CN107241331B - Method and system for multi-organization sharing public network cluster platform - Google Patents
Method and system for multi-organization sharing public network cluster platform Download PDFInfo
- Publication number
- CN107241331B CN107241331B CN201710434458.1A CN201710434458A CN107241331B CN 107241331 B CN107241331 B CN 107241331B CN 201710434458 A CN201710434458 A CN 201710434458A CN 107241331 B CN107241331 B CN 107241331B
- Authority
- CN
- China
- Prior art keywords
- organization
- processing unit
- service processing
- service
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/567—Integrating service provisioning from a plurality of service providers
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a method and a system for a multi-organization sharing public network cluster platform, which isolates each organization service processing unit, so that an organization can independently manage services and users, the safety and the individuation of the services of the users are ensured, the service deployment can be accelerated, and the network construction investment of the organization users is reduced, thereby reducing the use cost; in addition, system management and service processing are layered, and the system management unit performs unified maintenance and monitoring management on each service processing unit through a channel, so that the maintenance cost is reduced.
Description
Technical Field
The invention relates to the technical field of communication, in particular to a method and a system for a multi-organization sharing public network cluster platform.
Background
There are basically two services of the current public network based cluster;
the platform provides services, all users access the services through a cluster platform, and the scale is enlarged by improving the efficiency of the platform or distributed computing; user account, authority, state and virtual cluster channel are maintained on the platform, and service data are operated on the platform; the method has the advantages that the user does not need to purchase the server and the network environment required by the server, the use cost is low, and the defects that the service maintenance is troublesome and the potential safety hazard of data exists; the use has limitation, and is generally only suitable for assistance applications with high similarity to the work, for example, taxi driver groups in a certain city share one channel to communicate information;
by constructing a cluster service environment, a single organization exclusively shares the service; the system has the advantages that the organization can install the management of planning business and user data which requires the greatest flexibility of the organization, can ensure the safety of the data of the organization, can track the historical communication information of the organization, and is particularly suitable for large service organizations, such as property management companies, hotels, tourism service enterprises and the like; the method has the disadvantages that the cost is high, a service network needs to be built by self, certain technical capability is needed, the response timeliness after a fault occurs also has a risk, and in addition, the system upgrading cost is high.
Disclosure of Invention
In order to solve the above technical problems, an object of the present invention is to provide: a method and system for a multi-organization shared public network cluster platform with low use cost and convenient maintenance.
The technical scheme adopted by the invention is as follows: a method for a multi-organization shared public network cluster platform, comprising: constructing an independent service processing unit and an independent system management unit, isolating the service processing unit from the system management unit, and establishing a detection and maintenance communication channel, wherein the system management unit performs unified maintenance and monitoring management on each service processing unit through the detection and maintenance communication channel; wherein the service processing unit is divisible into a plurality of separate isolated entities, wherein each isolated entity comprises an organizational share, said organizational share comprising service implementation and service management.
Further, it still includes: the system management unit establishes a uniform login entrance, and the user client accesses the service processing unit through the login entrance.
Further, the accessing, by the user client, the dedicated service processing unit through the login entry specifically includes: a client of a user initiates a request by using a self address and an organization identifier; the system part checks the legality of the request, searches out the address of the corresponding organization business processing unit and the access mode according to the organization identification and returns the address and the access mode to the client of the user; and the client of the user adds a user name and a password to perform user authentication of the organization service processing unit according to the acquired address and access mode of the organization service processing unit, and after the authentication is successful, the acquired session can be used for performing service operations such as channel selection, monitoring, voice communication and the like.
Further, the system management unit communicates with the service processing unit and manages the software upgrade of the service processing unit.
Further, the service processing unit and the system management unit respectively run on a virtual server or a physically separate server in opposition.
The invention also provides a system for sharing the public network cluster platform by multiple organizations, which comprises the following steps: the system comprises a system management unit, a detection and maintenance channel and a plurality of service processing units, wherein the system management unit is used for carrying out organization management and carrying out unified maintenance and monitoring management on each service processing unit; the service processing unit is used for providing service management and service realization services; and the detection and maintenance channel is used for communication connection between the system management unit and the service processing unit.
Further, the system management unit further comprises an access module, and the access module is used for the user client to access the service processing unit.
Furthermore, the system management unit further comprises a software upgrade management module, which is used for managing the software upgrade of the service processing unit.
The invention has the beneficial effects that:
the isolation of each organization business processing unit ensures that an organization can independently manage the business and the users, the safety and the individuation of the business of the users are ensured, and the business deployment can be accelerated and the network construction investment of the organization users can be reduced, thereby reducing the use cost; in addition, system management and service processing are layered, and the system management unit performs unified maintenance and monitoring management on each service processing unit through a channel; the maintenance cost is reduced.
Drawings
The following further describes embodiments of the present invention with reference to the accompanying drawings:
FIG. 1 is a flow diagram of a method for a multi-organization shared public network cluster platform;
FIG. 2 is a block diagram of a system for a multi-organization shared public network cluster platform;
FIG. 3 is an interaction diagram of a system for a multi-organization shared public network cluster platform.
Detailed Description
It should be noted that the embodiments and features of the embodiments in the present application may be combined with each other without conflict.
As shown in fig. 1, a method for a multi-organization shared public network cluster platform includes: constructing an independent service processing unit and an independent system management unit, isolating the service processing unit from the system management unit, and establishing a detection and maintenance communication channel, wherein the system management unit performs unified maintenance and monitoring management on each service processing unit through the detection and maintenance communication channel; wherein the service processing unit is divisible into a plurality of separate isolated entities, wherein each isolated entity comprises an organizational share, said organizational share comprising service implementation and service management.
Separating the service processing of the platform, and independently dividing the service processing unit into a plurality of isolated entities by virtue of a virtualization technology; the separation of system maintenance and service management is realized;
1) the platform service is divided into two parts: one is a system management part, including a system maintenance and organization management part; one is a service processing part, the whole system is composed of a plurality of service parts in parallel, each service part is allocated to an organization for exclusive use and comprises a service realization part and a service management part; unified maintenance and independent service configuration are achieved, system construction cost and maintenance cost of each organization are reduced, and flexibility of service use of the organizations is improved; the service processing unit and the system management unit respectively run on a virtual server or a physically independent server in an opposite mode.
2) The service processing part is virtualized and isolated or physically isolated and independent, so that service data user data of each organization has safety; meanwhile, each organization can reasonably configure hardware and network bandwidth resources according to the service requirement of the organization;
3) the system management part and the service processing part establish a detection and maintenance channel and set a flow protocol to realize the organic combination and the cooperative operation of services; the system can be shared to monitor, maintain and rapidly upgrade;
in conclusion, through layering and separation of the platforms, unified maintenance, monitoring and management, including fault state monitoring and unified upgrading, are achieved; the method realizes that each organization only cares about the service use of the organization, and achieves the flexibility of the service use and the resource allocation and the data security.
The system management unit establishes a uniform login entry, and a client of a user initiates a request by using the address and an organization identifier of the client; the system part checks the legality of the request, searches out the address of the corresponding organization business processing unit and the access mode according to the organization identification and returns the address and the access mode to the client of the user; and the client of the user adds a user name and a password to perform user authentication of the organization service processing unit according to the acquired address and access mode of the organization service processing unit, and after the authentication is successful, the acquired session can be used for performing service operations such as channel selection, monitoring, voice communication and the like. Through the management of the system management unit on the organization and the uniform login entry, the platform can check the permission of the organization unit.
The unified login entrance and the communication between the system management unit and the service processing unit are realized to manage and realize the software upgrade of the service processing unit, thereby achieving the centralized monitoring and maintenance and the unification of the software upgrade (including a client and a service part), thus reducing the technical requirements of organizing users and accelerating the efficiency of abnormity and system update
As shown in fig. 2, a system for a multi-organization shared public network cluster platform comprises: the system comprises a system management unit, a detection and maintenance channel and a plurality of service processing units, wherein the system management unit is used for carrying out organization management and carrying out unified maintenance and monitoring management on each service processing unit; the service processing unit is used for providing service management and service realization services; and the detection and maintenance channel is used for communication connection between the system management unit and the service processing unit.
The system comprises a system management unit, an organization service processing unit A, an organization group service processing unit B and a special service component which are independent computing units, can be virtual servers or physically independent servers;
for simplicity of illustration, the organization business processing unit A, the organization business processing unit B and the professional business components are only described as representatives, and the software entities are the same; the organization business processing unit A and the organization business processing unit B only indicate that the assembly serves the organization A and the organization B, the organization A only shares the organization A business processing unit, the organization B only shares the organization business processing unit, and the like can distribute respective business processing to more organizations; the special service processing unit represents platform service provided uniformly, directly faces to the end user and does not belong to any organization.
Further as a preferred embodiment, the system management unit further includes an access module, and the access module is used for the user client to access the service processing unit to which the user client belongs.
Further as a preferred embodiment, the system management unit further includes a software upgrade management module, which is used for managing software upgrade of the service processing unit.
As shown in fig. 3, an interaction diagram for a system for a multi-organization shared public network cluster platform. The business processing unit has two types of users, including BUSS, ADMIN, which mainly performs the functions of business and personnel configuration and data maintenance; the USER is mainly used by the cluster service of the service processing unit. The USER of the system management unit part is BUSS, USER, which is mainly used for accessing an entrance (which can be expanded to provide validity check) and upgrading a client; SYSADMIN, mainly performs the management of the organization and the monitoring and maintenance functions of the components of the business segment. The business processing unit part and the system management unit part are communicated and state reporting and butt joint, so that the operations of monitoring, troubleshooting, software upgrading and the like of the business part can be provided; the access module of the system management unit provides access of all users, verifies the validity of the user client and informs the client of an access service address and a verification mode according to the organization information provided by the user; then the user communicates the information of the cluster service with the service part.
For example, a plurality of organizations exist, including a taxi company A, a defense team B and an urban management team C; a, B and C respectively have a set of software system, namely an organization A service processing unit, an organization B service processing unit and an organization C service processing unit; these systems are all interfaced to a system management processing unit; the software systems of A, B and C are deployed on the server of the company or a VPS system is rented, the software systems are responsible for storing the information of the company, and the services of A, B and C have differences, such as taxi companies only need to have timely voices, sanitation pairs possibly need to take pictures, city management teams possibly also need to record and the like;
a, B and C determine how much broadband the service needs, what specification server processing capacity, storage space and the like according to the flow of the service, and the stored information can be managed by the service for safety, including pictures, sound recordings and the like.
The service processing units of A, B and C communicate with the system management unit, and the communication content can be the version number of software telling the system management unit, the access address of the service processing unit, the running state of the service processing unit (including fault, resource consumption, excessive access and the like), whether the version is required to be updated or not, whether the operation is required to be performed or not (which can be completed like a tr069 protocol) or not and the like; the system management unit is used for providing access services of the A, B and C clients, for example, the A, B and C clients (such as taxi driver terminals, workers in a guardian, team members in urban management and the like) log in addresses of the system part assembly firstly, then request information with the clients when sending the information, including client codes (knowing what server addresses are to be accessed), versions, encrypted user names, passwords and the like, and then the system part assembly is verified, and verified contents (including whether sources are legal, whether versions are to be upgraded and whether the servers are limited to allow access) are verified and then transferred to service addresses, namely exclusive assemblies of the A, B and C, so that the A client performs service processing with the A service processing unit, and the B client performs service processing with the B service processing unit;
the system management unit is a shared platform and can provide software upgrading for each unique business processing unit, wherein the software upgrading comprises a client and a server, centralized login access, centralized state management and even fault report, which are professional services;
a dedicated service processing unit, which is a service shared by a plurality of organizations, such as a property company managing a plurality of cells;
a property company can be provided with a professional service module, then all cells are connected, and people are grouped into different groups according to different cells, such as a group for managing first-stage people R1, R2, R3 and R4 of a cell a, a group for managing second-stage people R5, R6, R7 and R8 of a cell a, a group for managing first-stage people R9, R10, R11 and R12 of a cell B, so that the groups are identical in software and function, and can only communicate in groups, such as R1, R2, R3 and R4 can communicate, R5, R6, R7 and R8 can communicate, and R9, R10, R11 and R12 can communicate;
while the preferred embodiments of the present invention have been illustrated and described, it will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.
Claims (7)
1. A method for a multi-organization shared public network cluster platform, comprising: constructing an independent service processing unit and an independent system management unit, isolating the service processing unit from the system management unit, and establishing a detection and maintenance communication channel, wherein the system management unit performs unified maintenance and monitoring management on each service processing unit through the detection and maintenance communication channel;
the service processing unit can be divided into a plurality of independent and isolated entities, wherein each isolated entity comprises an organization independent share, and the organization independent share comprises service implementation and service management;
the method for accessing the service processing unit by the user client through the login entrance specifically comprises the following steps:
a client of a user initiates a request by using a self address and an organization identifier;
the system part checks the legality of the request, searches out the address of the corresponding organization business processing unit and the access mode according to the organization identification and returns the address and the access mode to the client of the user;
and the client of the user adds a user name and a password to perform user authentication of the organization service processing unit according to the acquired address and access mode of the organization service processing unit, and after the authentication is successful, the channel selection and the voice communication service monitoring operation can be performed through the acquired session.
2. The method for a multi-organization shared public network cluster platform according to claim 1, further comprising: the system management unit establishes a uniform login entrance, and the user client accesses the service processing unit through the login entrance.
3. The method for a multi-organization shared public network cluster platform according to any one of claims 1 to 2, wherein a system management unit communicates with the service processing units and manages software upgrades of the service processing units.
4. The method for a multi-organization shared public network cluster platform according to claim 3, wherein: the service processing unit and the system management unit respectively run on a virtual server or a physically independent server in an opposite mode.
5. A system for a multi-organization shared public network cluster platform, comprising: a system management unit, a detection and maintenance channel and a plurality of service processing units,
the system management unit is used for carrying out organization management and carrying out unified maintenance and monitoring management on each service processing unit;
the service processing unit is used for providing service management and service realization services;
the detection and maintenance channel is used for communication connection between the system management unit and the service processing unit;
the working method for the user client to access the affiliated service processing unit through the login entrance specifically comprises the following steps:
a client of a user initiates a request by using a self address and an organization identifier;
the system part checks the legality of the request, searches out the address of the corresponding organization business processing unit and the access mode according to the organization identification and returns the address and the access mode to the client of the user;
and the client of the user adds a user name and a password to perform user authentication of the organization service processing unit according to the acquired address and access mode of the organization service processing unit, and after the authentication is successful, the channel selection and the voice communication service monitoring operation can be performed through the acquired session.
6. The system for multi-organization shared public network cluster platform according to claim 5, wherein the system management unit further comprises an access module for a user client to access the service processing unit.
7. The system for a multi-organization shared public network cluster platform according to claim 6, wherein the system management unit further comprises a software upgrade management module for managing software upgrades of the business processing units.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710434458.1A CN107241331B (en) | 2017-06-09 | 2017-06-09 | Method and system for multi-organization sharing public network cluster platform |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710434458.1A CN107241331B (en) | 2017-06-09 | 2017-06-09 | Method and system for multi-organization sharing public network cluster platform |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107241331A CN107241331A (en) | 2017-10-10 |
| CN107241331B true CN107241331B (en) | 2020-07-28 |
Family
ID=59986114
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710434458.1A Active CN107241331B (en) | 2017-06-09 | 2017-06-09 | Method and system for multi-organization sharing public network cluster platform |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107241331B (en) |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101458808A (en) * | 2008-12-31 | 2009-06-17 | 中国建设银行股份有限公司 | Bank management system, server cluster and correlation method |
| CN102324074A (en) * | 2011-10-28 | 2012-01-18 | 山东城通科技有限公司 | Informatization application cluster platform of small and medium enterprises |
-
2017
- 2017-06-09 CN CN201710434458.1A patent/CN107241331B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101458808A (en) * | 2008-12-31 | 2009-06-17 | 中国建设银行股份有限公司 | Bank management system, server cluster and correlation method |
| CN102324074A (en) * | 2011-10-28 | 2012-01-18 | 山东城通科技有限公司 | Informatization application cluster platform of small and medium enterprises |
Non-Patent Citations (1)
| Title |
|---|
| "基于虚拟化的安全隔离技术在电力信息网的应用";黄倩,王飞,王锐;《电信技术》;20150625;第86-89页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107241331A (en) | 2017-10-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109040276B (en) | Method and device for constructing cloud platform, computer storage medium and terminal | |
| CN107181808B (en) | Private cloud system and operation method | |
| CN105283838B (en) | Distributed lock management in cloud computing environment | |
| CN108134764B (en) | Distributed data sharing and exchanging method and system | |
| CN103001992B (en) | Virtual desktop realizes system and its application method | |
| US8566459B2 (en) | Systems and methods for integrated console management interface | |
| US8676984B2 (en) | Live directory of cloud tenants to enable inter-tenant interaction via cloud | |
| CN111861140A (en) | Service processing method, device, storage medium and electronic device | |
| CN110049048B (en) | Data access method, equipment and readable medium for government affair public service | |
| CN110138855A (en) | Development resources cloud platform and resource share method | |
| CN106302334A (en) | Access role acquisition methods, Apparatus and system | |
| US8291214B2 (en) | Apparatus and method for secure remote processing | |
| US20200137029A1 (en) | Secure channel for cloud deployment unit | |
| CN103020543B (en) | A kind of virtual disk reflection encryption handling system and method | |
| US10686792B1 (en) | Apparatus and method for administering user identities across on premise and third-party computation resources | |
| CN104363306A (en) | Private cloud management control method for enterprise | |
| CN110881039B (en) | Cloud security management system | |
| CN111045652B (en) | Power distribution network development and service system | |
| CN113300866B (en) | Node capacity control method, device, system and storage medium | |
| CN107241331B (en) | Method and system for multi-organization sharing public network cluster platform | |
| CN111147429B (en) | Project research and development environment deployment system | |
| CN116366689A (en) | Distributed industrial private cloud system | |
| CN109697514A (en) | A kind of provincial auto repair Electronic Health Record system | |
| US11290318B2 (en) | Disaster recovery of cloud resources | |
| CN109104482A (en) | A kind of distributed system of earth mat platform |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |