CN101996294A - Remote control system and method for providing user customized certificate and signature - Google Patents

Remote control system and method for providing user customized certificate and signature Download PDF

Info

Publication number
CN101996294A
CN101996294A CN2009101710416A CN200910171041A CN101996294A CN 101996294 A CN101996294 A CN 101996294A CN 2009101710416 A CN2009101710416 A CN 2009101710416A CN 200910171041 A CN200910171041 A CN 200910171041A CN 101996294 A CN101996294 A CN 101996294A
Authority
CN
China
Prior art keywords
user
program
far
computer
signature
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2009101710416A
Other languages
Chinese (zh)
Other versions
CN101996294B (en
Inventor
林生鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Aten International Co Ltd
Original Assignee
Aten International Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Aten International Co Ltd filed Critical Aten International Co Ltd
Priority to CN200910171041.6A priority Critical patent/CN101996294B/en
Publication of CN101996294A publication Critical patent/CN101996294A/en
Application granted granted Critical
Publication of CN101996294B publication Critical patent/CN101996294B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The invention provides a remote control system and method for providing user customized certificate and signature so that a first computer and a second computer control at least one controlled computer through a network. The remote control system comprises a remote control device and a first user terminal program, wherein the remote control device is coupled to a plurality of controlled computers; the first user terminal program is arranged in the first computer to provide a user interface so that a first user carries out certificate combination or signature to a second user terminal program downloaded from the remote control device so as to obtain a third user terminal program, and the first user terminal program can upload the third user terminal program to the remote control device for storage through the network; and the uploaded third user terminal program can be downloaded and used by the second user of the second computer so as to control the remote control device.

Description

Far-end control system and the method for customized voucher of user and signature is provided
Technical field
The present invention is relevant for a kind of far-end control system, particularly about a kind of far-end control system and the method for customized voucher of user and signature is provided.
Background technology
Please refer to Fig. 1, is that general webpage needs the user to use the key diagram of the quick-reading flow sheets of voucher or signature.Signature is the procedure code in the embedded software, uses the instrument of judging security or show the software publishing person's status for the user.Voucher generally be by the reliable third-party institution (for example: the VeriSign) authentication of being issued at publisher signature, to prove that true and this software of this signature is not altered behind signature.Simultaneously, when webpage that user's accessing web page servomechanism is provided, if presenting in the time of need having the authority of controlling to user's computer of webpage just needs this signature or voucher are confirmed more.Can this signature or voucher also be to use the person to allow the webpage servomechanism further carry out tool to user's computer and control one of basis for estimation means of power program more.For example: the Java client program of the Active X client program of company of Microsoft (Microsoft) or liter sun (Sun Microsystems) company.Active X control item is the small programs that is used on the internet, sometimes is called " add ons ".See through and to allow animation, the ActiveX control item can strengthen user's viewing experience, perhaps, can assist the user to handle as in " Microsoft Update " installation " security update " etc. work.The part website needs the user that the ActiveX control item is installed earlier, just can check webpage or carry out some work thereon.When browsing this type of website, whether the Internet Explorer of Microsoft inquiry user earlier will install the ActiveX control item.Unfortunately, the ActiveX control item is similar to any other program, and they may be abused.It may cause the computer can't normal operation, and that collects the user under not obtaining to agree browses custom and personal information, or the user is provided undesired content, shows advertisement as fast.Simultaneously the ActiveX control item may allow that some bad website uses it for malicious intent.
As shown in Figure 1, computer 10 is for the user controls, and Webpage material is to be stored in the webpage servomechanism 20, and both see through network 30 and connect.When the user desired browsing page, at first, step 1: the user controlled computer 10 and sees through network 30 accessing web page servomechanisms 20.Then, as user during to servomechanism 20 accesses such as Active Xclient program or Java client program, because of security reason or servomechanism need be obtained and further control temporary controlling computer 10, step 2: the operating system of computer 10 or web browser can be reminded the user of computer 10, as shown in Figure 2, need voucher or signature, can carry out next step access action.Step 3: the user need confirm, downloads and install voucher.Step 4: carry out access or operation.
And under far-end network type multi-computer switch control system framework (Over-IP KVM system), the far-end actuation means can provide the user to hold program to controlling the computer utilization, controls computer and installs and could see through network after this user's end program and with form web page controlled computer is carried out access and control.Yet these users program of holding may comprise the Active X client program of Microsoft or rise the Java client program of positive company.Similarly, and since user's end program originally be the manufacturer of far-end control system and write, be stated from advance in the far-end actuation means, use for the employed computer access of user, thus voucher (certificate) also be far-end control system manufacturer all.When user's end program need be confirmed voucher or signature, the user can see the warning dialogue square of jumping out as shown in Figure 2, the voucher of required affirmation or signature also are that the manufacturer of far-end control system owns, for the user, and the doubt that may cause some to use.Use own voucher as user's desire, even user's end program is signed with own voucher, then must possess information engineering and relevant knowledge, its program is also remarkable, at present existing be also not to be allowed in the remote side administration system of framework with the network-type multi-computer switch.
Summary of the invention
Fundamental purpose of the present invention is to provide a far-end control system, and the user of far-end control system can use own voucher and utilize this voucher that user's end program of far-end control system is signed in simple and safe mode.
Another purpose of the present invention is to provide the user in the far-end control system, and customized user holds the method for program voucher and signature.
According to the present invention, being used to of far-end control system makes first computer and second computer via at least one controlled computer of network control.Far-end control system of the present invention comprises the far-end actuation means and first user holds program.The far-end actuation means is coupled to aforementioned at least one controlled computer.First user's end program is arranged at first computer, first user program of holding provides user's interface for the user, make first user obtain the 3rd user and hold program, and first user program of holding is uploaded to the storage of far-end actuation means with the 3rd user program of holding via network carrying out voucher combination or signature from second user's end program of far-end actuation means download.The 3rd user who uploads holds second user of available first computer of program or second computer to download, to control the far-end actuation means.
The present invention also provides the user in the far-end control system, uses the method for voucher (certificate) and customized signature (signature), and method of the present invention comprises the following step:
Carry out this first user in first computer and hold program, it provides user's interface;
See through this user's interface and select a voucher;
Downloading second user from this far-end actuation means holds program to this first computer;
This voucher is incorporated into this second user holds program or utilize this voucher, this second user is held the customized signature of program, obtain the 3rd user and hold program; And
Uploading the 3rd user program of holding stores for follow-up use to this far-end actuation means.
Description of drawings
Fig. 1 is that general webpage needs the user to use the key diagram of voucher or signature.
Fig. 2 is that the operating system of computer can remind the user to confirm the voucher dialogue calcspar of whether accepting.
Fig. 3 is the phylogenetic relationship key diagram of far-end control system of the present invention.
Fig. 4 the invention provides the user uses customized voucher (certificate) in the far-end control system method flow diagram.
Fig. 5 is the method flow diagram of the customized far-end control system signature of the present invention.
Fig. 6 downloads the user when holding program, the warning dialog that web browser can eject.
The main element symbol description
10 computers
20 webpage servomechanisms
30 networks
100 far-end control systems
202 first computers
204 second computers
300 networks
400 network interface devices
500 multi-computer switch
501,502,503,504 controlled computers
Embodiment
Please refer to Fig. 3, is the key diagram of far-end control system of the present invention.Far-end control system of the present invention comprises far-end actuation means 100 and first user holds program.Far-end actuation means 100 is to see through network 300 to be connected with first computer 202 and 204 in second computer.Far-end actuation means 100 can comprise network interface device 400 and multi-computer switch 500 (this multi-computer switch 500 does not have network interface), see through multi-computer switch 500 and connect controlled computer 501~504, make first computer 202 and/or second computer 204 control and to manage many controlled computers 501~504 via network 300 and far-end actuation means 100.The hardware structure of this network interface device 400 can be realized by CN6000 or the CN8000 that Hongzheng Automation Science-Technology Co., Ltd provided.Or, in another embodiment, this far-end actuation means 100 is one to have the multi-computer switch (KVM-over-IP) of network interface, and first computer 202 or second computer 204 can be via network 300 and far-end actuation means 100 control controlled computers 501~504.Or be that this far-end actuation means 100 directly connects one of them (for example 501) of controlled computer 501~504, makes first computer 202 or second computer 204 can be via network 300 and 100 controls of far-end actuation means and management controlled computer 501.The hardware structure of this far-end actuation means 100 can be realized by KN9108, KN9116, KN2108, KN2116, KN4132, KH1508i or the KH1516i that Hongzheng Automation Science-Technology Co., Ltd provided.
Aforementioned first user program of holding is downloaded from far-end actuation means 100 or a certain servomechanism (not shown) by the user who uses first computer 202.First user program of holding can comprise Java client program or Active X client program.The user can utilize browser to start first user and hold program, sees through first user program of holding controlled computer 501~504 is controlled.First user program of holding also makes first computer 202, and far-end actuation means 100 or network interface device 400 can carry out network communication therewith.
Please in the lump with reference to figure 3 to Fig. 6.Fig. 4 the invention provides the user uses customized voucher (certificate) in the far-end control system method flow diagram.Use the user of first computer 202 to have its company or all vouchers (certificate) of individual, and be stored in first computer 202 or other storage devices (a for example network disk drive).Then according to one embodiment of the invention, at first the user downloads and carries out first user and hold program, as shown in Figure 6, when this first user of download holds program, web browser can eject a warning dialog (Security Warning), this warning dialog mainly is to remind the user to note the publisher of this program, and requiring the user to select whether to continue to install this program (can select eternal installation/refusal install/at every turn all to inquire), the program distribution person of this moment is the manufacturer of far-end actuation means 100 for this reason still.This first user end program provides user's interface (User Interface), for the user, this user's interface can be similar to the explorer (Start/My Computer/Explore) of a microsoft operation system, and the user can be by the source of wherein selecting archives as voucher.The user only need see through aforementioned user's interface and choose and be stored in aforementioned from documentary (certificate) in first computer 202, and user of the present invention afterwards can download second users from far-end actuation means 100 or network interface device 400 and hold program to the first computer 202.
This second user holds the program and first user to hold the program possibility identical, so because first user program of holding can't be signed in just being used by the operating system of first computer 202 at this moment.The user can be incorporated into second user with aforementioned own voucher (certificate) and hold program, obtains the 3rd user and holds program.Then, the 3rd user's end program can be uploaded to far-end actuation means 100 or network interface device 400 uses for downloading next time.Or, the 3rd user's end program can be uploaded to aforementioned download first user and hold the servomechanism of program, afterwards second user since then servomechanism download the 3rd user and hold program, and second user thus servomechanism carry out logining to far-end actuation means 100 or network interface device 400.Download this 3rd user when holding program first user or second user, web browser may still can eject a warning dialog (Security Warning), this warning dialog mainly is to remind the user to note the publisher of this program, and require the user to select whether to continue to install this program (can select eternal installation/refusal install/at every turn all to inquire), yet the program distribution person of this moment has been changed to this first user.
Method of the present invention has the attribute that carry out on the backstage, be with in the aforesaid processing procedure, see through user's interface of the present invention, the user need not possess relevent information engineering knowledge and technology, can allow the far-end control system use own voucher (certificate) to finish signature process.And, as another user (second user) who uses second computer 204, desire is utilized browser, when controlled computer 501~504 is controlled, the 3rd user who is network interface device 400 and provides who is started holds program, that is the user who has possessed from documentary (certificate) holds program, and second user like this can allow this 3rd user program of holding to carry out on second computer 204 relievedly.The detailed step of relevant customized voucher (certificate) method flow of the present invention is described below:
Step 210 is carried out first user in first computer 202 and is held program, and the user is provided interface;
Step 220 sees through the voucher (certificate) that user's interface selects first computer to have;
Step 230, automatic network interfare device 400 is downloaded second user and is held program to the first computer 202;
Step 240 is incorporated into second user with voucher (certificate) and holds program, obtains the 3rd user and holds program;
Step 250 is uploaded the 3rd user and is held program to network interface device 400;
Step 260 restarts network interface device 400, the first users program of holding and can be replaced by the 3rd user program of holding; And
Step 270, afterwards, network interface device 400 of the present invention can be downloaded and carry out the 3rd user with voucher (certificate) at first computer 202 or second computer 204 for another user and hold program.
In step 230, second user holds the source of program to be not limited only to network interface device 400, sees through network and also can from the page download of manufacturer.In addition, in the step 260, restarting network interface device 400 is one of mode of practical operation, is not the necessary action of method of the present invention.As new software program is installed in PC, the method for the customized voucher of visual the present invention (certificate) in the far-end control system significance level and assert whether need to restart.And, also can not carry out aforementionedly replacing the action that first user holds program with second user's end program, still keep first user and hold program, as the preset value of network interface device 400.Before the 3rd user program of holding is not uploaded to network interface device 400 as yet, network interface device 400 provides first user to hold program or second user's end program to download for the user, after the 3rd user program of holding had been uploaded to network interface device 400, network interface device 400 just provided the 3rd user's end program to download for the user.
First user holds program, second user to hold program and the 3rd user program of holding all can comprise Java client program or Active X client program as described above.When comprising Javaclient program as first user's end program, second user's end program that automatic network interfare device 400 is downloaded can be Active Xclient program, and vice versa.
Please in the lump with reference to figure 3, Fig. 4 and Fig. 5.Fig. 5 is the method flow diagram of the customized far-end control system signature of the present invention.Use the user of first computer 202 to have its company or all vouchers (certificate) of individual, and be stored in first computer 202.Then according to the present invention, the user can not only hold program in first user in conjunction with voucher (certificate), more can utilize aforementioned own voucher (certificate), second user's end program is signed (signature), obtain the 3rd user and hold program.This signature process can use sign software or the instrument that Microsoft provides, but the user does not need excessive participation.Similarly, method of the present invention has the attribute that carry out on the backstage, is seeing through user's interface of the present invention, and the user need not possess relevent information engineering knowledge and technology, signature (signature) that can customized far-end control system.The step of the customized signature of relevant the present invention (signature) method is described in detail as follows:
Step 310 is carried out first user at first computer 202 and is held program, and the user is provided interface;
Step 320 sees through user's interface and selects a voucher;
Step 330, automatic network interfare device 400 is downloaded second user and is held program to the first computer 202;
Step 340 is utilized voucher, and second user is held the customized signature of program (signature), obtains the 3rd user and holds program;
Step 350, the 3rd user's end program is uploaded to network interface device 400;
Step 360 restarts network interface device 400, the first users program of holding and can be replaced by the 3rd user program of holding; And
Step 370, this first computer 202 or second computer 204 are downloaded and are carried out the 3rd user with signature (signature) and hold program.As second user who uses second computer 204, or desire is utilized browser after the user of first computer, when controlled computer 501~504 is controlled, the 3rd user who is network interface device 400 and provides who is started holds program, that is the user who has possessed from bear the signature (signature) holds program.Because this is provided by the user voluntarily from bearing the signature, and is not that far-end control system manufacturer provides, so the user can feel relatively to feel at ease in the use.In preferred embodiment of the present invention, the signature process of step 340 can be reached by signature instrument Signtool or the Keytool (being applicable to Java) that Microsoft provided, these signature instruments can carry out digital signature to archives, checking in the archives signature and for archives add time stamp (timestamp), but can also reach by other any suitable signature instruments.Aforesaid first user program of holding can be carried out this signature instrument to finish signature, so the user does not need excessive participation in background.
Also as described above, in the step 360, restarting network interface device 400 is one of mode of practical operation, and nonessential action.As new software program is installed in PC, the method for the customized signature of visual the present invention (signature) in the far-end control system significance level and assert whether need to restart.And, also can not carry out the action of aforementioned replacement, keep first user and hold program, as the preset value of network interface device 400.First user holds program, second user to hold program and the 3rd user program of holding all to can be Java client program or Active X client program.When being Javaclient program as first user's end program, second user's end program that automatic network interfare device 400 is downloaded can be Active Xclient program, and vice versa.
Though the present invention discloses as above with regard to preferred embodiment, so it is not in order to limit the present invention.The persond having ordinary knowledge in the technical field of the present invention, without departing from the spirit and scope of the present invention, when being used for a variety of modifications and variations.Therefore, protection scope of the present invention is when looking being as the criterion that the accompanying Claim book defined.

Claims (10)

1. method that provides first user in a far-end control system, to use voucher, this far-end control system has a far-end actuation means and first user holds program, and this method comprises at least:
Carry out this first user in first computer and hold program, so that user's interface to be provided;
Select a voucher via this user's interface;
Downloading second user from this far-end actuation means holds program to this first computer;
This voucher is incorporated into this second user holds program, obtain the 3rd user and hold program; And
Uploading the 3rd user holds program to this far-end actuation means.
2. the method for claim 1 is characterized in that, downloads after this second user holds the step of program, also comprises and utilizes this voucher, this second user end program is carried out the step of digital signature.
3. method as claimed in claim 2 is characterized in that, uploads in the step that the 3rd user holds program, and be to upload the 3rd user to hold program, with the signature of customized this far-end actuation means with this digital signature.
4. the method for claim 1 is characterized in that, this far-end actuation means is a network-type multi-computer switch.
5. the method for claim 1 is characterized in that, this voucher is incorporated into this second user holds the step of program with a signature instrument this second user end program to be carried out digital signature.
6. the method for the signature of a customized far-end control system, this far-end control system has the far-end actuation means and first user holds program, and this method comprises at least:
Carry out this first user in first computer and hold program;
User's interface that this first user program of holding of seeing through provides is selected a voucher;
Downloading second user from this far-end actuation means holds program to this first computer;
Utilize this voucher,, obtain the 3rd user and hold program this second user end program signature; And
Uploading the 3rd user holds program to this far-end actuation means.
7. method as claimed in claim 14 after uploading the step that the 3rd user holds program, also comprises and restarts this far-end actuation means, downloads the step that the 3rd user holds program for second computer.
8. method as claimed in claim 15 is characterized in that, after restarting this far-end actuation means, this first user end program is replaced by the 3rd user program of holding.
9. far-end control system comprises at least:
One far-end actuation means, make first computer and second computer via a network-coupled at least one controlled computer;
First user holds program, be executed on this first computer, this first user end program provides user's interface, first user is signed to second user's end program and obtain the 3rd user and hold program, and this first user program of holding is uploaded to the 3rd user program of holding in this far-end actuation means via this network and stores.
10. far-end control system as claimed in claim 9 is characterized in that, this first user program of holding is signed to this second user end program with the voucher that this first user is provided.
CN200910171041.6A 2009-08-26 2009-08-26 Method for providing user customized certificate and signature Active CN101996294B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN200910171041.6A CN101996294B (en) 2009-08-26 2009-08-26 Method for providing user customized certificate and signature

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN200910171041.6A CN101996294B (en) 2009-08-26 2009-08-26 Method for providing user customized certificate and signature

Publications (2)

Publication Number Publication Date
CN101996294A true CN101996294A (en) 2011-03-30
CN101996294B CN101996294B (en) 2014-03-19

Family

ID=43786440

Family Applications (1)

Application Number Title Priority Date Filing Date
CN200910171041.6A Active CN101996294B (en) 2009-08-26 2009-08-26 Method for providing user customized certificate and signature

Country Status (1)

Country Link
CN (1) CN101996294B (en)

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6108788A (en) * 1997-12-08 2000-08-22 Entrust Technologies Limited Certificate management system and method for a communication security system

Also Published As

Publication number Publication date
CN101996294B (en) 2014-03-19

Similar Documents

Publication Publication Date Title
CN100593166C (en) Portable computing environment
CN102262552B (en) A kind of application program striding equipment synchronous method and system
JP2003050781A (en) Device and method for authenticating individuals, device and method for managing version, program for making computer execute individual authenticating method and program for making computer execute the version managing method
CN101000646A (en) Copyright protection method and system for digital contents controlled by time
CN105095786A (en) Platform to build secure mobile collaborative applications using dynamic presentation and data configurations
CN107430669A (en) computing system and method
CN102368848B (en) Wireless communication device and configuration method thereof
US8789151B2 (en) Remote device communication platform
CN103548321A (en) Information processing system, access rights management method, information processing device, and control method and control program therefor
WO2001067286A3 (en) Framework for a customizable graphics user interface
CN103516701A (en) Data processing method and password management system
WO2014086125A1 (en) Login method and login system of mobile terminal
CN102215131B (en) Management method and device of functional License
JP2011507059A (en) Method and system for entering data into a web page
CN101189576A (en) Security system for personal Internet communicator
CN102546837A (en) Virtual host input-output redirection system and implementation method thereof
CN101996294B (en) Method for providing user customized certificate and signature
JP2005135002A (en) Application distribution system and server
CN106375304A (en) One-time authentication method realized by utilization of intelligent hardware
TWI414997B (en) Kvm remote management system providing customized certificate, signature and methoe thereof
CN102104527A (en) Access control method and equipment
JP4531037B2 (en) Remote control system and remote control method
KR102244523B1 (en) System and method for user certification in using web service
CN104516750A (en) Method and device for achieving plug-in integration and management in SCADA (supervisory control and data acquisition) system
US10785335B2 (en) Secure and private web browsing system and method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant