CN101950335A - System and method for realizing secure connection of network hard disk and external equipment - Google Patents
System and method for realizing secure connection of network hard disk and external equipment Download PDFInfo
- Publication number
- CN101950335A CN101950335A CN2010102544878A CN201010254487A CN101950335A CN 101950335 A CN101950335 A CN 101950335A CN 2010102544878 A CN2010102544878 A CN 2010102544878A CN 201010254487 A CN201010254487 A CN 201010254487A CN 101950335 A CN101950335 A CN 101950335A
- Authority
- CN
- China
- Prior art keywords
- external equipment
- control unit
- file
- user
- network hard
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention discloses a system and method for realizing the secure connection of a network hard disk and external equipment. The system comprises a central control unit, a port detection unit, a manipulation monitoring unit, a process control unit and an equipment file mapping unit. When the external equipment is connected with the network hard disk, the port detection unit feeds information back to the central control unit, the central control unit controls the equipment file mapping unit to read file information of the external equipment, the manipulation monitoring unit records the manipulation of a user and transmits to the process control unit when the user manipulates a file, the central control unit manipulates the file correspondingly according to the user instruction, the process control unit monitors all file processes in the external equipment in the procedure, only the processes matched with the manipulation of the user are allowed to execute, and other abnormal processes unmatched with the manipulation of user are intercepted. The invention can expand the security performance of the network hard disk and avoid the infection of the network hard disk from external virus files.
Description
Technical field
The present invention relates to digital home network seagate field, relate in particular to a kind of network hard disc and external equipment of making and carry out the system and method that safety is connected.
Background technology
Be born till now from digital home in 1994, through the development in surplus 10 years, every technology reached its maturity, and the Related product of digital home also emerges in an endless stream.Therefore, how to make things convenient between the distinct device, intelligence and safe interconnecting become the problem that people pay close attention to gradually, and this wherein, the interests that have influence on user's every aspect that safety problem is practical especially.
The digital home network hard disk is development in recent years new technology rapidly, and it is with its high power capacity, and is removable, and advantages such as portability more and more are subject to people's attention and use.Network hard disc is as the mobile storage medium of data, and quilt objectively requirement can be connected with more equipment, as TV, and computer, mobile device etc.And owing to present virus not only has been confined to computer as platform, so, with the probability that has also increased network hard disc infective virus and wooden horse in the process that numerous external equipment is connected undoubtedly to a great extent, so, when the gas defence scarce capacity of network hard disc, can bring a lot of potential trouble and inconvenience to the user.
Summary of the invention
The objective of the invention is to overcome the deficiencies in the prior art, provide a kind of network hard disc and external equipment of making of the gas defence ability that can greatly improve network hard disc to carry out the system and method that safety is connected, make being connected that the digital home network hard disk can be safer with the external equipment in more heterogeneous pass, guarantee its portability more fully, reach the purpose that ensures user benefit.
Purpose of the present invention is achieved by the following technical programs:
A kind of network hard disc and external equipment of making carries out the system that safety is connected, comprise central control unit, port detecting unit, operation supervise and control unit, process control module, device file map unit, wherein, central control unit links to each other with port detecting unit, operation supervise and control unit, process control module, device file map unit respectively, and the operation supervise and control unit links to each other with the process control module.
Central control unit is the logic maincenter of total system, be used to call and control port detecting unit, operation supervise and control unit, process control module and device file map unit, and the file in the external equipment operated, and the operation of file is specially, according to the user operation behavior that mapped file carries out is operated accordingly to corresponding file in the external equipment.
The device file map unit is used to read the fileinfo in the external equipment and forms corresponding mapped file, the user comes down to operation to mapped file to the operation of file in the external equipment, according to user's operation behavior corresponding file in the external equipment is carried out corresponding operating by central control unit again, indirect for user's complete operation purpose.
The port detecting unit is used to detect the connection status of external equipment and network hard disc, when device damage that network hard disc connected or undesired connection, the port detecting unit can't feedback information to central control unit, and under external equipment and state that network hard disc normally is connected, just feed back normal information to central control unit.
The operation supervise and control unit is used for the operation behavior that recording user carries out mapped file, simultaneously, the instant process that the is sent to control module of operation behavior that the user is carried out mapped file also, in addition, the up-to-date operation note of an operation supervise and control unit recording user, Ji Lu operation behavior will not keep before, and the operation behavior that is sent to the process control module with assurance is the current or the most approaching current operation of user, and then the tightness and the instantaneity of the process of assurance control module.
The process control module is used for the file process in the external equipment is monitored, in this process, only allow to carry out in the external equipment and the file process of active user's operation behavior coupling, be connected to external equipment from external equipment and withdraw from connection status, the process control module all carries out omnidistance monitoring, in the monitor procedure of process control module, as current no Any user operation, then the process control module will be forbidden the file process in all external equipments, to improve security effectiveness.
Purpose of the present invention also is achieved by another technical scheme:
A kind of network hard disc and external equipment of making carries out the method that safety is connected, and may further comprise the steps:
1) external equipment is connected on the network hard disc;
2) the port detecting unit detects the connection status of external equipment, normally then feeds back normal information to central control unit as connection status;
3) central control unit adjusting device File mapping unit reads the fileinfo in the external equipment and forms complete mapped file;
4) the process control module begins to monitor all file processes in the external equipment, the file process operation of the operation behavior coupling that a permission and user are current, and the remaining paper process is all forbidden;
5) user operates certain mapped file, and operation supervise and control unit record user replaces it the operation behavior of preceding record to the operation behavior of this mapped file;
6) the operation supervise and control unit is with the instant process that the is sent to control module of user's operation behavior of record;
7) central control unit is operated corresponding file in the external equipment the operation behavior of mapped file according to the user who writes down in the process control module, finishes the purpose that " indirectly " carries out file operation for the user;
8) continue to operate the file in the external equipment then to return step 4 as the user, otherwise flow process finishes.
The present invention has following beneficial effect:
(1) provide a kind of safer system that is connected with external equipment of network hard disc that can allow, reduce the digital home network hard disk with the connection procedure of numerous relevant devices in poison or the probability of middle wooden horse, make it have more security, have great convenience for the user;
(2) system sets up mapped file and is equivalent to be provided with protective seam between network hard disc and external equipment, substitutes the family by system log (SYSLOG) user's operation behavior simultaneously the file in the external equipment is operated, from having improved security to a great extent;
(3) system monitors and controls all processes in the external equipment, and only allow to move the file process that is complementary with the current operation behavior of user, can forbid being connected with network hard disc the virus and the wooden horse of spontaneous operation in back and propagation, the file that also can avoid the user that wooden horse has been infected in binding makes the wooden horse that is triggered infect network hard disc when operating;
(4) system possesses good expansion and generalization, can apply in the middle of numerous digital home's electronic equipments, and as computer, mobile phone etc. have great development potentiality.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art, to do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art below, apparently, accompanying drawing in describing below only is some embodiments of the present invention, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 is an organization chart of the present invention;
Fig. 2 is the workflow diagram of the present invention when external equipment connects.
Embodiment
As shown in Figure 1, a kind of network hard disc and external equipment of making carries out the system that safety is connected, comprise central control unit, port detecting unit, operation supervise and control unit, process control module, device file map unit, wherein, central control unit links to each other with port detecting unit, operation supervise and control unit, process control module, device file map unit respectively, in addition, the operation supervise and control unit also links to each other with the process control module.
Central control unit is the logic maincenter of total system; be used to call and the control port detecting unit; the operation supervise and control unit; process control module and device file map unit; and the file in the external equipment operated; and the operation of file is specially; according to the user operation behavior that mapped file carries out is operated accordingly to corresponding file in the external equipment; this is equivalent to be provided with one " protective seam " between network hard disc and external equipment; the user directly carries out operational transition for mapped file is operated by script to the file in the external equipment; both are very nearly the same concerning the user operates sense organ intuitively; but truly had the variation of matter in internal system; replace the user that the file in the external equipment is operated in inside by system; make " protective seam " become " buffer zone " of file in user and the external equipment; also can regard " isolation strip " between virus potential in the external equipment and wooden horse and network hard disc as; can can also reduce the probability that mistake occurs simultaneously from improving the security of digital home network hard disk to a great extent undoubtedly.
Described device file map unit is used to read the fileinfo in the external equipment and forms corresponding mapped file, the user comes down to operation to mapped file to the operation of file in the external equipment, according to user's operation behavior corresponding file in the external equipment is carried out corresponding operating by central control unit again, indirect for user's complete operation purpose, simultaneously, the device file map unit is not to connect back all fileinfo and form corresponding mapped file in regard to disposable fetch equipment at external equipment, but can seek truth from facts, take the more method of intuitive.
The port detecting unit is used to detect the connection status of external equipment and network hard disc, when external equipment that network hard disc connected damages or during undesired connection, the port detecting unit can't feedback information to central control unit, and under external equipment and state that network hard disc normally is connected, just feed back normal information to central control unit, thereby avoided the meaningless operation of system, improved efficient.
Described operation supervise and control unit is used for the operation behavior that recording user carries out mapped file, simultaneously, the instant process that the is sent to control module of operation behavior that the user is carried out mapped file also, its operation behavior that specifically refers to promptly refers to " opening ", " duplicate ", " stickup ", " shearing ", " click right ", the all operations that users such as " renames " can carry out file, and when invalid operation or faulty operation appear in the user, the operation supervise and control unit still writes down and transmits, but because there are normal reaction and response in the system of network hard disc itself at invalid operation or faulty operation, so also not having the operation behavior of file process and process control module reception is complementary, so to user's operation behavior no matter to mistake all loyal carry out record, can't cause the leak of system.In addition, the up-to-date operation note of an operation supervise and control unit recording user, Ji Lu operation behavior will not keep before, and the operation behavior that is sent to the process control module with assurance is the current or the most approaching current operation of user, and then the tightness and the instantaneity of the process of assurance control module.
The process control module is used for the file process in the external equipment is monitored, the process control module only allows to carry out the file process of mating with active user's operation behavior in the external equipment, be connected to external equipment from external equipment and withdraw from connection status, the process control module all carries out omnidistance monitoring, in the monitor procedure of process control module, as current no Any user operation, then the process control module will be forbidden the file process in all external equipments, to improve security effectiveness.
As shown in Figure 2, a kind of network hard disc and external equipment of making carries out the method that safety is connected, and may further comprise the steps:
1) external equipment connects network hard disc;
2) port detecting unit feedback information is to central control unit;
3) central control unit invocation facility File mapping unit reads the fileinfo in the external equipment and forms mapped file;
4) the process control module begins to monitor the file process in the external equipment;
5) user operates certain mapped file, and operation supervise and control unit record user is to the operation behavior of this mapped file;
6) the operation supervise and control unit is sent to the process control module with user's operation behavior of record;
7) central control unit is operated corresponding file in the external equipment the operation behavior of mapped file according to the user who writes down in the process control module;
8) proceed operation as the user and then return step 4, otherwise flow process finishes.
In the operational process of reality, the device file map unit reads and what shine upon is the ground floor of files of peripheral equipment system, if promptly run into the file system ground floor file is arranged, then only read information such as this document folder title, and do not read and shine upon its internal file information, such measure can be saved the working time of system and be raised the efficiency, because if this document is not pressed from both sides the process that still reads under the situation of not carrying out opening operation with mapped file the user, might drag the speed of slow system greatly, drag down efficient.And if the user selects to open this document folder, then by operation supervise and control unit record user's behavior, be sent to the process control module simultaneously, this moment, central control unit carried out opening operation according to the user behavior of record to the folder of this document in the external equipment, then the fileinfo in this document folder was read and be mapped as mapped file.Say intuitively, the required mapping of system, be the user current " see " fileinfo that arrives intuitively, and the principle of human-computer interaction is also satisfied in such setting, also can user friendly to a certain extent operation when improving system effectiveness.
More than a kind ofly to the embodiment of the invention provided make network hard disc and external equipment carry out the system and method that safety is connected to be described in detail, used specific case herein principle of the present invention and embodiment are set forth, the explanation of above embodiment just is used for helping to understand method of the present invention and core concept thereof; Simultaneously, for one of ordinary skill in the art, according to thought of the present invention, the part that all can change in specific embodiments and applications, in sum, this description should not be construed as limitation of the present invention.
Claims (7)
1. one kind makes network hard disc and external equipment carry out the system that safety is connected, and it is characterized in that comprising central control unit, port detecting unit, operation supervise and control unit, process control module, device file map unit:
Described central control unit is used to call and control port detecting unit, operation supervise and control unit, process control module, device file map unit, and the file in the external equipment is operated;
Described device file map unit is used to read the fileinfo in the external equipment and forms corresponding mapped file;
Described port detecting unit is used to detect the connection status of external equipment and network hard disc;
Described operation supervise and control unit is used for the operation behavior that recording user carries out mapped file;
Described process control module is used for the file process in the external equipment is monitored;
Simultaneously, central control unit links to each other with port detecting unit, operation supervise and control unit, process control module, device file map unit respectively, and the operation supervise and control unit links to each other with the process control module.
2. a kind of network hard disc and external equipment of making according to claim 1 carries out the system that is connected of safety, it is characterized in that described central control unit operates corresponding file in the external equipment the operation behavior that mapped file carries out accordingly according to the user.
3. a kind of network hard disc and external equipment of making according to claim 1 carries out the system that safety is connected, and it is characterized in that described operation supervise and control unit carries out the user to mapped file the instant process that the is sent to control module of operation behavior.
4. a kind of network hard disc and external equipment of making according to claim 1 carries out the system that safety is connected, and it is characterized in that described process control module only allows to carry out the file process of mating with active user's operation behavior in the external equipment.
5. a kind of network hard disc and external equipment of making according to claim 1 carries out the system that is connected of safety, it is characterized in that described port detecting unit feeds back normal information to central control unit under external equipment and state that network hard disc normally is connected.
6. one kind makes network hard disc and external equipment carry out the method that safety is connected, and it is characterized in that may further comprise the steps:
1) external equipment connects network hard disc;
2) port detecting unit feedback information is to central control unit;
3) central control unit invocation facility File mapping unit reads the fileinfo in the external equipment and forms mapped file;
4) the process control module begins to monitor the file process in the external equipment;
5) user operates certain mapped file, and operation supervise and control unit record user is to the operation behavior of this mapped file;
6) the operation supervise and control unit is sent to the process control module with user's operation behavior of record;
7) central control unit is operated corresponding file in the external equipment the operation behavior of mapped file according to the user who writes down in the process control module;
8) proceed operation as the user and then return step 4, otherwise flow process finishes.
7. a kind of network hard disc and external equipment of making according to claim 6 carries out the method that safety is connected, it is characterized in that carrying out in the process of multi-pass operations the user in described operation supervise and control unit, the current operation behavior of recording user will not keep the user's of record operation behavior before.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010102544878A CN101950335A (en) | 2010-08-10 | 2010-08-10 | System and method for realizing secure connection of network hard disk and external equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010102544878A CN101950335A (en) | 2010-08-10 | 2010-08-10 | System and method for realizing secure connection of network hard disk and external equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101950335A true CN101950335A (en) | 2011-01-19 |
Family
ID=43453834
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010102544878A Pending CN101950335A (en) | 2010-08-10 | 2010-08-10 | System and method for realizing secure connection of network hard disk and external equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101950335A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102176138A (en) * | 2011-03-01 | 2011-09-07 | 上海奈凯电子科技有限公司 | Hardware port targeted management control method for numerical control system |
| CN104915252A (en) * | 2015-06-15 | 2015-09-16 | 上海斐讯数据通信技术有限公司 | Process port management device and method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101105828A (en) * | 2007-04-29 | 2008-01-16 | 西南石油大学 | U-disc virus prevention interface |
| CN101252585A (en) * | 2007-05-08 | 2008-08-27 | 飞塔信息科技(北京)有限公司 | Method and system for content filtering of data using remote file system access protocol |
| CN101452619A (en) * | 2008-12-30 | 2009-06-10 | 浪潮齐鲁软件产业有限公司 | Method for isolating virus of disk for background system of tax control collecting apparatus |
| CN101534228A (en) * | 2009-04-23 | 2009-09-16 | 广州番禺巨大汽车音响设备有限公司 | Device for facilitating network hard disk to support multi-equipment connection |
-
2010
- 2010-08-10 CN CN2010102544878A patent/CN101950335A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101105828A (en) * | 2007-04-29 | 2008-01-16 | 西南石油大学 | U-disc virus prevention interface |
| CN101252585A (en) * | 2007-05-08 | 2008-08-27 | 飞塔信息科技(北京)有限公司 | Method and system for content filtering of data using remote file system access protocol |
| CN101452619A (en) * | 2008-12-30 | 2009-06-10 | 浪潮齐鲁软件产业有限公司 | Method for isolating virus of disk for background system of tax control collecting apparatus |
| CN101534228A (en) * | 2009-04-23 | 2009-09-16 | 广州番禺巨大汽车音响设备有限公司 | Device for facilitating network hard disk to support multi-equipment connection |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102176138A (en) * | 2011-03-01 | 2011-09-07 | 上海奈凯电子科技有限公司 | Hardware port targeted management control method for numerical control system |
| CN102176138B (en) * | 2011-03-01 | 2013-04-03 | 上海维宏电子科技股份有限公司 | Hardware port targeted management control method for numerical control system |
| CN104915252A (en) * | 2015-06-15 | 2015-09-16 | 上海斐讯数据通信技术有限公司 | Process port management device and method |
| CN104915252B (en) * | 2015-06-15 | 2018-04-06 | 上海斐讯数据通信技术有限公司 | A kind of process port management means and method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104636435B (en) | Cloud terminal records screen method | |
| US20090172705A1 (en) | Apparatus and Method for Preservation of USB Keyboard | |
| CN108153647B (en) | Log processing method and device, terminal equipment and storage medium | |
| CN103995769A (en) | Method for collecting error status information of an electronic device | |
| CN104662517A (en) | Techniques for detecting a security vulnerability | |
| CN103970533A (en) | Method and device for recording captured information on screen | |
| KR101172877B1 (en) | Apparatus and method for preventing information leakage in mobile terminal, and program storing medium for executing the method | |
| WO2022036865A1 (en) | Method and apparatus for automatically capturing log file, and computer device | |
| CN104123495A (en) | Method for neutralizing malicious software blocking computer operation | |
| CN101901171B (en) | Using method of computer data backup and restore software | |
| CN101763294A (en) | Method for looking up and backing up system operation log according to time slots | |
| CN101950335A (en) | System and method for realizing secure connection of network hard disk and external equipment | |
| CN102194079A (en) | File access filtering method | |
| CN104750537A (en) | Test case execution method and device | |
| TWI510957B (en) | Method for protecting document files in real time and apparatus thereof | |
| Zhang et al. | Android platform-based individual privacy information protection system | |
| CN104199621A (en) | Hard disk management system | |
| US9692773B1 (en) | Systems and methods for identifying detection-evasion behaviors of files undergoing malware analyses | |
| US20220253524A1 (en) | Malware Detection System | |
| CN108170576B (en) | Log processing method and device, terminal equipment and storage medium | |
| CN203149581U (en) | USB isolation device | |
| US8819828B1 (en) | Systems and methods for identifying malware threat vectors | |
| US8838548B2 (en) | Performing automated data integrity verification testing for file systems | |
| CN103618884A (en) | Video transmission method, device and tablet computer | |
| US10185465B1 (en) | Techniques for presenting information on a graphical user interface |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20110119 |