CN102739794B - Based on the Desktop Monitoring system of multi-layer framework - Google Patents

Based on the Desktop Monitoring system of multi-layer framework Download PDF

Info

Publication number
CN102739794B
CN102739794B CN201210228946.4A CN201210228946A CN102739794B CN 102739794 B CN102739794 B CN 102739794B CN 201210228946 A CN201210228946 A CN 201210228946A CN 102739794 B CN102739794 B CN 102739794B
Authority
CN
China
Prior art keywords
management
data
module
gateway
monitoring system
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201210228946.4A
Other languages
Chinese (zh)
Other versions
CN102739794A (en
Inventor
梁绍博
马成立
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangzhou Fengyun Information Technology Co.,Ltd.
Original Assignee
SHENZHEN JINGHUA KEXUN TECHNOLOGY Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by SHENZHEN JINGHUA KEXUN TECHNOLOGY Co Ltd filed Critical SHENZHEN JINGHUA KEXUN TECHNOLOGY Co Ltd
Priority to CN201210228946.4A priority Critical patent/CN102739794B/en
Publication of CN102739794A publication Critical patent/CN102739794A/en
Application granted granted Critical
Publication of CN102739794B publication Critical patent/CN102739794B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Computer And Data Communications (AREA)

Abstract

The invention provides a kind of Desktop Monitoring system based on multi-layer framework, comprising: client, gateway, service end and management end; Client is installed on controlled users terminal, for providing monitor data; Gateway is used for the data syn-chronization between client and service end; Service end is for storing monitor data; Management end is used for configuration-system and operation supervise and control data.Control and monitoring are refined as session level operation, not only can record the operation screen of desktop in control desk session by the Desktop Monitoring system based on multi-layer framework provided by the invention, also can record the operation screen of desktop in the non-console session of long-distance user's login.Use local storage, user operation can be recorded by off-line, once user's line, the operation video in system automatic upload user Offtime section.Thus operation supervise and control problem under solving user's Telnet and off-line state.<!--1-->

Description

Based on the Desktop Monitoring system of multi-layer framework
Technical field
The present invention relates to desktop audit technique field, particularly relate to a kind of Desktop Monitoring system based on multi-layer framework.
Background technology
Video audit makes IT can monitor and analysis of user activities, realizes internal control, guarantees compliance and the security audit being successfully completed various application; In addition, can also identification problem solving a problem promptly more quickly, thus improving environment Service supportive.
But existing video auditing system is all generally the user operation behavior that supervisory control comuter control desk logs in, and can not monitor the user operation behavior being remotely logged into computer.And when recording user operation, subscriber computer must be online.
Summary of the invention
The object of the present invention is to provide a kind of Desktop Monitoring system based on multi-layer framework, to solve the operation supervise and control problem of Telnet clients.
Another object of the present invention is to provide a kind of Desktop Monitoring system based on multi-layer framework, to solve the operation supervise and control problem of user under off-line state.
The object of the invention is to be achieved through the following technical solutions.
Based on a Desktop Monitoring system for multi-layer framework, comprising: client, gateway, service end and management end;
Client is installed on controlled users terminal, for providing monitor data;
Gateway is used for the data syn-chronization between client and service end;
Service end is for storing monitor data;
Management end is used for configuration-system and operation supervise and control data.
Preferably, described client is made up of conversation dispatching service module, data capture program module and local data library module;
Conversation dispatching service module, for enumerating the session of all login users in computer, then discharges seizure program in session;
Data capture program module is used for real-time Transmission user operation video, and is recorded in local data library module according to catching collocation strategy simultaneously;
Conversation dispatching service module according to transmission configuration strategy by data syn-chronization to gateway or be directly synchronized to service end.
Preferably, the process of described data capture program module also for opening with text mode real time record user.
Preferably, described gateway is made up of gateway service module and gateway data library module;
Gateway service module is used for the data syn-chronization between gateway data library module and management data library module;
The monitor data that gateway data library module is sent for storing client.
Preferably, described service end comprises management data library module, for storing the service data of whole system.
Preferably, described management end is made up of manager module and monitor module;
Management program module is used for carrying out integrated management;
Monitoring program module is used for monitoring in real time, supports with the screen multiple session of monitoring in real time.
Preferably, described integrated management comprises: secure context, business aspect and system management aspect;
Described secure context comprises: rights management, Role Management, user management;
Business aspect comprises: terminal management, record management, violation management;
System management aspect comprises: parameterized template management, time parameter method Template Manager, tag control violating the regulations.
Preferably, described session is for operation computing environment that is legal login user, complete, isolation in operating system.
The present invention compared with prior art, Desktop Monitoring system based on multi-layer framework provided by the invention, control and monitoring are refined as session level operation, not only can record the operation screen of desktop in control desk session, also can record the operation screen of desktop in the non-console session of long-distance user's login.Use local storage, user operation can be recorded by off-line, once user's line, the operation video in system automatic upload user Offtime section.Thus operation supervise and control problem under solving user's Telnet and off-line state.
Accompanying drawing explanation
Fig. 1 is the Desktop Monitoring system principle diagram that the present invention is based on multi-layer framework.
Fig. 2 is the Desktop Monitoring method flow diagram that the present invention is based on multi-layer framework.
Embodiment
In order to make object of the present invention, technical scheme and advantage clearly understand, below in conjunction with drawings and Examples, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
Refer to the Desktop Monitoring system of multi-layer framework of the present invention shown in Fig. 1: be made up of client (Client), gateway (Gateway), service end (Server) and management end (Manager).
Client is installed on controlled users terminal, for providing monitor data.
Client is made up of conversation dispatching service module (DADirector), data capture program module (DAActor) and local data library module (LocalDB).
Conversation dispatching service module, for enumerating the session (comprising control desk session) of all login users in computer, then discharges DAActor in session.
Data capture program module is used for real-time Transmission user operation video, and is recorded in local data library module according to catching collocation strategy simultaneously, also with the process that text mode real time record user opens.
Conversation dispatching service module according to transmission configuration strategy by data syn-chronization to gateway or be directly synchronized to service end.
Gateway is used for the data syn-chronization between client and service end.
Gateway is made up of gateway service module (DAGateway) and gateway data library module (GatewayDB).Gateway is used for synchronous gateway database module and management data library module (ManagerDB).Described gateway, when disposing, can have 0 to any example.
Gateway service module is used for the data syn-chronization between gateway data library module and management data library module.
The monitor data that gateway data library module is sent for storing client.
Service end is for storing monitor data.
Service end comprises management data library module (ManagerDB), for storing the service data of whole system.Described service end, when disposing, has and can only have an example.
Management end is used for configuration-system and operation supervise and control data.
Management end is made up of manager module (DAManager) and monitor module (DAMonitor).Any network site for access services end starts management function, and needs to carry out authentication.
Management program module is used for carrying out integrated management, comprise: secure context is as rights management, Role Management, user management, business aspect is as terminal management, record management, violation management, and system management aspect is as parameterized template management, time parameter method Template Manager, tag control violating the regulations.
Monitoring program module is used for monitoring in real time, supports with the screen multiple session of monitoring in real time.
Described session is for operation computing environment that is legal login user, complete, isolation in operating system.
Fig. 2 is the Desktop Monitoring method that the present invention is based on multi-layer framework, comprising:
Step 1: keeper is logged in by manager, confirms identity and authority.
Step 2: administrator configurations system parameters, is stored in management database.
Step 3: gateway service gets parms from management database, and be stored in gateway data storehouse.
Step 4: conversation dispatching service gets parms from gateway data storehouse, and is stored in local data base.
Step 5: data capture program gets parms from local data base, performs data capture task.
Step 6: data capture program by supervising data storage in local data base.
Step 7: conversation dispatching service obtains monitor data from local data base, and be stored in gateway data storehouse.
Step 8: gateway service obtains monitor data from gateway data storehouse, and is stored in management database.
Step 9: manager obtains monitor data from management database and operates.
Control and monitoring are refined as session level operation, not only can record the operation screen of desktop in control desk session by the Desktop Monitoring system based on multi-layer framework provided by the invention, also can record the operation screen of desktop in the non-console session of long-distance user's login.Use local storage, user operation can be recorded by off-line, once user's line, the operation video in system automatic upload user Offtime section.Thus operation supervise and control problem under solving user's Telnet and off-line state.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, all any amendments done within the spirit and principles in the present invention, equivalent replacement and improvement etc., all should be included within protection scope of the present invention.

Claims (7)

1. based on a Desktop Monitoring system for multi-layer framework, comprising: client, gateway, service end and manager;
Client is installed on controlled users terminal, for providing monitor data;
Gateway is used for the data syn-chronization between client and service end;
Service end is for storing monitor data;
Management end is used for configuration-system and operation supervise and control data;
It is characterized in that, described client is made up of conversation dispatching service module, data capture program module and local data library module, described conversation dispatching service module is for enumerating the session of all login users in computer, then in session, seizure program is discharged, described data capture program module is used for real-time Transmission user operation video, and be simultaneously recorded in local data library module according to catching collocation strategy, described conversation dispatching service module according to transmission configuration strategy by data syn-chronization to gateway or be directly synchronized to service end.
2. the Desktop Monitoring system based on multi-layer framework according to claim 1, is characterized in that, the process of described data capture program module also for opening with text mode real time record user.
3. the Desktop Monitoring system based on multi-layer framework according to claim 1, is characterized in that, described gateway is made up of gateway service module and gateway data library module;
Gateway service module is used for the data syn-chronization between gateway data library module and management data library module;
The monitor data that gateway data library module is sent for storing client.
4. the Desktop Monitoring system based on multi-layer framework according to claim 1, it is characterized in that, described service end comprises management data library module, for storing the service data of whole system.
5. the Desktop Monitoring system based on multi-layer framework according to claim 1, it is characterized in that, described management end is made up of manager module and monitor module;
Manager module is used for carrying out integrated management;
Monitor module is used for monitoring in real time, supports with the screen multiple session of monitoring in real time.
6. the Desktop Monitoring system based on multi-layer framework according to claim 5, it is characterized in that, described integrated management comprises: secure context, business aspect and system management aspect;
Described secure context comprises: rights management, Role Management, user management;
Business aspect comprises: terminal management, record management, violation management;
System management aspect comprises: parameterized template management, time parameter method Template Manager, tag control violating the regulations.
7. the Desktop Monitoring system based on multi-layer framework according to claim arbitrary in claim 1-6, is characterized in that, described session is for operation computing environment that is legal login user, complete, isolation in operating system.
CN201210228946.4A 2012-07-04 2012-07-04 Based on the Desktop Monitoring system of multi-layer framework Active CN102739794B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210228946.4A CN102739794B (en) 2012-07-04 2012-07-04 Based on the Desktop Monitoring system of multi-layer framework

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210228946.4A CN102739794B (en) 2012-07-04 2012-07-04 Based on the Desktop Monitoring system of multi-layer framework

Publications (2)

Publication Number Publication Date
CN102739794A CN102739794A (en) 2012-10-17
CN102739794B true CN102739794B (en) 2016-03-30

Family

ID=46994565

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210228946.4A Active CN102739794B (en) 2012-07-04 2012-07-04 Based on the Desktop Monitoring system of multi-layer framework

Country Status (1)

Country Link
CN (1) CN102739794B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104125304B (en) * 2014-08-13 2017-09-19 北京华夏威科软件技术有限公司 A kind of session level application auditing method and system

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1561037A (en) * 2004-02-23 2005-01-05 南京金鹰国际集团软件系统有限公司 Desk monitoring audit system based on structure
CN101194523A (en) * 2005-03-28 2008-06-04 泰克莱克公司 Methods, systems, and computer program products for surveillance of messaging service messages in a communications network

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3351318B2 (en) * 1997-11-07 2002-11-25 株式会社日立製作所 Computer system monitoring method

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1561037A (en) * 2004-02-23 2005-01-05 南京金鹰国际集团软件系统有限公司 Desk monitoring audit system based on structure
CN101194523A (en) * 2005-03-28 2008-06-04 泰克莱克公司 Methods, systems, and computer program products for surveillance of messaging service messages in a communications network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
"工作环境监视"面面观;袁永康;《国外科技动态》;20011031(第10期);第17-19页 *

Also Published As

Publication number Publication date
CN102739794A (en) 2012-10-17

Similar Documents

Publication Publication Date Title
CN104063473B (en) A kind of database audit monitoring system and its method
US10841268B2 (en) Methods and apparatus to generate virtual war rooms via social media in enterprise network environments
CN103973781B (en) A kind of screen monitor method and its system based on proxy server
CN103413088B (en) A kind of computer document operation safety auditing system
US10250539B2 (en) Methods and apparatus to manage message delivery in enterprise network environments
CN108270716A (en) A kind of audit of information security method based on cloud computing
CN103441864A (en) Method for monitoring illegal external connection of terminal equipment
CN102594884B (en) Method and system for automatically distributing and synchronizing multi-stage data constructed based on browser/server (B/S)
CN103780700A (en) Application system and method for achieving compatibility and sharing among multi-source heterogeneous systems
CN103593804A (en) Electric power information communication scheduling and monitoring platform
CN104573611A (en) Distributed face recognition trunking system
CN109819053B (en) Springboard machine system applied to mixed cloud environment and control method thereof
CN107786551B (en) Method for accessing intranet server and device for controlling access to intranet server
CN106598813B (en) Work monitoring keyboard and mouse device and method for monitoring computer using process thereof
CN107463839A (en) A kind of system and method for managing application program
CN102497427A (en) Method and device for realizing data acquisition services of renewable energy source monitoring system
CN104333556A (en) Distributed configuration management method of safety certificate gateways based on resource service management systems
CN101753989A (en) Method and device for collocating information in lot in video monitoring system
CN104700024A (en) Method and system for auditing operational order of Unix-type host user
CN105049245B (en) The Element management system of EPON
CN105812432B (en) Cloud document processing method and device
CN107231245B (en) Method and device for reporting monitoring log, and method and device for processing monitoring log
CN109600395A (en) A kind of device and implementation method of terminal network access control system
CN102739794B (en) Based on the Desktop Monitoring system of multi-layer framework
CN102624541A (en) Whole network managing and monitoring system based on virtual private network (VPN) technology

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20220208

Address after: 510000 room b1309, No. 161, Linhe West Road, Tianhe District, Guangzhou City, Guangdong Province

Patentee after: Guangzhou Fengyun Information Technology Co.,Ltd.

Address before: 518000 room 425, floor 4, building 4, Zhongxing Industrial City, Chuangye Road, Nanshan District, Shenzhen, Guangdong Province

Patentee before: Shenzhen Jinghua Kexun Technology Co.,Ltd.