CN101515923A - Anti-virus device arranged between computer and network device and anti-virus method - Google Patents
Anti-virus device arranged between computer and network device and anti-virus method Download PDFInfo
- Publication number
- CN101515923A CN101515923A CNA2008100653708A CN200810065370A CN101515923A CN 101515923 A CN101515923 A CN 101515923A CN A2008100653708 A CNA2008100653708 A CN A2008100653708A CN 200810065370 A CN200810065370 A CN 200810065370A CN 101515923 A CN101515923 A CN 101515923A
- Authority
- CN
- China
- Prior art keywords
- virus
- data
- computer
- interface
- network equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Computer And Data Communications (AREA)
Abstract
The invention relates to an anti-virus device arranged between a computer and a network device and an anti-virus method. The anti-virus device (1) temporarily stores data transmitted between the computer and the network device in a data temporary storage region (102) and performs virus filtration operations on the temporarily stored data in the data temporary storage region (102) so as to find out whether the temporarily stored data contain data according with any one virus feature code (2) in the data temporary storage region; and when the temporarily stored data are detected to have a feature according with any one virus feature code (2) therein, the anti-virus device intercepts the temporarily stored data so that the temporarily stored data with the virus feature cannot pass through the anti-virus device (1) and be transmitted to a destination. The anti-virus device (1) is independent from an operating system of the computer and is an independent hardware device, which can continuously perform the virus filtration on the data transmitted between the computer and the network device without interferences even when the operating system has a loophole and is attacked by viruses.
Description
[technical field]
The present invention relates to the Computer Data Security technical field, particularly relate to a kind of anti-virus apparatus and method of being located between the computer and network equipment.
[background technology]
Technical development of computer is advanced by leaps and bounds, computer has become one of essential instrument of people's routine work, but the appearance of computer virus, disturbed the computed work of people, the computer virus of the current overwhelming majority has infectiousness, especially the virus that spreads through the internet can be in very short time infects on the network other computer by network.These have infected viral computer, can bring to the computer user to seriously influence, and the data that the user is stored in the computer can be caused an immeasurable loss to the user by virus damage at any time, are problems extremely to be solved.
[summary of the invention]
Purpose of the present invention is to provide a kind of computer anti-virus device and method, is arranged between the computer and network equipment, and the data that transmit between the computer and network equipment are carried out virus filtration, and computer virus can not be propagated by the network equipment.
The object of the present invention is achieved like this, adopt a kind of like this computer anti-virus device, be arranged between the computer and network equipment, be mainly used in the data that transmit between the detection computations machine and the network equipment and whether contain virus characteristic, it is characterized in that, be provided with in the described anti-virus device (1) and comprise CPU (101), data working area (102), computer terminal interface (103) and network equipment end interface (104), described anti-virus device (1) also stores each virus signature (2), wherein, described CPU (101) is connected with computer (3) by computer terminal interface (103), and be connected with the network equipment (4) by network equipment end interface (104), and, described anti-virus device (1) is by the preset program running, the data that transmit between the computer (3) and the network equipment (4) are temporary in data working area (102), and the temporal data in data working area (102) is carried out virus filtration operate, whether have the data that are consistent with any virus signature (2) wherein to find out temporal data, when finding that temporal data has the feature that wherein any virus signature (2) is consistent, this temporal data is tackled, make this temporal data that has virus characteristic not be sent to the destination by anti-virus device (1), not having in spite of illness, the temporal data of malicious feature then is transferred to the destination in virus filtration operation back by anti-virus device (1).
And, adopt a kind of like this computer anti-virus method, adopt computer anti-virus device as previously described, it is characterized in that described method comprises the steps:
1. between the computer (3) and the network equipment (4), add anti-virus device (1);
2. in anti-virus device (1), store each virus signature (2) in advance;
3. anti-virus device (1) is temporary in data working area (102) with the data that transmit between the computer (3) and the network equipment (4);
4. anti-virus device (1) carries out the virus filtration operation to the temporal data in data working area (102), whether has the data that are consistent with any virus signature (2) wherein to find out temporal data;
5. when anti-virus device (1) finds that temporal data has the feature that wherein any virus signature (2) is consistent, this temporal data is tackled, make this temporal data that has virus characteristic not be sent to the destination by anti-virus device (1), not having in spite of illness, the temporal data of malicious feature then is transferred to the destination in virus filtration operation back by anti-virus device (1).
So just realized purpose of the present invention.
As long as between the computer (3) and the network equipment (4), be provided with anti-virus device of the present invention (1), just can cut off wherein topmost approach of transmitted virus, make virus can't pass through the network equipment (4) and propagate to computer (3).The anti-virus method of interception is filtered in this employing independently hardware to the route of transmission of virus, more effective than the general anti-virus method of software scans internal memory that adopts, because anti-virus device (1) is an independently hardware, so the software that can not occur wiping out drugs is ridden the analogue of misfortune by virus.
[description of drawings]
Fig. 1 is the structural representation key diagram of anti-virus device (1) first embodiment of the present invention;
Fig. 2 is the structural representation key diagram of anti-virus device (1) second embodiment of the present invention;
Fig. 3 is the structural representation key diagram of anti-virus device (1) the 3rd embodiment of the present invention;
Fig. 4 is the structural representation key diagram of anti-virus device (1) the 4th embodiment of the present invention.
Among the figure, the device that identical digitized representation is identical, parts device, accompanying drawing are schematically, in order to formation of the present invention and principal character to be described.
[embodiment]
Below in conjunction with accompanying drawing, computer anti-virus apparatus and method of the present invention are described in further detail.
Consult Fig. 1, Fig. 1 is the structural representation key diagram of anti-virus device (1) first embodiment of the present invention, be provided with in the anti-virus device (1) shown in the figure and comprise CPU (101), data working area (102), computer terminal interface (103) and network equipment end interface (104), described anti-virus device (1) also stores each virus signature (2), wherein, described CPU (101) is connected with computer (3) by computer terminal interface (103), and be connected with the network equipment (4) by network equipment end interface (104), and, described anti-virus device (1) is by the preset program running, the data that transmit between the computer (3) and the network equipment (4) are temporary in data working area (102), and the temporal data in data working area (102) is carried out virus filtration operate, whether have the data that are consistent with any virus signature (2) wherein to find out temporal data, when finding that temporal data has the feature that wherein any virus signature (2) is consistent, this temporal data is tackled, make this temporal data that has virus characteristic not be sent to the destination by anti-virus device (1), not having in spite of illness, the temporal data of malicious feature then is transferred to the destination in virus filtration operation back by anti-virus device (1).
Aspect being provided with, virus signature (2) is to be stored in advance in the anti-virus device (1), anti-virus device (1) can upgrade stored virus signature (2) by different approach, for example anti-virus device (1) can be downloaded the file that comprises virus signature (2) by the anti-virus web site of network connectivity to appointment from anti-virus web site.Aspect anti-virus web site, anti-virus web site can adopt the encryption method of digital certificate etc., with the integrality of the file of guaranteeing to comprise virus signature (2) with do not altered, for example anti-virus web site will comprise the secret key encryption of the file of virus signature (2) with appointment in advance, download this document by anti-virus device (1) then, and the key of this document with correspondence be decrypted, can guarantee that like this this document can not altered by virus or other formulas.
In this manual, the network equipment (4) is the equipment that the confession under directions computer is connected to network, comprises the equipment on disparate networks hub (HUB), router (Router), gateway (Gateway) or the like and so on the network.
Consult Fig. 2, Fig. 2 is the structural representation key diagram of anti-virus device (1) second embodiment of the present invention, compare with first embodiment, difference is that the embodiment of Fig. 2 has set up memory card (5), the embodiment of Fig. 2 is further improvement of the present invention, anti-virus device (1) shown in the figure is provided with memory card interface (105) and the memory card (5) that is connected with this memory card interface (105), and, store each virus signature (2) in the described memory card (5).Compare with the embodiment of Fig. 1, difference is among the embodiment of Fig. 2, virus signature (2) is stored on the memory card (5), be connected with CPU (101) by memory card interface (105) then, so just can change the memory card (5) that stores up-to-date virus signature (2) for anti-virus device (1) at any time, the convenient virus signature (2) that upgrades at any time.The anti-virus web site download that is wired to appointment that for example uses a computer comprises the file of up-to-date virus signature (2) to memory card (5), then this memory card (5) is inserted into the memory card interface (105) of anti-virus device (1), and this file that comprises up-to-date virus signature (2) can be adopted the encryption method of digital certificate etc. in advance by anti-virus web site, this is comprised the secret key encryption of the file of up-to-date virus signature (2) with appointment, by downloaded this document and be stored on the memory card (5), by anti-virus device (1) key of this document on this memory card (5) with correspondence is decrypted again then.
Continue to consult Fig. 1 and Fig. 2, the anti-virus method that anti-virus device (1) illustrated in figures 1 and 2 is adopted may be summarized to be following steps:
1. between the computer (3) and the network equipment (4), add anti-virus device (1);
2. in anti-virus device (1), store each virus signature (2) in advance;
3. anti-virus device (1) is temporary in data working area (102) with the data that transmit between the computer (3) and the network equipment (4);
4. anti-virus device (1) carries out the virus filtration operation to the temporal data in data working area (102), whether has the data that are consistent with any virus signature (2) wherein to find out temporal data;
5. when anti-virus device (1) finds that temporal data has the feature that wherein any virus signature (2) is consistent, this temporal data is tackled, make this temporal data that has virus characteristic not be sent to the destination by anti-virus device (1), not having in spite of illness, the temporal data of malicious feature then is transferred to the destination in virus filtration operation back by anti-virus device (1).
Consult Fig. 3, Fig. 3 is the structural representation key diagram of anti-virus device (1) the 3rd embodiment of the present invention, anti-virus device (1) shown in the figure is to be arranged between the computer (3) and the network equipment (4), and anti-virus device (1) is by wireless mode and computer (3) and the network equipment (4) line.In anti-virus device of the present invention (1), described computer terminal interface (103) can be the interface of Ethernet (Ethernet) network interface or USB interface or WIFI radio network interface or blue bud (Bluetooth) radio network interface or the like and so on.And described network equipment end interface (104) can be the interface of Ethernet (Ethernet) network interface or USB interface or WIFI radio network interface or blue bud (Bluetooth) radio network interface or the like and so on.Continue to consult Fig. 3, in the embodiments of figure 3, wherein with the dotted line of arrow shown be when anti-virus device of the present invention (1) is not set, original data-transmission channel between the computer (3) and the network equipment (4), be to adopt wireless communication modes such as WiFi or blue bud to transmit data, and the band arrow solid line shown be after being provided with anti-virus device of the present invention (1), data-transmission channel between the computer (3) and the network equipment (4), be to adopt wireless communication modes such as WiFi or blue bud to transmit data equally, but the data that transmit between the computer (3) and the network equipment (4) will be transmitted by anti-virus device (1), by anti-virus device (1) data of these transmission are carried out virus filtration.
Consult Fig. 4, Fig. 4 is the structural representation key diagram of anti-virus device (1) the 4th embodiment of the present invention, compares with the 3rd embodiment, and difference is that the anti-virus device (1) of the embodiment of Fig. 4 is by wired mode and computer (3) line.In the present embodiment, anti-virus device (1) can be incorporated in the computer (3), and anti-virus device (1) is built in the shell of computer (3), all can realize purpose of the present invention well.In addition, of the present inventionly can do multiple change and variation, the various accommodations under the situation that does not break away from spirit of the present invention all can realize purpose of the present invention well, all are to belong to protection scope of the present invention.
Of the present invention further the improvement is to set up suggestion device on anti-virus device (1), when in anti-virus device (1) is found temporal data, having the feature that wherein any virus signature (2) is consistent, send cue by suggestion device to the user, the user has just known that from cue virus occurs, just can step up vigilance immediately, find out viral source, avoid computer infected virus.In addition, more can on anti-virus device (1), set up button, comprise: current key and interception key, when in anti-virus device (1) is found temporal data, having the feature that wherein any virus signature (2) is consistent, after the user sent cue, the user can make following operating procedure on anti-virus device (1) by suggestion device:
The user is by after once tackling key, and anti-virus device (1) is tackled this data, makes these data not be sent to the destination by anti-virus device (1);
Or
After the user pressed once current key, anti-virus device (1) allowed these data to be transferred to the destination.
Computer anti-virus apparatus and method of the present invention have below been described in detail, anti-virus device of the present invention (1) is irrelevant with operation system of computer, because anti-virus device (1) is an independently hardware, even operating system starts a leak by virus attack or rides misfortune, anti-virus device (1) still can continue running without interruption, continues the data that transmit between the computer and network equipment are carried out virus filtration.Even computer upgrades or changes operating system software, anti-virus device (1) also need not to do any change, the running of still remaining valid.
Claims (7)
1. computer anti-virus device, be arranged between the computer and network equipment, be mainly used in the data that transmit between the detection computations machine and the network equipment and whether contain virus characteristic, it is characterized in that, be provided with in the described anti-virus device (1) and comprise CPU (101), data working area (102), computer terminal interface (103) and network equipment end interface (104), described anti-virus device (1) also stores each virus signature (2), wherein, described CPU (101) is connected with computer (3) by computer terminal interface (103), and be connected with the network equipment (4) by network equipment end interface (104), and, described anti-virus device (1) is by the preset program running, the data that transmit between the computer (3) and the network equipment (4) are temporary in data working area (102), and the temporal data in data working area (102) is carried out virus filtration operate, whether have the data that are consistent with any virus signature (2) wherein to find out temporal data, when finding that temporal data has the feature that wherein any virus signature (2) is consistent, this temporal data is tackled, make this temporal data that has virus characteristic not be sent to the destination by anti-virus device (1), not having in spite of illness, the temporal data of malicious feature then is transferred to the destination in virus filtration operation back by anti-virus device (1).
2. computer anti-virus device as claimed in claim 1, it is characterized in that described computer terminal interface (103) can be Ethernet (Ethernet) network interface or USB interface or WIFI radio network interface or blue bud (Bluetooth) radio network interface.
3. computer anti-virus device as claimed in claim 1, it is characterized in that described network equipment end interface (104) can be Ethernet (Ethernet) network interface or USB interface or WIFI radio network interface or blue bud (Bluetooth) radio network interface.
4. computer anti-virus device as claimed in claim 1, it is characterized in that, described anti-virus device (1) is provided with memory card interface (105) and the memory card (5) that is connected with this memory card interface (105), and, store each virus signature (2) in the described memory card (5).
5. a computer anti-virus method adopts as each described computer anti-virus device of claim 1 to 4, it is characterized in that described method comprises the steps:
1. between the computer (3) and the network equipment (4), add anti-virus device (1);
2. in anti-virus device (1), store each virus signature (2) in advance;
3. anti-virus device (1) is temporary in data working area (102) with the data that transmit between the computer (3) and the network equipment (4);
4. anti-virus device (1) carries out the virus filtration operation to the temporal data in data working area (102), whether has the data that are consistent with any virus signature (2) wherein to find out temporal data;
5. when anti-virus device (1) finds that temporal data has the feature that wherein any virus signature (2) is consistent, this temporal data is tackled, make this temporal data that has virus characteristic not be sent to the destination by anti-virus device (1), not having in spite of illness, the temporal data of malicious feature then is transferred to the destination in virus filtration operation back by anti-virus device (1).
6. computer anti-virus method as claimed in claim 5 is characterized in that, when having the feature that wherein any virus signature (2) is consistent in described anti-virus device (1) is found temporal data, sends cue to the user.
7. computer anti-virus method as claimed in claim 5, it is characterized in that, described method also comprises the steps, be that anti-virus device (1) is when finding to have in the temporal data feature that wherein any virus signature (2) is consistent, after the user sent cue, the user made following operating procedure on anti-virus device (1):
The user is by after once tackling key, and anti-virus device (1) is tackled this data, makes these data not be sent to the destination by anti-virus device (1);
Or
After the user pressed once current key, anti-virus device (1) allowed these data to be transferred to the destination.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2008100653708A CN101515923A (en) | 2008-02-19 | 2008-02-19 | Anti-virus device arranged between computer and network device and anti-virus method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2008100653708A CN101515923A (en) | 2008-02-19 | 2008-02-19 | Anti-virus device arranged between computer and network device and anti-virus method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101515923A true CN101515923A (en) | 2009-08-26 |
Family
ID=41040219
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2008100653708A Pending CN101515923A (en) | 2008-02-19 | 2008-02-19 | Anti-virus device arranged between computer and network device and anti-virus method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101515923A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011124084A1 (en) * | 2010-04-09 | 2011-10-13 | Pan Yanhui | System and method for multi-user cooperative security protection based on cloud calculation |
| CN105488395A (en) * | 2015-06-04 | 2016-04-13 | 哈尔滨安天科技股份有限公司 | Method and device for performing malicious device detection based on USB communication data |
| CN107547542A (en) * | 2017-08-31 | 2018-01-05 | 四川神琥科技有限公司 | A kind of USB serial communications detection method and equipment |
-
2008
- 2008-02-19 CN CNA2008100653708A patent/CN101515923A/en active Pending
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011124084A1 (en) * | 2010-04-09 | 2011-10-13 | Pan Yanhui | System and method for multi-user cooperative security protection based on cloud calculation |
| CN105488395A (en) * | 2015-06-04 | 2016-04-13 | 哈尔滨安天科技股份有限公司 | Method and device for performing malicious device detection based on USB communication data |
| CN107547542A (en) * | 2017-08-31 | 2018-01-05 | 四川神琥科技有限公司 | A kind of USB serial communications detection method and equipment |
| CN107547542B (en) * | 2017-08-31 | 2021-03-19 | 四川神琥科技有限公司 | USB serial port communication detection method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Touch et al. | The TCP authentication option | |
| EP2575317B1 (en) | Portable security device and methods for maintenance of authentication information | |
| KR200425873Y1 (en) | Virtual private network device having a function of detecting and preventing malignant data | |
| KR100952350B1 (en) | Intelligent network interface controller | |
| EP1564963B1 (en) | System and method for protecting a computing device from computer exploits delivered over a networked environment in a secured communication | |
| KR101042729B1 (en) | System-on-chip and asic based malware detecting apparatus in mobile device | |
| EP2023571A1 (en) | Method and system for wireless communications characterized by IEEE 802.11W and related protocols | |
| US20140282978A1 (en) | Method and apparatus for secure interaction with a computer service provider | |
| US10904760B2 (en) | Data transmission method, apparatus, and device | |
| KR102451237B1 (en) | Security for container networks | |
| US11638149B2 (en) | Instant secure wireless network setup | |
| US8925084B2 (en) | Denial-of-service attack protection | |
| CN101895552B (en) | Security gateway and method thereof for detecting proxy surfing | |
| CN101515923A (en) | Anti-virus device arranged between computer and network device and anti-virus method | |
| Agyemang et al. | Lightweight rogue access point detection algorithm for WiFi-enabled Internet of Things (IoT) devices | |
| KR20100027529A (en) | System and method for preventing wireless lan intrusion | |
| EP2874423B1 (en) | Data transmission method, access point and station | |
| CN116527395A (en) | Network threat detection method, device and storage medium | |
| CN114244610B (en) | File transmission method and device, network security equipment and storage medium | |
| CN101515317A (en) | Anti-virus device between computer and I/O interface of storage medium device and anti-virus method | |
| JP2009260821A (en) | Communication device and communication method | |
| JP2007235853A (en) | Network equipment | |
| Zegzhda et al. | Protection of Wi-Fi network users against rogue access points | |
| JP4418211B2 (en) | Network security maintenance method, connection permission server, and connection permission server program | |
| KR20200044210A (en) | Abnormal behavior packet detector for wireless IoT device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20090826 |