CN101996294B - Method for providing user customized certificate and signature - Google Patents

Method for providing user customized certificate and signature Download PDF

Info

Publication number
CN101996294B
CN101996294B CN200910171041.6A CN200910171041A CN101996294B CN 101996294 B CN101996294 B CN 101996294B CN 200910171041 A CN200910171041 A CN 200910171041A CN 101996294 B CN101996294 B CN 101996294B
Authority
CN
China
Prior art keywords
user
program
computer
far
signature
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN200910171041.6A
Other languages
Chinese (zh)
Other versions
CN101996294A (en
Inventor
林生鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Aten International Co Ltd
Original Assignee
Aten International Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Aten International Co Ltd filed Critical Aten International Co Ltd
Priority to CN200910171041.6A priority Critical patent/CN101996294B/en
Publication of CN101996294A publication Critical patent/CN101996294A/en
Application granted granted Critical
Publication of CN101996294B publication Critical patent/CN101996294B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The invention provides a remote control system and method for providing user customized certificate and signature so that a first computer and a second computer control at least one controlled computer through a network. The remote control system comprises a remote control device and a first user terminal program, wherein the remote control device is coupled to a plurality of controlled computers; the first user terminal program is arranged in the first computer to provide a user interface so that a first user carries out certificate combination or signature to a second user terminal program downloaded from the remote control device so as to obtain a third user terminal program, and the first user terminal program can upload the third user terminal program to the remote control device for storage through the network; and the uploaded third user terminal program can be downloaded and used by the second user of the second computer so as to control the remote control device.

Description

The method of the customized voucher of user and signature is provided
Technical field
The present invention is relevant for a kind of far-end control system, particularly about a kind of far-end control system and the method for the customized voucher of user and signature is provided.
Background technology
Please refer to Fig. 1, is that general webpage needs user to use the key diagram of the quick-reading flow sheets of voucher or signature.Signature is the procedure code in embedded software, uses the instrument that judges security or show software publishing person's status for user.Voucher be generally by the reliable third-party institution (for example: the authentication of VeriSign) issuing for publisher signature, to prove that true and this software of this signature is not tampered after signature.Meanwhile, when webpage that user's accessing web page servomechanism provides, if the presenting in the time of need to thering is the authority of controlling to user's computer of webpage more, just need this signature or voucher to confirm.This signature or voucher are also that can user allow webpage servomechanism to user's computer, further carry out tool to control one of basis for estimation means of power program more.For example: the Java client program of the Active X client program of company of Microsoft (Microsoft) or liter sun (Sun Microsystems) company.ActiveX control item is for the small programs on internet, is sometimes called " add ons ".See through and to allow animation, ActiveX control item can strengthen user's viewing experience, or, can assisting user process as in " Microsoft Update " installation " security update " etc. work.Part website needs user that ActiveX control item is first installed, and just can check webpage or carry out some work thereon.While browsing this type of website, the Internet Explorer of Microsoft can first inquire whether user will install ActiveX control item.Unfortunately, ActiveX control item is similar to any other program, and they may be abused.It may cause the computer cannot normal operation, do not obtain collect user under agreeing to browse custom and personal information, or provide user undesired content, as fast aobvious advertisement.Simultaneously ActiveX control item may allow that some bad website uses it for malicious intent.
As shown in Figure 1, computer 10 is for user controls, and Webpage material is to be stored in a webpage servomechanism 20, and both see through network 30 and connect.When user wants browsing page, first, step 1: user controls computer 10 and sees through network 30 accessing web page servomechanisms 20.Then, when user is to servomechanism 20 accesses during as Active Xclient program or Java client program, because security reason or servomechanism need to be obtained and further control temporary controlling computer 10, step 2: the operating system of computer 10 or web browser can be reminded the user of computer 10, as shown in Figure 2, need voucher or signature, can carry out next step access action.Step 3: user needs to confirm, downloads and install voucher.Step 4: carry out access or operation.
And under far-end network type multi-computer switch control system framework (Over-IP KVM system), far-end actuation means can provide user to hold program to controlling computer utilization, controls computer and installs and could see through network after this user's end program and with form web page, controlled computer is carried out access and controlled.Yet these users program of holding may comprise the Active X client program of Microsoft or the Java client program of Sheng Yang company.Similarly, and the manufacturer that is far-end control system due to user's end program originally writes, be preloaded in far-end actuation means, for user computer access use, so voucher (certificate) to be also far-end control system manufacturer all.When user's program of holding need to be confirmed voucher or signature, user can see the warning dialogue square of jumping out as shown in Figure 2, the voucher of required confirmation or signature are also that the manufacturer of far-end control system is all, for user, and the doubt that may cause some to use.As user's wish is used own voucher, even with the voucher of having by oneself, user's end program is signed, must possess information engineering and relevant knowledge, its program is also remarkable, at present existing take in the remote management system that network-type multi-computer switch is framework be not also allowed to.
Summary of the invention
Fundamental purpose of the present invention is to provide a far-end control system, and the user of far-end control system can, in simple and safe mode, use own voucher and utilize this voucher to sign to user's end program of far-end control system.
Another object of the present invention is to provide user in far-end control system, and customized user holds the method for program voucher and signature.
According to the present invention, far-end control system for making the first computer and the second computer via at least one controlled computer of network control.Far-end control system of the present invention comprises far-end actuation means and the first user holds program.Far-end actuation means is coupled to aforementioned at least one controlled computer.The first user holds programming in the first computer, the first user program of holding provides user's interface for user, make the first user obtain the 3rd user to carrying out voucher combination or signature from second user's end program of far-end actuation means download and hold program, and the first user program of holding is uploaded to the storage of far-end actuation means by the 3rd user program of holding via network.The 3rd user who uploads holds the second user of available the first computer of program or the second computer to download, to control far-end actuation means.
The present invention also provides user in far-end control system, uses the method for voucher (certificate) and customized signature (signature), and method of the present invention comprises the following step:
In the first computer, carry out this first user and hold program, it provides user's interface;
See through this user's interface and select a voucher;
From this far-end actuation means, downloading the second user holds program to this first computer;
This voucher is incorporated into this second user and holds program or utilize this voucher, this second user is held to the customized signature of program, obtain the 3rd user and hold program; And
Upload the 3rd user program of holding stores for follow-up use to this far-end actuation means.
Accompanying drawing explanation
Fig. 1 is that general webpage needs user to use the key diagram of voucher or signature.
Fig. 2 is that the operating system of computer can remind user to be confirmed whether the voucher dialogue calcspar of accepting.
Fig. 3 is the phylogenetic relationship key diagram of far-end control system of the present invention.
Fig. 4 the invention provides user in far-end control system, to use the method flow diagram of customized voucher (certificate).
Fig. 5 is the method flow diagram of the customized far-end control system signature of the present invention.
Fig. 6 downloads user while holding program, the warning dialog that web browser can eject.
Main element symbol description
10 computers
20 webpage servomechanisms
30 networks
100 far-end control systems
202 first computers
204 second computers
300 networks
400 network interface devices
500 multi-computer switch
501,502,503,504 controlled computers
Embodiment
Please refer to Fig. 3, is the key diagram of far-end control system of the present invention.Far-end control system of the present invention comprises far-end actuation means 100 and the first user holds program.Far-end actuation means 100 is to see through network 300 to be connected with the first computer 202 and 204, the second computer.Far-end actuation means 100 can comprise network interface device 400 and multi-computer switch 500 (this multi-computer switch 500 does not have network interface), see through multi-computer switch 500 and connect controlled computer 501~504, make the first computer 202 and/or the second computer 204 via network 300 and far-end actuation means 100, control and to manage many controlled computers 501~504.CN6000 or CN8000 that the hardware structure Ke You Hongzheng Automation Science-Technology Co., Ltd of this network interface device 400 provides realize.Or, in another embodiment, this far-end actuation means 100 is one to have the multi-computer switch (KVM-over-IP) of network interface, and the first computer 202 or the second computer 204 can be controlled controlled computers 501~504 via network 300 and far-end actuation means 100.Or be that this far-end actuation means 100 directly connects one of them (for example 501) of controlled computer 501~504, and the first computer 202 or the second computer 204 can be controlled and management controlled computer 501 via network 300 and far-end actuation means 100.KN9108, KN9116, KN2108, KN2116, KN4132, KH1508i or KH1516i that the hardware structure Ke You Hongzheng Automation Science-Technology Co., Ltd of this far-end actuation means 100 provides realize.
Aforementioned the first user holds program by using the user of the first computer 202 to be downloaded from far-end actuation means 100 or a certain servomechanism (not shown).The first user program of holding can comprise Java client program or Active X client program.User can utilize browser to start the first user and hold program, sees through the first user program of holding controlled computer 501~504 is controlled.The first user program of holding also makes the first computer 202, and far-end actuation means 100 or network interface device 400 can carry out network communication therewith.
Please also refer to Fig. 3 to Fig. 6.Fig. 4 the invention provides user in far-end control system, to use the method flow diagram of customized voucher (certificate).Use the user of the first computer 202 to there is the voucher (certificate) of its company or person ownership, and be for example stored in, in the first computer 202 or other storage devices (a network disk drive).According to one embodiment of the invention, first user downloads and carries out the first user and holds program, as shown in Figure 6, when this first user of download holds program, web browser can eject a warning dialog (Security Warning), this warning dialog is mainly to remind user to note the publisher of this program, and requiring user to select whether to continue to install this program (can select eternal installation/refusal install/at every turn all to inquire), program distribution person is now the manufacturer of far-end actuation means 100 for this reason still.This first user end program provides user's interface (UserInterface), for user, this user's interface can be similar to the explorer (Start/MyComputer/Explore) of a microsoft operation system, and user can be by the source of wherein selecting archives as voucher.User only needs to see through aforementioned user's interface and chooses and be stored in aforementioned from documentary (certificate) in the first computer 202, and user of the present invention can download the second users from far-end actuation means 100 or network interface device 400 and hold program to the first computer 202 afterwards.
This second user holds program and the first user to hold program possibility identical, so because now the first user program of holding cannot be signed in just being used by the operating system of the first computer 202.User can be incorporated into the second user by aforementioned own voucher (certificate) and hold program, obtains the 3rd user and holds program.Then, the 3rd user's end program can be uploaded to far-end actuation means 100 or network interface device 400 uses for downloading next time.Or, the 3rd user's end program can be uploaded to aforementioned download the first user and hold the servomechanism of program, afterwards the second user since then servomechanism download the 3rd user and hold program, and the second user thus servomechanism carry out logining far-end actuation means 100 or network interface device 400.The first user or the second user, download this 3rd user while holding program, web browser may still can eject a warning dialog (SecurityWarning), this warning dialog is mainly to remind user to note the publisher of this program, and require user to select whether to continue to install this program (can select eternal installation/refusal install/at every turn all to inquire), yet program distribution person now has been changed to this first user.
Method of the present invention has the attribute that carry out on backstage, with in aforesaid processing procedure, see through user's interface of the present invention, user need not possess relevent information engineering knowledge and technology, can allow far-end control system use own voucher (certificate) to complete signature process.And, when using another user (the second user) of the second computer 204, wish is utilized browser, when controlled computer 501~504 is controlled, the 3rd user who is network interface device 400 and provides who starts holds program, that is the user who has possessed from documentary (certificate) holds program, the second user like this can allow this 3rd user program of holding to carry out on the second computer 204 relievedly.The present invention is described below about the detailed step of customized voucher (certificate) method flow:
Step 210, carries out the first user in the first computer 202 and holds program, and user is provided interface;
Step 220, sees through the voucher (certificate) that user's interface selects the first computer to have;
Step 230, automatic network interfare device 400 is downloaded the second user and is held program to the first computer 202;
Step 240, is incorporated into the second user by voucher (certificate) and holds program, obtains the 3rd user and holds program;
Step 250, uploads the 3rd user and holds program to network interface device 400;
Step 260, restarts network interface device 400, the first users program of holding and can be replaced by the 3rd user's program of holding; And
Step 270, afterwards, network interface device 400 of the present invention can be downloaded and carry out the 3rd user with voucher (certificate) at the first computer 202 or the second computer 204 for another user and hold program.
In step 230, the second user holds the source of program to be not limited only to network interface device 400, sees through network and also can from the page download of manufacturer.In addition, in step 260, restarting network interface device 400 is one of mode of practical operation, is not the necessary action of method of the present invention.As new software program is installed in PC, the significance level of the method for the customized voucher of visual the present invention (certificate) in far-end control system and assert whether need to restart.And, also can not carry out aforementionedly with second user's end program, replacing the action that the first user holds program, still retain the first user and hold program, as the preset value of network interface device 400.Before the 3rd user program of holding is not yet uploaded to network interface device 400, network interface device 400 provides the first user to hold program or second user's end program to download for user, after the 3rd user program of holding has been uploaded to network interface device 400, network interface device 400 just provides the 3rd user's end program to download for user.
As holding program, the second user, aforementioned the first user hold program and the 3rd user program of holding all can comprise Java client program or Active X client program.While holding routine package to contain Javaclient program as the first user, second user's end program that automatic network interfare device 400 is downloaded can be Active Xclient program, and vice versa.
Please also refer to Fig. 3, Fig. 4 and Fig. 5.Fig. 5 is the method flow diagram of the customized far-end control system signature of the present invention.Use the user of the first computer 202 to there is the voucher (certificate) of its company or person ownership, and be stored in the first computer 202.According to the present invention, user can not only hold program in the first user in conjunction with voucher (certificate), more can utilize aforementioned own voucher (certificate), second user's end program is signed (signature), obtain the 3rd user and hold program.This signature process can use sign software or the instrument that Microsoft provides, but user does not need excessive participation.Similarly, method of the present invention has the attribute that carry out on backstage, is that user need not possess relevent information engineering knowledge and technology to see through user's interface of the present invention, signature (signature) that can customized far-end control system.The step of the customized signature of relevant the present invention (signature) method is described in detail as follows:
Step 310, carries out the first user at the first computer 202 and holds program, and user is provided interface;
Step 320, sees through user's interface and selects a voucher;
Step 330, automatic network interfare device 400 is downloaded the second user and is held program to the first computer 202;
Step 340, utilizes voucher, and the second user is held to the customized signature of program (signature), obtains the 3rd user and holds program;
Step 350, the 3rd user's end program is uploaded to network interface device 400;
Step 360, restarts network interface device 400, the first users program of holding and can be replaced by the 3rd user's program of holding; And
Step 370, this first computer 202 or the second computer 204 are downloaded and are carried out the 3rd user with signature (signature) and hold program.When using the second user of the second computer 204, or wish is utilized browser after the user of the first computer, when controlled computer 501~504 is controlled, the 3rd user who is network interface device 400 and provides who starts holds program, that is the user who has possessed own signature (signature) holds program.Because this own signature is provided voluntarily by user, not far-end control system manufacturer provides, so user can feel relatively to feel at ease in the use.In preferred embodiment of the present invention, the signature instrument Signtool that the signature process of step 340 can provide by Microsoft or Keytool (being applicable to Java) reaches, these signature instruments can carry out digital signature to archives, the signature of checking in archives and for archives add time stamp (timestamp), still can also reach by other any suitable signature instruments.Aforesaid the first user program of holding can be carried out this signature instrument to complete signature in background, so user does not need excessive participation.
Also as aforementioned, in step 360, restarting network interface device 400 is one of mode of practical operation, and nonessential action.As new software program is installed in PC, the significance level of the method for the customized signature of visual the present invention (signature) in far-end control system and assert whether need to restart.And, also can not carry out the action of aforementioned replacement, retain the first user and hold program, as the preset value of network interface device 400.The first user holds program, the second user to hold program and the 3rd user program of holding all to can be Java client program or Active X client program.While being Javaclient program as first user's end program, second user's end program that automatic network interfare device 400 is downloaded can be Active Xclient program, and vice versa.
Although the present invention discloses as above with regard to preferred embodiment, so it is not in order to limit the present invention.Persond having ordinary knowledge in the technical field of the present invention, without departing from the spirit and scope of the present invention, when being used for a variety of modifications and variations.Therefore, protection scope of the present invention is when being as the criterion of defining depending on accompanying claims.

Claims (7)

1. provide the first user in a far-end control system, to use a method for voucher, this far-end control system has a far-end actuation means and the first user holds program, and the method at least comprises:
In the first computer, carry out this first user and hold program, so that user's interface to be provided;
Via this user's interface, select a voucher;
From this far-end actuation means, downloading the second user holds program to this first computer;
This voucher is incorporated into this second user and holds program, obtain the 3rd user and hold program; And
Uploading the 3rd user holds program to this far-end actuation means.
2. the method for claim 1, is characterized in that, downloads this second user and holds after the step of program, also comprises and utilizes this voucher, this second user end program is carried out to the step of digital signature.
3. the method for claim 1, is characterized in that, this far-end actuation means is a network-type multi-computer switch.
4. the method for claim 1, is characterized in that, this voucher is incorporated into this second user and holds the step of program, with a signature instrument, this second user end program is carried out to digital signature.
5. a method for the signature of customized far-end control system, this far-end control system has far-end actuation means and the first user holds program, and the method at least comprises:
In the first computer, carry out this first user and hold program;
User's interface that seeing through this first user program of holding provides is selected a voucher;
From this far-end actuation means, downloading the second user holds program to this first computer;
Utilize this voucher, to this second user end program signature, obtain the 3rd user and hold program; And
Uploading the 3rd user holds program to this far-end actuation means.
6. method as claimed in claim 5, holds after the step of program uploading the 3rd user, also comprises and restarts this far-end actuation means, for the second computer, downloads the step that the 3rd user holds program.
7. method as claimed in claim 6, is characterized in that, after restarting this far-end actuation means, this first user end program is replaced by the 3rd user's program of holding.
CN200910171041.6A 2009-08-26 2009-08-26 Method for providing user customized certificate and signature Active CN101996294B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN200910171041.6A CN101996294B (en) 2009-08-26 2009-08-26 Method for providing user customized certificate and signature

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN200910171041.6A CN101996294B (en) 2009-08-26 2009-08-26 Method for providing user customized certificate and signature

Publications (2)

Publication Number Publication Date
CN101996294A CN101996294A (en) 2011-03-30
CN101996294B true CN101996294B (en) 2014-03-19

Family

ID=43786440

Family Applications (1)

Application Number Title Priority Date Filing Date
CN200910171041.6A Active CN101996294B (en) 2009-08-26 2009-08-26 Method for providing user customized certificate and signature

Country Status (1)

Country Link
CN (1) CN101996294B (en)

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6108788A (en) * 1997-12-08 2000-08-22 Entrust Technologies Limited Certificate management system and method for a communication security system

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6108788A (en) * 1997-12-08 2000-08-22 Entrust Technologies Limited Certificate management system and method for a communication security system

Also Published As

Publication number Publication date
CN101996294A (en) 2011-03-30

Similar Documents

Publication Publication Date Title
CN101729594B (en) Remote configuration control method and system
US20110190910A1 (en) System and method for web-enabled enterprise environment control and energy management
CN103403644A (en) Delayed shut down of computer
CN100472388C (en) Method and system for realizing storage distributing and management using at least one data storage
CN104348687B (en) A kind of method and electronic equipment of generation authorization
Hsu et al. Hbci: Human-building-computer interaction
CN102368848B (en) Wireless communication device and configuration method thereof
CN107430669A (en) computing system and method
CN103548321A (en) Information processing system, access rights management method, information processing device, and control method and control program therefor
CN104580378A (en) Installation package processing method and device
CN103516701A (en) Data processing method and password management system
JP6546088B2 (en) Method for establishing authorized communication between a physical object and a communication device
CN103530551A (en) Software restriction method and system based on mobile Internet and cloud computing
CN102215131B (en) Management method and device of functional License
CN101996294B (en) Method for providing user customized certificate and signature
EP3145158A1 (en) Method for controlling information terminal, and application system
JP2005135002A (en) Application distribution system and server
CN103067464B (en) Intelligent terminal method for remote controlling computer and system
CN107273102A (en) The generation method and device of mobile applications
Zhang et al. Development of an internet home automation system using java and dynamic DNS service
CN102148831A (en) Method and system for safely controlling terminal application
CN104516750A (en) Method and device for achieving plug-in integration and management in SCADA (supervisory control and data acquisition) system
TWI414997B (en) Kvm remote management system providing customized certificate, signature and methoe thereof
CN113641412A (en) Computer remote control system and control method based on Internet of things technology
JP5535104B2 (en) Information processing system, management server, terminal device, information processing method, and program

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant