CN102053970A - Database auditing method and system - Google Patents
Database auditing method and system Download PDFInfo
- Publication number
- CN102053970A CN102053970A CN2009102055883A CN200910205588A CN102053970A CN 102053970 A CN102053970 A CN 102053970A CN 2009102055883 A CN2009102055883 A CN 2009102055883A CN 200910205588 A CN200910205588 A CN 200910205588A CN 102053970 A CN102053970 A CN 102053970A
- Authority
- CN
- China
- Prior art keywords
- audit
- information
- operating terminal
- domain authentication
- net mirror
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a database auditing method and a database auditing system. The method comprises: a network performs network access domain authentication on an operating terminal; the network acquires netglass auditing information from a data packet which is sent when the operating terminal operates the database; the network matches the information on the same attribute of the operating terminal in domain authentication information acquired during domain authentication and the netglass auditing information and determines the user name of the operating terminal in the domain authentication information according to the result of matching; and the network performs database auditing according to the netglass auditing information and the user. When the method and the system, which are provided by the invention, are adopted, the user name of the operating terminal can be acquired accurately, and the accurately of the database auditing can be improved.
Description
Technical field
The present invention relates to networking technology area, relate in particular to a kind of database audit method and system that is associated with the network insertion domain authentication.
Background technology
Database audit be mainly used in monitor and record to all kinds of operation behaviors of database server, by analysis to network data, in real time, resolve various operations intelligently to database server, and charge in the audit database so that inquire about, analyze, filter in the future, realize monitoring and audit to user's operation of target database system.Its user's establishment, modification and deletion etc. of can monitoring and audit to the database table in the database, view, sequence, bag, storing process, function, storehouse, index, synonym, snapshot, trigger etc.It can also be according to the rule that is provided with, the behavior of judging the violation operation database of intelligence, and unlawful practice write down, reports to the police.Because the database audit is the network that works in the database host place in the mode of network bypass; therefore it can the operation to database realize track record under the situation of any setting that does not change Database Systems; the location; the on-line monitoring of fulfillment database; under the prerequisite that does not influence the Database Systems self performance; realization is to the on-line monitoring and the protection of database; find in time on the network at the violation operation behavior of the database line item of going forward side by side; report to the police and blocking-up in real time; remedy the deficiency of existing applied business system on database security uses effectively, for the safe operation of Database Systems provides powerful guarantee.
In the existing database audit method based on the audit of net mirror, crucial one is the resolution factor problem that how to improve the user name of database manipulation terminal, promptly when operating terminal is operated database, how to get access to the user name of operating terminal as much as possible accurately, to be used for the security audit of database.Generally be by in network at present, the packet that sends when the grasping manipulation terminal is operated database, and analyze the field format of captured packets, therefrom obtain the user name of this operating terminal.But owing to be not all to carry its username information in the packet that sends of operating terminal, so need to filter a large amount of invalid packets, also need to grab accurately the useful data bag, avoid losing of useful data bag, and after grabbing the useful data bag, also need accurately to analyze the field format of packet, can get access to the user name of operating terminal accurately, so, need to improve the processing power that network side is carried out the relevant apparatus of aforesaid operations, can improve the resolution factor of the user name of operating terminal, in any case yet the processing power of raising relevant apparatus, all can't be from improving the resolution factor of the user name of operating terminal in essence to greatest extent, and then caused reducing the accuracy of database audit.
Summary of the invention
The embodiment of the invention provides a kind of database audit method and system, in order to getting access to the user name of operating terminal accurately, and then improves the accuracy of database audit.
The embodiment of the invention provides a kind of database audit method, comprising:
Network side carries out the network insertion domain authentication to operating terminal; And
Obtain net mirror audit information the packet that when described operating terminal is operated database, sends;
In domain authentication information of obtaining during with domain authentication and the described net mirror audit information, the same attribute information of the described operating terminal that comprises mates, and determines the user name of the described operating terminal in the described domain authentication information according to matching result; And
Carry out the database audit according to described net mirror audit information and the described user name of determining.
The embodiment of the invention also provides a kind of database auditing system, comprising: domain authentication device and net mirror audit device; Wherein:
Described domain authentication device is used for operating terminal is carried out the network insertion domain authentication; And obtain domain authentication information, and send to described net mirror audit device;
Described net mirror audit device, the packet that is used for sending when described operating terminal is operated database obtains net mirror audit information; And in described domain authentication information that will receive and the described net mirror audit information, the same attribute information of the described operating terminal that comprises mates, and determine the user name of the described operating terminal in the described domain authentication information according to matching result; And carry out database according to described net mirror audit information and the described user name of determining and audit.
In the method that the embodiment of the invention provides, the network insertion domain authentication is associated with in the database audit, when operating terminal is carried out the network insertion domain authentication, obtain the domain authentication information and the user name of this operating terminal, and when this operating terminal is operated database, from the packet of its transmission, obtain net mirror audit information, and with in domain authentication information of obtaining and the net mirror audit information that obtains, the same attribute information of the operating terminal that comprises mates, because this same attribute information of the operating terminal that obtains during domain authentication is corresponding with user name, so user name of this operating terminal that gets access to according to matching result, be corresponding, and then can carry out accurate data storehouse audit operation according to this user name and this net mirror audit information with this net mirror audit information.
Description of drawings
The process flow diagram of the database audit method that Fig. 1 provides for the embodiment of the invention;
The structural representation of the database auditing system that Fig. 2 provides for the embodiment of the invention;
The structural representation of the domain authentication device in the database auditing system that Fig. 3 provides for the embodiment of the invention;
The structural representation of the net mirror audit device in the database auditing system that Fig. 4 provides for the embodiment of the invention.
Embodiment
The embodiment of the invention provides a kind of database audit method, as shown in Figure 1, comprising:
Step S101, network side carry out the network insertion domain authentication to operating terminal.
Obtain net mirror audit information step S102, the packet that sends when this operating terminal is operated database.
In step S103, the domain authentication information and this net mirror audit information obtained during with domain authentication, the same attribute information of this operating terminal that comprises mates, and determines the user name of this operating terminal in the described domain authentication information according to matching result.
Step S104, carry out the database audit according to this net mirror audit information and this user name.
With specific embodiment method provided by the invention is described in detail below.
In the embodiment of the invention, domain authentication device and net mirror audit device by network side are finished said method jointly, wherein, the domain authentication device is used for operating terminal is carried out network insertion domain authentication (being designated hereinafter simply as domain authentication), and the domain of dependence authentication information that obtains sent to net mirror audit device, user name comprising database manipulation terminal (being designated hereinafter simply as operating terminal), the net mirror audit information that needs when net mirror audit device then obtains audit, and according to domain authentication information that receives and the net mirror audit information that obtains, get access to the user name of the operating terminal of corresponding this audit, and then can carry out the database audit according to net mirror audit information and user name.
It is the equal of that operating terminal is carried out authentication that operating terminal is carried out domain authentication, concrete authentication policy can adopt various strategy of the prior art, for example, whether possess the authority of the network that inserts this domain authentication correspondence etc. according to the username and password of operating terminal and this operating terminal, carry out domain authentication.After domain authentication is passed through, the domain authentication device then can get access to some attribute informations of operating terminal, be called domain authentication information, for example, among the above-mentioned steps S101 of the embodiment of the invention, after the domain authentication device carries out domain authentication to operating terminal, can obtain the information such as user name, IP address and the authentication moment of operating terminal, and these information that will obtain send to net mirror audit device.
Operating terminal access database by domain authentication is positioned in the network, can operate database by the network that inserts, operational order and some data network side be need be sent to the form of packet during operation, operational order and data be transmitted to realize operation database by the relevant apparatus (as the network switch) of network side.
The packet that net mirror audit device then sends by grasping manipulation terminal in network according to the associated nets mirror audit information that therefrom obtains, carries out the database audit.For example, grasp packet by the audit of the net mirror in net mirror audit device sniffer by the network mirror port on the network switch, the packet that grabs by the net mirror audit analyzer analysis in the net mirror audit device again, can be according to the connection protocol sign indicating number of database, analyze the implication of the field format of the packet that grabs, and then therefrom get access to relevant net mirror audit information, and be stored in the net mirror audit information database, use for the database audit.
When net mirror audit device carries out the database audit, be the operation of database to be audited at operating terminal, so promptly need to determine the user name of the operating terminal of corresponding associative operation, and in the prior art, be the packet that grabs by analysis, therefrom obtain the user name of operating terminal, but this scheme be owing to reason described in the background technology, cause often can't getting access to, and then cause accurately to carry out the audit of database.
For addressing this problem, among the above-mentioned steps S103 of the embodiment of the invention, the user name of the operating terminal that net mirror audit device obtains when receiving the domain authentication that the domain authentication device sends, behind the IP address, because the user name and the IP address of the operating terminal that receives are corresponding, and the IP address (at present by analyzing the IP address that packet can obtain the operating terminal that sends this packet very accurately) that comprises operating terminal from captured packets in the net mirror audit information that it obtains, therefore, by the IP address of IP address in the net mirror audit information and reception is mated, if it is identical, then the operating terminal under this IP address of expression reception is corresponding with the net mirror audit information that this obtains, and then can determine the user name of the operating terminal of this net mirror audit information correspondence of obtaining.
Because the IP address of operating terminal might not be a fixed ip address at present, but dynamic IP addressing, corresponding with the user name of operating terminal so IP address changes, so, in the embodiment of the invention, when the IP address of operating terminal is dynamic IP addressing, when domain authentication, also determine authentication constantly, and also determine and obtain obtaining constantly of net mirror audit information, context according to both is carried out the IP matching addresses, and then can guarantee to obtain the accuracy of the user name of operating terminal, specifically can be as follows:
For the IP address that receives, according to the authentication moment of its correspondence, filter out satisfy this obtain net mirror audit information obtain constantly before each authentication pairing IP address constantly, and the IP address in the IP address that filters out and this net mirror audit information that obtains mated, if identical, then can determine the user name of the operating terminal of this net mirror audit information correspondence of obtaining.
In the embodiment of the invention, also determine the departure time that operating terminal leaves the network of its access, and send to net mirror audit device by the domain authentication device, at this moment, when carrying out the IP matching addresses, for the IP address that receives, according to the authentication moment and the departure time of its correspondence, be engraved in this when filtering out satisfied the authentication and obtain obtaining before the moment of net mirror audit information, and the departure time this obtain net mirror audit information obtain constantly after, pairing IP address, and the IP address in the IP address that filters out and this net mirror audit information that obtains mated, if identical, then can determine the user name of the operating terminal of this net mirror audit information correspondence of obtaining.
In the embodiment of the invention, in the time need carrying out the IP matching addresses with this context of obtaining the moment of net mirror audit information constantly according to authentication, in order to guarantee the accuracy of record constantly, preferable, clock when clock when the domain authentication device carries out domain authentication and net mirror audit device obtain net mirror audit information, all with network in the corresponding clock synchronization of clock synchronization server.
In the above embodiment of the present invention, be that to mate with the IP address of operating terminal be example, among other embodiment, also can use other attribute informations of operating terminal to mate, can get access to this attribute information in the time of only need satisfying domain authentication, and comprise that also this attribute information gets final product in the net mirror audit information that from captured packets, obtains.
Above-mentioned steps S104 is for carrying out the database audit according to this net mirror audit information that obtains and the user name of determining operating terminal, and concrete audit regulation and strategy can adopt variety of way of the prior art, are not described in detail at this.
Based on same inventive concept, according to the database audit method that the above embodiment of the present invention provides, correspondingly, another embodiment of the present invention also provides a kind of database auditing system, its structural representation comprises as shown in Figure 2: domain authentication device 201 and net mirror audit device 202; Wherein:
Above-mentioned domain authentication device 201 is used for operating terminal is carried out the network insertion domain authentication; And the domain authentication information of obtaining this operating terminal, and send to described net mirror audit device;
Above-mentioned net mirror audit device 202, the packet that is used for sending when this operating terminal is operated database obtains net mirror audit information; And with in the domain authentication information and this net mirror audit information that receive, the same attribute information of this operating terminal that comprises mates, and determines the user name of this operating terminal in this domain authentication information according to matching result; And carry out database according to this net mirror audit information and this user name and audit.
Preferable, the same attribute information that above-mentioned net mirror audit device 202 mates is the IP address.
Preferable, the IP address that above-mentioned net mirror audit device 202 mates is a dynamic IP addressing.
Preferable, above-mentioned domain authentication device 201 also is used for determining the authentication moment of domain authentication, and sends to above-mentioned net mirror audit device 202;
Above-mentioned net mirror audit device 202 also is used to determine to obtain obtaining constantly of this net mirror audit information; And specifically be used for also according to this authentication of determining constantly and determine this obtain context constantly, the dynamic IP addressing of carrying out this operating terminal is mated.
Preferable, above-mentioned domain authentication device 201 also was used for before the authentication of determining domain authentication constantly, and the clock of clock of himself and the clock synchronization server in the network is carried out synchronously;
Above-mentioned net mirror audit device 202, also be used for determine to obtain this net mirror audit information obtain constantly before, the clock of clock of himself and the clock synchronization server in the network is carried out synchronously.
Preferable, above-mentioned net mirror audit device 202 specifically is used for obtaining this packet from the network switch, and analyzes the field format of this packet, obtains this net mirror audit information.
The concrete structure of the domain authentication device 201 in the above-mentioned database auditing system shown in Figure 2 comprises as shown in Figure 3:
Domain authentication rule configuration module 301 is used to dispose certification policy and rule when operating terminal carried out the network insertion domain authentication, with the security policy manager realizing operating terminal is concentrated and the setting of Access Control Policy;
Domain authentication information logging modle 303 is used to store the domain authentication information of obtaining, as the user name of operating terminal, and information such as the IP address and the authentication moment;
Domain authentication information inquiry interface 304 is used for the domain authentication information of net mirror audit device 202 needs is sent to net mirror audit device 202;
The concrete structure of the net mirror audit device 202 in the above-mentioned database auditing system shown in Figure 2 comprises as shown in Figure 4:
Net mirror audit information logging modle 403 is used to store the domain authentication information of net mirror audit information and reception;
Domain authentication information inquiry interface 404 is used for the domain authentication information that acceptance domain authenticate device 201 sends, and it is transmitted to net mirror audit information logging modle 403;
Net mirror audit module 405; be used for net mirror audit information and domain authentication information by 403 storages of net mirror audit information logging modle; carry out information matches; determine the user name of corresponding net mirror audit information and operating terminal; to carry out the database audit according to predefined audit strategy and rule; wherein; predefined audit strategy and rule; can with network in to need to carry out the main frame of record of the audit relevant, also can with network in may to visit subscriber's main station or user's network segment of protection main frame relevant.
Among other embodiment, when the processing power to above-mentioned net mirror audit module 405 has higher requirements, it can be arranged at outside the net mirror audit device 202, carry out independent setting.
In sum, the scheme that the embodiment of the invention provides comprises: network side carries out the network insertion domain authentication to operating terminal; And obtain net mirror audit information the packet that when this operating terminal is operated database, sends; And in the domain authentication information and this net mirror audit information obtained during with domain authentication, the same attribute information of this operating terminal that comprises mates, and determines the user name of this operating terminal in the described domain authentication information according to matching result; And carry out database according to this net mirror audit information and this user name and audit.The scheme that adopts the embodiment of the invention to provide can get access to the user name of operating terminal accurately, and then has improved the accuracy of database audit.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these changes and modification interior.
Claims (10)
1. a database audit method is characterized in that, comprising:
Network side carries out the network insertion domain authentication to operating terminal; And
Obtain net mirror audit information the packet that when described operating terminal is operated database, sends;
In domain authentication information of obtaining during with domain authentication and the described net mirror audit information, the same attribute information of the described operating terminal that comprises mates, and determines the user name of the described operating terminal in the described domain authentication information according to matching result; And
Carry out the database audit according to described net mirror audit information and the described user name of determining.
2. the method for claim 1 is characterized in that, described same attribute information is the IP address.
3. method as claimed in claim 2 is characterized in that, described IP address is a dynamic IP addressing.
4. method as claimed in claim 3 is characterized in that, described method also comprises:
Determine the authentication moment of domain authentication, and determine to obtain obtaining constantly of described net mirror audit information;
The dynamic IP addressing of the described operating terminal that comprises in described domain authentication information and the described net mirror audit information is mated, specifically comprises:
According to the described authentication moment of determining and definite described context constantly of obtaining, carry out the dynamic IP addressing coupling of described operating terminal.
5. method as claimed in claim 4 is characterized in that, according to the described authentication moment of determining and definite described context constantly of obtaining, carries out the dynamic IP addressing coupling of described operating terminal, is specially:
When the described authentication determined, be engraved in definite described obtain constantly before the time, the dynamic IP addressing of the described operating terminal that comprises in described domain authentication information and the described net mirror audit information is mated.
6. as claim 4 or 5 described methods, it is characterized in that, before the authentication of determining domain authentication constantly, also comprise:
The clock that the clock of correspondence is corresponding with clock synchronization server in the network during with domain authentication carries out synchronously;
Determine to obtain described net mirror audit information obtain constantly before, also comprise:
The clock that the clock of correspondence is corresponding with clock synchronization server in the network when obtaining described net mirror audit information carries out synchronously.
7. a database auditing system is characterized in that, comprising: domain authentication device and net mirror audit device; Wherein:
Described domain authentication device is used for operating terminal is carried out the network insertion domain authentication; And obtain domain authentication information, and send to described net mirror audit device;
Described net mirror audit device, the packet that is used for sending when described operating terminal is operated database obtains net mirror audit information; And in described domain authentication information that will receive and the described net mirror audit information, the same attribute information of the described operating terminal that comprises mates, and determine the user name of the described operating terminal in the described domain authentication information according to matching result; And carry out database according to described net mirror audit information and the described user name of determining and audit.
8. system as claimed in claim 7 is characterized in that, the described same attribute information that described net mirror audit device mates is the IP address.
9. system as claimed in claim 8 is characterized in that, described domain authentication device also is used for when described IP address is dynamic IP addressing, determines the authentication moment of domain authentication, and sends to described net mirror audit device;
Described net mirror audit device also is used to determine to obtain obtaining constantly of described net mirror audit information; And specifically be used for carrying out the dynamic IP addressing coupling of described operating terminal according to the described authentication moment of determining and the described context of determining constantly of obtaining.
10. system as claimed in claim 9 is characterized in that, described domain authentication device also was used for before the authentication of determining domain authentication constantly, and the clock that the clock of himself is corresponding with clock synchronization server in the network carries out synchronously;
Described net mirror audit device, also be used for determine to obtain described net mirror audit information obtain constantly before, the clock that the clock of himself is corresponding with described clock synchronization server carries out synchronously.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910205588 CN102053970B (en) | 2009-10-30 | 2009-10-30 | Database auditing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910205588 CN102053970B (en) | 2009-10-30 | 2009-10-30 | Database auditing method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102053970A true CN102053970A (en) | 2011-05-11 |
| CN102053970B CN102053970B (en) | 2013-04-03 |
Family
ID=43958309
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200910205588 Active CN102053970B (en) | 2009-10-30 | 2009-10-30 | Database auditing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102053970B (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103678654A (en) * | 2013-12-23 | 2014-03-26 | 蓝盾信息安全技术股份有限公司 | Method for acquiring linkage information in database safety audit |
| CN104378228A (en) * | 2014-09-30 | 2015-02-25 | 上海宾捷信息科技有限公司 | Network data security management system and method |
| CN104036000B (en) * | 2014-06-13 | 2016-04-06 | 赵维佺 | A kind of database audit method, Apparatus and system |
| CN110519257A (en) * | 2019-08-22 | 2019-11-29 | 北京天融信网络安全技术有限公司 | A kind of processing method and processing device of the network information |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1261170A1 (en) * | 2001-05-24 | 2002-11-27 | BRITISH TELECOMMUNICATIONS public limited company | Method for providing network access to a mobile terminal and corresponding network |
| CN101075256A (en) * | 2007-06-08 | 2007-11-21 | 北京神舟航天软件技术有限公司 | System and method for real-time auditing and analyzing database |
| CN101388899B (en) * | 2007-09-12 | 2011-07-27 | 北京启明星辰信息技术股份有限公司 | Front-background related auditing method and system for Web server |
-
2009
- 2009-10-30 CN CN 200910205588 patent/CN102053970B/en active Active
Non-Patent Citations (1)
| Title |
|---|
| 四川赛贝卡信息技术有限公司: "网镜业务认证审计系统产品白皮书", 《四川赛贝卡信息技术有限公司》 * |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103678654A (en) * | 2013-12-23 | 2014-03-26 | 蓝盾信息安全技术股份有限公司 | Method for acquiring linkage information in database safety audit |
| CN104036000B (en) * | 2014-06-13 | 2016-04-06 | 赵维佺 | A kind of database audit method, Apparatus and system |
| CN104378228A (en) * | 2014-09-30 | 2015-02-25 | 上海宾捷信息科技有限公司 | Network data security management system and method |
| CN110519257A (en) * | 2019-08-22 | 2019-11-29 | 北京天融信网络安全技术有限公司 | A kind of processing method and processing device of the network information |
| CN110519257B (en) * | 2019-08-22 | 2022-04-01 | 北京天融信网络安全技术有限公司 | Network information processing method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102053970B (en) | 2013-04-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101924757B (en) | Method and system for reviewing Botnet | |
| CN101639879B (en) | Database security monitoring method, device and system | |
| TWI434190B (en) | Storing log data efficiently while supporting querying to assist in computer network security | |
| EP2080317B1 (en) | Apparatus and a security node for use in determining security attacks | |
| CN101854360B (en) | Device and method for tracing to the source of mobile subscriber cellphone number according to IP (Internet Protocol) address | |
| CN113612763B (en) | Network attack detection device and method based on network security malicious behavior knowledge base | |
| CN105659245A (en) | Context-aware network forensics | |
| WO2009097434A2 (en) | Systems and methods for filtering network diagnostic statistics | |
| CN105759247B (en) | Radar integrated recorder and radar data recording method | |
| CN110313147A (en) | Data processing method, device and system | |
| CN102053970B (en) | Database auditing method and system | |
| CN112734057A (en) | Comprehensive automatic comprehensive operation and maintenance monitoring system for railway marshalling station | |
| CN108833442A (en) | A kind of distributed network security monitoring device and its method | |
| CN104539449B (en) | A kind of failure information processing method and relevant apparatus | |
| CN104394216A (en) | Remote management method for mobile client and device | |
| CN107276834A (en) | Optical-fibre channel flow analysis recording method and device under a kind of aviation electronics environment | |
| CN104123217A (en) | Capture method and system of execution instruction of service server | |
| KR100825257B1 (en) | Detail processing method of abnormal traffic data | |
| CN108920305A (en) | A kind of USB device access risk checking method and device based on distribution book keeping operation | |
| KR102314557B1 (en) | System for managing security control and method thereof | |
| CN115510005A (en) | Display method and device of abnormal log information, electronic equipment and storage medium | |
| CN115456379A (en) | Asset intelligent mining and management method and system based on multi-source data | |
| CN107979610A (en) | The safety protecting method that a kind of fire wall communicates in big data | |
| KR20060079782A (en) | Security system to improve the interoperability in ipv4 and ipv6 coexistence network | |
| CN107294969A (en) | A kind of SQL injection attack detection and system based on SDN |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |