CN110569630A - Management authority distribution method, device and medium for application server - Google Patents
Management authority distribution method, device and medium for application server Download PDFInfo
- Publication number
- CN110569630A CN110569630A CN201910754033.8A CN201910754033A CN110569630A CN 110569630 A CN110569630 A CN 110569630A CN 201910754033 A CN201910754033 A CN 201910754033A CN 110569630 A CN110569630 A CN 110569630A
- Authority
- CN
- China
- Prior art keywords
- management
- user
- authority
- application server
- management user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a management authority distribution method, a device and a medium of an application server, wherein the method comprises the following steps: judging whether the login of the management user is legal or not; if the login of the management user is legal, the type of the management user is determined according to the management authority information of the management user, and corresponding management authorities are distributed to different types of management users according to the corresponding relation between the type of the management user and the management authority. The invention ensures that the legal management user can enter the application server by judging whether the login of the login user is legal or not, thereby ensuring the safety of the system. The management user type of the management user is determined through the management authority information of the management user, corresponding management authorities are distributed to different types of management users according to the corresponding relation between the management user and the management authorities, so that different types of management users exercise different management authorities, and the defect that all management users can exercise all management authorities in the prior art to cause system insecurity is overcome.
Description
Technical Field
The present invention relates to the field of application servers, and in particular, to a method, an apparatus, and a medium for assigning management permissions of an application server.
Background
With the development of information technology, the application scenarios of application servers developed by enterprises are correspondingly increased, and management users with different functions need to use the same application server. In order to secure information of the application server, management authority of management users with different functions needs to be managed.
In the prior art, all management users of an application server can perform the operations of adding new management users, deleting existing management users, editing information of existing management users and inquiring management operations of existing management users, do not perform corresponding control on management authorities of different management users, and all management users can perform all management authorities to make a system unsafe.
disclosure of Invention
The invention aims to provide a management authority distribution method, a management authority distribution device and a management authority distribution medium of an application server, which are used for determining the type of a management user of the management user according to management authority information corresponding to the management user and distributing corresponding management authority to the management user when the management user legally logs in, so that different types of management users can exercise corresponding management authorities, and the safety of a system is ensured.
In order to achieve the above object, the present invention provides a method for assigning management authority of an application server, including:
judging whether the login of the management user is legal or not;
If so, determining the management user type of the management user according to the management authority information corresponding to the management user;
And distributing corresponding management authority to the management user according to the corresponding relation between the type of the management user and the management authority.
Preferably, the allocating the corresponding management authority to the management user according to the corresponding relationship between the type of the management user and the management authority specifically includes:
Distributing user management authority to a first management user;
Distributing user authority endowing authority and user authority revoking authority to the second management user;
And allocating the audit log authority for the third management user.
Preferably, the audit log is specifically log-in/out time of the first administrative user and the second administrative user and records of operations performed by the log-in/out time.
Preferably, the method further comprises the following steps: and setting the audit log to be in a read-only state.
Preferably, the method further comprises the following steps: and independently storing the audit log to a folder of the audit log.
preferably, the method further comprises the following steps: and backing up the audit log.
In order to achieve the above object, the present invention further provides a management authority distributing apparatus of an application server, including:
The login judging module is used for judging whether the login of the management user is legal or not;
The determining module is used for determining the type of the management user according to the management authority information corresponding to the management user;
And the distribution module distributes corresponding management authority to the management user according to the corresponding relation between the type of the management user and the management authority.
in order to achieve the above object, the present invention further provides a management authority distributing apparatus of an application server, comprising a memory for storing a computer program;
and the processor is used for realizing the steps of the management authority distribution method of the application server when executing the computer program.
In order to achieve the above object, the present invention further provides a computer-readable storage medium having stored thereon a computer program, which when executed by a processor, implements the steps of the management authority allocation method of an application server.
The management authority distribution method of the application server provided by the invention comprises the following steps: judging whether the login of the management user is legal or not; if the login of the management user is legal, the type of the management user is determined according to the management authority information of the management user, and corresponding management authorities are distributed to different types of management users according to the corresponding relation between the type of the management user and the management authority. The invention ensures that the legal management user can enter the application server by judging whether the login of the login user is legal or not, thereby ensuring the safety of the system. The management user type of the management user is determined through the management authority information of the management user, corresponding management authorities are distributed to different types of management users according to the corresponding relation between the management user and the management authorities, so that different types of management users exercise different management authorities, and the defect that all management users can exercise all management authorities in the prior art to cause system insecurity is overcome.
the management authority distributing device and the management authority distributing medium of the application server provided by the invention also have the beneficial effects, and are not described again.
Drawings
in order to illustrate the embodiments of the present invention more clearly, the drawings that are needed in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and that other drawings can be obtained by those skilled in the art without inventive effort.
Fig. 1 is a flowchart of a management authority allocation method for an application server according to an embodiment of the present invention;
Fig. 2 is a structural diagram of an apparatus for assigning management authority of an application server according to an embodiment of the present invention.
Detailed Description
the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without any creative work belong to the protection scope of the present invention.
the core of the invention is to provide a management authority distribution method, a device and a medium of an application server, which are used for determining the user type of a management user according to the management authority information corresponding to the management user and distributing corresponding management authority to the management user when the management user legally logs in, so that different types of management users can exercise the corresponding management authority, and the safety of the system is ensured.
In order that those skilled in the art will better understand the disclosure, the invention will be described in further detail with reference to the accompanying drawings and specific embodiments.
fig. 1 is a flowchart of a management authority allocation method of an application server according to an embodiment of the present invention. As shown in fig. 1, the management authority allocation method of the application server includes:
S10: it is judged whether the login of the administrative user is legitimate, and if so, the flow proceeds to step S20.
s20: the management user type of the management user is determined based on the management authority information corresponding to the management user, and the process proceeds to step S30.
S30: and distributing corresponding management authority for the management user according to the corresponding relation between the type of the management user and the management authority.
It should be noted that, for convenience of description, the application server mentioned in the embodiment of the present invention is specifically the InforSuite AS V9, but the application scenarios of the management authority allocation method, apparatus and medium of the application server of the present invention are not limited to the InforSuite AS V9, and may be other application servers. It should be noted that only the administrative user can use the application server.
in specific implementation, for step S10, before the administrative user enters the application server, the application server first determines whether the login of the administrative user is legal, and if so, the application server proceeds to step S20. It should be noted that whether the login of the management user is legal or not means whether the login of the management user meets the preset requirement or not, the preset requirement may be a user name and a password, or a combination of a limited login IP and a user name and a password, and the present invention does not specifically limit the preset requirement. When the preset requirement is a user name and a password, whether the login of the management user is legal or not means whether the user name and the password input by the management user are in accordance with the preset user name and the preset password, if so, the login is considered to be legal, and if not, the login is considered to be illegal. When the preset requirement is the combination of the limited login IP, the user name and the password, whether the login of the management user is legal or not means whether the login IP of the management user and the input user name and password are the combination of the limited login IP, the user name and the password, if yes, the login is considered to be legal, and if not, the login is considered to be illegal.
for step S20: when the management user logs in legally, the application server obtains the management authority information corresponding to the management user, determines the type of the management user according to the management authority information, and then the step S30 is executed. It should be noted that the application server acquiring the management authority information corresponding to the management user means that the application server acquires the management authority information matched with the file storing the management authority information according to the legal login information.
for step S30: and after determining the management user type of the management user, the application server allocates corresponding management authority for the management user according to the corresponding relation between the management user type and the management authority. It should be noted that the corresponding relationship between the management user type and the management authority is preset, and the specific corresponding relationship between the management user type and the management authority is not limited in this embodiment. It should be noted that the corresponding rights of each type of administrative user are the same. It should be noted that the sum of the corresponding administrative authorities of all types of administrative users is the complete system management function, and for the normal operation of the system, the system initially has at least one administrative user of each type.
The management authority distribution method of the application server provided by the invention comprises the following steps: judging whether the login of the management user is legal or not; if the login of the management user is legal, the type of the management user is determined according to the management authority information of the management user, and corresponding management authorities are distributed to different types of management users according to the corresponding relation between the type of the management user and the management authority. The invention ensures that the legal management user can enter the application server by judging whether the login of the login user is legal or not, thereby ensuring the safety of the system. The management user type of the management user is determined through the management authority information of the management user, corresponding management authorities are distributed to different types of management users according to the corresponding relation between the management user and the management authorities, so that different types of management users exercise different management authorities, and the defect that all management users can exercise all management authorities in the prior art to cause system insecurity is overcome.
On the basis of the above embodiment, allocating corresponding management authority to the management user according to the correspondence between the type of the management user and the management authority specifically includes: distributing user management authority to a first management user; distributing user authority endowing authority and user authority revoking authority to the second management user; and allocating the audit log authority for the third management user.
For convenience of description, in this embodiment, some management users are written as users, for example, a new user authority refers to a new management user authority, and other users also refer to management users, which is not described in detail.
The user management authority is distributed to the first management user, and it needs to be explained that the user management authority specifically includes a new user authority, an editing user authority, a deleting user authority and a displaying user list authority. The new user authority is specifically defined as user ID, password and user survival time limit. Editing the user right specifically refers to modifying the ID, the password and the user survival time of the user. The deletion of the user right is specifically a right to delete the user. The displaying user list authority is specifically displaying information of the user, including an ID, a password and a user survival time limit of the user. The first management user has not only the user management authority but also the authority to operate the basic function, which is an operation of the basic management application server such as cluster management operation on the application server and a connection database, and is not limited to the basic function operation.
The second management user is assigned with a user right granting right and a user right revoking right, it should be noted that the user right granting right specifically grants a corresponding management right to the user and activates the user, and the user right revoking right specifically revokes the management right of the user and disables the user to log in. The first management user in this embodiment can create a new user, and if the newly created user does not give the management authority by the second management user, the newly created user cannot use the new user, and the newly created user must give the management authority by the second management user to use the new user; the corresponding second management user only has the assigned and cancelled management authority of the management authority and cannot exercise the management authority of the first management user, such as a creation user; and the third administrative user can audit the operations of the first administrative user and the second administrative user through auditing the audit log, so that mutual restriction of administrative authorities among the administrative users is realized, and the safety of the system is further ensured. The management users are divided into three types, so that the division restriction of the management authority can be realized, and the excessive redundancy of the right can not be caused.
On the basis of the previous embodiment, the audit log is specifically the log-in and log-out time of the first administrative user and the second administrative user and the record of the operation performed by the first administrative user and the second administrative user, so that the record content of the audit log is clear, and the working efficiency of the user of the third administrative user is improved.
On the basis of the above embodiment, the method further includes: the audit log is set to be in a read-only state, so that the audit log is prevented from being changed, the restriction relationship of the management authority among management users is more stable and reliable, and the safety of the system is further ensured.
On the basis of the above embodiment, the method further includes: the audit logs are independently stored in the file folder of the audit logs, so that the storage positions of the audit logs and the server logs are separated, the audit logs are prevented from being operated by mistake when the server logs are operated, and the reading and writing speed of the system to the audit logs can be improved.
On the basis of the above embodiment, the method further includes: the audit logs are backed up, so that the unavailability of the audit function when hardware fails or someone maliciously destroys the audit logs is avoided, and the robustness of the restriction relationship between management authorities can be enhanced.
for ease of understanding, one application scenario is specifically illustrated herein. The application server is Inforsuite AS V9, the management user types are a first management user, a second management user and a third management user, the first management user, the second management user and the third management user are named AS a system management user, a system security user and a security audit user according to actual functions, and the management authorities are basic function operation authorities, new user authorities, user authority editing, user authority deleting and user list authority displaying, user authority endowing authorities, user authority revoking authorities and audit log authority checking. And distributing the management authority, wherein a system management user has basic function operation authority, newly-built user authority, edited user authority, deleted user authority and displayed user list authority, a system security user has user authority endowing authority and user authority revoking authority, and a security audit user has audit log authority. The system management user and the system security user complete management of the management user through cooperation of corresponding management authorities, and the security audit user conducts audit supervision on operations of the system management user and the system security user through corresponding authorities, so that distribution and restriction of the management authorities are achieved. The system management user, the system security user and the security audit user correspond to the first management user, the second management user and the third management user in the above embodiments, respectively, and are named according to specific functions.
Creating a user ID as Zhang III, and a user password as follows: 123456, lifetime 12 hours, administrative user type: for example, a management user of a security audit user needs to perform the following steps:
The user of the system management user inputs a user name and a password to log in the application server, the application server verifies the input user name and the password, if the verification is passed, corresponding management authority information is obtained according to the user name of the management user, the type of the management user is determined according to the management authority information, corresponding management authority is distributed to the management user, and the system management user obtains basic function operation authority, newly-built user authority, edited user authority, deleted user authority and displayed user list authority. The user of the system management user exercises the new user authority, and a new user ID is: zhang three, the password is: 123456, survival period: 12 hours of administrative users. However, the administrative user with user ID of zhang is not available because it has not been granted permission by the system security user.
the user of the system security user inputs a user name and a password to log in the application server, the application server verifies the input user name and the password, if the verification is passed, corresponding management authority information is obtained according to the user name of the management user, the type of the management user is determined according to the management authority information, corresponding management authority is distributed to the management user, and the system security user obtains user authority and gives authority and user authority revocation authority. And the user of the system security user exercises the user authority to give authority, and gives the audit log authority to the management user with the user ID of Zhang III, and the management user with the user ID of Zhang III can use the audit log authority.
The user of the safety audit user inputs a user name and a password to log in the application server, the application server verifies the input user name and the password, if the verification is passed, corresponding management authority information is obtained according to the user name of the management user, the type of the management user is determined according to the management authority information, corresponding management authority is distributed to the management user, and the safety audit user obtains audit log authority. The user of the safety audit user reviews and records the login and logout time of the system management user and the system safety user and an audit log of the operation performed by the system management user and the system safety user so as to realize the supervision of the authority.
On the basis that the embodiments corresponding to the management authority distribution method of the application server are described in detail, the invention further discloses a management authority distribution device of the application server corresponding to the method.
Fig. 2 is a structural diagram of an apparatus for assigning management authority of an application server according to an embodiment of the present invention. As shown in fig. 2, the management authority assigning apparatus of the application server includes:
a login judging module 10, configured to judge whether the login of the management user is legal;
The determining module 20 is configured to determine a user type of the management user according to the authority information corresponding to the management user;
the allocating module 30 allocates corresponding management authority to the management user according to the corresponding relationship between the user type and the user authority.
Since the embodiments of the apparatus portion and the method portion correspond to each other, please refer to the description of the embodiments of the method portion for the embodiments of the apparatus portion, which is not repeated here.
The management authority distributing device of the application server provided by the embodiment comprises: judging whether the login of the management user is legal or not; if the login of the management user is legal, the type of the management user is determined according to the management authority information of the management user, and corresponding management authorities are distributed to different types of management users according to the corresponding relation between the type of the management user and the management authority. The invention ensures that the legal management user can enter the application server by judging whether the login of the login user is legal or not, thereby ensuring the safety of the system. The management user type of the management user is determined through the management authority information of the management user, corresponding management authorities are distributed to different types of management users according to the corresponding relation between the management user and the management authorities, so that different types of management users exercise different management authorities, and the defect that all management users can exercise all management authorities in the prior art to cause system insecurity is overcome.
As a preferred embodiment, the method further comprises the following steps: and the setting module is used for setting the audit log to be in a read-only state.
As a preferred embodiment, the method further comprises the following steps: and the storage module is used for independently storing the audit log to a folder of the audit log.
As a preferred embodiment, the method further comprises the following steps: and the backup module backs up the audit log.
In addition, the invention also discloses a management authority distribution device of the application server, which comprises a memory, a storage unit and a control unit, wherein the memory is used for storing the computer program;
A processor, configured to implement the steps of the management authority allocation method of the application server according to any one of the above embodiments when executing the computer program.
Since the embodiments of the apparatus portion and the method portion correspond to each other, please refer to the description of the embodiments of the method portion for the embodiments of the apparatus portion, which is not repeated here. In some embodiments of the invention, the processor and memory may be connected by a bus or other means.
The management authority distributing device of the application server provided by the embodiment comprises: judging whether the login of the management user is legal or not; if the login of the management user is legal, the type of the management user is determined according to the management authority information of the management user, and corresponding management authorities are distributed to different types of management users according to the corresponding relation between the type of the management user and the management authority. The invention ensures that the legal management user can enter the application server by judging whether the login of the login user is legal or not, thereby ensuring the safety of the system. The management user type of the management user is determined through the management authority information of the management user, corresponding management authorities are distributed to different types of management users according to the corresponding relation between the management user and the management authorities, so that different types of management users exercise different management authorities, and the defect that all management users can exercise all management authorities in the prior art to cause system insecurity is overcome.
the present invention further provides a computer-readable storage medium, on which a computer program is stored, and the computer program, when executed by a processor, implements the steps of the management authority allocation method of an application server according to any of the above embodiments.
it is to be understood that if the method in the above embodiments is implemented in the form of software functional units and sold or used as a stand-alone product, it can be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and performs all or part of the steps of the methods according to the embodiments of the present invention, or all or part of the technical solution. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.
The embodiment provides a computer-readable storage medium, including: judging whether the login of the management user is legal or not; if the login of the management user is legal, the type of the management user is determined according to the management authority information of the management user, and corresponding management authorities are distributed to different types of management users according to the corresponding relation between the type of the management user and the management authority. The invention ensures that the legal management user can enter the application server by judging whether the login of the login user is legal or not, thereby ensuring the safety of the system. The management user type of the management user is determined through the management authority information of the management user, corresponding management authorities are distributed to different types of management users according to the corresponding relation between the management user and the management authorities, so that different types of management users exercise different management authorities, and the defect that all management users can exercise all management authorities in the prior art to cause system insecurity is overcome.
The present invention provides a method, an apparatus and a medium for assigning management authority of an application server. The embodiments are described in a progressive manner in the specification, each embodiment focuses on differences from other embodiments, and the same and similar parts among the embodiments are referred to each other. The device disclosed by the embodiment corresponds to the method disclosed by the embodiment, so that the description is simple, and the relevant points can be referred to the method part for description. It should be noted that, for those skilled in the art, it is possible to make various improvements and modifications to the present invention without departing from the principle of the present invention, and those improvements and modifications also fall within the scope of the claims of the present invention.
It is further noted that, in the present specification, relational terms such as first and second, and the like are used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
Claims (9)
1. A management authority distribution method of an application server is characterized by comprising the following steps:
Judging whether the login of the management user is legal or not;
If so, determining the management user type of the management user according to the management authority information corresponding to the management user;
And distributing corresponding management authority to the management user according to the corresponding relation between the type of the management user and the management authority.
2. the method for assigning management authority of an application server according to claim 1, wherein the assigning the corresponding management authority to the management user according to the corresponding relationship between the type of the management user and the management authority specifically comprises:
distributing user management authority to a first management user;
Distributing user authority endowing authority and user authority revoking authority to the second management user;
and allocating the audit log authority for the third management user.
3. the method according to claim 2, wherein the audit log is a record of log-in/log-out times of the first administrative user and the second administrative user and operations performed by the first administrative user and the second administrative user.
4. The management authority allocation method of an application server according to claim 2, further comprising: and setting the audit log to be in a read-only state.
5. The management authority allocation method of an application server according to claim 2, further comprising: and independently storing the audit log to a folder of the audit log.
6. The management authority allocation method of an application server according to claim 2, further comprising: and backing up the audit log.
7. An apparatus for assigning management authority of an application server, comprising:
the login judging module is used for judging whether the login of the management user is legal or not;
The determining module is used for determining the type of the management user according to the management authority information corresponding to the management user;
and the distribution module distributes corresponding management authority to the management user according to the corresponding relation between the type of the management user and the management authority.
8. An administration authority distributing apparatus of an application server, comprising a memory for storing a computer program;
Processor for implementing the steps of the method for assigning administrative rights of an application server according to any one of claims 1 to 6 when executing said computer program.
9. A computer-readable storage medium, characterized in that a computer program is stored thereon, which computer program, when being executed by a processor, carries out the steps of the method for administrative rights allocation of an application server according to any one of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910754033.8A CN110569630A (en) | 2019-08-15 | 2019-08-15 | Management authority distribution method, device and medium for application server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910754033.8A CN110569630A (en) | 2019-08-15 | 2019-08-15 | Management authority distribution method, device and medium for application server |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN110569630A true CN110569630A (en) | 2019-12-13 |
Family
ID=68775505
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910754033.8A Pending CN110569630A (en) | 2019-08-15 | 2019-08-15 | Management authority distribution method, device and medium for application server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110569630A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102904892A (en) * | 2012-10-17 | 2013-01-30 | 浪潮(北京)电子信息产业有限公司 | Security model and security strategy of cloud computing data center operating system |
| CN103312693A (en) * | 2013-05-08 | 2013-09-18 | 华迪计算机集团有限公司 | Video and audio access control gateway equipment |
| CN103441986A (en) * | 2013-07-29 | 2013-12-11 | 中国航天科工集团第二研究院七〇六所 | Data resource security control method in thin client mode |
| CN106446638A (en) * | 2016-10-14 | 2017-02-22 | 郑州云海信息技术有限公司 | Cloud computing operation system security access method and device |
| CN106815503A (en) * | 2017-02-24 | 2017-06-09 | 郑州云海信息技术有限公司 | A kind of operating system method for managing user right and system |
| US20180096121A1 (en) * | 2016-09-30 | 2018-04-05 | Cable Television Laboratories, Inc | Systems and methods for secure person to device association |
| CN109408196A (en) * | 2018-09-27 | 2019-03-01 | 中国科学院电子学研究所 | A kind of virtual management system, construction method and computer readable storage medium based on Xen |
-
2019
- 2019-08-15 CN CN201910754033.8A patent/CN110569630A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102904892A (en) * | 2012-10-17 | 2013-01-30 | 浪潮(北京)电子信息产业有限公司 | Security model and security strategy of cloud computing data center operating system |
| CN103312693A (en) * | 2013-05-08 | 2013-09-18 | 华迪计算机集团有限公司 | Video and audio access control gateway equipment |
| CN103441986A (en) * | 2013-07-29 | 2013-12-11 | 中国航天科工集团第二研究院七〇六所 | Data resource security control method in thin client mode |
| US20180096121A1 (en) * | 2016-09-30 | 2018-04-05 | Cable Television Laboratories, Inc | Systems and methods for secure person to device association |
| CN106446638A (en) * | 2016-10-14 | 2017-02-22 | 郑州云海信息技术有限公司 | Cloud computing operation system security access method and device |
| CN106815503A (en) * | 2017-02-24 | 2017-06-09 | 郑州云海信息技术有限公司 | A kind of operating system method for managing user right and system |
| CN109408196A (en) * | 2018-09-27 | 2019-03-01 | 中国科学院电子学研究所 | A kind of virtual management system, construction method and computer readable storage medium based on Xen |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109190410B (en) | Log behavior auditing method based on block chain in cloud storage environment | |
| US7290279B2 (en) | Access control method using token having security attributes in computer system | |
| CN101965709B (en) | Secret information management apparatus, information processing apparatus, and secret information management system | |
| JP6932175B2 (en) | Personal number management device, personal number management method, and personal number management program | |
| KR20140033056A (en) | Automating cloud service reconnections | |
| CN111680310A (en) | Authority control method and device, electronic equipment and storage medium | |
| CN106997440A (en) | A kind of role access control method | |
| CN105721486A (en) | Single-user multi-system sign-on framework and method | |
| US8132261B1 (en) | Distributed dynamic security capabilities with access controls | |
| CN105069366A (en) | Account registration and management method and device | |
| US11283794B2 (en) | Method for monitoring activity of database server administrator in enterprise resource planning system and the tamper-proof enterprise resource planning system | |
| US20180276398A1 (en) | System and method for providing restricted access to production files in a code deployment environment | |
| WO2016122685A1 (en) | Authorization for multiple user data storage and separation | |
| CN109711147B (en) | Method, device and system for managing three rights separately of operating system and storage medium | |
| CN110569630A (en) | Management authority distribution method, device and medium for application server | |
| US11418393B1 (en) | Remediation of detected configuration violations | |
| CN109033882A (en) | A kind of safe dissemination method of retrospective big data and system | |
| CN113656355A (en) | File processing method and device, nonvolatile storage medium and processor | |
| CN113486322A (en) | Control method, device and medium for integrated platform based on single sign-on | |
| US11206268B2 (en) | Account lifecycle management | |
| CN114070856A (en) | Data processing method, device and system, operation and maintenance auditing equipment and storage medium | |
| JP4675737B2 (en) | Audit log output and management method and system | |
| CN110717173A (en) | Account activation method, account activation device, network terminal and computer readable storage medium | |
| CN108920629B (en) | ACL permission setting method, device, equipment and medium of file system | |
| US9372982B2 (en) | ID usage tracker |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20191213 |