CN105786730A - Intelligent computer hardware port control device - Google Patents
Intelligent computer hardware port control device Download PDFInfo
- Publication number
- CN105786730A CN105786730A CN201610152883.7A CN201610152883A CN105786730A CN 105786730 A CN105786730 A CN 105786730A CN 201610152883 A CN201610152883 A CN 201610152883A CN 105786730 A CN105786730 A CN 105786730A
- Authority
- CN
- China
- Prior art keywords
- unit
- computer
- control device
- address
- central server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F13/00—Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
- G06F13/10—Program control for peripheral devices
- G06F13/102—Program control for peripheral devices where the programme performs an interfacing function, e.g. device driver
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B19/00—Programme-control systems
- G05B19/02—Programme-control systems electric
- G05B19/04—Programme control other than numerical control, i.e. in sequence controllers or logic controllers
- G05B19/042—Programme control other than numerical control, i.e. in sequence controllers or logic controllers using digital processors
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/30—Monitoring
- G06F11/3003—Monitoring arrangements specially adapted to the computing system or computing system component being monitored
- G06F11/3041—Monitoring arrangements specially adapted to the computing system or computing system component being monitored where the computing system component is an input/output interface
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
Abstract
The invention relates to the technical field of local area network information security, in particular to an intelligent computer hardware port control device.The intelligent computer hardware port control device comprises a central server and at least one computer, wherein the central server and at least one computer jointly form an internal information network, a control device is connected at any computer, the central server comprises a checkout unit and a control unit, and each control device comprises an interface unit, a processing unit, a detecting unit, a distributing unit, a monitoring unit and a communicating unit.The intelligent computer hardware port control device can better improve the data security of the internal information network.
Description
Technical field
The present invention relates to LAN information safety technical field, specifically, relate to a kind of computer hardware port intelligence control device.
Background technology
Popularizing of the Internet, while being greatly enhanced Information Communication speed, also the safety for information brings serious hidden danger.For some enterprises or mechanism of government bodies etc., in order to the higher-security of guarantee information, it is common practice that by one or several central servers, all active computers are set up into an internal information net.To a certain extent, this kind of way can preferably protect the safety of information in internal information net.But, above-mentioned internal information net is often unavoidable to be needed in accessing external network (such as the Internet), and this just cannot provide the interface of information leakage with being avoided for internal information net.In prior art, lack a kind of mechanism that can preferably the information in the LANs such as such as internal information net be protected.
Summary of the invention
Present disclosure is to provide a kind of computer hardware port intelligence control device, and it can overcome certain or some defect of prior art.
Computer hardware port intelligence control device according to the present invention, it includes central server and at least one computer, and central server and described at least one computer set up internal information net jointly, and any computer place is all connected with a control device;Central server includes verification unit and control unit, and control device includes interface unit, processing unit, detection unit, allocation units, monitor unit and communication unit;
Interface unit is for realizing the data interaction between processing unit and corresponding computer, allocation units are used for storing default ip address and treated unit controls to distribute to corresponding computer, detection unit is for detecting the real ip address of corresponding computer in real time and being sent to processing unit, and monitor unit is for the process in monitoring corresponding computer in real time and produces the process exception signal for being sent to processing unit when corresponding computer runs any auto-programming;Processing unit, when real ip address is different from default ip address and when receiving process exception signal, all produces alarm signal and is sent to central server through interface unit, corresponding computer and is sent to external equipment through communication unit simultaneously;
Verification unit is for verifying the IP address being about to access the pre-access computer of internal information net, and when described IP address is not arbitrary default ip address, refuses described pre-access computer by central server and access internal information net;Control device is used for receiving alarm signal, and corresponding computer is locked by central server when receiving alarm signal.
In the present invention, the allocation units of control device can distribute a default ip address for computer, detection unit in control device can detect the real ip address of corresponding computer in real time, when real ip address is different from default ip address, control device can produce alarm signal and be sent to central server and external equipment, corresponding computer can be locked (isolating from internal information net by this computer) when central server receives alarm signal, it is thus possible to prevent computer from passing through other network interface card or smart mobile phone accessing external network (such as the Internet), and then can preferably prevent the information in internal information net from revealing from computer.
In the present invention, arbitrary IP address being about to access the pre-access computer of internal information net can be verified by the verification unit at central server place, and when described IP address is not arbitrary default ip address, refuse described pre-access computer by central server and access internal information net such that it is able to preferably refuse undisclosed computer and access internal information net.
Apart from the above, the process in corresponding computer can also be monitored by the monitor unit of control device such that it is able to preferably places undesirable and by running trojan horse program, the information in internal Information Network is stolen.
By means of the invention it is possible to be effectively improved the security management and control ability to the computer in internal Information Network (Intranet), it is possible to preferably the hidden danger of information security act of violating regulations was eliminated in the budding period.
As preferably, processing unit adopts single-chip microcomputer.
In the present invention, processing unit can adopt such as single-chip microcomputer such that it is able to preferably reduces the cost of manufacture of the present invention.
As preferably, communication unit includes wireless communication module.
In the present invention, communication unit can include such as wireless communication module such that it is able to alarm signal is preferably sent to external equipment wirelessly.
As preferably, external equipment includes mobile phone.
In the present invention, external equipment can include such as mobile phone so that manager can real-time reception to alarm signal.
Accompanying drawing explanation
Fig. 1 is the structured flowchart of the computer hardware port intelligence control device in embodiment 1;
Fig. 2 is the system architecture schematic diagram of the computer hardware port intelligence control device in embodiment 1.
Detailed description of the invention
For further appreciating that present disclosure, the present invention is described in detail in conjunction with the accompanying drawings and embodiments.It should be appreciated that embodiment be only the present invention made an explanation and and non-limiting.
Embodiment 1
As shown in Figure 1, 2, present embodiments provide a kind of computer hardware port intelligence control device, it includes central server and at least one computer, and central server and described at least one computer set up internal information net jointly, and any computer place is all connected with a control device;Central server includes verification unit and control unit, and control device includes interface unit, processing unit, detection unit, allocation units, monitor unit and communication unit.
Interface unit is for realizing the data interaction between processing unit and corresponding computer, allocation units are used for storing default ip address and treated unit controls to distribute to corresponding computer, detection unit is for detecting the real ip address of corresponding computer in real time and being sent to processing unit, and monitor unit is for the process in monitoring corresponding computer in real time and produces the process exception signal for being sent to processing unit when corresponding computer runs any auto-programming;Processing unit, when real ip address is different from default ip address and when receiving process exception signal, all produces alarm signal and is sent to central server through interface unit, corresponding computer and is sent to external equipment through communication unit simultaneously.
Verification unit is for verifying the IP address being about to access the pre-access computer of internal information net, and when described IP address is not arbitrary default ip address, refuses described pre-access computer by central server and access internal information net;Control device is used for receiving alarm signal, and corresponding computer is locked by central server when receiving alarm signal.
In the present embodiment, processing unit adopts single-chip microcomputer, and communication unit includes wireless communication module, and external equipment includes mobile phone.Wherein, alarm signal can be sent to mobile phone with short message mode by wireless communication module.
Below schematically the present invention and embodiment thereof being described, this description does not have restricted, and shown in accompanying drawing is also one of embodiments of the present invention, and actual structure is not limited thereto.So, if those of ordinary skill in the art is enlightened by it, when without departing from the invention objective, without creatively designing the frame mode similar to this technical scheme and embodiment, protection scope of the present invention all should be belonged to.
Claims (4)
1. computer hardware port intelligence control device, it is characterised in that: including central server and at least one computer, central server and described at least one computer set up internal information net jointly, and any computer place is all connected with a control device;Central server includes verification unit and control unit, and control device includes interface unit, processing unit, detection unit, allocation units, monitor unit and communication unit;
Interface unit is for realizing the data interaction between processing unit and corresponding computer, allocation units are used for storing default ip address and treated unit controls to distribute to corresponding computer, detection unit is for detecting the real ip address of corresponding computer in real time and being sent to processing unit, and monitor unit is for the process in monitoring corresponding computer in real time and produces the process exception signal for being sent to processing unit when corresponding computer runs any auto-programming;Processing unit, when real ip address is different from default ip address and when receiving process exception signal, all produces alarm signal and is sent to central server through interface unit, corresponding computer and is sent to external equipment through communication unit simultaneously;
Verification unit is for verifying the IP address being about to access the pre-access computer of internal information net, and when described IP address is not arbitrary default ip address, refuses described pre-access computer by central server and access internal information net;Control device is used for receiving alarm signal, and corresponding computer is locked by central server when receiving alarm signal.
2. computer hardware port intelligence control device according to claim 1, it is characterised in that: processing unit adopts single-chip microcomputer.
3. computer hardware port intelligence control device according to claim 1, it is characterised in that: communication unit includes wireless communication module.
4. computer hardware port intelligence control device according to claim 1, it is characterised in that: external equipment includes mobile phone.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610152883.7A CN105786730A (en) | 2016-03-17 | 2016-03-17 | Intelligent computer hardware port control device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610152883.7A CN105786730A (en) | 2016-03-17 | 2016-03-17 | Intelligent computer hardware port control device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105786730A true CN105786730A (en) | 2016-07-20 |
Family
ID=56392821
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610152883.7A Pending CN105786730A (en) | 2016-03-17 | 2016-03-17 | Intelligent computer hardware port control device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105786730A (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101414927A (en) * | 2008-11-20 | 2009-04-22 | 浙江大学 | Alarm and response system for inner-mesh network aggression detection |
| CN201479143U (en) * | 2009-09-17 | 2010-05-19 | 北京鼎普科技股份有限公司 | Intranet safety management system |
| US20120209407A1 (en) * | 2008-12-10 | 2012-08-16 | International Business Machines Corporation | Network driven actuator mapping agent and bus and method of use |
| CN203645692U (en) * | 2013-11-01 | 2014-06-11 | 国网安徽省电力公司铜陵供电公司 | Isolating device for enterprise intranet violation access terminal |
| US9216509B2 (en) * | 2014-04-10 | 2015-12-22 | Smartvue Corporation | Systems and methods for automated cloud-based analytics for security and/or surveillance |
| CN205485381U (en) * | 2015-12-31 | 2016-08-17 | 国网浙江嵊州市供电公司 | Computer hardware port intelligence management and control system |
-
2016
- 2016-03-17 CN CN201610152883.7A patent/CN105786730A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101414927A (en) * | 2008-11-20 | 2009-04-22 | 浙江大学 | Alarm and response system for inner-mesh network aggression detection |
| US20120209407A1 (en) * | 2008-12-10 | 2012-08-16 | International Business Machines Corporation | Network driven actuator mapping agent and bus and method of use |
| CN201479143U (en) * | 2009-09-17 | 2010-05-19 | 北京鼎普科技股份有限公司 | Intranet safety management system |
| CN203645692U (en) * | 2013-11-01 | 2014-06-11 | 国网安徽省电力公司铜陵供电公司 | Isolating device for enterprise intranet violation access terminal |
| US9216509B2 (en) * | 2014-04-10 | 2015-12-22 | Smartvue Corporation | Systems and methods for automated cloud-based analytics for security and/or surveillance |
| CN205485381U (en) * | 2015-12-31 | 2016-08-17 | 国网浙江嵊州市供电公司 | Computer hardware port intelligence management and control system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111274583A (en) | Big data computer network safety protection device and control method thereof | |
| KR102642875B1 (en) | Systems and methods for providing security to in-vehicle networks | |
| CN104023034B (en) | Security defensive system and defensive method based on software-defined network | |
| CN101309180B (en) | Security network invasion detection system suitable for virtual machine environment | |
| CN104917776A (en) | Industrial control network safety protection equipment and industrial control network safety protection method | |
| US11762989B2 (en) | Securing electronic data by automatically destroying misdirected transmissions | |
| CN104348809A (en) | Network security monitoring method and system | |
| CN105357482B (en) | A kind of video monitoring system, headend equipment and safety permission equipment | |
| CN105005720A (en) | Computer security control system | |
| CN103888480B (en) | Network information security authentication method and cloud device based on cloud monitoring | |
| CN108696535B (en) | Network security protection system and method based on SDN | |
| Okpe et al. | Intrusion detection in internet of things (IoT). | |
| CN113411297A (en) | Situation awareness defense method and system based on attribute access control | |
| CN104253819A (en) | Smart city cloud security architecture | |
| US20230087311A1 (en) | System and method for detection and prevention of cyber attacks at in-vehicle networks | |
| CN103856486A (en) | Large-scale network logical safety domain access control method | |
| CN106506491A (en) | Network safety system | |
| CN205485381U (en) | Computer hardware port intelligence management and control system | |
| Braband | What's Security Level got to do with Safety Integrity Level? | |
| CN105786730A (en) | Intelligent computer hardware port control device | |
| CN114268481A (en) | Method, device, equipment and medium for processing illegal external connection information of intranet terminal | |
| CN207612279U (en) | A kind of food processing factory's network security management system | |
| CN104702456A (en) | Method for monitoring local area network transmission data risk based on keyword extraction strategy | |
| CN109495470A (en) | A kind of network information risk safe early warning method and server and system | |
| CN110990900B (en) | Computer network intelligent monitoring system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160720 |