CN108900515A - A kind of cyberspace loophole merger platform data forward service system - Google Patents
A kind of cyberspace loophole merger platform data forward service system Download PDFInfo
- Publication number
- CN108900515A CN108900515A CN201810746269.2A CN201810746269A CN108900515A CN 108900515 A CN108900515 A CN 108900515A CN 201810746269 A CN201810746269 A CN 201810746269A CN 108900515 A CN108900515 A CN 108900515A
- Authority
- CN
- China
- Prior art keywords
- node
- sent
- task
- loophole
- unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1433—Vulnerability analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The invention discloses a kind of cyberspace loophole merger platform data forward service systems, including oracle database system, oracle database system connecting pin is equipped with WEB foreground system and background scanning system, the oracle database system is used to for the task that WEB foreground system is issued being sent to background scanning system and the information obtained after the processing of background scanning system task is sent to WEB foreground system, the oracle database system includes task recognition unit, the task recognition unit output end is equipped with node allocation unit, the node allocation unit output end is equipped with node converting unit and node processing module, the node converting unit output end is equipped with volumes of searches database.The mission bit stream number of identification is sent to node converting unit by node allocation unit by the present invention, the node processing submodule code conversion infrequently used at the coding for the node processing submodule being commonly used, is avoided congestion from reducing service efficiency and forwarding time by node converting unit.
Description
Technical field
The present invention relates to network platform field, in particular to a kind of cyberspace loophole merger platform data forwarding service system
System.
Background technique
With the rapid development of information technology, computer network is widely applied, network rings open extensively are utilized
Border carries out the trend that global communication has become era development, and the daily economic and social life of people is also increasingly dependent on interconnection
Net.
There is explosive growth in big data era, global metadata amount.At the same time, the data mining technologies such as distributed computing
Make big data analysis rule again, the ability of studying and judging trend greatly enhances.Big data is constantly to various industries infiltration, profound impact
Politics, economy, the people's livelihood and the national defence of country.
The importance of Information base determines that the importance of Network Warning, complexity require to carry out technique preparation in advance.
Loophole is universal with information technology and network, or will become to become increasingly complex, and discovery frequency also or will become higher and higher.But
It is background system to be accessed from foreground system, data are complicated and inquire when carrying out inquiry detection to loophole by software platform
Detection time is longer, and the efficiency of loophole inspection is slower, influences post-processing.
Therefore, inventing a kind of cyberspace loophole merger platform data forward service system, have very much must to solve the above problems
It wants.
Summary of the invention
The purpose of the present invention is to provide a kind of cyberspace loophole merger platform data forward service systems, pass through node
Task after identification is encoded and is assigned to node processing of corresponding coding in node processing module by allocation unit
Task is sent to background scanning system by module, node processing submodule, is forwarded the transmission of entire task quickly, can be carried
The common query of multiple tasks uses, and the mission bit stream number of identification is sent to node conversion list by node allocation unit
Member, node converting unit is by the node processing submodule code conversion infrequently used at the node processing submodule being commonly used
Coding, avoid congestion from reducing service efficiency and forwarding time, to solve the problems mentioned in the above background technology.
To achieve the above object, the present invention provides the following technical solutions:A kind of cyberspace loophole merger platform data turn
Service system, including oracle database system are sent out, oracle database system connecting pin is equipped with WEB foreground system with after
Platform scanning system, the oracle database system are used to the task that WEB foreground system is issued being sent to background scanning system
And the information obtained after the processing of background scanning system task is sent to WEB foreground system, the oracle database system
Including task recognition unit, the task recognition unit output end is equipped with node allocation unit, the node allocation unit output
End is equipped with node converting unit and node processing module, and the node converting unit output end is equipped with volumes of searches database, described
Node processing module includes multiple node processing submodules, and the node processing module output end is equipped with database and mail is serviced
Device, wherein:
The task recognition unit is single for the task that WEB foreground system is sent to be identified to and is sent to node distribution
Member;
The node allocation unit is used to encode the task after identification and be assigned to corresponding inside node processing module
The node processing submodule of coding and the mission bit stream number of identification is sent to node converting unit;
The node processing submodule code conversion that the node converting unit is used to infrequently to use is at the node being commonly used
The coding of submodule is handled, and often accessing for task is sent to volumes of searches database;
The node processing module is used for the encoding tasks of receiving node allocation unit distribution, and encoding tasks are sent to phase
The node processing submodule of corresponding coding;
The node processing submodule is used to for task being sent to background scanning system, and background scanning system obtains after handling task
To information be sent to node processing submodule, node processing submodule in information classification storage to database and will pass through
Mail server sends notification to administrator's mailbox and WEB foreground system.
Preferably, the WEB foreground system output end is connect with task recognition unit input terminal.
Preferably, described search amount database output end is connect with WEB foreground system input terminal, described search amount database
Different mission bit streams for sending node converting unit count, and the mission bit stream after counting is sent to WEB
Foreground system.
Preferably, the database includes Whois database, loophole plugin library and scanning result library.
Preferably, the node processing submodule includes information reception/transmission unit, the information reception/transmission unit
Connecting pin is equipped with storage unit.
Preferably, the information reception/transmission unit is connect with background scanning system input, the storage unit
Output end is connect with database input terminal, and the storage unit is for sweeping the received backstage of information reception/transmission unit
System is retouched treated mission bit stream analysis classification, and is respectively stored in Whois database, loophole plugin library or scanning result
In library.
Preferably, the mail server output end is connect with WEB foreground system input terminal and administrator's mailbox.
Technical effect and advantage of the invention:
1, the task that WEB foreground system is sent is identified to by task recognition unit and is sent to node allocation unit,
Task after identification is encoded and is assigned in node processing module at the node of corresponding coding by node allocation unit
Submodule is managed, task is sent to background scanning system by node processing submodule, forwards the transmission of entire task quickly, can
The common query for carrying multiple tasks uses;
2, node processing module is classified after receiving the information that background scanning system handles task through storage unit analysis,
And it is respectively stored in Whois database, loophole plugin library or scanning result library, and notice is sent by mail server
To administrator's mailbox and WEB foreground system, Report Tasks are scanned and whether there is or not loophole report and loophole grade, realize that backstage is swept
Retouch the bi-directional data forwarding capability of system and WEB foreground system
3, the mission bit stream number of identification is sent to by node converting unit by node allocation unit, node converting unit will not
The node processing submodule code conversion frequently used avoids congestion from reducing at the coding for the node processing submodule being commonly used
Service efficiency and forwarding time;
4, by the way that often accessing for task is sent to volumes of searches database, volumes of searches database sends node converting unit
Different mission bit streams are counted, and the mission bit stream after counting is sent to WEB foreground system, so that manager watches,
The later period is facilitated to improve platform.
Detailed description of the invention
Fig. 1 is system principle structural schematic diagram of the invention.
Fig. 2 is overall structure diagram of the invention.
Fig. 3 is node processing module structural schematic diagram of the invention.
Fig. 4 is database structure schematic diagram of the invention.
In figure:1 oracle database system, 2 WEB foreground systems, 3 background scanning systems, 4 task recognition units, 5 sections
Point allocation unit, 6 node converting units, 7 node processing modules, 8 volumes of searches databases, 9 node processing submodules, 10 data
Library, 11Whois database, 12 loophole plugin libraries, 13 scanning result libraries, 14 information reception/transmission units, 15 information analysis lists
Member, 16 mail servers.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete
Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on
Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other
Embodiment shall fall within the protection scope of the present invention.
Embodiment 1:
A kind of cyberspace loophole merger platform data forward service system according to shown in Fig. 1-2, including oracle database
System 1,1 connecting pin of oracle database system are equipped with WEB foreground system 2 and background scanning system 3, the oracle number
According to library system 1 for the task that WEB foreground system 2 is issued to be sent to background scanning system 3 and appoints background scanning system 3
The information obtained after business processing is sent to WEB foreground system 2, and the oracle database system 1 includes task recognition unit 4,
2 output end of WEB foreground system is connect with 4 input terminal of task recognition unit, and 4 output end of task recognition unit is equipped with section
Point allocation unit 5,5 output end of node allocation unit are equipped with node converting unit 6 and node processing module 7, the node
6 output end of converting unit is equipped with volumes of searches database 8,8 output end of described search amount database and 2 input terminal of WEB foreground system
Connection, the different mission bit streams that described search amount database 8 is used to send node converting unit 6 count, and will meter
Mission bit stream after number is sent to WEB foreground system 2, and the node processing module 7 includes multiple node processing submodules 9, institute
7 output end of node processing module is stated equipped with database 10 and mail server 16, before 16 output end of mail server and WEB
2 input terminal of platform system and the connection of administrator's mailbox, wherein:
The task recognition unit 4 is single for the task that WEB foreground system 2 is sent to be identified to and is sent to node distribution
Member 5;
It is right that the node allocation unit 5 is used to encode the task after identification and be assigned to 7 inside of node processing module
The node processing submodule 9 that should encode and the mission bit stream number of identification is sent to node converting unit 6;
9 code conversion of node processing submodule that the node converting unit 6 is used to infrequently to use is at the section being commonly used
The coding of point processing submodule 9, avoids congestion from reducing service efficiency and forwarding time, and often accessing for task is sent
To volumes of searches database 8;
The node processing module 7 is used for the encoding tasks that receiving node allocation unit 5 is distributed, and encoding tasks are sent to
The node processing submodule 9 of corresponding coding;
The node processing submodule 9 is used to task being sent to background scanning system 3, and background scanning system 3 handles task
The information obtained afterwards is sent to node processing submodule 9, node processing submodule 9 by information classification storage to database 10 simultaneously
And administrator's mailbox and WEB foreground system 2 are sent notification to by mail server 16.
By the setting of oracle database system 1, the bi-directional data of background scanning system 3 and WEB foreground system 2 is realized
Forwarding capability, when administrator/executor logs on 2 submission task of WEB foreground system, oracle database system 1 compiles task
Code and the node processing submodule 9 for being assigned to corresponding coding, are then sent to background scanning system 3, background scanning system 3 is right
The analysis of task progress procedure(Information collection->IP range/domain name arrangement->Vulnerability scanning), and by the information being collected into, leakage
Hole, service are respectively stored into Whois database 11, loophole plugin library 12 or scanning result after analyzing by storage unit 15
In library 13, and information is sent notification into administrator's mailbox and WEB foreground system 2 by node processing module 7, Report Tasks are swept
Retouch finish and whether there is or not loophole report and loophole grade.
Embodiment 2:
A kind of cyberspace loophole merger platform data forward service system according to Fig.4, the database 10 include
Whois database 11, loophole plugin library 12 and scanning result library 13;
A kind of cyberspace loophole merger platform data forward service system according to Fig.3, the node processing submodule 9
Including information reception/transmission unit 14,14 connecting pin of information reception/transmission unit is equipped with storage unit 15, described
Information reception/transmission unit 14 is connect with 3 input terminal of background scanning system, 15 output end of storage unit and database
The connection of 10 input terminals, the storage unit 15 is used for will be at the received background scanning system 3 of information reception/transmission unit 14
Mission bit stream after reason analyzes classification, and is respectively stored in Whois database 11, loophole plugin library 12 or scanning result library 13
It is interior.
Working principle of the present invention:
Referring to Figure of description 1-2, when administrator/executor logs on 2 submission task of WEB foreground system, task recognition unit 4
The task that WEB foreground system 2 is sent is identified to and is sent to node allocation unit 5, after node allocation unit 5 will identify
Task encoded and be assigned to node processing module 7;
Referring to Figure of description 3-4, the encoding tasks of 7 receiving node allocation unit 5 of node processing module distribution, and will encode
Task is sent to the node processing submodule 9 of corresponding coding, and task is sent to background scanning system by node processing submodule 9
3, background scanning system 3 carries out the analysis of procedure to task(Information collection->IP range/domain name arrangement->Vulnerability scanning), and
Whois database 11, loophole are respectively stored into after the information being collected into, loophole, service are analyzed by storage unit 15
In plugin library 12 or scanning result library 13, and administrator's mailbox and the foreground WEB system are sent notification to by mail server 16
System 2, Report Tasks are scanned and whether there is or not loophole report and loophole grade, realize background scanning system 3 and WEB foreground system 2
Bi-directional data forwarding capability;
In addition the mission bit stream number of identification is sent to node converting unit 6 by node allocation unit 5, and node converting unit 6 will
9 code conversion of node processing submodule infrequently used avoids congestion at the coding for the node processing submodule 9 being commonly used
Service efficiency and forwarding time are reduced, and often accessing for task is sent to volumes of searches database 8, volumes of searches database
The 8 different mission bit streams for sending node converting unit 6 count, and before the mission bit stream after counting is sent to WEB
Platform system 2, so as to manager's viewing.
Finally it should be noted that:The foregoing is only a preferred embodiment of the present invention, is not intended to restrict the invention,
Although the present invention is described in detail referring to the foregoing embodiments, for those skilled in the art, still may be used
To modify the technical solutions described in the foregoing embodiments or equivalent replacement of some of the technical features,
All within the spirits and principles of the present invention, any modification, equivalent replacement, improvement and so on should be included in of the invention
Within protection scope.
Claims (7)
1. a kind of cyberspace loophole merger platform data forward service system, including oracle database system(1), feature
It is:The oracle database system(1)Connecting pin is equipped with WEB foreground system(2)With background scanning system(3), described
Oracle database system(1)For by WEB foreground system(2)The task of publication is sent to background scanning system(3)And it will
Background scanning system(3)The information obtained after task processing is sent to WEB foreground system(2), the oracle database system
(1)Including task recognition unit(4), the task recognition unit(4)Output end is equipped with node allocation unit(5), the node
Allocation unit(5)Output end is equipped with node converting unit(6)And node processing module(7), the node converting unit(6)Output
End is equipped with volumes of searches database(8), the node processing module(7)Including multiple node processing submodules(9), at the node
Manage module(7)Output end is equipped with database(10)With mail server(16), wherein:
The task recognition unit(4)For by WEB foreground system(2)The task of transmission is identified and is sent to node point
With unit(5);
The node allocation unit(5)For the task after identification to be encoded and is assigned to node processing module(7)It is interior
The node processing submodule of the corresponding coding in portion(9)And the mission bit stream number of identification is sent to node converting unit(6);
The node converting unit(6)Node processing submodule for will infrequently use(9)Code conversion is at being commonly used
Node processing submodule(9)Coding, and often accessing for task is sent to volumes of searches database(8);
The node processing module(7)For receiving node allocation unit(5)The encoding tasks of distribution, and encoding tasks are sent out
Give the node processing submodule of corresponding coding(9);
The node processing submodule(9)For task to be sent to background scanning system(3), background scanning system(3)It will appoint
The information obtained after business processing is sent to node processing submodule(9), node processing submodule(9)By information classification storage to number
According to library(10)It is interior and pass through mail server(16)Send notification to administrator's mailbox and WEB foreground system(2).
2. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that:
The WEB foreground system(2)Output end and task recognition unit(4)Input terminal connection.
3. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that:
Described search amount database(8)Output end and WEB foreground system(2)Input terminal connection, described search amount database(8)For inciting somebody to action
Node converting unit(6)The different mission bit streams sent are counted, and the mission bit stream after counting is sent to the foreground WEB
System(2).
4. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that:
The database(10)Including Whois database(11), loophole plugin library(12)With scanning result library(13).
5. a kind of cyberspace loophole merger platform data forward service system according to claim 4, it is characterised in that:
The node processing submodule(9)Including information reception/transmission unit(14), the information reception/transmission unit(14)Connection
End is equipped with storage unit(15).
6. a kind of cyberspace loophole merger platform data forward service system according to claim 5, it is characterised in that:
The information reception/transmission unit(14)With background scanning system(3)Input terminal connection, the storage unit(15)Output
End and database(10)Input terminal connection, the storage unit(15)For by information reception/transmission unit(14)It receives
Background scanning system(3)Mission bit stream analysis classification that treated, and it is respectively stored in Whois database(11), loophole
Plugin library(12)Or scanning result library(13)It is interior.
7. a kind of cyberspace loophole merger platform data forward service system according to claim 1, it is characterised in that:
The mail server(16)Output end and WEB foreground system(2)Input terminal and the connection of administrator's mailbox.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810746269.2A CN108900515B (en) | 2018-07-09 | 2018-07-09 | Data forwarding service system of network space vulnerability merging platform |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810746269.2A CN108900515B (en) | 2018-07-09 | 2018-07-09 | Data forwarding service system of network space vulnerability merging platform |
Publications (2)
Publication Number | Publication Date |
---|---|
CN108900515A true CN108900515A (en) | 2018-11-27 |
CN108900515B CN108900515B (en) | 2021-06-04 |
Family
ID=64348877
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810746269.2A Active CN108900515B (en) | 2018-07-09 | 2018-07-09 | Data forwarding service system of network space vulnerability merging platform |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108900515B (en) |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101958903A (en) * | 2010-10-09 | 2011-01-26 | 南京博同科技有限公司 | Method for realizing high-performance firewall based on SOC and parallel virtual firewall |
CN104079602A (en) * | 2013-03-28 | 2014-10-01 | 深圳先进技术研究院 | Method and system of positioning cyberspace based on extended IP (Internet Protocol) |
US20150378339A1 (en) * | 2014-06-27 | 2015-12-31 | Siemens Aktiengesellschaft | Resilient control design for distributed cyber-physical systems |
CN106936637A (en) * | 2017-03-15 | 2017-07-07 | 中国电子科技网络信息安全有限公司 | The panorama heuristic method for visualizing and device of a kind of cyberspace situation |
CN107181760A (en) * | 2017-07-07 | 2017-09-19 | 北京邮电大学 | A kind of distributed nearly threat source attack blocking-up method and its device |
CN107220541A (en) * | 2017-05-26 | 2017-09-29 | 成都信息工程大学 | A kind of social worker's attack knowledge based on SOEKS is represented and method for digging |
CN108259511A (en) * | 2018-02-28 | 2018-07-06 | 公安部第研究所 | A kind of cyberspace threatens intelligence sharing system and method |
CN109462498A (en) * | 2018-10-24 | 2019-03-12 | 北京交通大学 | A kind of pervasive network system and its communication means |
-
2018
- 2018-07-09 CN CN201810746269.2A patent/CN108900515B/en active Active
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101958903A (en) * | 2010-10-09 | 2011-01-26 | 南京博同科技有限公司 | Method for realizing high-performance firewall based on SOC and parallel virtual firewall |
CN104079602A (en) * | 2013-03-28 | 2014-10-01 | 深圳先进技术研究院 | Method and system of positioning cyberspace based on extended IP (Internet Protocol) |
US20150378339A1 (en) * | 2014-06-27 | 2015-12-31 | Siemens Aktiengesellschaft | Resilient control design for distributed cyber-physical systems |
CN106936637A (en) * | 2017-03-15 | 2017-07-07 | 中国电子科技网络信息安全有限公司 | The panorama heuristic method for visualizing and device of a kind of cyberspace situation |
CN107220541A (en) * | 2017-05-26 | 2017-09-29 | 成都信息工程大学 | A kind of social worker's attack knowledge based on SOEKS is represented and method for digging |
CN107181760A (en) * | 2017-07-07 | 2017-09-19 | 北京邮电大学 | A kind of distributed nearly threat source attack blocking-up method and its device |
CN108259511A (en) * | 2018-02-28 | 2018-07-06 | 公安部第研究所 | A kind of cyberspace threatens intelligence sharing system and method |
CN109462498A (en) * | 2018-10-24 | 2019-03-12 | 北京交通大学 | A kind of pervasive network system and its communication means |
Non-Patent Citations (1)
Title |
---|
罗军舟 等: "《网络空间安全体系与关键技术》", 《中国科学: 信息科学》 * |
Also Published As
Publication number | Publication date |
---|---|
CN108900515B (en) | 2021-06-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11449519B2 (en) | Method, system, and apparatus for enterprise wide storage and retrieval of large amounts of data | |
Dai et al. | Finding persistent items in distributed datasets | |
US9609001B2 (en) | System and method for adding context to prevent data leakage over a computer network | |
CN101345694A (en) | Method for fast searching, positioning and matching access control list | |
CN107959715B (en) | Remote terminal information identification software method based on wireless telecommunications | |
US10659486B2 (en) | Universal link to extract and classify log data | |
CN113590910B (en) | Network traffic retrieval method and device | |
CN105229597A (en) | Distributed nature is collected and correlation engine | |
CN104468107A (en) | Method and device for verification data processing | |
CN104618304A (en) | Data processing method and data processing system | |
CN101854374A (en) | Data node device, method and system for acquiring opposite end information | |
CN113672629A (en) | Distributed network traffic retrieval method and device | |
CN111858722A (en) | Big data application system and method based on Internet of things | |
CN116932614B (en) | Distributed searching method and system oriented to digital networking | |
CN102090039A (en) | A method of performing data mediation, and an associated computer program product, data mediation device and information system | |
CN108900515A (en) | A kind of cyberspace loophole merger platform data forward service system | |
KR102309557B1 (en) | Saas based system and method for vulnerability check of Internet of Things terminal | |
CN103999435B (en) | For the apparatus and method of efficient network address translation and ALG process | |
CN112181929A (en) | Cloud management platform log processing method and device, electronic device and storage medium | |
CN101505295B (en) | Method and equipment for correlating content with type | |
CN103702301A (en) | Real-time sensing control system for inter-internet short message service | |
CN114374622A (en) | Shunting method based on fusion shunting equipment and fusion shunting equipment | |
CN111598759B (en) | Urban resource integration system and urban resource integration method | |
CN116910125B (en) | Digital object distributed search method and device integrating distance and longest prefix | |
CN114971189A (en) | Government affair cloud data acquisition, processing and management system and method based on block chain |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |