CN108900515A - A kind of cyberspace loophole merger platform data forward service system - Google Patents

A kind of cyberspace loophole merger platform data forward service system Download PDF

Info

Publication number
CN108900515A
CN108900515A CN201810746269.2A CN201810746269A CN108900515A CN 108900515 A CN108900515 A CN 108900515A CN 201810746269 A CN201810746269 A CN 201810746269A CN 108900515 A CN108900515 A CN 108900515A
Authority
CN
China
Prior art keywords
node
sent
task
loophole
unit
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810746269.2A
Other languages
Chinese (zh)
Other versions
CN108900515B (en
Inventor
赖洪昌
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to CN201810746269.2A priority Critical patent/CN108900515B/en
Publication of CN108900515A publication Critical patent/CN108900515A/en
Application granted granted Critical
Publication of CN108900515B publication Critical patent/CN108900515B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1433Vulnerability analysis
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The invention discloses a kind of cyberspace loophole merger platform data forward service systems, including oracle database system, oracle database system connecting pin is equipped with WEB foreground system and background scanning system, the oracle database system is used to for the task that WEB foreground system is issued being sent to background scanning system and the information obtained after the processing of background scanning system task is sent to WEB foreground system, the oracle database system includes task recognition unit, the task recognition unit output end is equipped with node allocation unit, the node allocation unit output end is equipped with node converting unit and node processing module, the node converting unit output end is equipped with volumes of searches database.The mission bit stream number of identification is sent to node converting unit by node allocation unit by the present invention, the node processing submodule code conversion infrequently used at the coding for the node processing submodule being commonly used, is avoided congestion from reducing service efficiency and forwarding time by node converting unit.

Description

A kind of cyberspace loophole merger platform data forward service system
Technical field
The present invention relates to network platform field, in particular to a kind of cyberspace loophole merger platform data forwarding service system System.
Background technique
With the rapid development of information technology, computer network is widely applied, network rings open extensively are utilized Border carries out the trend that global communication has become era development, and the daily economic and social life of people is also increasingly dependent on interconnection Net.
There is explosive growth in big data era, global metadata amount.At the same time, the data mining technologies such as distributed computing Make big data analysis rule again, the ability of studying and judging trend greatly enhances.Big data is constantly to various industries infiltration, profound impact Politics, economy, the people's livelihood and the national defence of country.
The importance of Information base determines that the importance of Network Warning, complexity require to carry out technique preparation in advance. Loophole is universal with information technology and network, or will become to become increasingly complex, and discovery frequency also or will become higher and higher.But It is background system to be accessed from foreground system, data are complicated and inquire when carrying out inquiry detection to loophole by software platform Detection time is longer, and the efficiency of loophole inspection is slower, influences post-processing.
Therefore, inventing a kind of cyberspace loophole merger platform data forward service system, have very much must to solve the above problems It wants.
Summary of the invention
The purpose of the present invention is to provide a kind of cyberspace loophole merger platform data forward service systems, pass through node Task after identification is encoded and is assigned to node processing of corresponding coding in node processing module by allocation unit Task is sent to background scanning system by module, node processing submodule, is forwarded the transmission of entire task quickly, can be carried The common query of multiple tasks uses, and the mission bit stream number of identification is sent to node conversion list by node allocation unit Member, node converting unit is by the node processing submodule code conversion infrequently used at the node processing submodule being commonly used Coding, avoid congestion from reducing service efficiency and forwarding time, to solve the problems mentioned in the above background technology.
To achieve the above object, the present invention provides the following technical solutions:A kind of cyberspace loophole merger platform data turn Service system, including oracle database system are sent out, oracle database system connecting pin is equipped with WEB foreground system with after Platform scanning system, the oracle database system are used to the task that WEB foreground system is issued being sent to background scanning system And the information obtained after the processing of background scanning system task is sent to WEB foreground system, the oracle database system Including task recognition unit, the task recognition unit output end is equipped with node allocation unit, the node allocation unit output End is equipped with node converting unit and node processing module, and the node converting unit output end is equipped with volumes of searches database, described Node processing module includes multiple node processing submodules, and the node processing module output end is equipped with database and mail is serviced Device, wherein:
The task recognition unit is single for the task that WEB foreground system is sent to be identified to and is sent to node distribution Member;
The node allocation unit is used to encode the task after identification and be assigned to corresponding inside node processing module The node processing submodule of coding and the mission bit stream number of identification is sent to node converting unit;
The node processing submodule code conversion that the node converting unit is used to infrequently to use is at the node being commonly used The coding of submodule is handled, and often accessing for task is sent to volumes of searches database;
The node processing module is used for the encoding tasks of receiving node allocation unit distribution, and encoding tasks are sent to phase The node processing submodule of corresponding coding;
The node processing submodule is used to for task being sent to background scanning system, and background scanning system obtains after handling task To information be sent to node processing submodule, node processing submodule in information classification storage to database and will pass through Mail server sends notification to administrator's mailbox and WEB foreground system.
Preferably, the WEB foreground system output end is connect with task recognition unit input terminal.
Preferably, described search amount database output end is connect with WEB foreground system input terminal, described search amount database Different mission bit streams for sending node converting unit count, and the mission bit stream after counting is sent to WEB Foreground system.
Preferably, the database includes Whois database, loophole plugin library and scanning result library.
Preferably, the node processing submodule includes information reception/transmission unit, the information reception/transmission unit Connecting pin is equipped with storage unit.
Preferably, the information reception/transmission unit is connect with background scanning system input, the storage unit Output end is connect with database input terminal, and the storage unit is for sweeping the received backstage of information reception/transmission unit System is retouched treated mission bit stream analysis classification, and is respectively stored in Whois database, loophole plugin library or scanning result In library.
Preferably, the mail server output end is connect with WEB foreground system input terminal and administrator's mailbox.
Technical effect and advantage of the invention:
1, the task that WEB foreground system is sent is identified to by task recognition unit and is sent to node allocation unit, Task after identification is encoded and is assigned in node processing module at the node of corresponding coding by node allocation unit Submodule is managed, task is sent to background scanning system by node processing submodule, forwards the transmission of entire task quickly, can The common query for carrying multiple tasks uses;
2, node processing module is classified after receiving the information that background scanning system handles task through storage unit analysis, And it is respectively stored in Whois database, loophole plugin library or scanning result library, and notice is sent by mail server To administrator's mailbox and WEB foreground system, Report Tasks are scanned and whether there is or not loophole report and loophole grade, realize that backstage is swept Retouch the bi-directional data forwarding capability of system and WEB foreground system
3, the mission bit stream number of identification is sent to by node converting unit by node allocation unit, node converting unit will not The node processing submodule code conversion frequently used avoids congestion from reducing at the coding for the node processing submodule being commonly used Service efficiency and forwarding time;
4, by the way that often accessing for task is sent to volumes of searches database, volumes of searches database sends node converting unit Different mission bit streams are counted, and the mission bit stream after counting is sent to WEB foreground system, so that manager watches, The later period is facilitated to improve platform.
Detailed description of the invention
Fig. 1 is system principle structural schematic diagram of the invention.
Fig. 2 is overall structure diagram of the invention.
Fig. 3 is node processing module structural schematic diagram of the invention.
Fig. 4 is database structure schematic diagram of the invention.
In figure:1 oracle database system, 2 WEB foreground systems, 3 background scanning systems, 4 task recognition units, 5 sections Point allocation unit, 6 node converting units, 7 node processing modules, 8 volumes of searches databases, 9 node processing submodules, 10 data Library, 11Whois database, 12 loophole plugin libraries, 13 scanning result libraries, 14 information reception/transmission units, 15 information analysis lists Member, 16 mail servers.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other Embodiment shall fall within the protection scope of the present invention.
Embodiment 1:
A kind of cyberspace loophole merger platform data forward service system according to shown in Fig. 1-2, including oracle database System 1,1 connecting pin of oracle database system are equipped with WEB foreground system 2 and background scanning system 3, the oracle number According to library system 1 for the task that WEB foreground system 2 is issued to be sent to background scanning system 3 and appoints background scanning system 3 The information obtained after business processing is sent to WEB foreground system 2, and the oracle database system 1 includes task recognition unit 4, 2 output end of WEB foreground system is connect with 4 input terminal of task recognition unit, and 4 output end of task recognition unit is equipped with section Point allocation unit 5,5 output end of node allocation unit are equipped with node converting unit 6 and node processing module 7, the node 6 output end of converting unit is equipped with volumes of searches database 8,8 output end of described search amount database and 2 input terminal of WEB foreground system Connection, the different mission bit streams that described search amount database 8 is used to send node converting unit 6 count, and will meter Mission bit stream after number is sent to WEB foreground system 2, and the node processing module 7 includes multiple node processing submodules 9, institute 7 output end of node processing module is stated equipped with database 10 and mail server 16, before 16 output end of mail server and WEB 2 input terminal of platform system and the connection of administrator's mailbox, wherein:
The task recognition unit 4 is single for the task that WEB foreground system 2 is sent to be identified to and is sent to node distribution Member 5;
It is right that the node allocation unit 5 is used to encode the task after identification and be assigned to 7 inside of node processing module The node processing submodule 9 that should encode and the mission bit stream number of identification is sent to node converting unit 6;
9 code conversion of node processing submodule that the node converting unit 6 is used to infrequently to use is at the section being commonly used The coding of point processing submodule 9, avoids congestion from reducing service efficiency and forwarding time, and often accessing for task is sent To volumes of searches database 8;
The node processing module 7 is used for the encoding tasks that receiving node allocation unit 5 is distributed, and encoding tasks are sent to The node processing submodule 9 of corresponding coding;
The node processing submodule 9 is used to task being sent to background scanning system 3, and background scanning system 3 handles task The information obtained afterwards is sent to node processing submodule 9, node processing submodule 9 by information classification storage to database 10 simultaneously And administrator's mailbox and WEB foreground system 2 are sent notification to by mail server 16.
By the setting of oracle database system 1, the bi-directional data of background scanning system 3 and WEB foreground system 2 is realized Forwarding capability, when administrator/executor logs on 2 submission task of WEB foreground system, oracle database system 1 compiles task Code and the node processing submodule 9 for being assigned to corresponding coding, are then sent to background scanning system 3, background scanning system 3 is right The analysis of task progress procedure(Information collection->IP range/domain name arrangement->Vulnerability scanning), and by the information being collected into, leakage Hole, service are respectively stored into Whois database 11, loophole plugin library 12 or scanning result after analyzing by storage unit 15 In library 13, and information is sent notification into administrator's mailbox and WEB foreground system 2 by node processing module 7, Report Tasks are swept Retouch finish and whether there is or not loophole report and loophole grade.
Embodiment 2:
A kind of cyberspace loophole merger platform data forward service system according to Fig.4, the database 10 include Whois database 11, loophole plugin library 12 and scanning result library 13;
A kind of cyberspace loophole merger platform data forward service system according to Fig.3, the node processing submodule 9 Including information reception/transmission unit 14,14 connecting pin of information reception/transmission unit is equipped with storage unit 15, described Information reception/transmission unit 14 is connect with 3 input terminal of background scanning system, 15 output end of storage unit and database The connection of 10 input terminals, the storage unit 15 is used for will be at the received background scanning system 3 of information reception/transmission unit 14 Mission bit stream after reason analyzes classification, and is respectively stored in Whois database 11, loophole plugin library 12 or scanning result library 13 It is interior.
Working principle of the present invention:
Referring to Figure of description 1-2, when administrator/executor logs on 2 submission task of WEB foreground system, task recognition unit 4 The task that WEB foreground system 2 is sent is identified to and is sent to node allocation unit 5, after node allocation unit 5 will identify Task encoded and be assigned to node processing module 7;
Referring to Figure of description 3-4, the encoding tasks of 7 receiving node allocation unit 5 of node processing module distribution, and will encode Task is sent to the node processing submodule 9 of corresponding coding, and task is sent to background scanning system by node processing submodule 9 3, background scanning system 3 carries out the analysis of procedure to task(Information collection->IP range/domain name arrangement->Vulnerability scanning), and Whois database 11, loophole are respectively stored into after the information being collected into, loophole, service are analyzed by storage unit 15 In plugin library 12 or scanning result library 13, and administrator's mailbox and the foreground WEB system are sent notification to by mail server 16 System 2, Report Tasks are scanned and whether there is or not loophole report and loophole grade, realize background scanning system 3 and WEB foreground system 2 Bi-directional data forwarding capability;
In addition the mission bit stream number of identification is sent to node converting unit 6 by node allocation unit 5, and node converting unit 6 will 9 code conversion of node processing submodule infrequently used avoids congestion at the coding for the node processing submodule 9 being commonly used Service efficiency and forwarding time are reduced, and often accessing for task is sent to volumes of searches database 8, volumes of searches database The 8 different mission bit streams for sending node converting unit 6 count, and before the mission bit stream after counting is sent to WEB Platform system 2, so as to manager's viewing.
Finally it should be noted that:The foregoing is only a preferred embodiment of the present invention, is not intended to restrict the invention, Although the present invention is described in detail referring to the foregoing embodiments, for those skilled in the art, still may be used To modify the technical solutions described in the foregoing embodiments or equivalent replacement of some of the technical features, All within the spirits and principles of the present invention, any modification, equivalent replacement, improvement and so on should be included in of the invention Within protection scope.

Claims (7)

1. a kind of cyberspace loophole merger platform data forward service system, including oracle database system(1), feature It is:The oracle database system(1)Connecting pin is equipped with WEB foreground system(2)With background scanning system(3), described Oracle database system(1)For by WEB foreground system(2)The task of publication is sent to background scanning system(3)And it will Background scanning system(3)The information obtained after task processing is sent to WEB foreground system(2), the oracle database system (1)Including task recognition unit(4), the task recognition unit(4)Output end is equipped with node allocation unit(5), the node Allocation unit(5)Output end is equipped with node converting unit(6)And node processing module(7), the node converting unit(6)Output End is equipped with volumes of searches database(8), the node processing module(7)Including multiple node processing submodules(9), at the node Manage module(7)Output end is equipped with database(10)With mail server(16), wherein:
The task recognition unit(4)For by WEB foreground system(2)The task of transmission is identified and is sent to node point With unit(5);
The node allocation unit(5)For the task after identification to be encoded and is assigned to node processing module(7)It is interior The node processing submodule of the corresponding coding in portion(9)And the mission bit stream number of identification is sent to node converting unit(6);
The node converting unit(6)Node processing submodule for will infrequently use(9)Code conversion is at being commonly used Node processing submodule(9)Coding, and often accessing for task is sent to volumes of searches database(8);
The node processing module(7)For receiving node allocation unit(5)The encoding tasks of distribution, and encoding tasks are sent out Give the node processing submodule of corresponding coding(9);
The node processing submodule(9)For task to be sent to background scanning system(3), background scanning system(3)It will appoint The information obtained after business processing is sent to node processing submodule(9), node processing submodule(9)By information classification storage to number According to library(10)It is interior and pass through mail server(16)Send notification to administrator's mailbox and WEB foreground system(2).
2. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that: The WEB foreground system(2)Output end and task recognition unit(4)Input terminal connection.
3. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that: Described search amount database(8)Output end and WEB foreground system(2)Input terminal connection, described search amount database(8)For inciting somebody to action Node converting unit(6)The different mission bit streams sent are counted, and the mission bit stream after counting is sent to the foreground WEB System(2).
4. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that: The database(10)Including Whois database(11), loophole plugin library(12)With scanning result library(13).
5. a kind of cyberspace loophole merger platform data forward service system according to claim 4, it is characterised in that: The node processing submodule(9)Including information reception/transmission unit(14), the information reception/transmission unit(14)Connection End is equipped with storage unit(15).
6. a kind of cyberspace loophole merger platform data forward service system according to claim 5, it is characterised in that: The information reception/transmission unit(14)With background scanning system(3)Input terminal connection, the storage unit(15)Output End and database(10)Input terminal connection, the storage unit(15)For by information reception/transmission unit(14)It receives Background scanning system(3)Mission bit stream analysis classification that treated, and it is respectively stored in Whois database(11), loophole Plugin library(12)Or scanning result library(13)It is interior.
7. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that: The mail server(16)Output end and WEB foreground system(2)Input terminal and the connection of administrator's mailbox.
CN201810746269.2A 2018-07-09 2018-07-09 Data forwarding service system of network space vulnerability merging platform Active CN108900515B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810746269.2A CN108900515B (en) 2018-07-09 2018-07-09 Data forwarding service system of network space vulnerability merging platform

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810746269.2A CN108900515B (en) 2018-07-09 2018-07-09 Data forwarding service system of network space vulnerability merging platform

Publications (2)

Publication Number Publication Date
CN108900515A true CN108900515A (en) 2018-11-27
CN108900515B CN108900515B (en) 2021-06-04

Family

ID=64348877

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810746269.2A Active CN108900515B (en) 2018-07-09 2018-07-09 Data forwarding service system of network space vulnerability merging platform

Country Status (1)

Country Link
CN (1) CN108900515B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101958903A (en) * 2010-10-09 2011-01-26 南京博同科技有限公司 Method for realizing high-performance firewall based on SOC and parallel virtual firewall
CN104079602A (en) * 2013-03-28 2014-10-01 深圳先进技术研究院 Method and system of positioning cyberspace based on extended IP (Internet Protocol)
US20150378339A1 (en) * 2014-06-27 2015-12-31 Siemens Aktiengesellschaft Resilient control design for distributed cyber-physical systems
CN106936637A (en) * 2017-03-15 2017-07-07 中国电子科技网络信息安全有限公司 The panorama heuristic method for visualizing and device of a kind of cyberspace situation
CN107181760A (en) * 2017-07-07 2017-09-19 北京邮电大学 A kind of distributed nearly threat source attack blocking-up method and its device
CN107220541A (en) * 2017-05-26 2017-09-29 成都信息工程大学 A kind of social worker's attack knowledge based on SOEKS is represented and method for digging
CN108259511A (en) * 2018-02-28 2018-07-06 公安部第研究所 A kind of cyberspace threatens intelligence sharing system and method
CN109462498A (en) * 2018-10-24 2019-03-12 北京交通大学 A kind of pervasive network system and its communication means

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101958903A (en) * 2010-10-09 2011-01-26 南京博同科技有限公司 Method for realizing high-performance firewall based on SOC and parallel virtual firewall
CN104079602A (en) * 2013-03-28 2014-10-01 深圳先进技术研究院 Method and system of positioning cyberspace based on extended IP (Internet Protocol)
US20150378339A1 (en) * 2014-06-27 2015-12-31 Siemens Aktiengesellschaft Resilient control design for distributed cyber-physical systems
CN106936637A (en) * 2017-03-15 2017-07-07 中国电子科技网络信息安全有限公司 The panorama heuristic method for visualizing and device of a kind of cyberspace situation
CN107220541A (en) * 2017-05-26 2017-09-29 成都信息工程大学 A kind of social worker's attack knowledge based on SOEKS is represented and method for digging
CN107181760A (en) * 2017-07-07 2017-09-19 北京邮电大学 A kind of distributed nearly threat source attack blocking-up method and its device
CN108259511A (en) * 2018-02-28 2018-07-06 公安部第研究所 A kind of cyberspace threatens intelligence sharing system and method
CN109462498A (en) * 2018-10-24 2019-03-12 北京交通大学 A kind of pervasive network system and its communication means

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
罗军舟 等: "《网络空间安全体系与关键技术》", 《中国科学: 信息科学》 *

Also Published As

Publication number Publication date
CN108900515B (en) 2021-06-04

Similar Documents

Publication Publication Date Title
US11449519B2 (en) Method, system, and apparatus for enterprise wide storage and retrieval of large amounts of data
Dai et al. Finding persistent items in distributed datasets
US9609001B2 (en) System and method for adding context to prevent data leakage over a computer network
CN101345694A (en) Method for fast searching, positioning and matching access control list
CN107959715B (en) Remote terminal information identification software method based on wireless telecommunications
US10659486B2 (en) Universal link to extract and classify log data
CN113590910B (en) Network traffic retrieval method and device
CN105229597A (en) Distributed nature is collected and correlation engine
CN104468107A (en) Method and device for verification data processing
CN104618304A (en) Data processing method and data processing system
CN101854374A (en) Data node device, method and system for acquiring opposite end information
CN113672629A (en) Distributed network traffic retrieval method and device
CN111858722A (en) Big data application system and method based on Internet of things
CN116932614B (en) Distributed searching method and system oriented to digital networking
CN102090039A (en) A method of performing data mediation, and an associated computer program product, data mediation device and information system
CN108900515A (en) A kind of cyberspace loophole merger platform data forward service system
KR102309557B1 (en) Saas based system and method for vulnerability check of Internet of Things terminal
CN103999435B (en) For the apparatus and method of efficient network address translation and ALG process
CN112181929A (en) Cloud management platform log processing method and device, electronic device and storage medium
CN101505295B (en) Method and equipment for correlating content with type
CN103702301A (en) Real-time sensing control system for inter-internet short message service
CN114374622A (en) Shunting method based on fusion shunting equipment and fusion shunting equipment
CN111598759B (en) Urban resource integration system and urban resource integration method
CN116910125B (en) Digital object distributed search method and device integrating distance and longest prefix
CN114971189A (en) Government affair cloud data acquisition, processing and management system and method based on block chain

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant