CN101854264A - Method for automatically and safely managing client based on SSL protocol - Google Patents
Method for automatically and safely managing client based on SSL protocol Download PDFInfo
- Publication number
- CN101854264A CN101854264A CN 201010215962 CN201010215962A CN101854264A CN 101854264 A CN101854264 A CN 101854264A CN 201010215962 CN201010215962 CN 201010215962 CN 201010215962 A CN201010215962 A CN 201010215962A CN 101854264 A CN101854264 A CN 101854264A
- Authority
- CN
- China
- Prior art keywords
- client
- program
- update module
- ssl vpn
- config update
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
The invention relates to a method for automatically and safely managing a client-side based on an SSL protocol, which comprises the following steps that: customized packaging program is formed by adding an SSL VPN client program in an installation program; automatic upgrading is added and an updating module and a system safety module are configured in the client program; and in SSL VPN equipment, a development program designs and configures the updating module. Consequently, the method for automatically and safely managing the client-side based on the SSL protocol simplifies the installation of the client program, facilitates the configuration and the upgrading of the client program, and improves the security of software use.
Description
Technical field
The present invention relates to computer network and information security technology, relate in particular to a kind of at SSL VPN program at automatic simplification method for managing security that client realized.
Background technology
As a computer program for guaranteeing that network security is widely used now, the product of some SSLVPN owing to need the support of C/S application system, requires to use client-side program in actual applications.And client often at be the personal computer of some.So,, just must be distributed to each client computer by installation procedure earlier, and then install and dispose this product for a network that requires to use the protection of SSL vpn products.And these work need the professional and technical personnel to finish usually.Yet in actual practicality, the user also may be distributed in different zones, under effective support that can't obtain the professional and technical personnel, has increased this program product and has used difficulty.And in the process of upgrading configuration, after having carried out corresponding change in the configuration of SSL VPN equipment, the user client configuration also needs to upgrade, so that reach the requirement that can use the SSL VPN equipment after the renewal.Certainly if manual configuration not only needs in time to notify the terminal use to upgrade configuration, also want the own manual configuration of terminal.Increased the workload of a lot of configuration efforts thus.In addition, if the client-side program of SSL VPN is illegally modified, will there be certain leak in the fail safe of system, influences the safety of whole network.And problem does not hereto now also have concrete measure easily and effectively.
Summary of the invention
In order to solve the technical problem in the above-mentioned practical application; main purpose of the present invention provides and a kind ofly in client SSL VPN program is realized streamlining management and safety protection method, the fail safe that is used for simplifying the installation of client-side program, the configuration that makes things convenient for client-side program and upgrading and recovers to improve the software use by data.
The present invention can be achieved through the following technical solutions:
A kind of to SSL VPN program client realized automatic installation configuration with upgrade the method for recovering, it is characterized in that: comprise the steps:
1, in SSL vpn client's installation procedure, increases by customization packing program and an auto-update and a config update module;
2, in SSL VPN equipment end one programming and config update module are set, the keeper is according to the configuration of SSLVPN equipment and network, do not require that by one of programming and config update module customization client carries out the easy installation procedure of any configuration and operation, and uniform packing is issued client; The customization packing program of client receives this easy installation procedure;
3, after the operator of client clicks easy installation procedure and login system, auto-update in the installation program of client and config update module regularly and programming and config update module in the SSL VPN equipment carry out communication, if be checked through any renewal, auto-update in the client-side program and config update module will be utilized the SSL encrypted tunnel, obtain renewal from server end, automatic update system.
The principal character of the inventive method is: the customization packing program that has increased SSL VPN client-side program in installation procedure; Auto-update and config update module and system safety module in client-side program, have been increased; In SSL VPN equipment end, development sequence design and config update module, the client operation personnel are by the configuration of customization packing program receiving management person according to SSL VPN equipment and network, the client that do not require of customization is carried out the easy installation procedure of any configuration and operation and is installed, behind operating personnel's simple installation installation procedure and the login system, auto-update in the installation program of client and config update module regularly and programming and config update module in the SSL VPN equipment carry out communication, if be checked through any renewal, auto-update in the client-side program and config update module will obtain renewal from server end, automatic update system.Perhaps the system safety module in the installation program of client automatically with SSL VPN equipment in programming and config update module carry out communication, by checking and contrast the digital digest of active client program, determine whether to be distorted; If distorted, then upgraded automatically.
The inventive method is installed with existing SSL VPN and is compared with collocation method, and its beneficial effect is: this method has made things convenient for the distribution of keeper to SSL vpn client's program, has simplified the installment work of terminal use in SSL vpn client's program.And, the configuration and the upgrading of client-side program have been made things convenient for owing to adopt information transparency and automatic update mechanism.In addition, for the illegal modifications of SSL VPN client-side program, by communicating by letter of its security module and SSL VPN equipment, whether correction data is distorted, and realizes automatic recovery, has guaranteed the fail safe in the program running in proper order.
Description of drawings:
Fig. 1 is the employed system diagram of the inventive method.
Embodiment
For technological means, creation characteristic that the present invention is realized, reach purpose and effect is easy to understand, below in conjunction with embodiment, further set forth the present invention.
A kind of method of automatic safe management of the client based on ssl protocol, it at first increases by customization packing program and auto-update and a config update module and a system safety module in SSL VPN installation program of client; And one programming and config update module are set in SSL VPN equipment end.
The keeper is according to the configuration of SSL VPN equipment and network, do not require that by programming and one of config update module customization client carries out the easy installation procedure of any configuration and operation, and uniform packing issued client; The customization packing program of client receives this easy installation procedure; As for the keeper how by programming and one of config update module customization do not require client carry out any configuration and operation easy installation procedure this to those skilled in the art, also need not just can realize by creative work, not do detailed description at this.
After the operator of client clicks easy installation procedure and login system, auto-update in the installation program of client and config update module regularly and programming and config update module in the SSL VPN equipment carry out communication, if be checked through any renewal, auto-update in the client-side program and config update module will obtain renewal from server end, automatic update system.
In addition behind operator's login system of client, system safety module in the installation program of client automatically and programming and config update module in the SSL VPN equipment carry out communication, by checking and contrast the digital digest of active client program, determine whether to be distorted; If distorted, then upgraded automatically.
Claims (1)
1. method based on the management of the automatic safe of the client of ssl protocol is characterized in that:
1) in SSL VPN installation program of client, increases by customization packing program and an auto-update and a config update module;
2) in SSL VPN equipment end one programming and config update module are set, the keeper is according to the configuration of SSLVPN equipment and network, do not require that by one of programming and config update module customization client carries out the easy installation procedure of any configuration and operation, and uniform packing is issued client; The customization packing program of client receives this easy installation procedure;
3) after the operator of client clicks easy installation procedure and login system, auto-update in the installation program of client and config update module regularly and programming and config update module in the SSL VPN equipment carry out communication, if be checked through any renewal, auto-update in the client-side program and config update module will obtain renewal from server end, automatic update system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010215962 CN101854264A (en) | 2010-07-02 | 2010-07-02 | Method for automatically and safely managing client based on SSL protocol |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010215962 CN101854264A (en) | 2010-07-02 | 2010-07-02 | Method for automatically and safely managing client based on SSL protocol |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101854264A true CN101854264A (en) | 2010-10-06 |
Family
ID=42805542
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 201010215962 Pending CN101854264A (en) | 2010-07-02 | 2010-07-02 | Method for automatically and safely managing client based on SSL protocol |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101854264A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107026830A (en) * | 2016-02-02 | 2017-08-08 | 上海格尔软件股份有限公司 | The safety method that a kind of application program is upgraded automatically |
| CN107450954A (en) * | 2017-08-02 | 2017-12-08 | 成都虫洞奇迹科技有限公司 | A kind of user's cloud terminal staging method based on cloud desktop |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101090313A (en) * | 2006-06-13 | 2007-12-19 | 上海海加网络科技有限公司 | Customer end program reduced management and safety protection method |
-
2010
- 2010-07-02 CN CN 201010215962 patent/CN101854264A/en active Pending
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101090313A (en) * | 2006-06-13 | 2007-12-19 | 上海海加网络科技有限公司 | Customer end program reduced management and safety protection method |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107026830A (en) * | 2016-02-02 | 2017-08-08 | 上海格尔软件股份有限公司 | The safety method that a kind of application program is upgraded automatically |
| CN107450954A (en) * | 2017-08-02 | 2017-12-08 | 成都虫洞奇迹科技有限公司 | A kind of user's cloud terminal staging method based on cloud desktop |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9948677B2 (en) | System and method for secure synchronization of data across multiple computing devices | |
| JP5096680B2 (en) | Issuing firmware component status and updating firmware components | |
| CN109787774B (en) | Upgrade downloading method and device based on digital signature verification, server and terminal | |
| EP2628125B1 (en) | Method and apparatus for downloading drm module | |
| US20090287936A1 (en) | Managing passwords used when detecting information on configuration items disposed on a network | |
| CN102857520B (en) | Telnet protocol security access system and method for character terminal | |
| CN101340278A (en) | License management system and method | |
| CN104282093A (en) | Tax-control equipment collective invoicing system and method | |
| CN104486355A (en) | Method and device for preventing malicious manipulation of codes | |
| US20140208114A1 (en) | System and method for massive controlled and secured update of devices firmware | |
| CN102622705A (en) | Terminal management system for automatic management of POS terminal upgrading and upgrading management method thereof | |
| CN102945337A (en) | On-line self-help management method and system of Subversion user password | |
| CA2891583A1 (en) | Reusable license activation key | |
| CN101090313A (en) | Customer end program reduced management and safety protection method | |
| CN104268156A (en) | Website management system and method | |
| CN102236752B (en) | Trustiness measuring method for installing and upgrading software | |
| CN104702575A (en) | Account management method, management platform and account management system | |
| CN104135531A (en) | Method and device of upgrading Web software | |
| CN111414174A (en) | Server firmware upgrading method and device and related equipment | |
| CN101854264A (en) | Method for automatically and safely managing client based on SSL protocol | |
| KR101233934B1 (en) | Integrated Intelligent Security Management System and Method | |
| CN109800009A (en) | The hot update method and system of mixed type App functional module | |
| CN111324912A (en) | File checking method, system and computer readable storage medium | |
| CN115589316B (en) | Data encryption transmission method and device, electronic equipment and storage medium | |
| CN103218553B (en) | A kind of authorization method based on credible platform module and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| DD01 | Delivery of document by public notice |
Addressee: Beijing Haijia Network Technology Co., Ltd. Li Yimeng Document name: Notification that Application Deemed to be Withdrawn |
|
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20101006 |