CN109766112A - A kind of method and device of program white list knowledge base update - Google Patents
A kind of method and device of program white list knowledge base update Download PDFInfo
- Publication number
- CN109766112A CN109766112A CN201811654118.0A CN201811654118A CN109766112A CN 109766112 A CN109766112 A CN 109766112A CN 201811654118 A CN201811654118 A CN 201811654118A CN 109766112 A CN109766112 A CN 109766112A
- Authority
- CN
- China
- Prior art keywords
- white list
- program white
- program
- knowledge base
- installation procedure
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Stored Programmes (AREA)
Abstract
The invention discloses a kind of method and devices of program white list knowledge base update, this method comprises: whether generating the operation of operation installation procedure in detection system;If detecting the operation of operation installation procedure, process set membership tree and the transient program white list of installation procedure are established;Installation procedure is executed in transient program white list;Judge whether the new file generated in the implementation procedure of installation procedure belongs to process set membership tree;If new file belongs to process set membership tree, file is stored in transient program white list;Preset program white list knowledge base is updated according to transient program white list.The present invention makes installation procedure not influence control of the program white list knowledge base to industrial control system in installation and renewal process, and installation procedure can automatically update program white list knowledge base during installation and update, it is similar with ordinary procedure installation, woth no need to excessive manual intervention.
Description
Technical field
The present invention relates to industrial control host security technology areas, and in particular to a kind of method of program white list knowledge base update
And device.
Background technique
As the trend arrival merged, traditional industrial control system network security (abbreviation industry control peace are changed in industry 4.0 and two
The severe challenge that problem has become enterprise entirely) and national security faces, by more and more enterprises and attention from government, industry control
System processed has begun after the closed state of experience a very long time to grow up.In early days, industrial control system due to
Worry system compatibility problem, usually not upgrade patch, therefore is directed to the specific environment of industry control, the white name of program under industry control environment
Single Knowledge Base Techniques are introduced into.
Future can increasingly be opened with benefit, industry control network in order to improve the production efficiency, and open bring such as wooden horse,
An important factor for safety problems such as virus, network attack will be as two change fusions and 4.0 development of industry be restricted.It how to be these
Industrial control host provides security protection appropriate, safety enhancing and operation management, while ensureing that production safety, system are reliably undoubtedly
Current industry control enterprise needs key problems-solving.Wherein, the process of industrial control host operating system update and program installation upgrading
It is in the presence of very big security risk and greatly unfavorable to maintenance work, therefore people urgently wish that industrial control host can pacify automatically
Dress and upgrade procedure automatically can be added to program in program white list knowledge base while guaranteeing safe.
Summary of the invention
In view of this, the embodiment of the invention provides a kind of method and devices of program white list knowledge base update, with reality
Existing industrial control host operating system and the automatic installation and upgrade of application program, can automatically be added to program while guaranteeing safe
In program white list knowledge base.
According in a first aspect, the embodiment of the invention provides a kind of methods of program white list knowledge base update, comprising: inspection
Whether the operation of operation installation procedure is generated in examining system;If detecting the operation of operation installation procedure, installation procedure is established
Process set membership tree and transient program white list;Judge whether the installation procedure belongs to transient program white list column
Table;If installation procedure belongs to transient program white list, installation procedure is executed;Judge installation procedure parent process whether
Belong to process set membership tree;If the parent process of installation procedure belongs to process set membership tree, installation procedure was executed
The new file deposit transient program white list generated in journey;Preset program is updated according to transient program white list
White list knowledge base.
Optionally, by the new file deposit transient program white list generated in installation procedure implementation procedure it
Afterwards, the method for the program white list knowledge base update further include: execute installation procedure in transient program white list and execute
The subprogram generated in the process;Judge subprogram whether in program white list knowledge base or transient program white list;Such as
Fruit program is in program white list knowledge base or transient program white list, execution subroutine.
Optionally, if subprogram prevents sub- journey not in program white list knowledge base or transient program white list
Sequence executes.
Optionally, after execution subroutine, the method for the program white list knowledge base update further include: judge subprogram
Parent process whether in process set membership tree;If the parent process of subprogram is in process set membership tree, by sub- journey
Sequence is stored in process set membership tree.
Optionally, if the parent process of subprogram is not in process set membership tree, the file that subprogram generates is not put
Enter transient program white list.
Optionally, after updating preset program white list knowledge base according to transient program white list, the program
The method of white list knowledge base update further include:
Reboot operation system;Judge whether operating system repair procedure is read or executed in transient program white list
Program repairs operating system file;If operating system repair procedure reads or executes the program in transient program white list
Operating system file is repaired, then operating system repair procedure is put into process set membership tree;Determining program reparation operation system
Whether the subprogram generated in system implementation procedure belongs to process set membership tree;If program is repaired in operating system implementation procedure
The subprogram of generation belongs to process set membership tree, then the second file generated in subprogram implementation procedure is stored in transient program
White list;Preset program white list knowledge base is updated according to transient program white list.
According to second aspect, the embodiment of the invention provides a kind of devices of program white list knowledge base update, comprising: inspection
Module is surveyed, for whether generating the operation of operation installation procedure in detection system;Module is established, if for detecting operation peace
The operation for filling program, establishes process set membership tree and the transient program white list of installation procedure;First judgment module is used
In judging whether installation procedure belongs to transient program white list;Execution module, if belonging to interim journey for installation procedure
Sequence white list, then execute installation procedure;Second judgment module, for judge the parent process of installation procedure whether belong into
Journey set membership tree;File is stored in by deposit module if the parent process for installation procedure belongs to process set membership tree
Transient program white list;Update module is known for updating preset program white list according to transient program white list
Know library.
According to the third aspect, the embodiment of the invention provides a kind of controllers, comprising: at least one processor;And with
The memory of at least one processor communication connection;Wherein, memory is stored with the instruction that can be executed by a processor, instruction
It is executed by least one processor, so that at least one processor executes the program white list knowledge base of above-mentioned any embodiment more
New method.
According to fourth aspect, the embodiment of the invention provides a kind of computer readable storage medium, computer-readable storage
Media storage has computer instruction, the program white list knowledge that computer instruction is used to that computer to be made to execute above-mentioned any embodiment
The method that library updates.
The embodiment of the invention provides a kind of method and devices of program white list knowledge base update, install journey by establishing
The process set membership tree of sequence and transient program white list, execute installation procedure in transient program white list, make
Installation procedure does not influence control of the program white list knowledge base to industrial control system in installation and renewal process;And installation procedure exists
It is similar with ordinary procedure installation that program white list knowledge base can be automatically updated during installation and update, woth no need to excessive
Manual intervention, for believable program in regular upgrade procedure white list knowledge base, it is only necessary to specified upgrading path
Automatically update program white list knowledge base.
Detailed description of the invention
It, below will be to specific in order to illustrate more clearly of the specific embodiment of the invention or technical solution in the prior art
Embodiment or attached drawing needed to be used in the description of the prior art be briefly described, it should be apparent that, it is described below
Attached drawing is some embodiments of the present invention, for those of ordinary skill in the art, before not making the creative labor
It puts, is also possible to obtain other drawings based on these drawings.
Fig. 1 shows the flow chart of the method for program white list knowledge base update according to embodiments of the present invention;
Program white list knowledge base structure block diagram before being executed Fig. 2 shows installation procedure of the embodiment of the present invention;
Fig. 3 shows program white list knowledge base and transient program white list column when installation procedure of the embodiment of the present invention executes
Table structure block diagram;
Fig. 4 shows installation procedure of embodiment of the present invention upgrading flow chart;
Fig. 5 shows the installation upgrading of program of the embodiment of the present invention and completes the structural frames after program white list knowledge base update
Figure;
Fig. 6 shows program of embodiment of the present invention installation upgradeable architecture figure;
Fig. 7 shows program white list knowledge base in the prior art and realizes basic block diagram;
Fig. 8 shows program white list knowledge base and the white name of transient program in installation procedure implementation procedure of the embodiment of the present invention
Single-row table structure block diagram;
Fig. 9 shows the schematic device of program white list knowledge base update of the embodiment of the present invention;
Figure 10 shows controller schematic diagram of the embodiment of the present invention.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is
A part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those skilled in the art are not having
Every other embodiment obtained under the premise of creative work is made, shall fall within the protection scope of the present invention.
The embodiment of the invention provides a kind of methods of program white list knowledge base update, as shown in Figure 1, comprising:
S101. the operation of operation installation procedure whether is generated in detection system;
It, can be according to the operating system class of industrial control host in the environment of the protection of industrial control host white list in practical application
Type and the industrial control software automatically scanning of installation generate program white list knowledge base or according to OS Type from centralized management
The heart gets program white list knowledge base, as shown in Fig. 2, program white list knowledge base is generally divided into the white name of system class according to effect
Singly and class white list is applied, system class white list refers to the basic program of operating system environment operation, refers to using class white list
Some application programs, including monitoring software, configuration software, office software on operating system etc., every in procedural knowledge library
Rule includes the title of program, the label (such as cryptographic Hash) of file content.After the control starting of program white list knowledge base,
The installation procedure in program white list not will be unable to directly run.
S102. if detect operation installation procedure operation, establish installation procedure process set membership tree and temporarily
Program white list.
In the present embodiment, installation procedure refers to the regular upgrade procedure of operating system, software installation packet, software upgrade package and soft
Regular upgrade procedure of part etc..The process set membership tree for the installation procedure established at this time is the process set membership tree of initialization,
There was only installation procedure in process set membership tree.
S103. judge whether installation procedure belongs to transient program white list.
In the present embodiment, as shown in figure 3, in order to allow the installation procedure not in program white list to run, in journey
When sequence installing component executes installation procedure, then installation procedure can be added to transient program white list automatically.
S104. if installation procedure belongs to transient program white list, installation procedure is executed.
S105. judge whether the parent process of installation procedure belongs to process set membership tree.
S106. if the parent process of installation procedure belongs to the process set membership tree, by installation procedure implementation procedure
The new file of middle generation is stored in the transient program white list.
In the present embodiment, after program installation operating member executes installation procedure, installation procedure in the process of implementation can
Many new files are generated, as shown in figure 4, program installation upgrading detection part can detect new file, judge that current process is
It is no in the set membership tree of installation procedure.
S107. preset program white list knowledge base is updated according to the transient program white list.
In the present embodiment, as shown in figure 5, new program white list knowledge base will be generated after the completion of program installation upgrading.
In the present embodiment, program white list knowledge base, which is realized, updates structure chart as shown in fig. 6, including at least the white name of program
Menu manager, program installation updating and management, program installation upgrading detecting and alarm, program white list detecting and alarm, program white list control
Engine processed.The present invention increases program installation and rises on the basis of original program white list knowledge base scheme (as shown in Figure 7)
Grade management and program installation upgrading detecting and alarm component, while enhancing the management of program white list and handling interim white list in real time
Function.Specifically, program installation updating and management provides the operation interface of installation procedure;Program installation upgrading detecting and alarm receives journey
The installation process of the configuration information starting installation procedure of sequence installation updating and management simultaneously generates transient program white list;Program is white
Name menu manager increases scanning and analytic process to transient program white list, completes the update of program white list knowledge base.
The present invention is by establishing process set membership tree and the transient program white list of installation procedure, in transient program
Installation procedure is executed in white list, and installation procedure is made not influence program white list knowledge base pair in installation and renewal process
The control of industrial control system;And installation procedure can automatically update program white list knowledge base during installation and update, and
Ordinary procedure installation is similar, woth no need to excessive manual intervention, for believable journey in regular upgrade procedure white list knowledge base
Sequence, it is only necessary to which specified upgrading path can automatically update program white list knowledge base.
In optionally embodiment, as shown in figure 4, after file is stored in transient program white list, the program
The method of white list knowledge base update further include: execute in transient program white list and generated in installation procedure implementation procedure
Subprogram;Judge subprogram whether in program white list knowledge base or transient program white list;If subprogram exists
In program white list knowledge base or transient program white list, execution subroutine.Judge subprogram parent process whether into
In journey set membership tree;If in process set membership tree, subprogram deposit process father and son is closed for the parent process of subprogram
In system tree.If subprogram not in program white list knowledge base or transient program white list, prevents subprogram from executing.Such as
For the parent process of fruit program not in process set membership tree, then the file that subprogram generates is not put into transient program white list column
Table.
Specifically, installation procedure can generate very in the process of implementation after program installation operating member executes installation procedure
Mostly new executable program, program installation upgrading detection part detect that the level-one that installation procedure generates executes program, and phase
Level-one execution program is closed to be put into transient program white list.In installation procedure implementation procedure, installation procedure can be called simultaneously
It runs part primary and executes program, transient program has been added to by program installation monitoring component since this level-one executes program
In white list, then this level-one executes program and allows to run.Equally, level-one executes program and may also can produce in operational process
Raw many second levels execute program, and level-one executes program and can call and run part second level execution program.In order to execute second level
Program can be run, the starting of program installation upgrading detection part monitoring level-one executive process, if the parent process of level-one program
For installation procedure, then the set membership that installation procedure and level-one execute program is added to the process father and son pass of this installation procedure
System tree in, can equally monitor the starting of side program, if second level execute program parent process be level-one execute program, one
Grade executes program and the set membership of second level execution program is added in the process set membership tree of this installation procedure, such as such
It pushes away, three-level can be tracked and execute program, level Four executable program etc., thus can completely record the process father of installation procedure
Subrelation.As long as process, in the process set membership tree of this installation procedure, the file generated is all put into interim white name
Single-row table.As shown in figure 8, installation procedure new in transient program white list, level-one execute program, second level executes program and is
Set membership.After installation procedure executes, and each height is called to execute program completion installation, all execution files can all be added
It is added in interim white list, that is to say, that the file of installation procedure release can carry out.
In optionally embodiment, for system class installation procedure, it can not be substituted in operating system at once after update
Program file, after updating preset program white list knowledge base according to transient program white list, further includes: restart
Operating system, operating system can call operation system repair procedures after restarting;Judge whether operating system repair procedure reads
Or the program performed in transient program white list repairs operating system file;If operating system repair procedure read or
The program performed in transient program white list repairs operating system file, then operating system repair procedure is put into process
In set membership tree;Determining program repairs whether the subprogram generated in operating system implementation procedure belongs to process set membership
Tree;If program, which repairs the subprogram generated in operating system implementation procedure, belongs to process set membership tree, subprogram is held
The second file generated during row is stored in transient program white list;It is updated according to transient program white list preset
Program white list knowledge base.
The embodiment of the invention also provides a kind of devices of program white list knowledge base update, as shown in Figure 9, comprising: inspection
Module 61 is surveyed, for whether generating the operation of operation installation procedure in detection system;Module 62 is established, if for detecting fortune
Process set membership tree and the transient program white list of installation procedure are established in the operation of row installation procedure;First judges mould
Block 63, for judging whether installation procedure belongs to transient program white list;Execution module 64, if being used for installation procedure category
In transient program white list, then installation procedure is executed;Second judgment module 65, for judging the parent process of installation procedure
Whether process set membership tree is belonged to;It is stored in module 66, if the parent process for installation procedure belongs to process set membership tree,
File is then stored in transient program white list;Update module 67, it is default for being updated according to transient program white list
Program white list knowledge base.Specific embodiment is detailed in retouching for the method for above-described embodiment program white list knowledge base update
It states.
The embodiment of the invention also provides a kind of controller, which includes one or more processors 71 and storage
Device 72, in Figure 10 by taking a processor 71 as an example.
Controller can also include: input unit 73 and output device 74.
Processor 71, memory 72, input unit 73 and output device 74 can be connected by bus or other modes,
In Fig. 7 for being connected by bus.
Processor 71 can be central processing unit (Central Processing Unit, CPU).Processor 71 can be with
For other general processors, digital signal processor (Digital Signal Processor, DSP), specific integrated circuit
(Application Specific Integrated Circuit, ASIC), field programmable gate array (Field-
Programmable Gate Array, FPGA) either other programmable logic device, discrete gate or transistor logic,
The combination of the chips such as discrete hardware components or above-mentioned all kinds of chips.General processor can be microprocessor or the processing
Device is also possible to any conventional processor etc..
Memory 72 is used as a kind of non-transient computer readable storage medium, can be used for storing non-transient software program, non-
Transient computer executable program and module, the method such as the program white list knowledge base update in the embodiment of the present application are corresponding
Program instruction/module.Non-transient software program, instruction and the mould that processor 71 is stored in memory 72 by operation
Block, thereby executing the various function application and data processing of server, i.e. realization above method embodiment program white list is known
Know the method that library updates.
Memory 72 may include storing program area and storage data area, wherein storing program area can storage program area,
Application program required at least one function;Storage data area can store the use of the processing unit according to user terminal operations
The data etc. created.In addition, memory 72 may include high-speed random access memory, it can also include non-transient storage
Device, for example, at least a disk memory, flush memory device or other non-transient solid-state memories.In some embodiments,
Optional memory 72 includes the memory remotely located relative to processor 71, these remote memories can pass through network connection
To image detection, processing unit.The example of above-mentioned network includes but is not limited to internet, intranet, local area network, moves and lead to
Letter net and combinations thereof.
Input unit 73 can receive the number or character information of input, and generate the use with the processing unit of user terminal
Family setting and the related key signals input of function control.Output device 74 may include that display screen etc. shows equipment.
One or more module is stored in memory 72, when being executed by one or more processor 71, is executed
Method as shown in Figure 1.
The embodiment of the invention also provides a kind of computer readable storage medium, computer-readable recording medium storage is calculated
Machine instruction, the program white list knowledge base that computer instruction is used to that computer to be made to execute as described in any one of above-described embodiment
The method of update.Wherein, storage medium can for magnetic disk, CD, read-only memory (Read-Only Memory, ROM),
Random access memory (Random Access Memory, RAM), flash memory (Flash Memory), hard disk (Hard
Disk Drive, abbreviation: HDD) or solid state hard disk (Solid-State Drive, SSD) etc.;Storage medium can also include upper
State the combination of the memory of type.
Although being described in conjunction with the accompanying the embodiment of the present invention, those skilled in the art can not depart from the present invention
Spirit and scope in the case where various modifications and variations can be made, such modifications and variations are each fallen within by appended claims institute
Within the scope of restriction.
Claims (9)
1. a kind of method of program white list knowledge base update characterized by comprising
Whether the operation of operation installation procedure is generated in detection system;
If detecting the operation of operation installation procedure, process set membership tree and the transient program for establishing the installation procedure are white
List list;
Judge whether the installation procedure belongs to transient program white list;
If the installation procedure belongs to the transient program white list, the installation procedure is executed;
Judge whether the parent process of the installation procedure belongs to the process set membership tree;
It, will be in the installation procedure implementation procedure if the parent process of the installation procedure belongs to the process set membership tree
The new file generated is stored in the transient program white list;
Preset program white list knowledge base is updated according to the transient program white list.
2. the method for program white list knowledge base update according to claim 1, which is characterized in that by the installation journey
The new file generated in program process is stored in after the transient program white list, the method also includes:
The subprogram generated in the installation procedure implementation procedure is executed in the transient program white list;
Judge the subprogram whether in described program white list knowledge base or the transient program white list;
If the subprogram executes the son in described program white list knowledge base or the transient program white list
Program.
3. the method for program white list knowledge base update according to claim 2, which is characterized in that
If the subprogram is not in described program white list knowledge base or the transient program white list, described in prevention
Subprogram executes.
4. the method for program white list knowledge base update according to claim 2, which is characterized in that executing the sub- journey
After sequence, the method also includes:
Judge the parent process of the subprogram whether in the process set membership tree;
If the parent process of the subprogram is stored in the process father in the process set membership tree, by the subprogram
In subrelation tree.
5. the method for program white list knowledge base update according to claim 4, which is characterized in that
If the parent process of the subprogram, not in the process set membership tree, the file that the subprogram generates is not put
Enter transient program white list column.
6. the method for program white list knowledge base update according to claim 1, which is characterized in that described according to
After transient program white list updates preset program white list knowledge base, the method also includes:
Reboot operation system;
Judge whether operating system repair procedure reads or execute the program reparation operation in the transient program white list
System file;
If the operating system repair procedure reads or executes the described program reparation in the transient program white list
The operating system repair procedure is then put into the process set membership tree by operating system file;
Judge that described program repairs whether the subprogram generated in operating system implementation procedure belongs to the process set membership tree;
If described program, which repairs the subprogram generated in operating system implementation procedure, belongs to the process set membership tree,
The second file generated in the subprogram implementation procedure is then stored in the transient program white list.
Preset program white list knowledge base is updated according to the transient program white list.
7. a kind of device of program white list knowledge base update characterized by comprising
Detection module, for whether generating the operation of operation installation procedure in detection system;
Module is established, if establishing the process set membership of the installation procedure for detecting the operation of operation installation procedure
Tree and transient program white list;
First judgment module, for judging whether the installation procedure belongs to transient program white list;
Execution module executes the installation procedure if belonging to transient program white list for the installation procedure;
Second judgment module, for judging whether the parent process of the installation procedure belongs to the process set membership tree;
It is stored in module, if the parent process for the installation procedure belongs to the process set membership tree, by the file
It is stored in the transient program white list;
Update module, for updating preset program white list knowledge base according to the transient program white list.
8. a kind of controller characterized by comprising
At least one processor;And the memory being connect at least one described processor communication;Wherein, the memory is deposited
Contain the instruction that can be executed by one processor, described instruction is executed by least one described processor so that it is described extremely
The method that a few processor executes program white list knowledge base update as claimed in any one of claims 1 to 6.
9. a kind of computer readable storage medium, which is characterized in that the computer-readable recording medium storage has computer to refer to
It enables, the computer instruction is for making the computer perform claim require program white list knowledge described in 1-6 any one
The method that library updates.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811654118.0A CN109766112A (en) | 2018-12-29 | 2018-12-29 | A kind of method and device of program white list knowledge base update |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811654118.0A CN109766112A (en) | 2018-12-29 | 2018-12-29 | A kind of method and device of program white list knowledge base update |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN109766112A true CN109766112A (en) | 2019-05-17 |
Family
ID=66452614
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811654118.0A Pending CN109766112A (en) | 2018-12-29 | 2018-12-29 | A kind of method and device of program white list knowledge base update |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109766112A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110795172A (en) * | 2019-10-22 | 2020-02-14 | RealMe重庆移动通信有限公司 | Foreground process control method and device, electronic equipment and storage medium |
| CN111177706A (en) * | 2019-12-25 | 2020-05-19 | 北京珞安科技有限责任公司 | Process white list updating method based on trusted software library |
| CN111209015A (en) * | 2019-10-24 | 2020-05-29 | 浙江中控技术股份有限公司 | Method for realizing installation tracking based on file filtering driver |
| CN111310128A (en) * | 2020-01-19 | 2020-06-19 | 苏州浪潮智能科技有限公司 | Method, device and equipment for process control |
| CN111930394A (en) * | 2020-07-21 | 2020-11-13 | 北京威努特技术有限公司 | Software package management and operation method and device for industrial control system, industrial control system and computer readable medium |
| CN114816447A (en) * | 2022-03-08 | 2022-07-29 | 北京圣博润高新技术股份有限公司 | White list based dynamic deployment software installation method and device, electronic equipment and medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CA1224568A (en) * | 1984-04-30 | 1987-07-21 | Westinghouse Electric Corporation | Methods and apparatus for system fault diagnosis and control |
| CN101039494A (en) * | 2007-03-19 | 2007-09-19 | 中兴通讯股份有限公司 | Method and apparatus for batch upgrading multi-element configuration data |
| CN101788915A (en) * | 2010-02-05 | 2010-07-28 | 北京工业大学 | White list updating method based on trusted process tree |
| CN106503540A (en) * | 2016-10-11 | 2017-03-15 | 天脉聚源(北京)传媒科技有限公司 | A kind of installation of program installation kit and operation method and system |
-
2018
- 2018-12-29 CN CN201811654118.0A patent/CN109766112A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CA1224568A (en) * | 1984-04-30 | 1987-07-21 | Westinghouse Electric Corporation | Methods and apparatus for system fault diagnosis and control |
| CN101039494A (en) * | 2007-03-19 | 2007-09-19 | 中兴通讯股份有限公司 | Method and apparatus for batch upgrading multi-element configuration data |
| CN101788915A (en) * | 2010-02-05 | 2010-07-28 | 北京工业大学 | White list updating method based on trusted process tree |
| CN106503540A (en) * | 2016-10-11 | 2017-03-15 | 天脉聚源(北京)传媒科技有限公司 | A kind of installation of program installation kit and operation method and system |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110795172A (en) * | 2019-10-22 | 2020-02-14 | RealMe重庆移动通信有限公司 | Foreground process control method and device, electronic equipment and storage medium |
| CN110795172B (en) * | 2019-10-22 | 2023-08-29 | RealMe重庆移动通信有限公司 | Foreground process control method and device, electronic equipment and storage medium |
| CN111209015A (en) * | 2019-10-24 | 2020-05-29 | 浙江中控技术股份有限公司 | Method for realizing installation tracking based on file filtering driver |
| CN111209015B (en) * | 2019-10-24 | 2023-10-03 | 浙江中控技术股份有限公司 | Method for realizing installation tracking based on file filtering driver |
| CN111177706A (en) * | 2019-12-25 | 2020-05-19 | 北京珞安科技有限责任公司 | Process white list updating method based on trusted software library |
| CN111310128A (en) * | 2020-01-19 | 2020-06-19 | 苏州浪潮智能科技有限公司 | Method, device and equipment for process control |
| CN111930394A (en) * | 2020-07-21 | 2020-11-13 | 北京威努特技术有限公司 | Software package management and operation method and device for industrial control system, industrial control system and computer readable medium |
| CN114816447A (en) * | 2022-03-08 | 2022-07-29 | 北京圣博润高新技术股份有限公司 | White list based dynamic deployment software installation method and device, electronic equipment and medium |
| CN114816447B (en) * | 2022-03-08 | 2024-04-26 | 北京圣博润高新技术股份有限公司 | White list-based dynamic deployment software installation method and device, electronic equipment and medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109766112A (en) | A kind of method and device of program white list knowledge base update | |
| US9182974B1 (en) | System and methods for updating software of templates of virtual machines | |
| JP7316726B2 (en) | Methods, systems, and programs for detecting security risks associated with software components | |
| US8918783B2 (en) | Managing virtual computers simultaneously with static and dynamic dependencies | |
| US20130132447A1 (en) | Document management apparatus improved in efficiency of deletion of files, method of controlling the same, and storage medium | |
| US9880864B2 (en) | Dynamic configuration system for distributed services | |
| CN110188543A (en) | White list library, white list program library update method and industrial control system | |
| US11698741B2 (en) | Updating operating system images of inactive compute instances | |
| CN109766694A (en) | Program protocol white list linkage method and device of industrial control host | |
| JP6282217B2 (en) | Anti-malware system and anti-malware method | |
| US20190297141A1 (en) | Automatic system response to external field-replaceable unit (fru) process | |
| EP2778962B1 (en) | Silo-aware databases | |
| US10554492B2 (en) | Physical machine management in distributed computing systems | |
| CN108628733B (en) | Method and device for testing batch service processing operation | |
| CN106529281B (en) | A kind of executable file processing method and processing device | |
| US11762669B2 (en) | Post hoc image and volume review of short-lived linux containers | |
| US10021012B2 (en) | Notifying original state listeners of events in a domain model | |
| US20180081930A1 (en) | Maintaining storage profile consistency in a cluster having local and shared storage | |
| US11461461B2 (en) | Systems and methods for managing and securing computer systems | |
| CN111651235A (en) | Virtual machine set task management method and device | |
| CN107888438B (en) | Flow table technology-based system for automatically sensing and adapting to cloud environment change | |
| CN114996955A (en) | Target range environment construction method and device for cloud-originated chaotic engineering experiment | |
| JP2010009127A (en) | Management program and management device | |
| JP2019028948A (en) | Flow generation program, flow generation device and flow generation method | |
| US11805012B2 (en) | Cloud network mechanism driver migration |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190517 |
|
| RJ01 | Rejection of invention patent application after publication |