CN104504351A - Bidirectional parallel multi-port security server and realization method thereof - Google Patents
Bidirectional parallel multi-port security server and realization method thereof Download PDFInfo
- Publication number
- CN104504351A CN104504351A CN201410775757.8A CN201410775757A CN104504351A CN 104504351 A CN104504351 A CN 104504351A CN 201410775757 A CN201410775757 A CN 201410775757A CN 104504351 A CN104504351 A CN 104504351A
- Authority
- CN
- China
- Prior art keywords
- server
- port
- multiport
- parallel
- security
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/82—Protecting input, output or interconnection devices
- G06F21/85—Protecting input, output or interconnection devices interconnection devices, e.g. bus-connected or in-line devices
Abstract
The invention discloses a bidirectional parallel multi-port security server and a realization method thereof and belongs to the technical field of a network server. The server comprises a single-port server, a multi-port system integrated card, a client division manager and a state detecting program, wherein the multi-port system integrated card is inserted into the single-port server to change the single-port server into a multi-port parallel server and convert the single-port server into a server which is isolated from a network and is used for servers; the client division manager is connected with the single-port server in a communication way; the state detecting program is operated and controlled by the single-port server. The invention also discloses a method for protecting the security server. The method comprises the following steps of S1, building the server of the servers; S2, dividing and managing external clients; S3, detecting and processing illegal operation of a port server by the server of the servers. Server information safety and service performance can be effectively solved; the risk coefficient is reduced by one nth by the multi-port parallel server, and one nth of risk is reduced through the state detecting program; meanwhile, the server service performance is promoted.
Description
Technical field
The present invention relates to webserver technical field, particularly relate to a kind of two-way simultaneous multiport security server and its implementation with function of safety protection.
Background technology
Current internet is that the U.S. initiates, and along with the development of internet, the safety of internet and internet information receives publicity day by day.Solve information security issue, only solve in software and hardware two aspects, simple software and simple hardware all can not be dealt with problems simultaneously, and the Internet architecture that even only changes could thoroughly solve.
April 28 in 2011 applies for, October in the same year the patent No. of Granted publication on the 5th be 201120131269.5, invention and created name is that a kind of utility model of security server discloses a kind of security server, the structure of this security server comprises power supply, mainboard, power interface and memory bank, power interface is divided into interface and lower interface, on the left that upper interface is arranged on memory bank and mainboard between power supply and memory bank, lower interface to be arranged on below power supply namely on mainboard.This security server compared to the prior art, have reasonable in design, easy to use, avoid touching other parts, ensure that the features such as the security of maintenance.
Above-mentioned security server and other servers in the market, no matter input and output have great bandwidth, be all a port, the software and hardware of adding computing machine or server is not the product of independent research mostly, and this brings much congenital hidden danger to information security.
Summary of the invention
In order to solve the problems of the technologies described above, the object of this invention is to provide security server and its implementation of a kind of multiport parallel.
The object of the invention is to be achieved through the following technical solutions:
A kind of two-way simultaneous multiport security server, comprise single port server, it also comprises:
One multiport system integrated card, described multiport system integrated card is arranged on single port server, can connect multiple stage computing machine or server, make single port server become multiport parallel server, single port server transfers the server of a formation server;
One multiport customers offload manager, described multiport customers offload manager is connected with single port server communication;
One state detection processes manipulated by single port server.
The present invention also comprises the implementation method of above-mentioned security server, comprises the steps:
S1, by multiport system integrated card, single port server is become multiport parallel server, former single port server converts the server of a server to, and the server of described server and network completely cut off, and hacker attacks forever less than it;
S2, external client makes client can only be divided on a port server by multiport customers offload manager or the direct netting twine quantity that increases, and namely hacker can only have an effect with one of them port server, has nothing to do with other port server;
S3, the server of server detects the state of each port server by state detection processes, if which port server has the illegal operation of hacker, the server of server or it is directly isolated, or switch to and be safe from danger on the port server of data, then implement backward supervision to follow the tracks of, and then realize the safety guarantee effect of server.
Technical scheme of the present invention is original based on software and hardware, and solution is original, at principle art and software and hardware every aspect is comprehensively unified solves information security issue, increases substantially the service performance of server simultaneously.
Accompanying drawing explanation
Fig. 1 is system architecture and the principle schematic of parallel multiport security server of the present invention;
Fig. 2 is customers offload manager connection diagram of the present invention;
Fig. 3 is the FB(flow block) of security server implementation method of the present invention.
Embodiment
Below in conjunction with accompanying drawing, the specific embodiment of the present invention is described in detail:
As depicted in figs. 1 and 2, a kind of security server of multiport parallel, comprises single port server 20, and meanwhile, this security server also comprises:
One multiport system integrated card 2 (in FIG, other parts except except single port server 20), merely illustrate six ports in Fig. 1, six ports embody logic reversible principle of operation, embody bidirectional parallel exchange principles and embody concurrent operation, parallel switching, parallel control, parallel bus function unify Theory of Integrated.Described multiport system integrated card 2 is arranged on single port server 20, connectivity port server (or claiming port machine) 50 again, single port server 20 is made to become multiport parallel security server, the server of single port server 20 and then a formation server.
The server of above-mentioned server forever and network completely cut off, effectively ensure that the information security of server.As everyone knows, the server of a port, just likely paralyse completely as long as suffer to attack, and the operating system of single port server oneself can not detect the state of oneself, but by multiport system integrated card 2, single port server 20 is become multiport parallel server, the risk of server hacker attack just can be made to be down to n/mono-.Again by the state of the server mated condition trace routine detection port server 50 of server.As attacked, or isolated, or switched on the port server 50 of the data that are safe from danger, thus solved information security issue.
In order to better improve the security of server and adaptive with multiport parallel server, this security server also comprises a multiport customers offload manager 4, described multiport customers offload manager 4 communicates to connect with single port server 20, now outside netting twine can be had an effect with in n port server 50, again by port encrypts measure, person is difficult to judge concrete object of attack to make network attack.
Described multiport system integrated card 2 can be set as 24,48,96 or n port as required; Corresponding, described multiport customers offload manager 4 port is set as and 24,48,96 of system integration card 2 port number Corresponding matching or n port.
As shown in Fig. 3, Fig. 1 and Fig. 2, the present invention also comprises the implementation method of above-mentioned parallel multiport security server, specifically comprises the steps:
S1, multiport system integrated card 2 is connected by single port server 20, and connect multiple stage computing machine or server 50, single port server 20 is become multiport parallel security server, the server of single port server 20 and then a formation server, the server of described server and network completely cut off.
S2, external client makes client can only be divided on a port server 50 by customers offload manager 2 or the direct netting twine quantity that increases, namely client can only have an effect with one of them port server 50, namely one of them port server 50 can only be attacked in hacker family, and other port server is safe.
S3, the server 20 of server detects the state of each port server 50 by state detection processes, if which port server 50 has the illegal operation of hacker, the server 20 of server or it is directly isolated, or switch on the port server 50 of the data that are safe from danger, then implement backward supervision to follow the tracks of, and then realize the safety effect ensureing server.
Technical scheme of the present invention is because pass through the application of many (as 24) port system integrated card 2, and hacker can only attack a port server 50 in each port server, helpless for other port servers 50.Because external client can only be divided on a port server 50, although namely server has n input/output port, but the access of client is not in parallel, but managed by the shunting of multiport customers offload manager 4, client can only have an effect with one of them port server 50, has nothing to do with other port server (or port machine) 50.So the security of server obviously improves.
Form multiport parallel server by port system integrated card 2, when can make server updating dilatation, realize online insertion and removal, former server is no longer eliminated.By multiport parallel dilatation, harmless (bit is not lost) Hot Spare of server can be realized; The server database database retrieval bottleneck problem that more overall search is slower can be changed.
Multiport parallel server can make parallel computation, parallel control, parallel switching unify integrated with parallel bus function.And the service mode of server can be received and dispatched based on reciprocal causation relation, controls, utilizes data.
Multiport parallel server can increase by 2 to n bar netting twine (mating with multiport system integrated card port number), and many netting twines are together with the service mode of security server, and one is increase inputoutput bandwidth, and one is the Parallel Service degree improving server.
It is multiport parallel security server that technical scheme of the present invention becomes single port server, makes risk factor be reduced to n/mono-, and then solves the risk of this n/mono-by state detection processes.
In Fig. 1 20 is single port server (server of server), and 10 is one or two divider alternatives, and 40 is ovonic memory, and 30 is order register, and 50 is port server.Port server 50 is connected with the server 20 of server in two ways, and one is traditional mode, and another kind is the parallel bidirectional connection mode with multiport system integrated card 2.
In Fig. 2 20 is the server (single port server) of server, 2 is multiport system integrated card (server 20 part removing server in Fig. 1 is multiport system integrated card 2), 4 is customers offload manager, the external netting twine of customers offload manager 4, it can be 1 to n bar, be two-way and connect, port mates with multiport system integrated card 2 port number.
The above; be only the present invention's preferably embodiment, but protection scope of the present invention is not limited thereto, is anyly familiar with those skilled in the art in the technical scope that the present invention discloses; the change that can expect easily or replacement, all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection domain of claims.
Claims (6)
1. a two-way simultaneous multiport security server, comprises single port server, it is characterized in that, also comprise:
One multiport system integrated card, described multiport system integrated card is arranged on single port server, can connect multiple stage computing machine or server, make single port server become multiport parallel server, single port server transfers the server of a formation server;
One multiport customers offload manager, described multiport customers offload manager is connected with single port server communication;
One state detection processes manipulated by single port server.
2. security server according to claim 1, is characterized in that, described multiport system integrated card can be set as 24,48,96 or n port as required; Corresponding, described multiport customers offload manager port is set as and 24,48,96 of system integration card port number Corresponding matching or n port.
3. an implementation method for security server according to claim 1 and 2, is characterized in that, comprises the steps:
S1, by multiport system integrated card, single port server is become multiport parallel server, former single port server converts the server of a server to, and the server of described server and network completely cut off, and hacker attacks forever less than it;
S2, external client makes client can only be divided on a port server by multiport customers offload manager or the direct netting twine quantity that increases, and namely hacker can only have an effect with one of them port server, has nothing to do with other port server;
S3, the server of server detects the state of each port server by state detection processes, if which port server has the illegal operation of hacker, the server of server or it is directly isolated, or switch to and be safe from danger on the port server of data, then implement backward supervision to follow the tracks of, and then realize the safety guarantee effect of server.
4. the implementation method of security server according to claim 3, is characterized in that, realizes parallel computation, parallel control, parallel switching operate with the unified integrated of parallel bus function between multiport parallel server.
5. the implementation method of security server according to claim 3, is characterized in that, the service mode of multiport parallel server, based on the transmitting-receiving of reciprocal causation relation, controls, utilizes data.
6. the implementation method of security server according to claim 3, is characterized in that, between multiport parallel server or multiport parallel server can increase by 2 to n bar netting twine.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410775757.8A CN104504351A (en) | 2014-12-17 | 2014-12-17 | Bidirectional parallel multi-port security server and realization method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410775757.8A CN104504351A (en) | 2014-12-17 | 2014-12-17 | Bidirectional parallel multi-port security server and realization method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104504351A true CN104504351A (en) | 2015-04-08 |
Family
ID=52945747
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410775757.8A Pending CN104504351A (en) | 2014-12-17 | 2014-12-17 | Bidirectional parallel multi-port security server and realization method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104504351A (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1204809A (en) * | 1997-07-09 | 1999-01-13 | 王迪兴 | Multipurpose platform for operation, exchange and control |
| US20060224698A1 (en) * | 2002-11-22 | 2006-10-05 | Sony Corporation | System and method for referencing av data accumulated in av server |
| CN101699457A (en) * | 2009-11-06 | 2010-04-28 | 深圳市优特普科技有限公司 | Computer interface signal transmission management system and interface monitoring method |
-
2014
- 2014-12-17 CN CN201410775757.8A patent/CN104504351A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1204809A (en) * | 1997-07-09 | 1999-01-13 | 王迪兴 | Multipurpose platform for operation, exchange and control |
| US20060224698A1 (en) * | 2002-11-22 | 2006-10-05 | Sony Corporation | System and method for referencing av data accumulated in av server |
| CN101699457A (en) * | 2009-11-06 | 2010-04-28 | 深圳市优特普科技有限公司 | Computer interface signal transmission management system and interface monitoring method |
Non-Patent Citations (1)
| Title |
|---|
| 姚琳琳: "基于分布式对等架构的Web应用防火墙设计与实现", 《中国优秀硕士学位论文全文数据库(信息科技辑)》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102882864B (en) | A kind of virtualization system based on InfiniBand system for cloud computing | |
| US9245147B1 (en) | State machine reference monitor for information system security | |
| CN105472291B (en) | The digital hard disc video recorder and its implementation of multiprocessor cluster | |
| CN108064379A (en) | The query engine fetched for remote endpoint information | |
| CN102970190B (en) | Network traffic monitoring system | |
| CN102724035A (en) | Encryption and decryption method for encrypt card | |
| CN104618304A (en) | Data processing method and data processing system | |
| CN106209362A (en) | A kind of embedded system running rivest, shamir, adelman | |
| Zhang et al. | Consensus recovery of multi-agent systems subjected to failures | |
| Agrawal et al. | Security and privacy of blockchain-based single-bit cache memory architecture for IoT systems | |
| CN105553646B (en) | Reconfigurable S-box circuit structure towards block cipher parallel computation | |
| CN103093446A (en) | Multi-source image fusion device and method based on on-chip system of multiprocessor | |
| CN104393985A (en) | Cipher machine based on multi-NIC (network interface card) technology | |
| CN104504351A (en) | Bidirectional parallel multi-port security server and realization method thereof | |
| CN107329801A (en) | A kind of node administration method and device, many component servers | |
| CN102624567A (en) | Hardware type network safety control server thermal backup device | |
| CN104601729A (en) | Method for using NVMe to realize high-performance cloud storage | |
| CN205318283U (en) | Special isolation equipment mainboard based on explain 410 majestic treaters and shen wei nest plate | |
| CN201681383U (en) | USB isolation controller | |
| CN103532977A (en) | Secure access equipment for intranet and extranet | |
| CN206741485U (en) | Dynamic learning and the data filtering system of amendment based on key factor | |
| CN203414886U (en) | High-performance integrated service computer applied resisting against severe environment | |
| CN205068406U (en) | System is eliminated to tandem type storage medium information | |
| CN202737923U (en) | Data mining system | |
| CN105184178B (en) | A kind of tandem type system for eliminating information in storage media |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150408 |