CN110188579A - A kind of port security safeguard and port security guard system - Google Patents

A kind of port security safeguard and port security guard system Download PDF

Info

Publication number
CN110188579A
CN110188579A CN201910457454.4A CN201910457454A CN110188579A CN 110188579 A CN110188579 A CN 110188579A CN 201910457454 A CN201910457454 A CN 201910457454A CN 110188579 A CN110188579 A CN 110188579A
Authority
CN
China
Prior art keywords
interface
protected
port
real
time
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201910457454.4A
Other languages
Chinese (zh)
Inventor
黄明浩
姜飞
刘洋
魏忠
郭颂
李曦灏
涂立维
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Chengdu Westone Information Industry Inc
Original Assignee
Chengdu Westone Information Industry Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chengdu Westone Information Industry Inc filed Critical Chengdu Westone Information Industry Inc
Priority to CN201910457454.4A priority Critical patent/CN110188579A/en
Publication of CN110188579A publication Critical patent/CN110188579A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/30Monitoring
    • G06F11/32Monitoring with visual or acoustical indication of the functioning of the machine
    • G06F11/324Display of status information
    • G06F11/327Alarm or error message display
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/85Protecting input, output or interconnection devices interconnection devices, e.g. bus-connected or in-line devices

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Quality & Reliability (AREA)
  • Alarm Systems (AREA)

Abstract

This disclosure relates to a kind of port security safeguard and system; the port security safeguard is connected by connecting detection component and occupies interface to be protected; and treat protection interface and the connection status progress real-time monitoring of itself; extremely whether CPU control unit can determine whether port status after the physical connection state that connecting detection component collects itself and interface to be protected changes; it is judged to generating warning information in real time by alarm components when exception, realizes the detection and alarm of the behavior to interface is illegally occupied.Equipment calls connection monitoring component realizes the detection for obtaining behavior to abnormal data at physics end; diversified interface type to be protected only need to be supported physically; do not modify protected device; implementation is simple and cost is relatively low; it is higher based on physical port connection status monitoring reliability simultaneously, it ensure that the safety of interface.Apply the port security guard system of the port security safeguard also beneficial effect having the same.

Description

A kind of port security safeguard and port security guard system
Technical field
This disclosure relates to field of information security technology, and in particular, to a kind of port security safeguard and a kind of end Mouth security protection system.
Background technique
For facility information security consideration, cause device security by prestige to prevent device port from being illegally occupied The side of body, port security safeguard are applied and are given birth to.
Port security safeguard is broadly divided into two kinds in the related technology, and a kind of port security safeguard is fixed on to anti- Equipment is protected, the port of protected device is transferred on safety protection equipment, user must treat anti-on safety protection equipment Shield equipment operated, by safety protection equipment carry out user behavior analysis, thus identify illegal port operation behavior into Row protection, the technology need the Port Profile of safety protection equipment support protected device, complicated technology realization, higher cost; Another port security safeguard needs to be transformed protected device port, increases software or hardware (such as on existing equipment Increase monitoring software or hardware cell) protection of port is carried out, the technology is very big with protected device coupling when realizing, appearance Destructible protected device primary characteristic, causes protected device can not normal use.
Therefore, the security protection to device port how is realized under the premise of cost is protected in control, while being avoided as far as possible It has a negative impact to equipment to be protected, is those skilled in the art's urgent problem to be solved.
Summary of the invention
Purpose of this disclosure is to provide a kind of port security safeguard, which can not change equipment to be protected On the basis of realize security protection to device port, while cost of implementation is lower.The another object of the disclosure is to provide a kind of end Mouth security protection system, has above-mentioned beneficial effect.
To achieve the goals above, the disclosure provides a kind of port security safeguard, comprising: connection monitoring component, CPU Control unit and alarm components;
Wherein, the connection monitoring component is connected to interface to be protected, for monitoring and the connection of the interface to be protected State generates real-time interface monitoring result;
CPU control unit one end is connected to the connection monitoring component, and the other end is connected to the alarm components, uses In obtaining the real-time interface monitoring result, and the port of the interface to be protected is judged according to the real-time interface monitoring result Whether state there is exception;When the port status of the equipment to be protected is determined as abnormal, Xiang Suoshu alarm components, which are sent, is accused Alert output control signal;
The alarm components are used for according to the alarm output control signal outputting alarm signal received.
Optionally, the connection monitoring component are as follows: impedance monitoring component;
The impedance monitoring component generates real-time interface monitoring for carrying out impedance monitoring to the interface to be protected in real time As a result.
Optionally, the CPU control unit is also used to control interface state recording.
Optionally, the CPU control unit is specifically used for: obtaining the real-time interface monitoring result, connects in real time when described Mouthful testing result, which show, to be connect when disconnecting with the interface to be protected, and it is different to determine that the port status of the equipment to be protected is determined as Often, Xiang Suoshu alarm components send alarm output and control signal.
Optionally, the CPU control unit is specifically used for: obtaining the real-time interface monitoring result, connects in real time when described Mouthful testing result, which show, connect when disconnecting with the interface to be protected, judges whether process authorizes current opening operation;If current Opening operation unauthorized determines the port status of the equipment to be protected for exception.
Optionally, the CPU control unit is specifically used for:
The real-time interface monitoring result is obtained, is connected when the real-time interface testing result is shown with the interface to be protected When connecing disconnection, judgement connect whether turn-off time belongs to preset authorization time range with the interface to be protected;
When the turn-off time being not belonging to the preset authorization time range, the port shape of the equipment to be protected is determined State is determined as exception.
Optionally, the CPU control unit is specifically used for:
The real-time interface monitoring result is obtained, is connected when the real-time interface testing result is shown with the interface to be protected When connecing disconnection, licencing key is obtained;
When the licencing key is empty, determine that the port status of the equipment to be protected is determined as exception;
When the licencing key is not sky, the licencing key match comparing with password default, generates and compare As a result;
When the comparison result shows password bad, it is different to determine that the port status of the equipment to be protected is determined as Often.
Optionally, the alarm components are as follows: audible and visual alarm device.
To achieve the above object, the disclosure additionally provides a kind of port security guard system, comprising: equipment to be protected and Port security safeguard as described above;The port security safeguard is connected to each to be protected of the equipment to be protected Interface.
Optionally, the connection monitoring component is connected to the non-common interfaces of the equipment to be protected;Wherein, it is described very It is the interface for being not up to threshold value the Connection Time with interface.
According to the above-mentioned technical solution, present disclose provides a kind of port security safeguard, which passes through connection Detection part connects and occupies interface to be protected, and treats protection interface and the connection status progress real-time monitoring of itself, when non- Legal person person needs the physics for carrying out needing to disconnect detection part Yu interface to be protected when illegal operation first using the interface Connection, interface to be protected changes with the physical connection state for connecting monitoring component at this time, is collected by connecting detection component CPU control unit can judge whether the port status of interface to be protected is abnormal according to the change information after the variation, if sentencing It is set to exception, generates warning information in real time by alarm components, detection and the announcement of the behavior to interface is illegally occupied can be realized It is alert.The detection for obtaining behavior to abnormal data at physics end is realized according to connection monitoring component, avoids complicated user's row To analyze the high request for supporting technology for diversified Port Profile, diversified interface class to be protected only need to be physically supported Type, implementation is simple and cost is relatively low, can reach port-guard without carrying out any modification to protected device Purpose, while invalid data is obtained firstly the need of interface is illegally occupied, connection status will change, therefore be connected based on physical port The port security safeguard reliability for connecing status monitoring is higher, ensure that the safety of interface.
The disclosure also provides a kind of port security guard system simultaneously, and beneficial effect having the same is no longer superfluous herein It states.
Detailed description of the invention
In order to illustrate more clearly of the embodiment of the present disclosure or technical solution in the prior art, to embodiment or will show below There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this Disclosed embodiment for those of ordinary skill in the art without creative efforts, can also basis The attached drawing of offer obtains other attached drawings.
Fig. 1 is a kind of structural block diagram for port security safeguard that the embodiment of the present disclosure provides.
Specific embodiment
The core of the disclosure is to provide a kind of port security safeguard and port security guard system, the port security Safeguard can realize the security protection to device port on the basis of not changing equipment to be protected, at the same cost of implementation compared with It is low.
To keep the purposes, technical schemes and advantages of the embodiment of the present disclosure clearer, below in conjunction with the embodiment of the present disclosure In attached drawing, the technical solution in the embodiment of the present disclosure is clearly and completely described, it is clear that described embodiment is Disclosure a part of the embodiment, instead of all the embodiments.Based on the embodiment in the disclosure, those of ordinary skill in the art All other embodiment obtained without making creative work belongs to the range of disclosure protection.
Embodiment one:
Referring to Figure 1, Fig. 1 is a kind of structural block diagram for port security safeguard that the embodiment of the present disclosure provides, this sets It is standby to specifically include that connection monitoring component, CPU control unit and alarm components.
Wherein, connection monitoring component draws interface and is connected to interface to be protected, for interface to be protected in the present embodiment Interface type without limitation, for example can be USB, and various interface types may be implemented in Ethernet interface, RS232, RS485 etc. Under security protection.It is a kind of interface form to be protected of equipment to be protected, other interface types and number of ports shown in Fig. 1 Amount is suitable for port security safeguard provided in this embodiment.In addition, there are a plurality of types of interfaces to assist for interface to be protected View, such as the various interface protocols such as Ethernet, USB, RS232, RS485, connection monitoring component only need physically to support this A little interfaces, therefore implementation is succinct, cost is relatively low, and reliability is higher.
The connection type of connection monitoring component and interface to be protected can generally follow the external mode of interface to be protected, than Such as grafting, the external side being fixedly connected can not can also be selected by illegal connection if the useless interface for guaranteeing equipment to be protected Formula in the present embodiment without limitation to the connection type of connection monitoring component and interface to be protected can be according to actual use need It asks and is configured.
Connection monitoring component is connect with interface to be protected, is mainly used for the connection status of monitoring with interface to be protected, such as Judge whether interface 1 to be protected is disconnected from connection monitoring component (because if needing just be broken using device port Open the connection of the port and connecting detection component), the type of device specifically selected for connection monitoring component in the present embodiment is not It limits, for example impedance monitoring base part or voltage monitoring base part etc. can be selected, specifically may refer in the related technology Related introduction about burn out detection equipment.Wherein, connection monitoring component can specifically select impedance monitoring component, impedance monitoring Component carries out impedance monitoring for treating protection interface in real time, and impedance monitoring component costs are lower, and detection effect is good, and stability Height, in the present embodiment for selecting impedance monitoring component, it should be noted that other types of impedance monitoring component can fit With port security safeguard provided in this embodiment.
Connect a kind of real-time interface monitoring result of monitoring component generation for example:
2019-01-25-15:20:5 Ω;
2019-01-25-15:21:5.1 Ω;
2019-01-25-15:22:200 Ω;
2019-01-25-15:23:201 Ω;
It is only introduced by taking above-mentioned result formats as an example in the present embodiment, other types of monitoring result form is herein no longer It repeats.
CPU control unit one end is connected to connection monitoring component, and the other end is connected to alarm components, plays carrying software algorithm Effect, be mainly used for obtaining real-time interface monitoring result, and judge according to real-time interface monitoring result the end of equipment to be protected Whether mouth state there is exception;When the port status of interface to be protected is determined as abnormal, alarm output is sent to alarm components Control signal.
It is limited to the monitoring result form of connection monitoring component output, CPU control unit is monitoring knot according to real-time interface The decision process needs that fruit carries out the port status of interface to be protected are adjusted according to the form of monitoring result, for example work as connection When the testing result form of detection part output is detection data (for example interface resistance is 200 Ω), CPU control unit needs root Judge whether interface disconnects according to detection data, further judges whether port status exception occurs;When connecting detection component is defeated When testing result form out is directly judging result (for example connection disconnects, connection is normal) whether interface disconnects, CPU control Component directly can judge whether port status exception occurs according to real-time interface testing result.
In addition, for the mode of judgement port status exception, in the present embodiment without limitation.Can when interface to be protected with When connection monitoring component disconnects, directly it is determined as port status exception;Can also interface to be protected with connect monitoring portion After part disconnects, further whether the current connection disconnection behavior of judgement is legal, if, can for the connection disconnection behavior etc. allowed By according to actual needs to port status is judged in a manner of set, in the present embodiment only by taking above-mentioned judgment mode as an example It is introduced.
It should be noted that above-mentioned decision procedure, which can be found in the relevant technologies, is adjusted setting.
Alarm components are connect with CPU control unit, are mainly used for being accused according to the alarm output control signal output received Alert signal.When CPU control unit detects port status exception, alarm output is sent to alarm components and controls signal, alarm Component issues alarm after receiving control signal in time, to realize the timely prompting to port abnormality.
In the present embodiment without limitation for the specific device type of alarm components, corresponding alarm mode does not also limit It is fixed.For example alarm components can select voice alarm, laser warning device, audible and visual alarm device etc., realize phonic warning, light respectively Wave alarm etc..The device type that alarm components are specifically selected can be arranged according to practical alarm demand, and selecting as far as possible not influences just The alarm equipment of condition prompting is often realized while work.Wherein, alarm components can specifically select audible and visual alarm device.Acousto-optic is accused Above-mentioned beneficial effect may be implemented in alert device, and cost is relatively low.In addition, alarm components can also select remote alarm component, i.e., with Remote equipment connects the alarm components for warning information to be sent to remote equipment, for example alarm components can be to move with user The Bluetooth information transmitting terminal etc. of dynamic terminal remote connection, for warning information to be sent to the mobile end remotely connected by bluetooth End, control mobile terminal outputting alarm information etc..
Port security safeguard provided in this embodiment connects by connecting detection component and occupies interface to be protected, and It treats protection interface and the connection status of itself carries out real-time monitoring, when unauthorized person needs to carry out illegal operation using the interface When need to disconnect the physical connection of detection part Yu interface to be protected first, at this time interface to be protected with connect monitoring component Physical connection state change, CPU control unit can be according to the variation after collecting the variation by connecting detection component Information judges whether the port status of interface to be protected is abnormal, if being determined as exception, generates alarm letter in real time by alarm components Breath, can be realized the detection and alarm of the behavior to interface is illegally occupied.It is realized according to connection monitoring component at physics end The detection that behavior is obtained to abnormal data avoids complicated user behavior analysis for diversified Port Profile support technology High request only need to physically support diversified interface type to be protected, and implementation is simple and cost is relatively low, is not necessarily to Carrying out any modify to protected device can reach the purpose of port-guard, while invalid data acquisition is firstly the need of illegally accounting for With interface, connection status will change, therefore the port security safeguard reliability based on the monitoring of physical port connection status It is higher, it ensure that the safety of interface.
Embodiment two:
In above-described embodiment without limitation for the port status recognizer of concrete configuration in CPU control unit, this reality Example is applied specifically to describe to several CPU control units with different identification functions in detail.
CPU control unit can be specifically used for: obtain real-time interface monitoring result, show when real-time interface testing result and When interface connection to be protected disconnects, determine that the port status of equipment to be protected is determined as exception, it is defeated to send alarm to alarm components Signal is controlled out.
For example, the real-time interface monitoring result obtained is as follows:
2019-01-25-15:20: connection is normal;
2019-01-25-15:21: connection is normal;
2019-01-25-15:22: connection is abnormal;
When CPU control unit recognizes when connection field is " normal " without operation, when recognizing connection field It is considered as port status abnormal behaviour for abnormal disconnection behavior will be connected when "abnormal", triggers immediately defeated to alarm components transmission alarm Signal is controlled out.
CPU control unit configuration process with the above function is simple, for substantially useless during routine use Port monitoring effect to be protected is preferable.
Based on CPU control unit with the above function, for further realize treat protection interface normal occupancy and The identification illegally occupied promotes detection effect, can further configure the CPU control unit with following function: connect when in real time Mouthful testing result, which show, connect when disconnecting with interface to be protected, judges whether process authorizes current opening operation;If current disconnect Unauthorized is operated, determines the port status of equipment to be protected for exception.
Wherein, without limitation for the acquisition modes of authorization message and storage location, it can further select to have and award The CPU control unit for weighing information registering function is instructed to receive user's registration authorization message by CPU control unit, can also be at it It, which has in the equipment of authorization message registering functional, realizes that authorization determines by CPU control unit after progress user information registration.Note The authorization message of volume can store in the component in arbitrary port safety protection equipment with store function, be stored in In equipment outside port security safeguard, when being stored in outside safety protection equipment, CPU control unit need to be stored with note with this The equipment connection of volume information, for realizing data call when carrying out authorization and determining.
In addition, for CPU control unit authorization deterministic process without limitation, can by connection turn-off time carry out Determine, can also be determined by licencing key, can also only allow specified authorization to connect by specified authorization interface type Mouth type accesses interface to be protected etc., stores corresponding authorization message in the component with store function in advance, pending to award Extraction standard authorization message carries out authorization comparison when power determines.
When the judgement by being authorized to connection turn-off time, CPU control unit is specifically used for:
Real-time interface monitoring result is obtained, when real-time interface testing result, which is shown, connect disconnection with interface to be protected, is sentenced It is disconnected to connect whether turn-off time belongs to preset authorization time range with interface to be protected;
When being not belonging to preset authorization time range between upon opening, it is different to determine that the port status of equipment to be protected is determined as Often, alarm output is sent to alarm components control signal.
Using CPU control unit with the above function in configuration with configuration relevant parameter it is relatively simple, by The time range of permission (for example realizes the normal occupancy of port to be protected, the occupancy in non-permitted range in 8:00 to 17:00) It is regarded as illegally occupying, detection and the analysis of connection turn-off time based on connection status are for abnormal connection disconnection behavior inspection It is preferable to survey effect.
When the judgement by being authorized to connection turn-off time, CPU control unit is specifically used for:
Real-time interface monitoring result is obtained, when real-time interface testing result, which is shown, connect disconnection with interface to be protected, is obtained Take licencing key;
When licencing key is empty, determine that the port status of equipment to be protected is determined as exception, and send to alarm components Alarm output controls signal;
When licencing key is not sky, licencing key match comparing with password default, generates comparison result;
When comparison result shows password bad, determine that the port status of equipment to be protected is determined as exception, to alarm Component sends alarm output and controls signal.
Normal interface can effectively be distinguished using CPU control unit with the above function and call the illegal interface tune of level-one With recognition efficiency is high, and port-guard effect is good.
It only describes in detail by taking above two authorization decision procedure as an example in the present embodiment, other means decision procedures, For example by specified authorization interface type, only allowing specified authorization interface type to access the modes such as interface to be protected be can refer to The introduction of the present embodiment, details are not described herein.
Embodiment three:
Based on the above embodiment, for the ease of subsequent related technical personnel to the relevant informations of the behaviors such as abnormal access into Row checks that CPU control unit can be further used for control interface state recording, and specific mainly includes that protection interface is treated in control Disconnection, normal condition recorded, certainly, time field can also be further included in the information of record in addition to port status Deng without limitation to the information field type of physical record at this.
The control object of CPU control unit can be any device with information record storage function, for example can be Simple memory, or the other component with store function, such as the alarm components with store function or connection monitoring Component.
When carrying out behavior record using the device in addition to alarm components and connection monitoring component, need in port security Additionally increase corresponding component in safeguard and the connection relationship of itself and CPU control unit is set, will be obtained by CPU control unit The status monitoring information taken is sent to the device and is stored.
It is of course also possible to use alarm components or connection monitoring component with store function carry out behavior record, such as When using the alarm components with store function, alarm portion is sent to by the status monitoring information that CPU control unit will acquire Part, controlling its progress data storage can be while sending behavioural information when CPU control unit recognizes abnormal behaviour It sends alarm output and controls signal.It, can be from CPU control unit to even when using the connection monitoring component with store function It connects monitoring component and sends data acquisition and store command, there is connection monitoring component to complete real-time data acquisition and data note Record, and real-time state judging result is sent to connection monitoring component by CPU control unit and carries out state storage.
When using the alarm components or connection monitoring component with store function, it can be protected with relative simplicity port security The structure of equipment, relative reduction lower deployment cost specifically generally can be using the alarm components with store function.
Example IV:
The present embodiment provides a kind of port security guard system, which specifically includes that equipment to be protected and port peace Full protection equipment.
Wherein, the specific component composition of port security safeguard and function etc. can refer to Jie of above-described embodiment It continues, details are not described herein.
Port security safeguard is connected to each interface to be protected of equipment to be protected.In general, equipment to be protected has All multiplex roles (such as USB, Ethernet interface 1, Ethernet interface 2, RS232, RS485 etc.);It wherein might have common interfaces many (referring to that the Connection Time reaches the interface of threshold value) and non-common interfaces (referring to that the Connection Time is not up to the interface of threshold value).Due to these Common interfaces can be generally fixedly connected for a long time with designated equipment, to avoid the wasting of resources, connection monitoring component can be connected to In the non-common interfaces of equipment to be protected.
For example, only having Ethernet interface 1 in the interface of certain equipment to be protected is common interfaces, it is usually fixedly attached to network On interchanger;And other interfaces are non-common interfaces, are to use once in a while, but cannot shut completely, and it is non-can to execute these Common interfaces are interface to be protected, so that non-common interfaces be protected to be illegally used.It is of course also possible to specified according to protection demand Any several interfaces are used as to be protected as interface to be protected or by total interface in equipment to be protected in equipment to be protected Interface etc., is not construed as limiting this in the present embodiment.
Detailed Jie has been carried out to port security safeguard provided by the disclosure and port security guard system above It continues.Specific case used herein is expounded the principle and embodiment of the disclosure, and the explanation of above embodiments is only It is to be used to help understand disclosed method and its core concept.It should be pointed out that for those skilled in the art For, under the premise of not departing from disclosure principle, can also to the disclosure, some improvement and modification can also be carried out, these improve and repair Decorations are also fallen into disclosure scope of protection of the claims.

Claims (10)

1. a kind of port security safeguard characterized by comprising connection monitoring component, CPU control unit and alarm portion Part;
Wherein, the connection monitoring component is connected to interface to be protected, for monitor with the connection status of the interface to be protected, Generate real-time interface monitoring result;
CPU control unit one end is connected to the connection monitoring component, and the other end is connected to the alarm components, for obtaining The real-time interface monitoring result is taken, and judges the port status of the interface to be protected according to the real-time interface monitoring result Whether exception is occurred;When the port status of the equipment to be protected is determined as abnormal, it is defeated that Xiang Suoshu alarm components send alarm Signal is controlled out;
The alarm components are used for according to the alarm output control signal outputting alarm signal received.
2. port security safeguard according to claim 1, which is characterized in that the connection monitoring component are as follows: impedance Monitoring component;
The impedance monitoring component generates real-time interface monitoring knot for carrying out impedance monitoring to the interface to be protected in real time Fruit.
3. port security safeguard according to claim 1, which is characterized in that the CPU control unit is also used to control Interface status record processed.
4. port security safeguard according to any one of claims 1 to 3, which is characterized in that the CPU control unit It is specifically used for: obtains the real-time interface monitoring result, when the real-time interface testing result is shown and the interface to be protected When connection disconnects, determine that the port status of the equipment to be protected is determined as that exception, Xiang Suoshu alarm components send alarm output Control signal.
5. port security safeguard according to any one of claims 1 to 3, which is characterized in that the CPU control unit It is specifically used for: obtains the real-time interface monitoring result, when the real-time interface testing result is shown and the interface to be protected When connection disconnects, judge current opening operation whether by authorization;If current opening operation unauthorized, described to be protected set is determined Standby port status is abnormal.
6. port security safeguard according to claim 5, which is characterized in that the CPU control unit is specifically used for:
The real-time interface monitoring result is obtained, is broken when the real-time interface testing result shows to connect with the interface to be protected When opening, judgement connect whether turn-off time belongs to preset authorization time range with the interface to be protected;
When the turn-off time being not belonging to the preset authorization time range, determine that the port status of the equipment to be protected is sentenced It is set to exception.
7. port security safeguard according to claim 5, which is characterized in that the CPU control unit is specifically used for:
The real-time interface monitoring result is obtained, is broken when the real-time interface testing result shows to connect with the interface to be protected When opening, licencing key is obtained;
When the licencing key is empty, determine that the port status of the equipment to be protected is determined as exception;
When the licencing key is not sky, the licencing key match comparing with password default, generates comparison result;
When the comparison result shows password bad, determine that the port status of the equipment to be protected is determined as exception.
8. port security safeguard according to claim 1, which is characterized in that the alarm components are as follows: audible and visual alarm Device.
9. a kind of port security guard system characterized by comprising equipment to be protected and any one of such as claim 1 to 8 The port security safeguard;The port security safeguard is connected to each of the equipment to be protected and to be protected connects Mouthful.
10. port security guard system according to claim 9, which is characterized in that the connection monitoring component is connected to The non-common interfaces of the equipment to be protected;Wherein, the non-common interfaces are the interface for the Connection Time being not up to threshold value.
CN201910457454.4A 2019-05-29 2019-05-29 A kind of port security safeguard and port security guard system Pending CN110188579A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910457454.4A CN110188579A (en) 2019-05-29 2019-05-29 A kind of port security safeguard and port security guard system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910457454.4A CN110188579A (en) 2019-05-29 2019-05-29 A kind of port security safeguard and port security guard system

Publications (1)

Publication Number Publication Date
CN110188579A true CN110188579A (en) 2019-08-30

Family

ID=67718473

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910457454.4A Pending CN110188579A (en) 2019-05-29 2019-05-29 A kind of port security safeguard and port security guard system

Country Status (1)

Country Link
CN (1) CN110188579A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112131062A (en) * 2020-09-23 2020-12-25 上海摩勤智能技术有限公司 Safety protection method and equipment

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1999021143A1 (en) * 1997-10-16 1999-04-29 Simatel Method for security control of computer equipment and implementing system
US20020171546A1 (en) * 2001-04-18 2002-11-21 Evans Thomas P. Universal, customizable security system for computers and other devices
CN103106371A (en) * 2011-11-10 2013-05-15 联想(北京)有限公司 Method and device for protecting safety of data
CN104363207A (en) * 2014-10-29 2015-02-18 北京成众志科技有限公司 Multi-factor security enhancement authorization and authentication method
CN105488931A (en) * 2014-10-09 2016-04-13 中兴通讯股份有限公司 Warning signal generation device, base station power device, and base station power system
CN108270627A (en) * 2018-04-02 2018-07-10 江苏中控安芯信息安全技术有限公司 A kind of autonomous controllable intelligent detection method of network security hardware and system
CN109543475A (en) * 2018-10-29 2019-03-29 北京博衍思创信息科技有限公司 A kind of circumscribed terminal protection equipment and guard system
CN109561071A (en) * 2018-10-29 2019-04-02 北京博衍思创信息科技有限公司 A kind of the circumscribed terminal protection equipment and guard system of data traffic control
CN109698997A (en) * 2017-10-23 2019-04-30 马克西姆综合产品公司 System and method for attachment and impedance detection

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1999021143A1 (en) * 1997-10-16 1999-04-29 Simatel Method for security control of computer equipment and implementing system
US20020171546A1 (en) * 2001-04-18 2002-11-21 Evans Thomas P. Universal, customizable security system for computers and other devices
CN103106371A (en) * 2011-11-10 2013-05-15 联想(北京)有限公司 Method and device for protecting safety of data
CN105488931A (en) * 2014-10-09 2016-04-13 中兴通讯股份有限公司 Warning signal generation device, base station power device, and base station power system
CN104363207A (en) * 2014-10-29 2015-02-18 北京成众志科技有限公司 Multi-factor security enhancement authorization and authentication method
CN109698997A (en) * 2017-10-23 2019-04-30 马克西姆综合产品公司 System and method for attachment and impedance detection
CN108270627A (en) * 2018-04-02 2018-07-10 江苏中控安芯信息安全技术有限公司 A kind of autonomous controllable intelligent detection method of network security hardware and system
CN109543475A (en) * 2018-10-29 2019-03-29 北京博衍思创信息科技有限公司 A kind of circumscribed terminal protection equipment and guard system
CN109561071A (en) * 2018-10-29 2019-04-02 北京博衍思创信息科技有限公司 A kind of the circumscribed terminal protection equipment and guard system of data traffic control

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112131062A (en) * 2020-09-23 2020-12-25 上海摩勤智能技术有限公司 Safety protection method and equipment
CN112131062B (en) * 2020-09-23 2024-05-17 上海摩勤智能技术有限公司 Safety protection method and equipment

Similar Documents

Publication Publication Date Title
CN105023403B (en) A kind of inter-linked controlling method based on industry security emergency command integrated system
CN108230508A (en) One kind is based on the control of Internet of Things intelligent object Yunmen access control system and management method
CN105159255A (en) Industrial safety emergency command integrated system-based emergency plan control method
CN105069576A (en) Linked industrial safety emergency command integration system
CN107610394A (en) A kind of high safety performance Novel storage cabinet monitored in real time and monitoring method
CN103489243A (en) Intelligent lock with image collection function and control method of intelligent lock
CN104967825A (en) Gatekeeper electronic dog system
CN109636971A (en) A kind of intelligent Community safety entrance guard management method and system
CN110223433A (en) A kind of intelligent-induction device of outdoor case
CN111161453A (en) Intelligent door lock control system and method for tower barrel of wind turbine generator and wind turbine generator
CN112312341A (en) Intelligent monitoring method and system for communication of Internet of things of electric power based on block chain
CN108682107A (en) Electric vehicle charging device and system
CN110188579A (en) A kind of port security safeguard and port security guard system
CN110033393A (en) A kind of power system information method for safety monitoring
CN108492535A (en) A kind of household appliance monitoring method and device
CN210390842U (en) Shore power pile
CN209357110U (en) A kind of radioactive source managing and control system
CN112765574A (en) Identity verification method, device and system, power equipment and storage medium
CN108961476A (en) Control cabinet and its unlocking method applied to wisdom street lamp
CN105100120B (en) Monitoring method, device and the terminal of client identification module
CN211149536U (en) Intelligent lock
CN108038989A (en) Shared logistics box control method, apparatus and system
CN103324181A (en) Monitoring and pre-warning system of door of shielding cabinet
CN112433488A (en) Equipment safety management system
CN204856679U (en) Regional entrance guard's equipment of high -voltage testing

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination