CN104010021A - Network consultation platform - Google Patents
Network consultation platform Download PDFInfo
- Publication number
- CN104010021A CN104010021A CN201310681195.6A CN201310681195A CN104010021A CN 104010021 A CN104010021 A CN 104010021A CN 201310681195 A CN201310681195 A CN 201310681195A CN 104010021 A CN104010021 A CN 104010021A
- Authority
- CN
- China
- Prior art keywords
- layer
- module
- network
- data
- platform
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a network consultation platform, which belongs to a network platform. The network consultation platform comprises an access layer, an application layer, a service layer, a data layer and a resource layer. The application layer is respectively connected with the access layer and the service layer, and the service layer is connected with the data layer. The access layer includes a network access node and a security protection system which are connected with each other. The application layer is used for sending a processing request to the service layer, and includes a user login module, a comprehensive information module, a consultation service module, a network friend interaction module and a map retrieval module. The service layer accesses the data layer according to the request from the application layer and returns output to the application layer. The data layer includes a data access module which is used for implementing addition, deletion, modification and query operations on the resource layer. The resource layer includes a database system. The network consultation platform has the following beneficial effects: a complete security protection mechanism is adopted, a complete set of security protection system is constructed, and the safety and reliability of the consultation platform are effectively ensured.
Description
Technical field
The present invention relates to a kind of network platform, relate in particular to a kind of network consulting platform.
Background technology
Nowadays, along with the application of information network technique is day by day universal, website promotion becomes now society's the most effective way of promotion already.People's livelihood consultation platform is as the tie of the information interchange between government and the public, Ta Shi government bodies realize that government affairs information is open, service enterprise and the public, interaction, and the important channel of understanding the will of the people, also be to obtain the important channel that the public obtains government services information, be conducive to promote the mutual understanding between government and the public, therefore have great importance.
Yet the network security problem that on the other hand, website faces also becomes increasingly complex becoming.For example, by web page horse hanging, user is suffered a loss.For another example, by modes such as DDOS, to the attack at line service, or to distorting of web page contents etc., caused heavy damage invariably to the normal use of website.And for the government website as people's livelihood consulting website, it is even more serious that this problem seems, because this will have influence on government's public credibility and government image.In fact, in recent years, also really of common occurrence for the online attack of government website.
Therefore, people's livelihood consultation network platform needs effectively to take precautions against unknown network risks, for the public provides safe and reliable information service.
Summary of the invention
The invention provides a kind of network consulting platform, object is to address the above problem.
Concrete technical scheme is as follows:
A network consulting platform, described network consulting platform is based on browser/server framework, wherein,
The server end of described network consulting platform comprises: Access Layer, application layer, operation layer, data Layer and resource layer; Described application layer is connected with Access Layer and operation layer respectively, and described operation layer is connected with described data Layer;
Described Access Layer comprises interconnective network insertion node and security protection system;
Described application layer is asked for sending to described operation layer to process, and comprises: user log-in block, integrated information module, counseling services module, online friend's interactive module, map retrieval module; Described user log-in block is inputted for receiving user's authorization information, and returns to login confirmation; Described integrated information module is by the form issue people's livelihood POLICY information of picture and text; Described online friend's interactive module is for being published to default page location by registered user's enquirement; Described map retrieval formula module is inputted for receiving user's map retrieval, and shows place with the form of electronic three-dimensional map;
Described operation layer, according to the request from described application layer, is accessed described data Layer, and returns and output to described application layer;
Described data Layer comprises Data access module; Described Data access module is for carrying out to described resource layer the operation that additions and deletions change inquiry;
Described resource layer comprises Database Systems.
Preferably, described security protection system comprises fire compartment wall and web application guard system;
Described fire compartment wall is connected with described web application guard system with described network insertion node respectively, and described web application guard system is connected with described operation layer by LAN switch.
Preferably, described web application guard system is at least provided with two, and redundancy is set to the web application guard system of initiate mode and the web application guard system of stand-by state;
When the web of described initiate mode application guard system breaks down, the web application guard system of described stand-by state enters initiate mode through consultation.
Preferably, in described LAN switch, bypass is provided with intruding detection system.
Preferably, described data Layer also comprises data backup module; Described data backup module is for regularly doing data backup to the data of described Database Systems.
Preferably, described application layer also comprises hot information module; Described hot information module is carried out attention rate statistics and sequence according to clicking rate and/or comment number to described news information or described registered user's enquirement, and puts question to news information described in attention rate sequencing display and described registered user.
Preferably, described application layer also comprises vulnerability scanning module; Described vulnerability scanning module is for carrying out vulnerability scanning detection to described application layer, and the leak that detects of bulletin.
The invention has the beneficial effects as follows:
A kind of network consulting platform of the present invention, the pattern based on browser/server, adopts multiechelon system service system structure to realize, and each form between by interface collaborative work, the function of common completion system, has guaranteed the expanding of system, upgradability; Simultaneously, the present invention has adopted complete Security mechanism, by vulnerability scanning module, realize the strick precaution to attacking, by fire compartment wall and web application guard system, stop instant attack, by intruding detection system, realize the monitoring to network data, by data backup module, service data can be returned to the state of Backup Data, strengthened the disaster tolerance ability of platform, thereby constructed a set of complete security protection system, effectively guaranteed the safety and reliability of consultation platform.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, to the accompanying drawing of required use in embodiment or description of the Prior Art be briefly described below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skills, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.
Fig. 1 is the structural representation of the embodiment of a kind of network consulting platform of the present invention;
Fig. 2 is the structural representation of Access Layer of the embodiment of a kind of network consulting platform of the present invention.
Embodiment
Below in conjunction with the drawings and specific embodiments, the invention will be further described, but not as limiting to the invention.
In one embodiment of the present of invention, disclose a kind of network consulting platform, this network consulting platform is based on browser/server framework.As shown in Figure 1, wherein, the server end of network consulting platform comprises: Access Layer, application layer, operation layer, data Layer and resource layer; Application layer is connected with Access Layer and operation layer respectively, and operation layer is connected with data Layer; Access Layer comprises interconnective network insertion node and security protection system; Application layer is asked for sending to operation layer to process, and comprises: user log-in block, integrated information module, counseling services module, online friend's interactive module, map retrieval module; User log-in block is inputted for receiving user's authorization information, and returns to login confirmation; Integrated information module is by the form issue people's livelihood POLICY information of picture and text; Online friend's interactive module is for being published to default page location by registered user's enquirement; Map retrieval formula module is inputted for receiving user's map retrieval, and shows place with the form of electronic three-dimensional map; Operation layer is according to from the request of application layer, visit data layer, and return and output to application layer; Data Layer comprises Data access module; Data access module is for carrying out to resource layer the operation that additions and deletions change inquiry; Resource layer comprises Database Systems.In a kind of embodiment, above-mentioned Database Systems can be orcal databases, can be also SQLserver databases.
On the basis of technique scheme, security protection system comprises fire compartment wall and web application guard system; Fire compartment wall is connected with web application guard system with network insertion node respectively, and web application guard system is connected with operation layer by LAN switch.In another kind of embodiment, above-mentioned fire compartment wall can directly be connected with LAN switch, and web application guard system is connected in LAN switch in the mode of bypass monitoring.
On the basis of technique scheme, as shown in Figure 2, web application guard system is at least provided with two, and redundancy is set to the web application guard system of initiate mode and the web application guard system of stand-by state; When the web of initiate mode application guard system breaks down, the web application guard system of stand-by state enters initiate mode through consultation.
On the basis of technique scheme, in LAN switch, bypass is provided with intruding detection system.Above-mentioned intruding detection system, by detecting all links that are connected to server, obtains the generation event in network from whole computing environment, and generation event is analyzed, and obtains analysis result.For example, the event of running counter to security strategy for special object of predefined, and whether the generation event in Sampling network is corresponding with it.Based on resulting analysis result, make corresponding reaction, as cut off, connect, change file attributes, or give the alarm etc., and the attack of record to system.The fire compartment wall of platform can be authorized filtration to outside calling party effectively, but cannot stop high authority user's destruction.And intruding detection system can effectively be protected and monitor for the special object of plateform system, meanwhile, by above-mentioned intruding detection system, can effectively prevent the security threat from platform Intranet, therefore formed effective complementation with fire compartment wall.
On the basis of technique scheme, data Layer also comprises data backup module; Data backup module is for regularly doing data backup to the data of Database Systems.
On the basis of technique scheme, application layer also comprises hot information module; Hot information module is carried out attention rate statistics and sequence according to clicking rate and/or comment number to news information or registered user's enquirement, and puts question to attention rate sequencing display news information and registered user.
On the basis of technique scheme, application layer also comprises vulnerability scanning module; Vulnerability scanning module is for carrying out vulnerability scanning detection to application layer, and the leak that detects of bulletin.Specifically, above-mentioned vulnerability scanning module, can be to simulate the attack to system based on test script, then analyzes, thereby detects the security breaches that system may exist.
By the network consulting platform of a kind of pattern based on browser/server of the present invention, adopt multiechelon system service system structure to realize, and each form between by interface collaborative work, the function of common completion system, has guaranteed the expanding of system, upgradability; Simultaneously, the present invention has adopted complete Security mechanism, by vulnerability scanning module, realize the strick precaution to attacking, by fire compartment wall and web application guard system, stop instant attack, by intruding detection system, realize the monitoring to network data, by data backup module, service data can be returned to the state of Backup Data, strengthened the disaster tolerance ability of platform, thereby constructed a set of complete security protection system, effectively guaranteed the safety and reliability of consultation platform.
The foregoing is only preferred embodiment of the present invention; not thereby limit embodiments of the present invention and protection range; to those skilled in the art; should recognize that being equal to that all utilizations specification of the present invention and diagramatic content done replace and the resulting scheme of apparent variation, all should be included in protection scope of the present invention.
Claims (7)
1. a network consulting platform, described network consulting platform, based on browser/server framework, is characterized in that,
The server end of described network consulting platform comprises: Access Layer, application layer, operation layer, data Layer and resource layer; Described application layer is connected with Access Layer and operation layer respectively, and described operation layer is connected with described data Layer;
Described Access Layer comprises interconnective network insertion node and security protection system;
Described application layer is asked for sending to described operation layer to process, and comprises: user log-in block, integrated information module, counseling services module, online friend's interactive module, map retrieval module; Described user log-in block is inputted for receiving user's authorization information, and returns to login confirmation; Described integrated information module is by the form issue people's livelihood POLICY information of picture and text; Described online friend's interactive module is for being published to default page location by registered user's enquirement; Described map retrieval formula module is inputted for receiving user's map retrieval, and shows inquiry place with the form of electronic three-dimensional map;
Described operation layer, according to the request from described application layer, is accessed described data Layer, and returns and output to described application layer;
Described data Layer comprises Data access module; Described Data access module is for carrying out to described resource layer the operation that additions and deletions change inquiry;
Described resource layer comprises Database Systems.
2. network consulting platform as claimed in claim 1, is characterized in that,
Described security protection system comprises fire compartment wall and web application guard system;
Described fire compartment wall is connected with described web application guard system with described network insertion node respectively, and described web application guard system is connected with described operation layer by LAN switch.
3. network consulting platform as claimed in claim 2, is characterized in that,
Described web application guard system is at least provided with two, and redundancy is set to the web application guard system of initiate mode and the web application guard system of stand-by state;
When the web of described initiate mode application guard system breaks down, the web application guard system of described stand-by state enters initiate mode through consultation.
4. network consulting platform as claimed in claim 2, is characterized in that, in described LAN switch, bypass is provided with intruding detection system.
5. network consulting platform as claimed in claim 1, is characterized in that,
Described data Layer also comprises data backup module; Described data backup module is for regularly doing data backup to the data of described Database Systems.
6. network consulting platform as claimed in claim 1, is characterized in that,
Described application layer also comprises hot information module; Described hot information module is carried out attention rate statistics and sequence according to clicking rate and/or comment number to described news information or described registered user's enquirement, and puts question to news information described in attention rate sequencing display and described registered user.
7. network consulting platform as claimed in claim 1, is characterized in that,
Described application layer also comprises vulnerability scanning module; Described vulnerability scanning module is for carrying out vulnerability scanning detection to described application layer, and the leak that detects of bulletin.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310681195.6A CN104010021A (en) | 2013-12-12 | 2013-12-12 | Network consultation platform |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310681195.6A CN104010021A (en) | 2013-12-12 | 2013-12-12 | Network consultation platform |
Publications (1)
Publication Number | Publication Date |
---|---|
CN104010021A true CN104010021A (en) | 2014-08-27 |
Family
ID=51370515
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201310681195.6A Pending CN104010021A (en) | 2013-12-12 | 2013-12-12 | Network consultation platform |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104010021A (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106251196A (en) * | 2016-07-25 | 2016-12-21 | 四川易想电子商务有限公司 | A kind of E-business in campus system |
CN106789988A (en) * | 2016-12-08 | 2017-05-31 | 柴汝松 | A kind of network inquiry platform |
CN106980789A (en) * | 2017-03-02 | 2017-07-25 | 中国信息安全测评中心 | Business diagnosis method and device, the appraisal procedure of service security and system |
CN107733939A (en) * | 2017-12-12 | 2018-02-23 | 柳州市北龟农业科技孵化器有限公司 | A kind of network consultation service platform |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101257399A (en) * | 2007-12-29 | 2008-09-03 | 中国移动通信集团四川有限公司 | Service system united safe platform |
CN102664819A (en) * | 2012-03-27 | 2012-09-12 | 陈奕龙 | Event publishing network system based on social mechanism and geographical position |
CN102752204A (en) * | 2012-07-03 | 2012-10-24 | 中兴通讯股份有限公司 | Service platform and service realization method of ubiquitous network |
CN103269355A (en) * | 2013-04-23 | 2013-08-28 | 四川天翼网络服务有限公司 | Intelligent skynet application platform |
-
2013
- 2013-12-12 CN CN201310681195.6A patent/CN104010021A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101257399A (en) * | 2007-12-29 | 2008-09-03 | 中国移动通信集团四川有限公司 | Service system united safe platform |
CN102664819A (en) * | 2012-03-27 | 2012-09-12 | 陈奕龙 | Event publishing network system based on social mechanism and geographical position |
CN102752204A (en) * | 2012-07-03 | 2012-10-24 | 中兴通讯股份有限公司 | Service platform and service realization method of ubiquitous network |
CN103269355A (en) * | 2013-04-23 | 2013-08-28 | 四川天翼网络服务有限公司 | Intelligent skynet application platform |
Non-Patent Citations (6)
Title |
---|
刘锋等: ""医院信息系统立体安全防护体系设计"", 《医疗卫生装备》 * |
吴礼发等: "《网络攻防原理》", 30 April 2012 * |
吴震等: ""基于OWASP和WASC的多维度Web应用安全体系"", 《广西大学学报(自然科学版)》 * |
唐德权: "《电子商务安全》", 31 December 2011 * |
王嫣等: ""基于B/S软件分层体系结构的研究"", 《煤炭技术》 * |
王嵘: ""中国政府网站体系发展方向研究"", 《中国优秀硕士学位论文全文数据库 社会科学Ⅰ辑》 * |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106251196A (en) * | 2016-07-25 | 2016-12-21 | 四川易想电子商务有限公司 | A kind of E-business in campus system |
CN106789988A (en) * | 2016-12-08 | 2017-05-31 | 柴汝松 | A kind of network inquiry platform |
CN106980789A (en) * | 2017-03-02 | 2017-07-25 | 中国信息安全测评中心 | Business diagnosis method and device, the appraisal procedure of service security and system |
CN107733939A (en) * | 2017-12-12 | 2018-02-23 | 柳州市北龟农业科技孵化器有限公司 | A kind of network consultation service platform |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Cheng et al. | Enterprise data breach: causes, challenges, prevention, and future directions | |
US9652597B2 (en) | Systems and methods for detecting information leakage by an organizational insider | |
US10320814B2 (en) | Detection of advanced persistent threat attack on a private computer network | |
EP2761528A2 (en) | Secure integrated cyberspace security and situational awareness system | |
CN109587122B (en) | System and method for realizing self-guarantee of Web subsystem security based on WAF system function | |
CN111711617A (en) | Method and device for detecting web crawler, electronic equipment and storage medium | |
CN104010021A (en) | Network consultation platform | |
Miloslavskaya et al. | Taxonomy for unsecure big data processing in security operations centers | |
Elango et al. | Redefining search terms for cybersecurity: A bibliometric perspective | |
CN115361182B (en) | Botnet behavior analysis method, device, electronic equipment and medium | |
CN106789988A (en) | A kind of network inquiry platform | |
Himmat et al. | The Current Trends, Techniques, and Challenges of Cybersecurity | |
CN104702454A (en) | Method for monitoring risks of QQ transmitted data based on keyword extraction strategy | |
CN104951711A (en) | Website structure mimicry method for protecting web application safety | |
CN104702456A (en) | Method for monitoring local area network transmission data risk based on keyword extraction strategy | |
CN211429342U (en) | Network safety monitoring device | |
Xiao | Exploration of network information security technology and prevention in the digital age | |
Xu et al. | [Retracted] Method of Cumulative Anomaly Identification for Security Database Based on Discrete Markov chain | |
CN104702451A (en) | Method for monitoring risk of sent public mail based on keyword extraction strategy | |
CN108712304A (en) | Enterprise server monitors system | |
US11997135B2 (en) | Systems and methods for protection against theft of user credentials | |
Wang et al. | Computer Network Security and Preventive Measures Based on Big Data Technology | |
CN104699703A (en) | Method for monitoring risk of database received data, based on keyword extraction strategy | |
CN104700035A (en) | Method for monitoring risk of USB interface copied data, based on keyword extraction strategy | |
CN106941497B (en) | Safety processing system based on information platform data |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140827 |