CN108011869A - The centralized rights management of track traffic synthetic monitoring and distributed authorization check method - Google Patents
The centralized rights management of track traffic synthetic monitoring and distributed authorization check method Download PDFInfo
- Publication number
- CN108011869A CN108011869A CN201711133276.7A CN201711133276A CN108011869A CN 108011869 A CN108011869 A CN 108011869A CN 201711133276 A CN201711133276 A CN 201711133276A CN 108011869 A CN108011869 A CN 108011869A
- Authority
- CN
- China
- Prior art keywords
- master
- storehouse
- slave
- track traffic
- control centre
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1095—Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
Abstract
The present invention provides a kind of centralized rights management of track traffic synthetic monitoring and distributed authorization check method.The beneficial effects of the invention are as follows:The distributed digital independent pressure examined, reduce control centre's master library of authority verification is realized by distributed arrangement authorization check module, improves data reading performance using redundancy;Solve the problems, such as the Single Point of Faliure in centralized management and influence the use of comprehensive monitoring system in whole track traffic;Reduce distributed system arrangement difficulty, this scheme does not depend on third party's component using database self character, also there is good adaptability for different operating system, add the flexibility of arrangement, only need to be multiplexed other node relevant configurations during expansion system, reduce the difficulty of expansion system.
Description
Technical field
The present invention relates to a kind of track traffic synthetic to monitor centralized rights management and distributed authorization check method.
Background technology
Track traffic synthetic monitoring system is generally deployed in control centre (OCC), station at different levels (STN), passes through trunk
Network Communication forms complete comprehensive monitoring system.Track traffic synthetic monitoring system mainly has two kinds in terms of rights management at present
Solution, centralized rights management and distributed rights management.
Permission server cloth is generally deployed in control centre by centralized rights management, and stations at different levels are all logical with control centre
The progress authority centralized management of this server is crossed to test with school authority.(1) if this server breaks down, it is likely that influence whole
The operation of monitoring system, it is difficult to ensure that high availability.(2) when permission system expands to certain scale, centralized rights management
Data reading performance using redundancy is also decreased obviously.
Distributed rights management in order to solve the problems, such as that Single Point of Faliure that centralized rights management is brought influences whole system,
Generally permission server cloth is deployed in control centre and stations at different levels, each station level right management server and center rights management
Server carries out data synchronization, and the verification that guarantee system can still provide for authority when being disconnected with center is whole so as to not influence
The normal operation of system.(1) rights management data storehouse distribution deployment configuration is relative complex, rights management data storehouse distribution cloth
Generally require to rely on some third party's components during administration, such as the keepalived in linux, the windows in windows
Server cluster and ISCSI shares storage, for having certain influence in the flexibility of arrangement, equally also brings one to extension
Fixed difficulty.(2) node data it is synchronous in complete distributed environment there may be failure of data synchronization so as to the fissure produced
(each node i.e. in distributed system is inserted into data, when online service is thought highly of to phenomenon in the database at this time when exchanging visits failure
Data are unable to normal synchronized when newly returning to the state that can be exchanged visits, so as to cause the partial paralysis of distributed system or comprehensive paralysis
Paralysis), and then influence the operation of monitoring system.
The content of the invention
Track traffic synthetic, which is combined, it is an object of the present invention to provide one kind monitors centralized rights management and distributed authority school
The method tested, solves the defects of centralized management and distributed management mode.
In order to achieve the above object, the technical scheme is that providing a kind of track traffic synthetic monitoring centralization power
Limit management and distributed authorization check method, it is characterised in that comprise the following steps:
The first step:In control centre's arrangement rights database, master library Master is arranged to;
Second step:In each station level arrangement rights database, it is arranged to from storehouse Slave, and by from storehouse, Slave matches somebody with somebody in each station
It is set to from master library Master pulling datas and synchronous;
3rd step:By from storehouse, Slave is arranged to a reading mode in each station, the master library Master of control centre keeps readable
Can WriteMode;
4th step:The read operation that authority verification is carried out in track traffic synthetic monitoring system is all referred into current station
The master library Master of control centre is directed toward in the server from storehouse Slave of institute's arrangement, the read operation failover of authority verification
Server and other stations the server from storehouse Slave, the write operation for carrying out rights management is directed toward the master library of control centre
The server of Master, if there are middleware, middleware is connected to by track traffic synthetic monitoring system authority module, read-write
Operation is configured according to the method described above with failover configuration.
Preferably, in the second step, the method for data synchronization is:Each station from storehouse Slave from master library
Master synchrodatas, the master library Master data of control centre be handed down to when changing in all stations from storehouse Slave.
Preferably, when each station carries out authorization check with control centre, preferentially read from local arrangement from the Slave of storehouse
Access evidence, reads when failing from other nodes.
Preferably, when carrying out rights management, all write when writing, update, deleting data from the master library Master of control centre
Enter, by the master library Master of control centre be handed down in all stations from storehouse Slave.
The beneficial effects of the invention are as follows:
(1) realize the distributed of authority verification by distributed arrangement authorization check module to examine, reduce control centre
The digital independent pressure of master library, improves data reading performance using redundancy;
(2) solve the Single Point of Faliure in centralized management and influence the use of comprehensive monitoring system in whole track traffic
The problem of;
(3) distributed system arrangement difficulty is reduced, this scheme does not depend on third party using database self character
Component, also has good adaptability for different operating system, adds the flexibility of arrangement, and when expansion system only needs multiple
With other node relevant configurations, the difficulty of expansion system is reduced;
(4) only exist the master library of data write-in entrance, i.e. control centre, after write-in by master library be issued to it is each from
Storehouse, having evaded distributed management mode allows multiple nodes to read and write at the same time, and there may be synchronization failure generation during synchrodata
Fissure phenomenon, and then influence comprehensive monitoring system operation the problem of.
Brief description of the drawings
Fig. 1 is track traffic synthetic monitoring system structure chart;
Fig. 2 is authority module structure diagram;
Fig. 3 arrangement schematic diagrames between authority module;
Fig. 4 is that there are authority module arrangement schematic diagram during middleware.
Embodiment
To make the present invention more aobvious understandable, elaborate below in conjunction with the accompanying drawings to the embodiment of the present invention:The present embodiment exists
Implemented under technical solution of the present invention, give the implementation process and implementation result of the present invention.Protection scope of the present invention is not
It is limited to following embodiments.
A kind of centralized rights management of track traffic synthetic monitoring provided by the invention and distributed authorization check method bag
Include following steps:
The first step:In control centre's arrangement rights database, master library Master is arranged to.
Second step:In each station level arrangement rights database, it is arranged to from storehouse Slave and by from storehouse, Slave matches somebody with somebody in each station
It is set to from master library Master pulling datas and synchronous.
3rd step:By from storehouse, Slave is arranged to a reading mode (Read Only), the master library of control centre in each station
Master holdings are readable can WriteMode.
4th step:The read operation that authority verification is carried out in track traffic synthetic monitoring system is all referred into current station
Control centre is directed toward in the server from storehouse Slave of institute's arrangement, the read operation failover (Failover) of authority verification
The server of master library Master and the server from storehouse Slave at other stations, the write operation for carrying out rights management are directed toward control
The server of the master library Master at center.If (there are middleware, such as zookeeper, then by track traffic synthetic monitoring system
Authority module is connected to middleware, and read-write operation is configured according to the method described above with failover configuration)
It when data change in master library Master, can synchronously be handed down to all from storehouse Slave, it is synchronous to reach data
Effect.Comprehensive monitoring system preferentially read current station institute arrangement from the data in the Slave of storehouse, when setting out in advance to make arrangements from storehouse Slave
When accessing failure, then other the addressable nodes gone in distributed system are read out data.Working as when station has data to need to write
When entering into database, master library Master can be only write, only master library Master, which possesses, writes data permission so as to avoid multiple
Node is read and is write at the same time, there may be the fissure phenomenon that synchronization failure produces during synchrodata, and then influences comprehensive monitoring system
Operation.
In track traffic comprehensive monitoring system it is actual in use, permission system belongs to read-write operation unbalanced system,
I.e. read operation (authorization check) is far more than write operation (rights management), so pressure of the pressure of write-in also much smaller than reading
Power, in most usage scenarios, comprehensive monitoring system only needs to carry out the verification (reading) of authority.
Claims (4)
1. a kind of centralized rights management of track traffic synthetic monitoring and distributed authorization check method, it is characterised in that including
Following steps:
The first step:In control centre's arrangement rights database, master library Master is arranged to;
Second step:In each station level arrangement rights database, it is arranged to from storehouse Slave, and by from storehouse, Slave is configured in each station
From master library Master pulling datas and synchronous;
3rd step:By from storehouse, Slave is arranged to a reading mode in each station, the master library Master of control centre keeps readable writeable
Pattern;
4th step:The read operation that authority verification is carried out in track traffic synthetic monitoring system is all referred into current station institute cloth
The clothes of the master library Master of control centre are directed toward in the server from storehouse Slave of administration, the read operation failover of authority verification
Business device and the server from storehouse Slave at other stations, the write operation for carrying out rights management are directed toward the master library of control centre
The server of Master, if there are middleware, middleware is connected to by track traffic synthetic monitoring system authority module, read-write
Operation is configured according to the method described above with failover configuration.
2. a kind of centralized rights management of track traffic synthetic monitoring as claimed in claim 1 and distributed authorization check side
Method, it is characterised in that:In the second step, the method for data synchronization is:Each station from storehouse Slave from master library Master
Synchrodata, the master library Master data of control centre be handed down to when changing in all stations from storehouse Slave.
3. a kind of centralized rights management of track traffic synthetic monitoring as claimed in claim 1 and distributed authorization check side
Method, it is characterised in that:When each station carries out authorization check with control centre, preferentially read from local arrangement from the Slave of storehouse
Access evidence, reads when failing from other nodes.
4. a kind of centralized rights management of track traffic synthetic monitoring as claimed in claim 1 and distributed authorization check side
Method, it is characterised in that:All write when when carrying out rights management, writing, update, deleting data from the master library Master of control centre
Enter, by the master library Master of control centre be handed down in all stations from storehouse Slave.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711133276.7A CN108011869A (en) | 2017-11-15 | 2017-11-15 | The centralized rights management of track traffic synthetic monitoring and distributed authorization check method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711133276.7A CN108011869A (en) | 2017-11-15 | 2017-11-15 | The centralized rights management of track traffic synthetic monitoring and distributed authorization check method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN108011869A true CN108011869A (en) | 2018-05-08 |
Family
ID=62052556
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711133276.7A Pending CN108011869A (en) | 2017-11-15 | 2017-11-15 | The centralized rights management of track traffic synthetic monitoring and distributed authorization check method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108011869A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110381148A (en) * | 2019-07-23 | 2019-10-25 | 深圳忆联信息系统有限公司 | Server system arrangement method, apparatus and computer equipment based on low bandwidth |
| CN114024771A (en) * | 2021-12-27 | 2022-02-08 | 四川旷谷信息工程有限公司 | Cross-level control method for urban rail transit security system |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102394873A (en) * | 2011-10-26 | 2012-03-28 | 青岛海信网络科技股份有限公司 | Authority management system of track traffic integration monitoring and method thereof |
| US20160323152A1 (en) * | 2005-07-07 | 2016-11-03 | Sciencelogic, Inc. | Dynamically deployable self configuring distributed network management system |
-
2017
- 2017-11-15 CN CN201711133276.7A patent/CN108011869A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160323152A1 (en) * | 2005-07-07 | 2016-11-03 | Sciencelogic, Inc. | Dynamically deployable self configuring distributed network management system |
| CN102394873A (en) * | 2011-10-26 | 2012-03-28 | 青岛海信网络科技股份有限公司 | Authority management system of track traffic integration monitoring and method thereof |
Non-Patent Citations (1)
| Title |
|---|
| 黄明辉: "轨道交通综合监控系统非集中站设计与实现", 《通信设计与应用》 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110381148A (en) * | 2019-07-23 | 2019-10-25 | 深圳忆联信息系统有限公司 | Server system arrangement method, apparatus and computer equipment based on low bandwidth |
| CN114024771A (en) * | 2021-12-27 | 2022-02-08 | 四川旷谷信息工程有限公司 | Cross-level control method for urban rail transit security system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105138441A (en) | HAC system, warning method based on HAC system and warning system based on HAC system | |
| CN108337303A (en) | A kind of method of data synchronization and distributed system | |
| US11750437B2 (en) | Cluster node fault processing method and apparatus, and device and readable medium | |
| CN108932295A (en) | Primary database method for handover control, device, computer equipment and storage medium | |
| CN105306605B (en) | A kind of double host server systems | |
| CN110334075A (en) | Data migration method and relevant device based on message-oriented middleware | |
| CN108932338A (en) | Data-updating method, device, equipment and medium | |
| CN108011869A (en) | The centralized rights management of track traffic synthetic monitoring and distributed authorization check method | |
| CN108173959A (en) | A kind of cluster storage system | |
| CN103544057A (en) | Switching method and switching system for data service systems | |
| CN109284140A (en) | Configuration method and relevant device | |
| CN102394873A (en) | Authority management system of track traffic integration monitoring and method thereof | |
| CN108920489A (en) | Dispositions method, device and the equipment of database | |
| CN105630571A (en) | Virtual machine creating method and device | |
| CN110348826A (en) | Strange land disaster recovery method, system, equipment and readable storage medium storing program for executing mostly living | |
| CN107729515A (en) | The method, apparatus and storage medium of a kind of data syn-chronization | |
| CN102664757B (en) | Cascading method and equipment for storage devices | |
| CN110647425A (en) | Database recovery method and device | |
| CN102801598A (en) | Method and device for constructing virtual switching system, and switching devices | |
| EP3591803B1 (en) | Master/standby machine data synchronization method for railway centralized traffic control system | |
| CN102970575B (en) | Playing and memorizing device type selection testing method | |
| CN110716828B (en) | Database real-time backup method | |
| CN103281313B (en) | Based on distributed right management method in track traffic synthetic monitoring system | |
| CN103403666B (en) | Distributed storage control method, Apparatus and system | |
| CN116185697B (en) | Container cluster management method, device and system, electronic equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180508 |