CN107295078A - A kind of patch distribution tracking and control system and method - Google Patents

A kind of patch distribution tracking and control system and method Download PDF

Info

Publication number
CN107295078A
CN107295078A CN201710463959.2A CN201710463959A CN107295078A CN 107295078 A CN107295078 A CN 107295078A CN 201710463959 A CN201710463959 A CN 201710463959A CN 107295078 A CN107295078 A CN 107295078A
Authority
CN
China
Prior art keywords
patch
cloud platform
client
sent
installation kit
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710463959.2A
Other languages
Chinese (zh)
Inventor
周祥国
任明虎
刘威
彭晓迪
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shandong Inspur Genersoft Information Technology Co Ltd
Original Assignee
Shandong Inspur Genersoft Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shandong Inspur Genersoft Information Technology Co Ltd filed Critical Shandong Inspur Genersoft Information Technology Co Ltd
Priority to CN201710463959.2A priority Critical patent/CN107295078A/en
Publication of CN107295078A publication Critical patent/CN107295078A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/12Protecting executable software
    • G06F21/121Restricting unauthorised execution of programs
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/60Scheduling or organising the servicing of application requests, e.g. requests for application data transmissions using the analysis and optimisation of the required network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Technology Law (AREA)
  • Multimedia (AREA)
  • Computing Systems (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The invention provides a kind of patch distribution tracking and control system and method, the system includes:Cloud platform and at least one client;Wherein, any client at least one client, according to the software identification information carried in control data, can obtain the to be installed patch corresponding with software identification information as host node, for receiving control data from external network;Patch to be installed is sent to cloud platform;Any client at least one client can be used as from node, and cloud platform is sent to for receiving download request, and by download request;Corresponding patch to be installed is obtained from cloud platform;Cloud platform, for being stored to the patch to be installed that at least one host node is sent;When receiving from the download request that node is sent, according to the patch information carried in download request, it is determined that patch to be installed corresponding with patch information, and the patch to be installed determined is sent to from node.This programme can improve patch download efficiency.

Description

A kind of patch distribution tracking and control system and method
Technical field
The present invention relates to field of computer technology, more particularly to a kind of patch distribution tracking and control system and method.
Background technology
With the development of computer technology, various software systems can offer convenience for the life of people.Write in programmer During the program of software systems, it is possible to leave defective, the software systems resulted in start a leak in use.For The harm that the leak of software systems is brought, it is the most effective and economic precautionary measures to install corresponding patch.
At present, when the software systems on for client install patch, staff is needed to inspect periodically in each client Software systems whether start a leak, and whether service end has issued corresponding patch, corresponding with server leak when existing Patch when, this patch is downloaded in corresponding client.
Because the amount of software installed in the quantity and each server of server is more, carried out using aforesaid way It is less efficient when patch is downloaded.
The content of the invention
The embodiments of the invention provide a kind of patch distribution tracking and control system and method, patch can be improved and download effect Rate.
In a first aspect, the embodiments of the invention provide a kind of patch distribution tracking and control system, including:Cloud platform and extremely A few client;Wherein,
Any client at least one described client can be as host node, for receiving control data, according to institute The software identification information carried in control data is stated, what acquisition was corresponding with the software identification information from external network waits to pacify Fill patch;The patch to be installed is sent to the cloud platform;
Any client at least one described client can be used as from node, for receiving download request, and by institute State download request and be sent to the cloud platform;Corresponding patch to be installed is obtained from the cloud platform;
The cloud platform, for being stored to the patch to be installed that host node at least one described is sent;When connecing Receive it is described from the download request that node is sent when, according to the patch information carried in the download request, it is determined that being mended with described The corresponding patch to be installed of fourth information, and the patch to be installed determined is sent to described from node.
Preferably,
The cloud platform, is further used for storing the first attribute of at least one corresponding software of each described client Information;Second attribute information of the patch to be installed sent according to the host node and the first category of at least one software Property information, it is determined that at least one target software corresponding with the patch to be installed;It is determined that with least one described target software At least one corresponding target sends corresponding more with the patch to be installed from node at least one described target from node Fresh information;
Each it is described from node as target from node, for exporting the fresh information to user, receive described use The download request that family is inputted according to the fresh information.
Preferably,
In at least one described client, each client is further used for installing first as active client Information is sent to the cloud platform;The mandate installation kit that the cloud platform is sent is received, is parsed from the mandate installation kit The patch to be installed and the second mount message;, will when first mount message is identical with second mount message The patch to be installed is installed in corresponding software;
The cloud platform, pacifies for according to first mount message and the patch to be installed, generating described authorize Dress bag, and the mandate installation kit is sent to the active client.
Preferably,
The cloud platform, for prestoring the corresponding digital certificate of each described client;Receiving described work as During the first mount message that preceding client is sent, it is determined that digital certificate corresponding with the active client;According to what is determined The digital certificate, the first mount message and the patch to be installed generate the mandate installation kit;
The active client, for parsing the digital certificate from the mandate installation kit, when the numeral card When book matches with the digital certificate prestored, determine whether first mount message is identical with the second mount message.
Preferably,
The cloud platform, for the mandate installation kit to be encrypted, and the mandate installation kit after encryption is sent out Give the active client;
The active client, for the mandate installation kit after the encryption to be decrypted, is awarded described in after decryption The patch to be installed and second mount message are parsed in power installation kit.
Second aspect, the embodiments of the invention provide a kind of patch distribution tracking and control method, including:
Any client receives control data as host node;
According to the software identification information carried in the control data, acquisition is corresponding with the software identification information to be waited to pacify Fill patch;
The patch to be installed is sent to cloud platform;
The patch to be installed that the cloud platform is sent to host node at least one described is stored;
Any client receives download request as from node, and the download request is sent into the cloud platform;
The cloud platform is according to the patch information carried in the download request, it is determined that corresponding with the patch information treat Patch is installed, and the patch to be installed determined is sent to described from node.
Preferably,
Further comprise:The cloud platform is believed the first attribute of at least one corresponding software of client each described Breath is stored;
After the patch to be installed that the cloud platform is sent to host node at least one described is stored, Further comprise:
According to the second attribute information of the patch to be installed and the first attribute information of at least one software, really Fixed at least one target software corresponding with the patch to be installed;
It is determined that at least one target corresponding with least one described target software is from node, at least one described target Fresh information corresponding with the patch to be installed is sent from node;
Any client receives download request as from node, including:
Each it is described from node as target from node, export the fresh information to user, receive user's root The download request inputted according to the fresh information.
Preferably,
Further comprise:Each client is further used for the first mount message being sent to as active client The cloud platform;
The patch to be installed is sent to after cloud platform described, further comprised:
The cloud platform generates the mandate installation kit according to first mount message and the patch to be installed, And the mandate installation kit is sent to the active client;
The patch to be installed determined is sent to described after node described, further comprised:
The active client receives the mandate installation kit that the cloud platform is sent, and is parsed from the mandate installation kit The patch to be installed and the second mount message;
When first mount message is identical with second mount message, the patch to be installed is installed to correspondence Software in.
Preferably,
Further comprise:The cloud platform prestores the corresponding digital certificate of each described client;
The cloud platform generates described authorize and installed according to first mount message and the patch to be installed Bag, including:
The cloud platform determines digital certificate corresponding with the active client;
Installed according to the digital certificate determined, the first mount message and described authorize of patch generation to be installed Bag;
After the active client receives the mandate installation kit that the cloud platform is sent, described when described the When one mount message is identical with second mount message, before the patch to be installed is installed in corresponding software, enter One step includes:
The active client parses the digital certificate from the mandate installation kit;
When the digital certificate and the digital certificate that prestores match, determine first mount message whether with second Mount message is identical.
Preferably,
The cloud platform generates described authorize and installed according to first mount message and the patch to be installed Bag, and the mandate installation kit is sent to the active client, including:
The mandate installation kit is encrypted the cloud platform, and the mandate installation kit after encryption is sent into institute State active client;
The active client receives the mandate installation kit that the cloud platform is sent, and is solved from the mandate installation kit The patch to be installed and the second mount message are separated out, including:
Mandate installation kit after the encryption is decrypted the active client, is installed from the mandate after decryption The patch to be installed and second mount message are parsed in bag.
The embodiments of the invention provide a kind of patch distribution tracking and control system and method, any client can be used as master Node receives control data, and according to the software identification information carried in control data, corresponding treat is obtained from external network Patch is installed, this patch to be installed is then sent to cloud platform, the to be installed of cloud platform storage each host node transmission is utilized Patch.Any client can be used as from node and receive download request, and this download request is sent into cloud platform, so that cloud Platform determines corresponding patch to be installed according to the patch information carried in download request, and by the patch to be installed determined It is sent to from node.Thus, each client can realize the automatic distributing of patch according to cloud platform, and be taken without staff Manual type is inspected periodically to be downloaded with patch, so as to improve patch download efficiency.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing There is the accompanying drawing used required in technology description to be briefly described, it should be apparent that, drawings in the following description are the present invention Some embodiments, for those of ordinary skill in the art, on the premise of not paying creative work, can also basis These accompanying drawings obtain other accompanying drawings.
Fig. 1 is the structural representation of a kind of patch distribution tracking that one embodiment of the invention is provided and control system;
Fig. 2 is the flow chart of a kind of patch distribution tracking that one embodiment of the invention is provided and control method;
Fig. 3 is the flow chart of a kind of patch distribution tracking that another embodiment of the present invention is provided and control method.
Embodiment
To make the purpose, technical scheme and advantage of the embodiment of the present invention clearer, below in conjunction with the embodiment of the present invention In accompanying drawing, the technical scheme in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment is A part of embodiment of the present invention, rather than whole embodiments, based on the embodiment in the present invention, those of ordinary skill in the art The every other embodiment obtained on the premise of creative work is not made, belongs to the scope of protection of the invention.
As shown in figure 1, the embodiments of the invention provide a kind of patch distribution tracking and control system, the system can be wrapped Include:Cloud platform 101 and at least one client 102;Wherein,
Any client at least one described client 102 can as host node, for receiving control data, according to The software identification information carried in the control data, obtains corresponding with the software identification information treat from external network Patch is installed;The patch to be installed is sent to the cloud platform 101;
Any client at least one described client 102 can be used as from node, for receiving download request, and will The download request is sent to the cloud platform 101;Corresponding patch to be installed is obtained from the cloud platform 101;
The cloud platform 101, for being stored to the patch to be installed that host node at least one described is sent;When Receive it is described from the download request that node is sent when, according to the patch information carried in the download request, it is determined that with it is described The corresponding patch to be installed of patch information, and the patch to be installed determined is sent to described from node.
In above-described embodiment, any client can receive control data as host node, and be carried according in control data Software identification information, corresponding patch to be installed is obtained from external network, this patch to be installed then is sent into cloud puts down Platform, utilizes the patch to be installed of cloud platform storage each host node transmission.Any client can be used as to receive to download from node and ask Ask, and this download request is sent to cloud platform, so that cloud platform is according to the patch information carried in download request, it is determined that Corresponding patch to be installed, and the patch to be installed determined is sent to from node.Thus, each client can be flat according to cloud Platform realizes the automatic distributing of patch, and takes manual type to inspect periodically without staff and downloaded with patch, so as to improve Patch download efficiency.
In order to further improve in patch download efficiency, one embodiment of the invention, the cloud platform 101 is further used In the first attribute information for storing each at least one corresponding software of the client 102;Sent according to the host node Patch to be installed the second attribute information and the first attribute information of at least one software, it is determined that with it is described to be installed At least one corresponding target software of patch;It is determined that at least one target corresponding with least one described target software is from section Point, fresh information corresponding with the patch to be installed is sent at least one described target from node;
Each it is described from node as target from node, for exporting the fresh information to user, receive described use The download request that family is inputted according to the fresh information.
For example, cloud platform storage has the attribute letter of three clients (being respectively customer end A, B and C) corresponding software Breath, wherein, customer end A corresponds to software 1 and software 2, customer end B correspondence software 2 and software 3, and client C corresponds to software 3 and soft Part 4.Patch to be installed is sent to after cloud platform as the client D of host node, cloud platform is according to the of patch to be installed Two category information, determine the corresponding target software of patch to be installed, for example, patch to be installed is corresponding with software 2, then cloud platform can root According to the client and the corresponding relation of software of storage, determine target corresponding with target software from node.Herein, it may be determined that It is customer end A and customer end B to go out target from node, then cloud platform sends fresh information, Ran Houke to customer end A and customer end B Family end A and customer end B respectively can export fresh information to user, when user gets this fresh information, if need to download and this The corresponding patch to be installed of fresh information, then to download request is inputted from the client of node as target accordingly, thus Download patch to be installed.Thus, when cloud platform receives patch to be installed, fresh information can be sent to corresponding client, So that client carries out patch download according to this fresh information, and periodically check whether there is new benefit without staff Fourth, thus further increases patch download efficiency.
It should be appreciated that as the client for host node be also simultaneously target from node when, for example, being sent out to cloud platform The host node for sending patch to be installed is customer end A, meanwhile, customer end A is also determined as target from node, then cloud platform is without again Fresh information is sent to the target from node, i.e. customer end A.Thus the work during cloud platform transmission fresh information can be reduced Amount, so as to further increase patch download efficiency.
In one embodiment of the invention, at least one described client 201, each client 201 is used as current visitor Family end, is further used for the first mount message being sent to the cloud platform;The mandate installation kit that the cloud platform is sent is received, The patch to be installed and the second mount message are parsed from the mandate installation kit;When first mount message and institute State the second mount message it is identical when, the patch to be installed is installed in corresponding software;
The cloud platform, pacifies for according to first mount message and the patch to be installed, generating described authorize Dress bag, and the mandate installation kit is sent to the active client.
In the present embodiment, itself corresponding first mount message is sent to cloud platform by each client, first peace Filling information includes the hardware identifier code of the corresponding server of client, the database information of server registration etc., wherein, server The database information of registration may include the company information of the server owned enterprise, including the user name of the enterprise, mailbox, tissue Institution Code, enterprise name, password and cell-phone number etc., in addition to the type of business, affiliated industry, enterprise address, contact person and The deployed environment structure of the deployment scenario of system, i.e. system in business license etc., and the enterprise.Cloud platform can be according to current visitor The first mount message and patch to be installed that family end is sent, generation authorize installation kit, and it is corresponding that installation kit will be authorized to be sent to Active client.Receive and authorize the active client of installation kit then to parse patch to be installed and the second mount message, When the second mount message is identical with the first mount message that it sends, illustrate the patch to be installed and active client received Residing installation environment is consistent, and then just this patch to be installed is installed in corresponding software, thus avoid patch distribution During occur mistake distribution so that improve patch installation accuracy.
The embodiment can be illustrated by two aspects, and first aspect is the client as host node to the patch of download Voluntarily installed.Herein, client is downloaded to after patch to be installed from external network, by patch to be installed and itself Mount message be sent to cloud platform so that cloud platform records the corresponding mount message of the client and download and installs patch Situation, thus analyze the active degree of client, i.e. the client feedback is more to the patch of cloud platform, number of times is more frequent, Then illustrate that the client liveness is higher, and can be the more functions of client push and module according to mount message, so as to be The update of software product provides data supporting in each client.Meanwhile, the installation that cloud platform can be sent according to client Information, is that client's fast construction environment improves decision support, improves Consumer's Experience.In addition, what cloud platform was sent according to client Patch to be installed and first mount message, generation authorize installation kit, then this mandate installation kit is sent into client, client When determining that the second mount message for authorizing installation kit to include is identical with the first mount message of itself, illustrate that cloud platform is accurate Patch to be installed and mount message are really stored, patch to be installed is now installed into corresponding software.
Second aspect is to obtain patch as from the client of node from cloud platform.Herein, sent out from node to cloud platform When sending download request, the mount message of itself is sent to cloud platform, so that cloud platform is determining corresponding benefit to be installed Ding Hou, is combined into mandate installation kit, and send it to client by the mount message received and the patch to be installed determined End, so that client is according to the mount message authorized in installation kit, after being verified to installation environment, is just mended to be installed Fourth is installed, so as to improve the accuracy of patch installation.
In order to improve in the security of patch distribution, one embodiment of the invention, the cloud platform 101, for depositing in advance Store up the corresponding digital certificate of each described client;When receiving the first mount message that the active client is sent, It is determined that digital certificate corresponding with the active client;According to the digital certificate, the first mount message and institute determined State patch to be installed and generate the mandate installation kit;
The active client 102, for parsing the digital certificate from the mandate installation kit, when the numeral When certificate matches with the digital certificate prestored, determine whether first mount message is identical with the second mount message.
In the present embodiment, cloud platform generation authorize installation kit when, by the corresponding digital certificate of client also combine into Authorize installation kit.Then receive authorize installation kit client first detect authorize installation kit in digital certificate whether the number with itself Word certificate is consistent, when digital certificate is consistent, and just further determines that whether mount message is identical, thus improves the peace of patch distribution Quan Xing.
In one embodiment of the invention, the cloud platform 101 for the mandate installation kit to be encrypted, and will add The mandate installation kit after close is sent to the active client 102;
The active client 102, for the mandate installation kit after the encryption to be decrypted, described in after decryption Authorize in installation kit and parse the patch to be installed and second mount message.
Herein, the mandate installation kit of generation is encrypted cloud platform, for example, utilizing Message Digest Algorithm 5 Then (Message Digest Algorithm, MD5) is sent out the mandate installation kit after encryption authorizing installation kit to be encrypted Give corresponding client.When client receives the mandate installation kit after encryption, this mandate installation kit is decrypted, if energy Successful decryption, illustrates that the mandate installation kit was not tampered with distribution procedure, with availability.When successful decryption, Patch to be installed and mount message are parsed from authority, so as to further improve the security of patch distribution.
As shown in Fig. 2 the embodiments of the invention provide a kind of patch distribution tracking and control method, this method can include Following steps:
Step 201:Any client receives control data as host node;
Step 202:According to the software identification information carried in the control data, obtain and the software identification information pair The patch to be installed answered;
Step 203:The patch to be installed is sent to cloud platform;
Step 204:The patch to be installed that the cloud platform is sent to host node at least one described is stored;
Step 205:Any client receives download request as from node, and the download request is sent into the cloud Platform;
Step 206:The cloud platform according to the patch information carried in the download request, it is determined that with the patch information Corresponding patch to be installed, and the patch to be installed determined is sent to described from node.
In above-described embodiment, any client can receive control data as host node, and be carried according in control data Software identification information, corresponding patch to be installed is obtained from external network, this patch to be installed then is sent into cloud puts down Platform, utilizes the patch to be installed of cloud platform storage each host node transmission.Any client can be used as to receive to download from node and ask Ask, and this download request is sent to cloud platform, so that cloud platform is according to the patch information carried in download request, it is determined that Corresponding patch to be installed, and the patch to be installed determined is sent to from node.Thus, each client can be flat according to cloud Platform realizes the automatic distributing of patch, and takes manual type to inspect periodically without staff and downloaded with patch, so as to improve Patch download efficiency.
In order to further improve in patch download efficiency, one embodiment of the invention, it may further include:The cloud is put down Platform is stored to the first attribute information of at least one corresponding software of client each described;
After step 204, it may further include:
According to the second attribute information of the patch to be installed and the first attribute information of at least one software, really Fixed at least one target software corresponding with the patch to be installed;
It is determined that at least one target corresponding with least one described target software is from node, at least one described target Fresh information corresponding with the patch to be installed is sent from node;
The embodiment of step 205, can include:
Each it is described from node as target from node, export the fresh information to user, receive user's root The download request inputted according to the fresh information.
For example, cloud platform storage has the attribute letter of three clients (being respectively customer end A, B and C) corresponding software Breath, wherein, customer end A corresponds to software 1 and software 2, customer end B correspondence software 2 and software 3, and client C corresponds to software 3 and soft Part 4.Patch to be installed is sent to after cloud platform as the client D of host node, cloud platform is according to the of patch to be installed Two category information, determine the corresponding target software of patch to be installed, for example, patch to be installed is corresponding with software 2, then cloud platform can root According to the client and the corresponding relation of software of storage, determine target corresponding with target software from node.Herein, it may be determined that It is customer end A and customer end B to go out target from node, then cloud platform sends fresh information, Ran Houke to customer end A and customer end B Family end A and customer end B respectively can export fresh information to user, when user gets this fresh information, if need to download and this The corresponding patch to be installed of fresh information, then to download request is inputted from the client of node as target accordingly, thus Download patch to be installed.Thus, when cloud platform receives patch to be installed, fresh information can be sent to corresponding client, So that client carries out patch download according to this fresh information, and periodically check whether there is new benefit without staff Fourth, thus further increases patch download efficiency.
It should be appreciated that as the client for host node be also simultaneously target from node when, for example, being sent out to cloud platform The host node for sending patch to be installed is customer end A, meanwhile, customer end A is also determined as target from node, then cloud platform is without again Fresh information is sent to the target from node, i.e. customer end A.Thus the work during cloud platform transmission fresh information can be reduced Amount, so as to further increase patch download efficiency.
In one embodiment of the invention, it may further include:Each client is further used as active client In the first mount message is sent into the cloud platform;
After step 203, it may further include:
The cloud platform generates the mandate installation kit according to first mount message and the patch to be installed, And the mandate installation kit is sent to the active client;
After step 206, it may further include:
The active client receives the mandate installation kit that the cloud platform is sent, and is parsed from the mandate installation kit The patch to be installed and the second mount message;
When first mount message is identical with second mount message, the patch to be installed is installed to correspondence Software in.
In the present embodiment, itself corresponding first mount message is sent to cloud platform by each client, first peace Filling information includes the hardware identifier code of the corresponding server of client, the database information of server registration etc., wherein, server The database information of registration may include the company information of the server owned enterprise, including the user name of the enterprise, mailbox, tissue Institution Code, enterprise name, password and cell-phone number etc., in addition to the type of business, affiliated industry, enterprise address, contact person and The deployed environment structure of the deployment scenario of system, i.e. system in business license etc., and the enterprise.Cloud platform can be according to current visitor The first mount message and patch to be installed that family end is sent, generation authorize installation kit, and it is corresponding that installation kit will be authorized to be sent to Active client.Receive and authorize the active client of installation kit then to parse patch to be installed and the second mount message, When the second mount message is identical with the first mount message that it sends, illustrate the patch to be installed and active client received Residing installation environment is consistent, and then just this patch to be installed is installed in corresponding software, thus avoid patch distribution During occur mistake distribution so that improve patch installation accuracy.
The embodiment can be illustrated by two aspects, and first aspect is the client as host node to the patch of download Voluntarily installed.Herein, client is downloaded to after patch to be installed from external network, by patch to be installed and itself Mount message be sent to cloud platform so that cloud platform records the corresponding mount message of the client and download and installs patch Situation, thus analyze the active degree of client, i.e. the client feedback is more to the patch of cloud platform, number of times is more frequent, Then illustrate that the client liveness is higher, and can be the more functions of client push and module according to mount message, so as to be The update of software product provides data supporting in each client.Meanwhile, the installation that cloud platform can be sent according to client Information, is that client's fast construction environment improves decision support, improves Consumer's Experience.In addition, what cloud platform was sent according to client Patch to be installed and first mount message, generation authorize installation kit, then this mandate installation kit is sent into client, client When determining that the second mount message for authorizing installation kit to include is identical with the first mount message of itself, illustrate that cloud platform is accurate Patch to be installed and mount message are really stored, patch to be installed is now installed into corresponding software.
Second aspect is to obtain patch as from the client of node from cloud platform.Herein, sent out from node to cloud platform When sending download request, the mount message of itself is sent to cloud platform, so that cloud platform is determining corresponding benefit to be installed Ding Hou, is combined into mandate installation kit, and send it to client by the mount message received and the patch to be installed determined End, so that client is according to the mount message authorized in installation kit, after being verified to installation environment, is just mended to be installed Fourth is installed, so as to improve the accuracy of patch installation.
In order to improve in the security of patch distribution, one embodiment of the invention, it may further include:The cloud platform Prestore the corresponding digital certificate of each described client;
The cloud platform generates described authorize and installed according to first mount message and the patch to be installed Bag, including:
The cloud platform determines digital certificate corresponding with the active client;
Installed according to the digital certificate determined, the first mount message and described authorize of patch generation to be installed Bag;
After the active client receives the mandate installation kit that the cloud platform is sent, described when described the When one mount message is identical with second mount message, before the patch to be installed is installed in corresponding software, enter One step includes:
The active client parses the digital certificate from the mandate installation kit;
When the digital certificate and the digital certificate that prestores match, determine first mount message whether with second Mount message is identical.
In the present embodiment, cloud platform generation authorize installation kit when, by the corresponding digital certificate of client also combine into Authorize installation kit.Then receive authorize installation kit client first detect authorize installation kit in digital certificate whether the number with itself Word certificate is consistent, when digital certificate is consistent, and just further determines that whether mount message is identical, thus improves the peace of patch distribution Quan Xing.
In one embodiment of the invention, the cloud platform is according to first mount message and the benefit to be installed Fourth, generates the mandate installation kit, and the mandate installation kit is sent into the active client, including:
The mandate installation kit is encrypted the cloud platform, and the mandate installation kit after encryption is sent into institute State active client;
The active client receives the mandate installation kit that the cloud platform is sent, and is solved from the mandate installation kit The patch to be installed and the second mount message are separated out, including:
Mandate installation kit after the encryption is decrypted the active client, is installed from the mandate after decryption The patch to be installed and second mount message are parsed in bag.
Herein, the mandate installation kit of generation is encrypted cloud platform, for example, using MD5 to authorizing installation kit to carry out Encryption, is then sent to corresponding client by the mandate installation kit after encryption.Client receives the mandate after encryption and installed Bao Shi, this mandate installation kit is decrypted, if energy successful decryption, illustrates that the mandate installation kit is not usurped in distribution procedure Correct one's mistakes, with availability.When successful decryption, patch to be installed and mount message are just parsed from authority, so as to enter one Step improves the security of patch distribution.
Below using client D as host node, customer end A, customer end B and client C are as from node, and each is from node Exemplified by cloud platform obtains patch, a kind of patch distribution tracking provided in an embodiment of the present invention and control method are carried out specifically It is bright, as shown in figure 3, this method may comprise steps of:
Step 301:Control data is received using client D, according to the software identification information carried in the control data, The to be installed patch corresponding with the software identification information is obtained from external network.
For example, the software identification information that client D is got is the corresponding identification information of software 1, then client D is obtained Patch to be installed is corresponding with software 1.
Step 302:The patch to be installed is sent to cloud platform.
Step 303:Patch to be installed described in the cloud platform storage, and according to the first of at least one software prestored the category Property information, and receive patch to be installed the second attribute information, it is determined that at least one target corresponding with patch to be installed Software.
Herein, cloud platform can determine that patch to be installed is corresponding with software 1.
Step 304:Corresponding relation between each client prestored according to cloud platform and at least one software, it is determined that The target corresponding with least one described target software from node be customer end A.
For example, customer end A correspondence software 1, customer end B correspondence software 2 and software 3, client C correspondence softwares 3 and software 4, because patch to be installed is corresponding with software 1, then target from node be customer end A.
Step 305:Cloud platform sends the fresh information corresponding with the patch to be installed to customer end A.
Step 306:Customer end A exports the fresh information to user, and receives the user according to the fresh information The download request of input.
Herein, customer end A exports fresh information to user, when user gets this fresh information, if need to download with The corresponding patch to be installed of this fresh information, then input download request to customer end A, thus download patch to be installed.
Step 307:The download request and the first mount message are sent to the cloud platform by customer end A.
First mount message of client is relevant with the installation environment residing for itself, including the corresponding server of the client Hardware identifier code, the database information of server registration etc., wherein, the database information of server registration may include the service The company information of device owned enterprise, includes user name, mailbox, organization mechanism code, enterprise name, password and the hand of the enterprise Machine number etc., in addition to the type of business, affiliated industry, enterprise address, contact person and business license etc., and system in the enterprise The deployed environment structure of deployment scenario, i.e. system.
Step 308:The download request that cloud platform is sent according to customer end A, at least one digital certificate prestored really Fixed digital certificate corresponding with customer end A, and sent according to the digital certificate determined, the first mount message and client D Patch to be installed, generation authorize installation kit, and to it is described mandate installation kit be encrypted, by after encryption the mandate install Bag is sent to customer end A.
Herein, cloud platform combines the digital certificate of customer end A into mandate installation kit, and to authorizing installation kit to be added It is close, the security of patch distribution can be improved.
Step 309:The mandate installation kit is decrypted customer end A, is solved from the mandate installation kit after decryption Separate out digital certificate, patch to be installed and the second mount message.
When customer end A receives the mandate installation kit after encryption, this mandate installation kit is decrypted, if can be decrypted into Work(, illustrates that the mandate installation kit was not tampered with distribution procedure, with availability.
Step 310:Judge whether the digital certificate parsed is identical with the digital certificate prestored, if it is, holding Row step 311, otherwise terminates current process.
Step 311:Judge whether first mount message is identical with the second mount message, if it is, performing step 312, otherwise terminate current process.
Herein, customer end A is according to the mount message authorized in installation kit, after being verified to installation environment, just right Patch to be installed is installed, so as to improve the accuracy of patch installation
Step 312:Patch to be installed is installed in corresponding software.
Herein, when the first mount message is identical with the second mount message, patch to be installed is installed in software 1.
In above-described embodiment, client D receives control data as host node, and according to the software carried in control data Identification information, obtains corresponding patch to be installed from external network, and this patch to be installed then is sent into cloud platform, utilizes Cloud platform storage patch to be installed.Customer end A receives download request as from node, and this download request is sent to and put down Platform, so that cloud platform is according to the patch information carried in download request, determines corresponding patch to be installed, and will determine Patch to be installed be sent to customer end A.Thus, each client can realize the automatic distributing of patch according to cloud platform, and nothing Palpus staff takes manual type to inspect periodically and downloaded with patch, so as to improve patch download efficiency.
Present invention also offers a kind of computer-readable recording medium, including execute instruction, when described in the computing device of storage control During execute instruction, the storage control performs the method that any of the above-described embodiment of the invention is provided.
In addition, present invention also offers a kind of storage control, including:Processor, memory and bus;The memory For storing execute instruction, the processor is connected with the memory by the bus, when storage control operation When, the execute instruction of memory storage described in the computing device, so that the storage control is performed in the present invention The method that any embodiment offer is provided.
In summary, each embodiment of the invention at least has the advantages that:
1st, in embodiments of the present invention, any client can receive control data as host node, and according to control data The software identification information of middle carrying, obtains corresponding patch to be installed from external network, then sends this patch to be installed To cloud platform, the patch to be installed of cloud platform storage each host node transmission is utilized.Any client can be used as from node and receive Download request, and this download request is sent to cloud platform, so that cloud platform is believed according to the patch carried in download request Breath, determines corresponding patch to be installed, and the patch to be installed determined is sent to from node.Thus, each client can The automatic distributing of patch is realized according to cloud platform, and takes manual type to inspect periodically without staff and is downloaded with patch, from And improve patch download efficiency.
2nd, in embodiments of the present invention, cloud platform is according to the second attribute information of the patch to be installed of reception, and prestores At least one software the first attribute information, it is determined that at least one target software corresponding with patch to be installed, and determine with At least one corresponding target of at least one target software is sent with treating from node at least one target determined from node The corresponding fresh information of patch is installed.Target exports fresh information from node to user, and it is defeated according to fresh information to receive user The download request entered.Thus, when cloud platform receives patch to be installed, fresh information can be sent to corresponding client, from And make it that client carries out patch download according to this fresh information, and periodically check whether there is new benefit without staff Fourth, thus further increases patch download efficiency.
3rd, in embodiments of the present invention, itself corresponding first mount message is sent to cloud platform, cloud by each client The first mount message and patch to be installed that platform can be sent according to active client, generation authorize installation kit, and pacify authorizing Dress bag is sent to corresponding active client.Receive authorize installation kit active client can then parse patch to be installed with And second mount message, when the second mount message is identical with the first mount message that it sends, this patch to be installed is installed Into corresponding software, the mistake distribution occurred in patch distribution procedure is thus avoid, so as to improve the accuracy of patch installation.
4th, in embodiments of the present invention, cloud platform is when generation authorizes installation kit, by the corresponding digital certificate of client Combine into mandate installation kit.Then receive authorize installation kit client first detect authorize installation kit in digital certificate whether with from The digital certificate of body is consistent, when digital certificate is consistent, and just further determines that whether mount message is identical, thus improves patch point The security of hair.
5th, in embodiments of the present invention, the mandate installation kit of generation is encrypted cloud platform, then by awarding after encryption Power installation kit is sent to corresponding client.When client receives the mandate installation kit after encryption, this mandate installation kit is entered Row decryption, when successful decryption, just parses patch to be installed and mount message, so as to further improve patch from authority The security of distribution.
It should be noted that herein, such as first and second etc relational terms are used merely to an entity Or operation makes a distinction with another entity or operation, and not necessarily require or imply exist between these entities or operation Any this actual relation or order.Moreover, term " comprising ", "comprising" or its any other variant be intended to it is non- It is exclusive to include, so that process, method, article or equipment including a series of key elements not only include those key elements, But also other key elements including being not expressly set out, or also include solid by this process, method, article or equipment Some key elements.In the absence of more restrictions, the key element limited by sentence " including one ", is not arranged Except also there is other identical factor in the process including the key element, method, article or equipment.
One of ordinary skill in the art will appreciate that:Realizing all or part of step of above method embodiment can pass through Programmed instruction related hardware is completed, and foregoing program can be stored in the storage medium of embodied on computer readable, the program Upon execution, the step of including above method embodiment is performed;And foregoing storage medium includes:ROM, RAM, magnetic disc or light Disk etc. is various can be with the medium of store program codes.
It is last it should be noted that:Presently preferred embodiments of the present invention is the foregoing is only, the skill of the present invention is merely to illustrate Art scheme, is not intended to limit the scope of the present invention.Any modification for being made within the spirit and principles of the invention, Equivalent substitution, improvement etc., are all contained in protection scope of the present invention.

Claims (10)

1. a kind of patch distribution tracking and control system, it is characterised in that including:Cloud platform and at least one client;Wherein,
Any client at least one described client can be as host node, for receiving control data, according to the control The software identification information carried in system request, obtains the to be installed benefit corresponding with the software identification information from external network Fourth;The patch to be installed is sent to the cloud platform;
Any client at least one described client can be used as from node, for receiving download request, and will be described under Carry request and be sent to the cloud platform;Corresponding patch to be installed is obtained from the cloud platform;
The cloud platform, for being stored to the patch to be installed that host node at least one described is sent;When receiving It is described from node send download request when, according to the patch information carried in the download request, it is determined that with the patch believe Cease corresponding patch to be installed, and the patch to be installed determined is sent to described from node.
2. system according to claim 1, it is characterised in that
The cloud platform, is further used for storing the first attribute letter of at least one corresponding software of each described client Breath;The second attribute information and the first attribute of at least one software of the patch to be installed sent according to the host node Information, it is determined that at least one target software corresponding with the patch to be installed;It is determined that with least one described target software pair At least one target answered sends update corresponding with the patch to be installed from node at least one described target from node Information;
Each it is described from node as target from node, for exporting the fresh information to user, receive user's root The download request inputted according to the fresh information.
3. system according to claim 1, it is characterised in that
In at least one described client, each client is further used for the first mount message as active client It is sent to the cloud platform;The mandate installation kit that the cloud platform is sent is received, is parsed from the mandate installation kit described Patch to be installed and the second mount message;, will be described when first mount message is identical with second mount message Patch to be installed is installed in corresponding software;
The cloud platform, for according to first mount message and the patch to be installed, generating the mandate installation kit, And the mandate installation kit is sent to the active client.
4. system according to claim 3, it is characterised in that
The cloud platform, for prestoring the corresponding digital certificate of each described client;Receiving the current visitor During the first mount message that family end is sent, it is determined that digital certificate corresponding with the active client;According to determining Digital certificate, the first mount message and the patch to be installed generate the mandate installation kit;
The active client, for from it is described mandate installation kit in parse the digital certificate, when the digital certificate with When the digital certificate prestored matches, determine whether first mount message is identical with the second mount message.
5. system according to claim 3, it is characterised in that
The cloud platform, for the mandate installation kit to be encrypted, and the mandate installation kit after encryption is sent to The active client;
The active client, for the mandate installation kit after the encryption to be decrypted, from the mandate peace after decryption The patch to be installed and second mount message are parsed in dress bag.
6. a kind of patch distribution tracking and control method, it is characterised in that including:
Any client receives control data as host node;
According to the software identification information carried in the control data, benefit to be installed corresponding with the software identification information is obtained Fourth;
The patch to be installed is sent to cloud platform;
The patch to be installed that the cloud platform is sent to host node at least one described is stored;
Any client receives download request as from node, and the download request is sent into the cloud platform;
The cloud platform is according to the patch information carried in the download request, it is determined that corresponding with the patch information to be installed Patch, and the patch to be installed determined is sent to described from node.
7. method according to claim 6, it is characterised in that
Further comprise:The cloud platform is entered to the first attribute information of at least one corresponding software of client each described Row storage;
After the patch to be installed that the cloud platform is sent to host node at least one described is stored, enter one Step includes:
According to the second attribute information of the patch to be installed and the first attribute information of at least one software, it is determined that with At least one corresponding target software of the patch to be installed;
It is determined that at least one target corresponding with least one described target software is from node, at least one described target from section Point sends fresh information corresponding with the patch to be installed;
Any client receives download request as from node, including:
Each it is described from node as target from node, export the fresh information to user, receive the user according to institute State the download request of fresh information input.
8. method according to claim 6, it is characterised in that
Further comprise:Each client is further used for the first mount message being sent to described as active client Cloud platform;
The patch to be installed is sent to after cloud platform described, further comprised:
The cloud platform generates the mandate installation kit according to first mount message and the patch to be installed, and will The mandate installation kit is sent to the active client;
The patch to be installed determined is sent to described after node described, further comprised:
The active client receives the mandate installation kit that the cloud platform is sent, and is parsed from the mandate installation kit described Patch to be installed and the second mount message;
When first mount message is identical with second mount message, the patch to be installed is installed to corresponding soft In part.
9. method according to claim 8, it is characterised in that
Further comprise:The cloud platform prestores the corresponding digital certificate of each described client;
The cloud platform generates the mandate installation kit according to first mount message and the patch to be installed, Including:
The cloud platform determines digital certificate corresponding with the active client;
The mandate installation kit is generated according to the digital certificate determined, the first mount message and the patch to be installed;
After the active client receives the mandate installation kit that the cloud platform is sent, described when the described first peace When dress information is identical with second mount message, before the patch to be installed is installed in corresponding software, further Including:
The active client parses the digital certificate from the mandate installation kit;
When the digital certificate and the digital certificate prestored match, determine whether first mount message is installed with second Information is identical.
10. method according to claim 8, it is characterised in that
The cloud platform generates the mandate installation kit according to first mount message and the patch to be installed, And the mandate installation kit is sent to the active client, including:
The mandate installation kit is encrypted the cloud platform, and the mandate installation kit after encryption is sent into described work as Preceding client;
The active client receives the mandate installation kit that the cloud platform is sent, and is parsed from the mandate installation kit The patch to be installed and the second mount message, including:
Mandate installation kit after the encryption is decrypted the active client, from the mandate installation kit after decryption Parse the patch to be installed and second mount message.
CN201710463959.2A 2017-06-19 2017-06-19 A kind of patch distribution tracking and control system and method Pending CN107295078A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710463959.2A CN107295078A (en) 2017-06-19 2017-06-19 A kind of patch distribution tracking and control system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710463959.2A CN107295078A (en) 2017-06-19 2017-06-19 A kind of patch distribution tracking and control system and method

Publications (1)

Publication Number Publication Date
CN107295078A true CN107295078A (en) 2017-10-24

Family

ID=60097745

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710463959.2A Pending CN107295078A (en) 2017-06-19 2017-06-19 A kind of patch distribution tracking and control system and method

Country Status (1)

Country Link
CN (1) CN107295078A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109840398A (en) * 2019-02-14 2019-06-04 北京儒博科技有限公司 Software authorization method, device, equipment and storage medium
WO2022095734A1 (en) * 2020-11-04 2022-05-12 中移(苏州)软件技术有限公司 Information processing method, device, apparatus and system, medium, and program

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1889742A (en) * 2005-06-30 2007-01-03 华为技术有限公司 Data sharing method based on equipment management and data backup recovering method thereof
CN101211312A (en) * 2006-12-29 2008-07-02 国际商业机器公司 Device and method for monitoring and managing patch of client
CN102624861A (en) * 2011-11-28 2012-08-01 苏州奇可思信息科技有限公司 Enterprise network-oriented operating system upgrade patch updating method
CN103124277A (en) * 2011-11-21 2013-05-29 苏州达联信息科技有限公司 Online version updating method of video distribution network node servers
CN104079610A (en) * 2013-03-29 2014-10-01 青岛海尔电子有限公司 Cloud server, and method and system for cloud synchronization of application software
US9176728B1 (en) * 2014-11-12 2015-11-03 Bank Of America Corporation Global software deployment/remediation management and associated analytics

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1889742A (en) * 2005-06-30 2007-01-03 华为技术有限公司 Data sharing method based on equipment management and data backup recovering method thereof
CN101211312A (en) * 2006-12-29 2008-07-02 国际商业机器公司 Device and method for monitoring and managing patch of client
CN103124277A (en) * 2011-11-21 2013-05-29 苏州达联信息科技有限公司 Online version updating method of video distribution network node servers
CN102624861A (en) * 2011-11-28 2012-08-01 苏州奇可思信息科技有限公司 Enterprise network-oriented operating system upgrade patch updating method
CN104079610A (en) * 2013-03-29 2014-10-01 青岛海尔电子有限公司 Cloud server, and method and system for cloud synchronization of application software
US9176728B1 (en) * 2014-11-12 2015-11-03 Bank Of America Corporation Global software deployment/remediation management and associated analytics

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109840398A (en) * 2019-02-14 2019-06-04 北京儒博科技有限公司 Software authorization method, device, equipment and storage medium
WO2022095734A1 (en) * 2020-11-04 2022-05-12 中移(苏州)软件技术有限公司 Information processing method, device, apparatus and system, medium, and program
CN114531467A (en) * 2020-11-04 2022-05-24 中移(苏州)软件技术有限公司 Information processing method, equipment and system
US11928449B2 (en) 2020-11-04 2024-03-12 China Mobile (Suzhou) Software Technology Co., Ltd. Information processing method, device, apparatus and system, medium, andprogram

Similar Documents

Publication Publication Date Title
CN111478967B (en) Request processing method and device
CN105556919B (en) Dual factor anthentication is carried out using service request bill
EP3709226A1 (en) Model training system and method, and storage medium
CN108183907A (en) A kind of authentication method, server and Verification System
US10621651B2 (en) Automatic recharge system and method, and server
US20210049715A1 (en) Blockchain-based data procesing method, apparatus, and electronic device
CN106384236A (en) Blockchain based CA (Certificate Authority) management method, device and system
CN111400344B (en) Electronic bill printing method, device, equipment and storage medium
CN108683712A (en) The generation method of application checks and check key, device and storage medium
CN109358888A (en) Server firmware upgrade method, device, system and computer readable storage medium
CN102622559B (en) A kind of navigation software user authorization and system
CN108846263B (en) Software authorization processing and running method and device and electronic equipment
CN106713276A (en) Data acquisition method and system based on authorization and authentication
CN107896227A (en) A kind of data calling method, device and device data cloud platform
CN109388915A (en) A kind of software authorization method, apparatus and system
CN106997554A (en) A kind of credit note information table processing method and processing system
CN106709281A (en) Patch releasing and obtaining method and device
CN110533503B (en) Data processing method and device
CN108566280A (en) A kind of FPGA hardware accelerates the remote upgrade method and system of program
CN107295078A (en) A kind of patch distribution tracking and control system and method
CN107133499B (en) Software copyright protection method, client, server and system
CN106529216B (en) Software authorization system and software authorization method based on public storage platform
CN106209751A (en) Service-oriented interface authentication method based on the operating system certificate of authority
CN115021995B (en) Multi-channel login method, device, equipment and storage medium
CN110572371B (en) Identity uniqueness check control method based on HTML5 local storage mechanism

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20171024