CN107247905A - A kind of safe mandatory system of position data based on virtual machine - Google Patents
A kind of safe mandatory system of position data based on virtual machine Download PDFInfo
- Publication number
- CN107247905A CN107247905A CN201710337129.5A CN201710337129A CN107247905A CN 107247905 A CN107247905 A CN 107247905A CN 201710337129 A CN201710337129 A CN 201710337129A CN 107247905 A CN107247905 A CN 107247905A
- Authority
- CN
- China
- Prior art keywords
- data
- hosting
- request
- virtual machine
- tenant
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/604—Tools and structures for managing or administering access control systems
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Health & Medical Sciences (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Automation & Control Theory (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The safe mandatory system of a kind of position data based on virtual machine disclosed by the invention, including:Data Hosting application layer, Data Hosting application layer is used for the request of data for receiving tenant's client, sets up and safeguards the database information of tenant in application layer, request of data is sent to Data Hosting management level;Data Hosting management level, Data Hosting management level send data operation request according to request of data to the Data Hosting infrastructure layer;Data Hosting infrastructure layer, Data Hosting infrastructure layer carries out data manipulation according to data operation request to the tenant database being carried in virtual machine.The present invention provides the Data Hosting environment based on independent virtual machine, on the premise of meeting data isolation and performance isolation between different tenant databases, while using shared server between different tenant databases to reduce system resource (CPU, internal memory and IO) usage amount.
Description
Technical field
The present invention relates to positional information security service technical field, more particularly to a kind of position data peace based on virtual machine
Board at the nursery guard system.
Background technology
In positional information security service, the position data between user is exchanged and all needed by certification and monitoring, if certain side
Position data be abused, then may be supervised, trace the source that position data is abused.Therefore, position data safe support
Pipe is different from Data Hosting (the Data Hosting service that the Internet firm such as Amazon RDS provides) towards the public,
There is the requirement such as data isolation, performance isolation and guaranteed reliability in terms of data, services.For these requirements, the applicant is carried out
Beneficial exploration and trial, have found result of the above problems, technical scheme described below is this
Produced under background.
The content of the invention
The technical problems to be solved by the invention:Exist for the safe trustship of existing position data in terms of data, services
The requirement such as data isolation, performance isolation and Reliability Assurance, and one kind is provided and ensure that data isolation, performance isolation, reduction
The safe mandatory system of the position data based on virtual machine of system resource usage amount, the security of raising position data trustship.
Technical problem solved by the invention can be realized using following technical scheme:
A kind of safe mandatory system of position data based on virtual machine, including:
Data Hosting application layer, the Data Hosting application layer is belonged to the Data application system structure of different tenants by several
Into the Data Hosting application layer is used for the request of data for receiving tenant's client, and the number of tenant is set up and safeguard in application layer
According to storehouse information, request of data is sent to Data Hosting management level;
Data Hosting management level, the Data Hosting management level are responsible for carrying out unified management to the tenant database of trustship
The database service of standard is provided with monitoring and to the Data Hosting application layer, the Data Hosting management level receive the number
The request of data sended over according to hosts applications layer, and sent according to the request of data to the Data Hosting infrastructure layer
Data operation request;
Data Hosting infrastructure layer, the Data Hosting infrastructure layer is made up of some data processing servers, and
Form based on virtual machine provides the support to tenant database, and the Data Hosting infrastructure layer receives the Data Hosting
The data operation request that management level are sended over, and according to the data operation request to the tenant data that is carried in virtual machine
Storehouse carries out data manipulation.
In a preferred embodiment of the invention, the request of data is establishment tenant database, deletion of physically data
One kind in storehouse, data storage or inquiry data.
In a preferred embodiment of the invention, when the request of data that the Data Hosting application layer is received is establishment
During tenant database, the Data Hosting infrastructure layer creates at least two tenant data copies according to the request of data and will
These Database Replicas of renting created are deployed in corresponding virtual machine.
In a preferred embodiment of the invention, the Data Hosting management level can also be answered according to the Data Hosting
The request of data sended over layer is provided to the virtual machine that tenant database is loaded in the Data Hosting infrastructure layer
Source dynamic dispatching.
As a result of technical scheme as above, the beneficial effects of the present invention are:The present invention, which is provided, is based on independent virtual
The Data Hosting environment of machine, so that on the premise of meeting the data isolation and performance isolation between different tenant databases, simultaneously
Using shared server between different tenant databases to reduce system resource (CPU, internal memory and IO) usage amount.Simultaneously because number
The database service of standard is provided according to support management level, the Data application system of tenant can have been come with measured database interface
The requests such as the establishment of paired data storehouse, deletion, storage and access, without virtual machine, the physical machine of consideration data actual deployment
And the information such as the network address, further increase the efficiency of Data Hosting.Furthermore, each tenant database at least sets up two numbers
According to storehouse copy, the reliability of hosted data is effectively improved.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing
There is the accompanying drawing used required in technology description to be briefly described, it should be apparent that, drawings in the following description are only this
Some embodiments of invention, for those of ordinary skill in the art, on the premise of not paying creative work, can be with
Other accompanying drawings are obtained according to these accompanying drawings.
Fig. 1 is the structural representation of the present invention.
Fig. 2 is the flow chart of the resources of virtual machine dynamic dispatching of the present invention.
Embodiment
In order that the technical means, the inventive features, the objects and the advantages of the present invention are easy to understand, tie below
Conjunction is specifically illustrating, and the present invention is expanded on further.
Referring to Fig. 1, a kind of safe mandatory system of position data based on virtual machine, including Data Hosting application layer 100, number
According to trustship management level 200 and Data Hosting infrastructure layer 300.
Data Hosting application layer 100 is made up of the Data application system 110 of the different tenants of several ownership, and Data Hosting should
It is used for the request of data for receiving tenant's client with layer 100, the database information of tenant is set up and safeguard in application layer, to data
Trustship management level 200 send request of data, in the present embodiment, and request of data is establishment tenant database, deletion of physically data
One kind in storehouse, data storage or inquiry data.
Data Hosting management level 200 are responsible for carrying out the tenant database of trustship unified management and monitoring and to the number
The database service of standard is provided according to hosts applications layer, Data Hosting management level 200 receive Data Hosting application layer 100 and are transmitted across
The request of data come, and data operation request is sent to Data Hosting infrastructure layer 300 according to request of data.Due to data support
Pipe management level 200 provide the database service of standard, and the Data application system of tenant can be come with measured database interface
The requests such as database establishment, deletion, storage and access, virtual machine, physical machine without consideration data actual deployment
The information such as device and the network address, further increases the efficiency of Data Hosting.
Data Hosting infrastructure layer 300 is made up of some data processing servers 310, and the form based on virtual machine is carried
For the support to tenant database, Data Hosting infrastructure layer 300 receives the data that Data Hosting management level 200 are sended over
Operation requests, and data manipulation is carried out to the tenant database being carried in virtual machine according to data operation request.
In order to improve the reliability of hosted data, when the request of data that Data Hosting application layer 100 is received is rented to create
During user data storehouse, Data Hosting infrastructure layer 300 according to the request of data create at least two tenant data copies, and by this
The Database Replica of renting created a bit is deployed in corresponding virtual machine.
The request of data that Data Hosting management level 200 can also be sended over according to Data Hosting application layer 100 is to data
The virtual machine that tenant database is loaded in trustship infrastructure layer 300 carries out resource dynamic dispatching.Referring to Fig. 2, Data Hosting pipe
The reason performance analyzing and training model of layer 200 configures lower database service performance to particular system resource and is modeled, when treating point
The result of resource allocation is obtained after the change in resources matched somebody with somebody by resource distribution module, resource data is instructed according to allocation result
Original resource allocator model is updated after white silk.
The general principle and principal character and advantages of the present invention of the present invention has been shown and described above.The technology of the industry
Personnel are it should be appreciated that the present invention is not limited to the above embodiments, and the simply explanation described in above-described embodiment and specification is originally
The principle of invention, without departing from the spirit and scope of the present invention, various changes and modifications of the present invention are possible, these changes
Change and improvement all fall within the protetion scope of the claimed invention.The claimed scope of the invention by appended claims and its
Equivalent thereof.
Claims (4)
1. a kind of safe mandatory system of position data based on virtual machine, it is characterised in that including:
Data Hosting application layer, the Data Hosting application layer is made up of the Data application system of the different tenants of several ownership,
The Data Hosting application layer is used for the request of data for receiving tenant's client, and the database of tenant is set up and safeguard in application layer
Information, request of data is sent to Data Hosting management level;
Data Hosting management level, the Data Hosting management level are responsible for the unified management of the tenant database progress to trustship and prison
Control and the database service that standard is provided to the Data Hosting application layer, the Data Hosting management level receive the data support
The request of data that pipe application layer is sended over, and data are sent to the Data Hosting infrastructure layer according to the request of data
Operation requests;
Data Hosting infrastructure layer, the Data Hosting infrastructure layer is made up of some data processing servers, and is based on
The form of virtual machine provides the support to tenant database, and the Data Hosting infrastructure layer receives the Data Hosting management
The data operation request that layer is sended over, and the tenant database being carried in virtual machine is entered according to the data operation request
Row data manipulation.
2. the position data safe mandatory system as claimed in claim 1 based on virtual machine, it is characterised in that the data please
Ask to create one kind in tenant database, deletion of physically database, data storage or inquiry data.
3. the position data safe mandatory system as claimed in claim 1 based on virtual machine, it is characterised in that when the data
The request of data that hosts applications layer is received is creates during tenant database, and the Data Hosting infrastructure layer is according to the data
Request creates at least two tenant data copies and the Database Replica of renting of these establishments is deployed in corresponding virtual machine.
4. the position data safe mandatory system as claimed in claim 1 based on virtual machine, it is characterised in that the data support
The request of data that pipe management level can also be sended over according to the Data Hosting application layer is to the Data Hosting infrastructure
The virtual machine of loading tenant database carries out resource dynamic dispatching in layer.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710337129.5A CN107247905A (en) | 2017-05-14 | 2017-05-14 | A kind of safe mandatory system of position data based on virtual machine |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710337129.5A CN107247905A (en) | 2017-05-14 | 2017-05-14 | A kind of safe mandatory system of position data based on virtual machine |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107247905A true CN107247905A (en) | 2017-10-13 |
Family
ID=60016577
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710337129.5A Pending CN107247905A (en) | 2017-05-14 | 2017-05-14 | A kind of safe mandatory system of position data based on virtual machine |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107247905A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115086405A (en) * | 2022-06-10 | 2022-09-20 | 上海莉莉丝科技股份有限公司 | Data processing method, system, device, medium and program product for server |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20130305348A1 (en) * | 2006-10-13 | 2013-11-14 | Computer Protection Ip, Llc | Client authentication and data management system |
| CN103544319A (en) * | 2013-11-06 | 2014-01-29 | 浪潮(北京)电子信息产业有限公司 | Multi-tenant database sharing method and multi-tenant database as-a-service system |
| CN104572255A (en) * | 2013-10-09 | 2015-04-29 | 中国移动通信集团公司 | Multilayer application hosting method, device and system |
-
2017
- 2017-05-14 CN CN201710337129.5A patent/CN107247905A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20130305348A1 (en) * | 2006-10-13 | 2013-11-14 | Computer Protection Ip, Llc | Client authentication and data management system |
| CN104572255A (en) * | 2013-10-09 | 2015-04-29 | 中国移动通信集团公司 | Multilayer application hosting method, device and system |
| CN103544319A (en) * | 2013-11-06 | 2014-01-29 | 浪潮(北京)电子信息产业有限公司 | Multi-tenant database sharing method and multi-tenant database as-a-service system |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115086405A (en) * | 2022-06-10 | 2022-09-20 | 上海莉莉丝科技股份有限公司 | Data processing method, system, device, medium and program product for server |
| CN115086405B (en) * | 2022-06-10 | 2024-05-31 | 上海莉莉丝科技股份有限公司 | Data processing method, system, device, medium and program product for server |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI473029B (en) | Extensible and programmable multi-tenant service architecture | |
| US8473585B1 (en) | Multi-threaded optimization for data upload | |
| CN104767834B (en) | System and method for the transmission for accelerating to calculate environment to remote user | |
| CA2825153C (en) | Strong rights management for computing application functionality | |
| US10922303B1 (en) | Early detection of corrupt data partition exports | |
| US11310204B2 (en) | Centralized access to data repository from a multi-cloud computing environment | |
| US9270703B1 (en) | Enhanced control-plane security for network-accessible services | |
| US20110162069A1 (en) | Suspicious node detection and recovery in mapreduce computing | |
| CN106375321A (en) | Migrating authenticated content towards content consumer | |
| CN106506620A (en) | Cloud desktop intelligent terminal management system | |
| CN107633014A (en) | A kind of date storage method and server | |
| CN110035079A (en) | A kind of honey jar generation method, device and equipment | |
| CN103281359A (en) | Cloud desktop system and operating method | |
| CN103618752A (en) | Virtual machine remote desktop safety access system and method | |
| CN106713391A (en) | Session information sharing method and sharing system | |
| CN109711122B (en) | Authority management method, device, system, equipment and readable storage medium | |
| CN104410604A (en) | SaaS service system for achieving large scale of users to log in at the same time and method thereof | |
| US20210232639A1 (en) | Cross platform collaborative document management system | |
| US10979392B2 (en) | Preventing unauthorized access to secure enterprise information systems using a multi-filtering and randomizing control system | |
| CN102664894A (en) | System and method for software provision based on cloud computing | |
| CN107133036A (en) | The management method and device of a kind of module | |
| CN107247905A (en) | A kind of safe mandatory system of position data based on virtual machine | |
| CN106101175B (en) | Apparatus management/control methods, devices and systems | |
| CN107770139B (en) | SAMBA identity authentication method based on third-party USBKEY equipment | |
| CN101465730A (en) | Method and system for automatically uploading and downloading data |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20171013 |
|
| RJ01 | Rejection of invention patent application after publication |