conditions of the terminal device are different, the security program and the application program on the terminal device easily conflict with the license management program, so that the time and cost for installing, maintaining and upgrading the license management program are high, and the method cannot be rapidly popularized in a large range; meanwhile, the address of the license server is directly exposed to the terminal equipment, so that the license resource is easily leaked.
Disclosure of Invention
In view of this, an object of the embodiments of the present application is to provide a method and a system for accessing a license resource, where a terminal device can request a license resource required by an application module without installing a license management program and knowing an address of a license server, so as to solve a problem of conflict between the license management program and other programs of the terminal device, and ensure security of access of the license server.
In a first aspect, an embodiment of the present application provides a license resource access method, which is applied to a terminal device and a license gateway device, where an address of the license gateway device is configured in a system environment variable of the terminal device; the method comprises the following steps:
after receiving an application module starting instruction, the terminal equipment sends a license resource request corresponding to the application module to license gateway equipment according to the address of the license gateway equipment; the license resource request carries authentication information and description information of the license resources required by the application module;
after receiving the license resource request, if the license gateway device detects that the authentication information in the license resource request is legal, selecting a target license server from at least one license server which can currently provide the license resources required by the application module described by the description information according to a preset resource scheduling policy, and forwarding the license resource request to the target license server;
and after receiving the license service address returned by the target license server based on the license resource request, the terminal equipment acquires the license resource required by the application module from the target license server according to the license service address.
With reference to the first aspect, an embodiment of the present application provides a first possible implementation manner of the first aspect, where the license resource request carries authentication identification information, the license gateway device further stores at least one blacklist corresponding to the authentication identification information, and the blacklist includes first standard authentication information of a license resource; the method for detecting that the authentication information in the license resource request is legal by the license gateway device comprises the following steps:
if at least one target blacklist corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with first standard authentication information in the at least one target blacklist;
and if the authentication information is not matched with the first standard authentication information in each target blacklist, determining that the authentication information is legal.
With reference to the first possible implementation manner of the first aspect, an embodiment of the present application provides a second possible implementation manner of the first aspect, where the license resource request carries authentication identification information, a white list corresponding to the authentication identification information is stored in the license gateway device, and the white list includes second standard authentication information of the license resource; the method for detecting that the authentication information in the license resource request is legal by the license gateway device comprises the following steps:
if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
With reference to the second possible implementation manner of the first aspect, an embodiment of the present application provides a third possible implementation manner of the first aspect, where when there are multiple white lists, the license gateway device further stores level information of the white list;
if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list, including:
if a plurality of target white lists corresponding to the authentication identification information in the license resource request are detected, selecting a target white list with the highest priority from the plurality of target white lists according to the level information of the plurality of target white lists; wherein, the higher the level information is, the higher the priority is;
and comparing the authentication information with second standard authentication information in a target white list with the highest priority.
With reference to the second possible implementation manner of the first aspect, an embodiment of the present application provides a fourth possible implementation manner of the first aspect, where a priority of the blacklist is higher than a priority of the whitelist; the method for detecting that the authentication information in the license resource request is legal by the license gateway device further comprises the following steps:
if a target blacklist and a target white list corresponding to the authentication identification information in the license resource request are detected, comparing the authentication information with first standard authentication information in the target blacklist;
if the authentication information is not matched with the first standard authentication information in each target blacklist, comparing the authentication information with second standard authentication information in the target whitelist;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
In a second aspect, an embodiment of the present application further provides a license resource access system, including: the system comprises terminal equipment, license gateway equipment and a license server; the system environment variable of the terminal equipment is configured with the address of the license gateway equipment;
the terminal device is used for sending a license resource request corresponding to the application module to the license gateway device according to the address of the license gateway device after receiving an application module starting instruction; the license resource request carries authentication information and description information of the license resources required by the application module;
the license gateway device is configured to, after receiving the license resource request, select a target license server from at least one license server that can currently provide the license resource required by the application module described by the description information according to a preset resource scheduling policy if it is detected that authentication information in the license resource request is valid, and forward the license resource request to the target license server;
the license server is used for sending a license service address to the terminal equipment after receiving the license resource request;
and the terminal equipment is also used for acquiring license resources required by the application module from the target license server according to the license service address after receiving the license service address.
With reference to the second aspect, an embodiment of the present application provides a first possible implementation manner of the second aspect, where the license resource request carries authentication identification information, the license gateway device further stores at least one blacklist corresponding to the authentication identification information, and the blacklist includes first standard authentication information of the license resource; the license gateway device is specifically configured to:
if at least one target blacklist corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with first standard authentication information in the at least one target blacklist;
and if the authentication information is not matched with the first standard authentication information in each target blacklist, determining that the authentication information is legal.
With reference to the first possible implementation manner of the second aspect, an embodiment of the present application provides a second possible implementation manner of the second aspect, where the license resource request carries authentication identification information, a white list corresponding to the authentication identification information is stored in the license gateway device, and the white list includes second standard authentication information of the license resource; the license gateway device is specifically configured to:
if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
With reference to the second possible implementation manner of the second aspect, this application example provides a third possible implementation manner of the second aspect, where a priority of the blacklist is higher than a priority of the whitelist; the license gateway device is specifically configured to:
if a target blacklist and a target white list corresponding to the authentication identification information in the license resource request are detected, comparing the authentication information with first standard authentication information in the target blacklist;
if the authentication information is not matched with the first standard authentication information in each target blacklist, comparing the authentication information with second standard authentication information in the target whitelist;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
With reference to the second aspect and any one of the first possible implementation manner to the third possible implementation manner of the second aspect, an embodiment of the present application provides a fourth possible implementation manner of the second aspect, where the license resource access system includes a license gateway device cluster, the license gateway device cluster includes a plurality of license gateway devices, and actual addresses of the plurality of license gateway devices are mapped to one virtual address; the terminal equipment can access a plurality of license gateway equipment through the virtual address;
and the plurality of license gateway devices share the file storage system, when the main license gateway device fails, the standby license gateway device is switched to a new main license gateway device, and the license resource request from the terminal device is processed based on the file storage system.
According to the license resource access method and system provided by the embodiment of the application, the terminal equipment can uniformly request the license resources required by the application module from the license gateway equipment through the address system of the license gateway equipment configured in the system on the premise of not installing the license agent or the management program, and the license gateway equipment uniformly schedules the license resources, so that the problem that the license management program installed on the terminal equipment is easy to conflict with other software is solved, and the installation, maintenance and upgrading costs of the license management program are saved. Meanwhile, the terminal equipment applies for the required license resources through the unique license gateway equipment address, the license gateway equipment distributes the license resources required by the application module in real time according to the preset resource control strategy, and the terminal equipment does not need to acquire the address of the license server, so that the access security of the license server is ensured.
In order to make the aforementioned objects, features and advantages of the present application more comprehensible, preferred embodiments accompanied with figures are described in detail below.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are required to be used in the embodiments will be briefly described below, it should be understood that the following drawings only illustrate some embodiments of the present application and therefore should not be considered as limiting the scope, and for those skilled in the art, other related drawings can be obtained from the drawings without inventive effort.
Fig. 1 shows a schematic structural diagram of a license resource access system provided in an embodiment of the present application.
Fig. 2 shows a flowchart of a license resource access method provided by an embodiment of the present application.
Fig. 3 is a flowchart illustrating another license resource access method provided in an embodiment of the present application.
Fig. 4 shows a flowchart of another license resource access method provided in an embodiment of the present application.
Fig. 5 is a flowchart illustrating another license resource access method provided in an embodiment of the present application.
Fig. 6 shows a flowchart of another license resource access method provided in an embodiment of the present application.
Fig. 7 is a flowchart illustrating another license resource access method provided in an embodiment of the present application.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present application clearer, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all the embodiments. The components of the embodiments of the present application, generally described and illustrated in the figures herein, can be arranged and designed in a wide variety of different configurations. Thus, the following detailed description of the embodiments of the present application, presented in the accompanying drawings, is not intended to limit the scope of the claimed application, but is merely representative of selected embodiments of the application. All other embodiments, which can be derived by a person skilled in the art from the embodiments of the present application without making any creative effort, shall fall within the protection scope of the present application.
The main disadvantages of the existing method for accessing the granted resource are focused on the following aspects:
1. the license servers are scattered, and when the license servers are used, the addresses and the ports of the license servers need to be configured on the client side respectively, so that the operation is difficult.
2. An Internet Protocol (IP) address and a port of an interconnection between networks of the license server are directly exposed to the user terminal, which easily causes leakage of license resources and is not good in security.
3. The license server is randomly used, when a plurality of persons share the same license server, the license resource on the server is easily insufficient, and the resources on other license servers are vacant.
4. For a large enterprise, all license servers of a group information center need to be deployed on a group public network, and access control and resource allocation cannot be performed.
5. The existing license resource management program in the market needs to install a client program on each desktop, and does not have a zero client, so that the daily maintenance workload is large; limited by terminal equipment, the environmental adaptability is poor, and the method cannot be comprehensively popularized in enterprises.
In view of the foregoing problems, in the method and system for accessing license resources provided in the embodiments of the present application, a terminal device can apply for license resources required by an application module to a license gateway device corresponding to a unique address of the license gateway device through the address of the license gateway device without installing a license agent or a management program, and the license gateway module in the license gateway device allocates corresponding license resources in real time according to a resource control policy preset by an administrator.
Fig. 1 shows a schematic structural diagram of a license resource access system provided in an embodiment of the present application, and as shown in fig. 1, the license resource access system includes: the terminal device 10, the license gateway device 20, and the license server 30; a plurality of application modules (the application modules refer to software or hardware such as application programs) are installed in the terminal device 10, and a license gateway module is installed in the license gateway device 20 (in the embodiment of the present application, a server on which the license gateway module is installed is the license gateway device 20); the system environment variable of the terminal device 10 is configured with the address of the license gateway device 20, and the application module can be connected with the license gateway module through the address of the license gateway device 20 in a communication way; the license server 30 is provided with an lmgrd service, and the license gateway module can be in communication connection with the lmgrd service; the license gateway module is configured to manage the license server 30, specifically, monitor an address of the lmgrd service, license resource information, and schedule the license server 30.
The embodiment of the application provides a license resource access method, which is applied to a terminal device 10 and a license gateway device 20, wherein an address of the license gateway device is configured in a system environment variable of the terminal device 10; as shown in fig. 2 and 3, the method includes:
s101, after receiving an application module starting instruction, the terminal equipment sends a license resource request corresponding to an application module to license gateway equipment according to the address of the license gateway equipment; the license resource request carries authentication information and description information of the license resource required by the application module.
In this embodiment of the application, after an application module (application module, that is, an application program) in a terminal device is started, the application program may send a license resource request (that is, an lmgrd request) to an address of a license gateway device, and since a sending address of the lmgrd request of the application program is configured as an address of the license gateway device in advance, the lmgrd request is sent to the license gateway device.
In the prior art, when a user starts an application program through a terminal device (a Personal Computer (PC) terminal or a mobile terminal, etc.), the address and the port of a corresponding license server are often required to be manually specified for each application program; license agents or management software on the market today can help locate the server address of the required license, but a local agent program needs to be installed on the terminal device to obtain the start-up information of the application. In actual use, because the system configuration conditions of the terminal device are uneven, the security software and the application software on the terminal device easily conflict with such agent programs, so that the time and the cost for installing, maintaining and upgrading the client program are high, and the client program cannot be rapidly popularized in a large range.
In the embodiment of the application, the terminal device adopts a scheme of a zero client (or a zero proxy), and any program does not need to be additionally installed or run on the terminal device of the user, and only the environment variable (which is used for configuring the sending address of the lmgrd request of the application) needs to be set as the port and the address of the LICENSE gateway device, for example, "LM _ LICENSE _ FILE ═ 22000@ 192.168.10.100", on the terminal device, so that the application program can send the lmgrd request to the LICENSE gateway device after being started, and the application program does not need to acquire the specific address of the LICENSE server, thereby reducing or even solving the problem of LICENSE resource leakage caused by the fact that the address of the LICENSE server is directly exposed to the terminal device of the user, and improving the access security of the LICENSE server.
The application program is configured with a uniform access interface of the license, all application modules on the terminal equipment send license resource applications (namely the license resource requests) to the license gateway equipment for uniform processing through the configuration of the environment variables of the application program, and the license gateway equipment (specifically, the license gateway module in the license gateway equipment) automatically specifies the license resources according to the internally registered license server.
In addition, the license resource request in the embodiment of the application may carry authentication information, which may be user information (such as user account information of the application, and the like, where the user information may include personal user information and department information) and terminal device information (such as an address of the terminal device, a device number, and the like), and the authentication information is used to subsequently verify whether the user or the terminal device has a request qualification for requesting the license resource of the application. The terminal address may be an Internet Protocol (IP) address or a physical address (Media Access Control or Medium Access Control, MAC address) of an interconnection between networks of the terminal.
The description information of the target license resource carried in the license resource request may be the type, version, number, and the like of the license resource that the user wants to request, for example, the type is: the microsoft office, the 2017 version and the number are 10, and the like. The purpose of the description information is to inform the license gateway device to request the license resources required by the application module, so that the license gateway device schedules the optimal license server capable of providing the license resources according to the description information.
S102, after receiving the license resource request, if the license gateway device detects that the authentication information in the license resource request is legal, according to a preset resource scheduling policy, selecting a target license server from at least one license server which can currently provide the license resource required by the application module described by the description information, and forwarding the license resource request to the target license server.
In the embodiment of the application, a blacklist and/or a white list for verifying whether the authentication information in the license resource request is legal or not is pre-stored in the license gateway device; relevant standard authentication information is configured in the black list and the white list in advance. If only the blacklist exists, when the authentication information in the license resource request is not in the blacklist, the authentication information passes the verification; if only the white list exists, when the authentication information in the license resource request is in the white list, the authentication information passes the verification; and if the authentication information is included in both the white list and the black list, the authentication information passes verification.
After the license gateway device determines that the authentication information of the license resource request passes verification, the preset resource scheduling policy adopted by the target license server is selected as a resource quota management policy, a resource fair sharing scheduling policy, a network priority scheduling policy, a fragment priority scheduling policy, a resource merging usage scheduling policy, a priority preemption scheduling policy and the like.
After the license gateway device selects the target license server based on the scheduling policy, the license resource request is forwarded to the lmgrd service of the target license server, so that the lmgrd service can return the address of the licensed vendordaemon (namely, the supplier daemon, which can specifically provide the license resource required by the application program) to the terminal device (specifically feed back the address to the corresponding application program in the terminal device).
S103, after receiving the license service address returned by the target license server based on the license resource request, the terminal device acquires the license resource required by the application module from the target license server according to the license service address.
Here, after receiving the vendor daemon address, the terminal device sends a license resource request carrying description information of the target license resource to the address, and the lmgrd service of the target license server returns feedback information carrying the target license resource required by the application program to the terminal device according to the license resource request. After the terminal device receives the feedback information, the application program can detect the required target license resource from the feedback information returned by the lmgrd service.
According to the license resource access method provided by the embodiment of the application, the terminal equipment can uniformly request the license resources required by the application module from the license gateway equipment through the address system of the license gateway equipment configured in the system on the premise of not installing the license agent or the management program, and the license gateway equipment uniformly schedules the license resources, so that the problem that the license management program installed on the terminal equipment is easy to conflict with other software is solved, and the installation, maintenance and upgrading costs of the license management program are saved. Meanwhile, the terminal equipment applies for the required license resources through the unique license gateway equipment address, the license gateway equipment distributes the license resources required by the application module in real time according to the preset resource control strategy, and the terminal equipment does not need to acquire the address of the license server, so that the access security of the license server is ensured.
Further, as shown in fig. 4, in the license resource access method provided in this embodiment of the present application, the license resource request carries authentication identification information, and the license gateway device further stores at least one blacklist corresponding to the authentication identification information, where the blacklist includes first standard authentication information of a license resource; in step 102, the method for detecting that the authentication information in the license resource request is legal by the license gateway device includes:
s201, if at least one target blacklist corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with first standard authentication information in the at least one target blacklist.
In the embodiment of the application, the license gateway device is preconfigured with a blacklist corresponding to authentication identification information (such as a user information identifier, a terminal information identifier and a license identifier) which does not allow a certain license to be used, and the blacklist stores first standard authentication information for verifying the authentication information in the license resource request. After a user sends a license resource request to a license gateway device through a terminal device, the license gateway device searches a blacklist corresponding to authentication identification information according to the authentication identification information carried by the request, wherein the terminal information identification can be a terminal name or a terminal address. After the license gateway device finds the blacklist, the license gateway device compares the authentication information in the license resource request with the first standard authentication information set in the found blacklist, and rejects the request of the personal user information, department information or terminal information listed in the blacklist, and does not allow access to the license resource.
In the embodiment of the application, the license gateway device establishes the mapping relationship between the user information belonging to the same department and the department information, so that when the authentication identification information needing to be configured in the blacklist is certain department information, the department information is only required to be stored in the blacklist. After receiving a license resource request of certain target user information from the department, the license gateway device can verify whether the target user information is legal or not according to the department information in the blacklist and the mapping relation between the department information and the user information, so that the resources of the blacklist are saved while the identity verification is ensured.
In addition, in this embodiment of the present application, a plurality of blacklists with different levels may be configured, and specifically, the blacklists may be configured from three dimensions, namely, user information, a terminal device address (for example, an IP address of a terminal device), and a license vendor, and corresponding to the three levels, the effective range of the blacklists also has three levels: system level, vendor level, and license service level. The system level works for all application or device license resource requests, the vendor level works for all license resource requests of a certain application or device vendor, and the licensing service level works for only a certain license service. These three levels of control can be enabled simultaneously, with fine control over the access rights of the license resource.
Here, the system level blacklist may cover a vendor level blacklist, which may cover a blacklist belonging to a permitted service level of the application or device. When there are a plurality of black lists, the authentication information needs to be compared with the first standard authentication information in each black list.
S202, if the authentication information is not matched with the first standard authentication information in each target blacklist, determining that the authentication information is legal.
Here, the manner of determining that the authentication information is legitimate may be: when the authentication information is not matched with the first standard authentication information in each blacklist, determining that the authentication information is legal; and when the authentication information is matched with the first standard authentication information in at least one blacklist, determining that the authentication information is illegal.
Or the license gateway equipment configures the priorities of the blacklists with different levels, takes the authentication information over the blacklist with the highest priority for matching, and if the authentication information is matched with the blacklist with the highest priority, the authentication information is determined to be illegal; if not, matching with the blacklist with the highest priority in the rest blacklists again; if so, determining that the authentication information is illegal; and if not, returning to the step of matching with the blacklist with the highest priority in the rest blacklists again, and if so, outputting a result of judging whether the authentication information is legal or not until all the blacklists are matched.
Further, as shown in fig. 5, in the license resource access method provided in this embodiment of the present application, the license resource request carries authentication identification information, a white list corresponding to the authentication identification information is stored in the license gateway device, and the white list includes second standard authentication information of the license resource; in step 102, the method for detecting that the authentication information in the license resource request is legal by the license gateway device includes:
s301, if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list.
In the embodiment of the application, the license gateway device pre-configures a white list corresponding to authentication identification information (such as a user information identifier, a terminal information identifier, and a license identifier) that can use a certain license, and second standard authentication information for verifying the authentication information in the license resource request is stored in the white list. After a user sends a license resource request to a license gateway device through a terminal device, the license gateway device searches a white list corresponding to authentication identification information according to the authentication identification information (such as a user account and a terminal address) carried by the request; the terminal information identifier may be a terminal name or a terminal address. And the license gateway equipment compares the authentication information in the license resource request with the second standard authentication information set in the searched white list after the searched white list, and the license gateway refuses the request of the personal user information, department information or terminal information which is not listed in the white list and does not allow the license resource to be accessed.
S302, if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
Further, as shown in fig. 6, in the license resource access method provided in the embodiment of the present application, when there are a plurality of white lists, the license gateway device further stores level information of the white list; step 301, if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list, including:
s3011, if a plurality of target white lists corresponding to the authentication identification information in the license resource request are detected, selecting a target white list with the highest priority from the plurality of target white lists according to the level information of the plurality of target white lists; wherein the higher the level information, the higher the priority.
S3012, comparing the authentication information with second standard authentication information in a target white list with the highest priority.
In the embodiment of the present application, step 3011 and step 3012 are combined, the license gateway device establishes a mapping relationship between user information belonging to the same department and the department information, so that when the authentication identifier to be configured in the white list is information of a certain department, only the department information needs to be stored in the white list, and after receiving a license resource request of information of a certain target user from the department, the license gateway device can verify whether the target user information is legal according to the department information in the white list and the mapping relationship between the department information and the user information, thereby ensuring that the identity verification is achieved and saving resources of the white list.
In addition, in this embodiment of the present application, a plurality of white lists with different levels may be configured, and specifically, the white lists may be configured from three dimensions of user information, a terminal device address (for example, an IP address of a terminal device), and a license vendor, where corresponding to the three levels, the effective range of the white lists also has three levels: system level, vendor level, and license service level. The system level works for all application or device license resource requests, the vendor level works for all license resource requests of a certain application or device vendor, and the licensing service level works for only a certain license service. These three levels of control can be enabled simultaneously, with fine control over the access rights of the license resource.
Here, the system level white list may cover a vendor level white list, which may cover a white list belonging to a licensed service level of the application. The license gateway equipment configures the priorities of the white lists with different levels, preferentially matches the authentication information with the white list with the highest priority, and if the authentication information is matched with the white list, the authentication information is determined to be legal; if not, matching with the white list with the highest priority in the rest white lists again; if so, determining that the authentication information is legal; and if not, returning to the step of matching with the white list with the highest priority in the rest white lists again until all the white lists are matched, and outputting a result of judging whether the authentication information is legal or not.
Further, as shown in fig. 7, in the license resource access method provided in the embodiment of the present application, the priority of the blacklist is higher than the priority of the whitelist; step 102, the method for detecting that the authentication information in the license resource request is legal by the license gateway device further includes:
s401, if a target blacklist and a target white list corresponding to the authentication identification information in the license resource request are detected, comparing the authentication information with first standard authentication information in the target blacklist.
In the embodiment of the present application, the priority of the blacklist is higher than that of the whitelist, so after the target blacklist and the target whitelist corresponding to the authentication identification information in the license resource request are detected, the authentication information is first compared with the first standard authentication information in the target blacklist.
When there are multiple target blacklists, the verification method of the multiple blacklists can be adopted. When there are a plurality of target white lists, the verification method of the plurality of target white lists can be adopted.
S402, if the authentication information is not matched with the first standard authentication information in each target blacklist, comparing the authentication information with second standard authentication information in the target whitelist;
in the embodiment of the application, after the authentication information in the license resource request passes the verification of the blacklist, the authentication information is verified by the whitelist.
S403, if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
In the embodiment of the application, if the authentication information in the license resource request also passes the verification of the white list, the authentication information is determined to be legal.
The license resource access method provided by the embodiment of the application has the following advantages:
1. zero client installation: the terminal equipment of the user does not need to install any resource agent or resource management client program related to the license, only needs to configure the network address and the port of the resource gateway in the existing system environment variable, and does not change the desktop terminal or the mobile terminal system of the user;
2. the license unified access interface: all license servers are uniformly monitored by a resource gateway, all types of license resource requests are submitted to license gateway equipment for uniform processing, and a user does not need to know the address of a specific license server and the license gateway equipment automatically appoints the license resources on the license server;
3. unified access control of license resources: an access white list and a black list aiming at a specific license can be configured according to the license resource access limitation set by a management department, and the resource gateway uniformly performs access control of a system range, a license vendor level and a license feature level aiming at users, departments and projects.
As shown in fig. 1, a license resource access system provided in an embodiment of the present application includes: the terminal device 10, the license gateway device 20, and the license server 30; the system environment variable of the terminal device 10 is configured with the address of the license gateway device 20;
the terminal device 10 is configured to send a license resource request corresponding to the application module to the license gateway device 20 according to the address of the license gateway device 20 after receiving the application module start instruction; the license resource request carries authentication information and description information of the license resources required by the application module;
the license gateway device 20 is configured to, after receiving the license resource request, select a target license server from at least one license server 30 that can currently provide the license resource required by the application module described by the description information according to a preset resource scheduling policy if it is detected that the authentication information in the license resource request is valid, and forward the license resource request to the target license server;
a license server 30 for transmitting a license service address to the terminal device 10 upon receiving the license resource request;
the terminal device 10 is further configured to, after receiving the license service address, obtain the target license resource from the target license server 30 according to the license service address.
According to the license resource access system provided by the embodiment of the application, the terminal equipment can request license resources required by an application module to the license gateway equipment through the address system of the license gateway equipment configured in the system on the premise that a license agent or a management program is not installed, the license gateway equipment uniformly schedules the license resources, the problem that the installed license management program on the terminal equipment is easy to conflict with other software is solved, and the installation, maintenance and upgrading costs of the license management program are saved. Meanwhile, the terminal equipment applies for the required license resources through the unique license gateway equipment address, the license gateway equipment distributes the license resources required by the application module in real time according to the preset resource control strategy, and the terminal equipment does not need to acquire the address of the license server, so that the access security of the license server is ensured.
Further, in the license resource access system provided in the embodiment of the present application, the license resource request carries authentication identification information, and the license gateway device 20 further stores at least one blacklist corresponding to the authentication identification information, where the blacklist includes first standard authentication information of the license resource; the license gateway device 20 is specifically configured to:
if at least one target blacklist corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with first standard authentication information in the at least one target blacklist;
and if the authentication information is not matched with the first standard authentication information in each target blacklist, determining that the authentication information is legal.
Further, in the license resource access system provided in the embodiment of the present application, the license resource request carries authentication identification information, a white list corresponding to the authentication identification information is stored in the license gateway device 20, and the white list includes second standard authentication information of the license resource; the license gateway device 20 is specifically configured to:
if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
Further, in the license resource access system provided in the embodiment of the present application, when there are a plurality of white lists, the license gateway device 20 further stores level information of the white lists; the license gateway device 20 is specifically configured to:
if a plurality of target white lists corresponding to the authentication identification information in the license resource request are detected, selecting a target white list with the highest priority from the plurality of target white lists according to the level information of the plurality of target white lists; wherein, the higher the level information is, the higher the priority is;
and comparing the authentication information with second standard authentication information in a target white list with the highest priority.
Further, in the license resource access system provided in the embodiment of the present application, the priority of the blacklist is higher than the priority of the whitelist; the license gateway device 20 is specifically configured to:
if a target blacklist and a target white list corresponding to the authentication identification information in the license resource request are detected, comparing the authentication information with first standard authentication information in the target blacklist;
if the authentication information is not matched with the first standard authentication information in each target blacklist, comparing the authentication information with second standard authentication information in the target whitelist;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
Further, the license resource access system provided in the embodiment of the present application includes a license gateway device cluster, where the license gateway device cluster includes a plurality of license gateway devices 20, and an actual address of each of the plurality of license gateway devices 20 corresponds to one virtual address; the terminal device 10 can access the plurality of license gateway devices 20 through the virtual address;
the plurality of license gateway devices 20 share the file storage system, and when the main license gateway device fails, the backup license gateway device switches to a new main license gateway device and processes a license resource request from the terminal device 10 based on the file storage system.
In the embodiment of the present application, the license gateway device 20 adopts a server cluster manner to ensure high availability of the license gateway device; specifically, a plurality of servers are started, and a license gateway module is installed on each server to obtain a plurality of license gateway devices 20, so as to form a license gateway device cluster (i.e., a server cluster), so that the license gateway devices 20 in the license gateway device cluster are mutually backup, that is, when one license gateway device 20 fails, other license gateway devices 20 can continue to provide a license resource application service for the terminal device 10 of the user.
According to the license resource access system provided by the embodiment of the application, the terminal equipment can request license resources required by an application module to the license gateway equipment through the address system of the license gateway equipment configured in the system on the premise that a license agent or a management program is not installed, the license gateway equipment uniformly schedules the license resources, the problem that the installed license management program on the terminal equipment is easy to conflict with other software is solved, and the installation, maintenance and upgrading costs of the license management program are saved. Meanwhile, the terminal equipment applies for the required license resources through the unique license gateway equipment address, the license gateway equipment distributes the license resources required by the application module in real time according to the preset resource control strategy, and the terminal equipment does not need to acquire the address of the license server, so that the access security of the license server is ensured.
The device corresponding to the license resource access method provided by the embodiment of the application can be specific hardware on the device, or a program or firmware installed on the device, and the like. The device provided by the embodiment of the present application has the same implementation principle and technical effect as the foregoing method embodiments, and for the sake of brief description, reference may be made to the corresponding contents in the foregoing method embodiments where no part of the device embodiments is mentioned. It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the foregoing systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In the embodiments provided in the present application, it should be understood that the disclosed apparatus and method may be implemented in other ways. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units is only one logical division, and there may be other divisions when actually implemented, and for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection of devices or units through some communication interfaces, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments provided in the present application may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit.
The functions, if implemented in the form of program functional units and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present application or portions thereof that substantially contribute to the prior art may be embodied in the form of a program product stored in a storage medium and including instructions for causing a computer device (which may be a personal computer, a server, or a network device) to perform all or part of the steps of the method according to the embodiments of the present application. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus once an item is defined in one figure, it need not be further defined and explained in subsequent figures, and moreover, the terms "first", "second", "third", etc. are used merely to distinguish one description from another and are not to be construed as indicating or implying relative importance.
Finally, it should be noted that: the above-mentioned embodiments are only specific embodiments of the present application, and are used for illustrating the technical solutions of the present application, but not limiting the same, and the scope of the present application is not limited thereto, and although the present application is described in detail with reference to the foregoing embodiments, those skilled in the art should understand that: any person skilled in the art can modify or easily conceive the technical solutions described in the foregoing embodiments or equivalent substitutes for some technical features within the technical scope disclosed in the present application; such modifications, changes or substitutions do not depart from the spirit and scope of the present disclosure, which should be construed in light of the above teachings. Are intended to be covered by the scope of the present application. Therefore, the protection scope of the present application shall be subject to the protection scope of the claims.
Claims (8)
1. A license resource access method is applied to a terminal device and a license gateway device, wherein the system environment variable of the terminal device is configured with the address of the license gateway device; the method comprises the following steps:
after receiving an application module starting instruction, the terminal equipment sends a license resource request corresponding to the application module to license gateway equipment according to the address of the license gateway equipment; the license resource request carries authentication information and description information of the license resources required by the application module; the description information includes the type, version and number of license resources that the user wants to request;
after receiving the license resource request, if the license gateway device detects that the authentication information in the license resource request is legal, selecting a target license server from at least one license server which can currently provide the license resources required by the application module described by the description information according to a preset resource scheduling policy, and forwarding the license resource request to the target license server;
after receiving the license resource returned by the target license server based on the license resource request, the license gateway device sends the license resource to the terminal device;
the license resource request carries authentication identification information, the license gateway equipment further stores at least one blacklist corresponding to the authentication identification information, and the blacklist comprises first standard authentication information of license resources; the method for detecting that the authentication information in the license resource request is legal by the license gateway device comprises the following steps:
if at least one target blacklist corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with first standard authentication information in the at least one target blacklist;
if the authentication information is not matched with the first standard authentication information in each target blacklist, determining that the authentication information is legal;
the blacklist comprises a plurality of blacklists of different levels, the levels comprising a system level, a vendor level and a license service level, the system level acting on license resource requests of all applications or devices, the vendor level acting on all license resource requests of target applications or target device vendors, the license service level acting on target license services; the authentication identification information includes: user information, terminal device address, and license vendor information.
2. The method according to claim 1, wherein the license resource request carries authentication identification information, the license gateway device stores a white list corresponding to the authentication identification information, and the white list includes second standard authentication information of the license resource; the method for detecting that the authentication information in the license resource request is legal by the license gateway device comprises the following steps:
if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
3. The method according to claim 2, wherein when there are a plurality of white lists, the license gateway device further stores therein level information of the white lists;
if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list, including:
if a plurality of target white lists corresponding to the authentication identification information in the license resource request are detected, selecting a target white list with the highest priority from the plurality of target white lists according to the level information of the plurality of target white lists; wherein, the higher the level information is, the higher the priority is;
and comparing the authentication information with second standard authentication information in a target white list with the highest priority.
4. The license resource access method of claim 2, wherein the blacklist is higher in priority than the whitelist; the method for detecting that the authentication information in the license resource request is legal by the license gateway device further comprises the following steps:
if a target blacklist and a target white list corresponding to the authentication identification information in the license resource request are detected, comparing the authentication information with first standard authentication information in the target blacklist;
if the authentication information is not matched with the first standard authentication information in each target blacklist, comparing the authentication information with second standard authentication information in the target whitelist;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
5. A license resource access system, comprising: the system comprises terminal equipment, license gateway equipment and a license server; the system environment variable of the terminal equipment is configured with the address of the license gateway equipment;
the terminal device is used for sending a license resource request corresponding to the application module to the license gateway device according to the address of the license gateway device after receiving an application module starting instruction; the license resource request carries authentication information and description information of the license resources required by the application module; the description information includes the type, version and number of license resources that the user wants to request;
the license gateway device is configured to, after receiving the license resource request, select a target license server from at least one license server that can currently provide the license resource required by the application module described by the description information according to a preset resource scheduling policy if it is detected that authentication information in the license resource request is valid, and forward the license resource request to the target license server;
the license server is used for sending license resources to the license gateway equipment after receiving the license resource request;
the license gateway device is further configured to send the license resource to the terminal device after receiving the license resource;
the license resource request carries authentication identification information, the license gateway equipment further stores at least one blacklist corresponding to the authentication identification information, and the blacklist comprises first standard authentication information of license resources; the license gateway device is specifically configured to:
if at least one target blacklist corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with first standard authentication information in the at least one target blacklist;
if the authentication information is not matched with the first standard authentication information in each target blacklist, determining that the authentication information is legal;
the blacklist comprises a plurality of blacklists of different levels, the levels comprising a system level, a vendor level and a license service level, the system level acting on license resource requests of all applications or devices, the vendor level acting on all license resource requests of target applications or target device vendors, the license service level acting on target license services; the authentication identification information includes: user information, terminal device address, and license vendor information.
6. The system according to claim 5, wherein the license resource request carries authentication identification information, the license gateway device stores therein a white list corresponding to the authentication identification information, and the white list includes second standard authentication information of the license resource; the license gateway device is specifically configured to:
if a target white list corresponding to the authentication identification information in the license resource request is detected, comparing the authentication information with second standard authentication information in the target white list;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
7. The license resource access system of claim 6, wherein the blacklist is prioritized over the whitelist; the license gateway device is specifically configured to:
if a target blacklist and a target white list corresponding to the authentication identification information in the license resource request are detected, comparing the authentication information with first standard authentication information in the target blacklist;
if the authentication information is not matched with the first standard authentication information in each target blacklist, comparing the authentication information with second standard authentication information in the target whitelist;
and if the authentication information is matched with the second standard authentication information, determining that the authentication information is legal.
8. The license resource access system according to any one of claims 5 to 7, comprising a cluster of license gateway devices, wherein the cluster of license gateway devices comprises a plurality of license gateway devices, and the real addresses of the plurality of license gateway devices are mapped to one virtual address; the terminal equipment can access a plurality of license gateway equipment through the virtual address;
and the plurality of license gateway devices share the file storage system, when the main license gateway device fails, the standby license gateway device is switched to a new main license gateway device, and the license resource request from the terminal device is processed based on the file storage system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810860276.5A CN109033758B (en) | 2018-08-01 | 2018-08-01 | License resource access method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810860276.5A CN109033758B (en) | 2018-08-01 | 2018-08-01 | License resource access method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109033758A CN109033758A (en) | 2018-12-18 |
| CN109033758B true CN109033758B (en) | 2020-04-21 |
Family
ID=64648230
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810860276.5A Active CN109033758B (en) | 2018-08-01 | 2018-08-01 | License resource access method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109033758B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113127809A (en) * | 2019-12-30 | 2021-07-16 | 中兴通讯股份有限公司 | Product license management method and system |
| CN115146252B (en) * | 2022-09-05 | 2023-02-21 | 深圳高灯计算机科技有限公司 | Authorization authentication method, system, computer device and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103109510A (en) * | 2012-10-16 | 2013-05-15 | 华为技术有限公司 | Resource safety access method and device |
| CN103561006A (en) * | 2013-10-24 | 2014-02-05 | 北京奇虎科技有限公司 | Application authentication method and device and application authentication server based on Android |
| CN105208042A (en) * | 2015-10-15 | 2015-12-30 | 黄云鸿 | Resource safety access method and system |
| CN105491062A (en) * | 2015-12-30 | 2016-04-13 | 北京神州绿盟信息安全科技股份有限公司 | Client software protection method and device, and client |
| CN108206821A (en) * | 2016-12-20 | 2018-06-26 | 航天信息股份有限公司 | A kind of identity authentication method and system |
-
2018
- 2018-08-01 CN CN201810860276.5A patent/CN109033758B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103109510A (en) * | 2012-10-16 | 2013-05-15 | 华为技术有限公司 | Resource safety access method and device |
| CN103561006A (en) * | 2013-10-24 | 2014-02-05 | 北京奇虎科技有限公司 | Application authentication method and device and application authentication server based on Android |
| CN105208042A (en) * | 2015-10-15 | 2015-12-30 | 黄云鸿 | Resource safety access method and system |
| CN105491062A (en) * | 2015-12-30 | 2016-04-13 | 北京神州绿盟信息安全科技股份有限公司 | Client software protection method and device, and client |
| CN108206821A (en) * | 2016-12-20 | 2018-06-26 | 航天信息股份有限公司 | A kind of identity authentication method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109033758A (en) | 2018-12-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20220222593A1 (en) | Portable network interfaces for authentication and license enforcement | |
| EP3675418B1 (en) | Issuance of service configuration file | |
| US10691839B2 (en) | Method, apparatus, and system for manageability and secure routing and endpoint access | |
| US11245576B2 (en) | Blockchain-based configuration profile provisioning system | |
| CN107113300B (en) | Multi-faceted computing instance identity | |
| EP2585970B1 (en) | Online service access controls using scale out directory features | |
| JP5747981B2 (en) | System and method for remote maintenance of multiple clients in an electronic network using virtual machines | |
| US20070027815A1 (en) | Systems and methods for centralized subscription and license management in a small networking environment | |
| US20150134485A1 (en) | Cloud service broker apparatus and method for providing cloud service using the same | |
| US20070294376A1 (en) | Method, apparatus and program product for software provisioning | |
| EP3175381B1 (en) | Method and system for providing a virtual asset perimeter | |
| US20220078209A1 (en) | Enhanced trusted application manager utilizing intelligence from a secure access server edge (sase) | |
| US20080141333A1 (en) | Method and system for object-based multi-level security in a service oriented architecture | |
| CN110855709A (en) | Access control method, device, equipment and medium for security access gateway | |
| US11165761B2 (en) | Methods, devices, and computer program products for service security protection | |
| CN109033758B (en) | License resource access method and system | |
| US20200053051A1 (en) | Application signature authorization | |
| US8332642B2 (en) | Monitor portal, monitor system, terminal and computer readable medium thereof | |
| CN112468476B (en) | Equipment management system and method for different types of terminals to access application | |
| KR101672962B1 (en) | Adaptive device software management system and management method of device software | |
| WO2023024538A1 (en) | Method, apparatus and system for protecting application | |
| US11411813B2 (en) | Single user device staging | |
| EP3417596A1 (en) | Enforcing label-based rules on a per-user basis in a distributed network management system | |
| CN114710302A (en) | Internet access control method and control device thereof | |
| CN116016509B (en) | Private cloud data processing method, device, equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A license resource access method and system Effective date of registration: 20210924 Granted publication date: 20200421 Pledgee: Zhongguancun Beijing technology financing Company limited by guarantee Pledgor: BEIJING JH INNOVATION SOFTWARE Co.,Ltd. Registration number: Y2021990000870 |
|
| PC01 | Cancellation of the registration of the contract for pledge of patent right | ||
| PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20221014 Granted publication date: 20200421 Pledgee: Zhongguancun Beijing technology financing Company limited by guarantee Pledgor: BEIJING JH INNOVATION SOFTWARE CO.,LTD. Registration number: Y2021990000870 |
|
| PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A Method and System for Accessing License Resources Effective date of registration: 20221020 Granted publication date: 20200421 Pledgee: Haidian Beijing science and technology enterprise financing Company limited by guarantee Pledgor: BEIJING JH INNOVATION SOFTWARE CO.,LTD. Registration number: Y2022110000274 |