CN110674514B - Hard disk grading method, device and system - Google Patents
Hard disk grading method, device and system Download PDFInfo
- Publication number
- CN110674514B CN110674514B CN201910827653.XA CN201910827653A CN110674514B CN 110674514 B CN110674514 B CN 110674514B CN 201910827653 A CN201910827653 A CN 201910827653A CN 110674514 B CN110674514 B CN 110674514B
- Authority
- CN
- China
- Prior art keywords
- grading
- hard disk
- server
- identification code
- dynamic identification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 53
- 238000013475 authorization Methods 0.000 claims abstract description 93
- 238000004590 computer program Methods 0.000 claims description 6
- 230000006870 function Effects 0.000 abstract description 6
- 238000010586 diagram Methods 0.000 description 5
- 238000004891 communication Methods 0.000 description 2
- 230000008676 import Effects 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 2
- 238000003491 array Methods 0.000 description 1
- 230000001010 compromised effect Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
Abstract
The application discloses a hard disk grading method, which is realized based on a management server, the scheme needs to send a dynamic identification code to a key server to request authorization before hard disk grading, the key server further generates a grading device corresponding to the dynamic identification code, in the hard disk grading process, hard disk grading operation can be executed if and only if the grading device receives a hard disk grading instruction comprising the dynamic identification code, and due to the uniqueness of the dynamic identification code, the scheme avoids non-authorized hard disk grading operation, and improves the safety of the hard disk grading process. In addition, the application also provides a hard disk grading device, a hard disk grading system and a management server, and the functions of the hard disk grading device and the hard disk grading system correspond to the functions of the method.
Description
Technical Field
The present application relates to the field of storage, and in particular, to a hard disk classification method, apparatus, system, and management server.
Background
With the rapid development of cloud computing and the internet, users and application data are increased explosively, and storage arrays are produced at the same time and are specially used for storing data.
To implement a particular function or provide a better user experience, some storage array vendors require that their own storage array devices must use a particular hard disk provided by the vendor, and that different levels of storage array devices require different levels of a particular hard disk. And a hard disk grading system is further introduced for writing a mark into a specific area of the hard disk, wherein the mark can not only identify whether the hard disk is generated at home, but also identify the storage array model of the level of the hard disk suitable for the home, so that the purpose of customizing the specific hard disks of different levels is achieved. The system generally comprises a Master end (also called a management end) and a plurality of Agent ends (also called encryption ends), wherein the Master end is responsible for managing the system, and the Agent ends are responsible for executing instructions sent by the Master and grading the hard disks.
However, the conventional hard disk ranking system generally exists in a storage line, and is operated by line workers, so that system programs are easily copied and leaked. Once compromised, it is possible for other vendors or agents to customize specific hard disks at different levels, resulting in a security risk for the hard disks and detracting from the benefits of the storage array vendor.
Disclosure of Invention
The application aims to provide a hard disk grading method, a hard disk grading device, a hard disk grading system and a management server, and is used for solving the problem that a certain potential safety hazard exists in a traditional hard disk grading scheme. The specific scheme is as follows:
in a first aspect, the present application provides a hard disk classification method, implemented based on a management server, including:
sending a dynamic identification code of the key server to request authorization;
acquiring a grading device which is generated by the key server when the authorization is judged and corresponds to the dynamic identification code, and deploying the grading device to a grading server;
generating a hard disk grading instruction according to the grading requirement data and the dynamic identification code;
and sending the hard disk grading instruction to the grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
Preferably, the sending of the dynamic identification code of the key server to request authorization includes:
sending a key component acquisition request to a key server to acquire a key component;
and encrypting the dynamic identification code by using the key component, and sending the encrypted dynamic identification code to the key server to request authorization.
Preferably, the obtaining a classification device corresponding to the dynamic identification code generated by the key server when determining the authorization and deploying the classification device to the classification server includes:
when the key server judges the authorization, acquiring an authorization file generated by the key server and a grading device corresponding to the dynamic identification code;
decrypting the authorization file using the key component;
if the decryption obtains the self equipment information and the authorization success mark, the authorization success is confirmed, and the grading device is deployed to the grading server.
Preferably, the sending the hard disk ranking instruction to the ranking server includes:
and encrypting the hard disk grading instruction by using the key component, and sending the encrypted hard disk grading instruction to the grading server.
Preferably, the generating a hard disk ranking instruction according to the ranking requirement data and the dynamic identification code includes:
and generating a hard disk grading instruction according to the grading grade and the dynamic identification code.
Preferably, after the step of sending the hard disk ranking instruction to the ranking server, the method further includes:
and when judging that the dynamic identification code in the hard disk grading instruction is consistent with the pre-stored dynamic identification code, the grading device encrypts the grading level in the hard disk grading instruction and writes the encrypted grading level into a target area of a target hard disk so as to realize hard disk grading.
Preferably, the sending of the dynamic identification code of the key server to request authorization includes:
sending own equipment information to a key server to request authorization, wherein the equipment information comprises a UUID (user identifier) serving as a dynamic identifier, and any one or more of the following items: CPU identification number, memory serial number, mainboard serial number.
In a second aspect, the present application provides a hard disk classification apparatus implemented based on a management server, including:
a request authorization module: for requesting authorization from the dynamic identity of the key server itself;
a grading device deployment module: the system comprises a key server, a grading device and a grading server, wherein the grading device is used for acquiring the grading device which is generated by the key server when the key server judges authorization and corresponds to the dynamic identification code, and deploying the grading device to the grading server;
a hierarchical command generation module: the hard disk grading instruction is generated according to the grading requirement data and the dynamic identification code;
hard disk grading module: and the hard disk grading instruction is used for sending the hard disk grading instruction to the grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
In a third aspect, the present application provides a management server, comprising:
a memory: for storing a computer program;
a processor: for executing said computer program for implementing the steps of a hard disk ranking method as described above.
In a fourth aspect, the present application provides a hard disk ranking system, comprising: a management server, a key server and a classification server;
wherein, the hard disk grading device of the management server is used for: sending a dynamic identification code of the key server to request authorization; acquiring a grading device which is generated by the key server when the authorization is judged and corresponds to the dynamic identification code, and deploying the grading device to the grading server; generating a hard disk grading instruction according to the grading requirement data and the dynamic identification code; and sending the hard disk grading instruction to the grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
The hard disk grading method provided by the application is realized based on a management server, and the scheme comprises the following steps: sending a dynamic identification code of the key server to request authorization; acquiring a grading device which is generated by the key server when the authorization is judged and corresponds to the dynamic identification code, and deploying the grading device to the grading server; generating a hard disk grading instruction according to the grading requirement data and the dynamic identification code; and sending the hard disk grading instruction to a grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with the prestored dynamic identification code. Therefore, the scheme needs to send the dynamic identification code to the key server to request authorization before hard disk classification, the key server further generates a classification device corresponding to the dynamic identification code, and hard disk classification operation can be executed if and only if the classification device receives a hard disk classification instruction comprising the dynamic identification code in the hard disk classification process.
In addition, the application also provides a hard disk grading device, a hard disk grading system and a management server, wherein the function of the hard disk grading device corresponds to that of the method, and the details are not repeated.
Drawings
For a clearer explanation of the embodiments or technical solutions of the prior art of the present application, the drawings needed for the description of the embodiments or prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present application, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a flowchart illustrating a first implementation of a hard disk classification method according to an embodiment of the present disclosure;
fig. 2 is a flowchart illustrating an implementation of a second embodiment of a hard disk classification method provided in the present application;
fig. 3 is a timing diagram illustrating an authorization process in a second embodiment of a hard disk classification method according to the present application;
fig. 4 is a timing diagram illustrating a hard disk classification process according to a second embodiment of the hard disk classification method provided in the present application;
FIG. 5 is a functional block diagram of an embodiment of a hard disk grading apparatus provided in the present application;
FIG. 6 is a schematic structural diagram of an embodiment of a management server provided in the present application;
fig. 7 is a schematic architecture diagram of an embodiment of a hard disk ranking system provided in the present application.
Detailed Description
The core of the application is to provide a hard disk grading method, device and system and a management server, and safety of a hard disk grading process is obviously improved.
In order that those skilled in the art will better understand the disclosure, the following detailed description will be given with reference to the accompanying drawings. It is to be understood that the embodiments described are only a few embodiments of the present application and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
Referring to fig. 1, a first embodiment of a hard disk classification method provided in the present application is implemented based on a management server, and includes:
s101, sending a dynamic identification code of the key server to request authorization;
specifically, the embodiment may be implemented based on management software that is provided on a management server, where the management software is used to provide a WEB management interface that can be accessed remotely, and the management server is deployed in a machine room with a higher security level of a storage array vendor. The key server is deployed in a machine room with the highest security level, and only one individual has the authority to operate the key server.
The dynamic identification code is a unique code, and in this embodiment, after receiving the hard disk classification instruction, the classification device determines whether to execute a hard disk classification operation according to the dynamic identification code. It can be understood that, while sending the dynamic identification code to the key server, the device information of some management servers, such as a CPU serial number, a memory serial number, a motherboard serial number, etc., may also be sent, so that it is possible to determine which management server currently requests authorization on the side of the key server.
S102, acquiring a grading device which is generated by the key server when the authorization is judged and corresponds to the dynamic identification code, and deploying the grading device to a grading server;
specifically, after the key server receives the authorization request, the user may operate on the side of the key server to determine whether to authorize the current management server. If the user operation is refusing authorization, sending information to the management server to prompt that the current authorization request is refused; if the user operation is authorization approval, information is sent to the management server to prompt that the current authorization request passes and authorization is successful, a grading device corresponding to the dynamic identification code is generated for the management server, and the management server deploys the grading device on the grading server after receiving the grading device.
The grading device is a binary executable program and is responsible for receiving the instruction of the management software and carrying out grading operation on the hard disk. The host machine of the grading device is a grading server, the grading server is arranged on a storage array production line, and graded hard disks are installed on the grading server. Normal network communication can be carried out between the management server and the hierarchical server.
S103, generating a hard disk grading instruction according to the grading requirement data and the dynamic identification code;
the grading requirement data refers to some key parameters set for the hard disk grading process, such as grading grade, grading time and the like, and is determined according to actual conditions.
S104, the hard disk grading instruction is sent to the grading server, so that the grading device can conveniently execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
As described above, after receiving the hard disk grading instruction, the grading device first determines whether the dynamic identification code in the hard disk grading instruction is consistent with the dynamic identification code pre-stored by the grading device, and if so, executes the corresponding grading operation according to the grading requirement data in the hard disk grading instruction; and if the current classification request is inconsistent with the classification request, refusing to execute the classification operation, and sending information to the management server to prompt that the current classification request is refused.
It is worth mentioning that, when the management server communicates with the key server and the classification server, the management server can encrypt data transmitted by the two parties, so as to improve the communication security. As a specific embodiment, an encryption method of the authorization request, an encryption method of the classification device, and an encryption method of the classification request may be agreed in advance.
The present embodiment provides a hard disk classification method, which is implemented based on a management server, where the scheme needs to send a dynamic identification code to a key server to request authorization before hard disk classification, and the key server further generates a classification device corresponding to the dynamic identification code, and in a hard disk classification process, if and only if the classification device receives a hard disk classification instruction including the dynamic identification code, hard disk classification operation is performed.
An embodiment of a hard disk classification method provided by the present application is described in detail below, and the embodiment two is implemented based on the foregoing embodiment one and is expanded to a certain extent on the basis of the embodiment one.
The embodiment is implemented based on a management server, and the implementation process relates to the following steps: management software and key components arranged on a management server, a grading device arranged on a grading server and key software arranged on a key server.
Referring to fig. 2, the second embodiment specifically includes:
s201, sending a key component acquisition request to a key server to acquire a key component;
as described above, the key server is deployed in the machine room with the highest security level of the storage array manufacturer, and key software is deployed thereon, and the key software is responsible for generating the key required by this embodiment, generating an authorization file, compiling the hierarchical device source code, and compiling the key component source code. The management software is used for providing a WEB management interface capable of being remotely accessed, a host machine of the management software is a management server, and the management server is deployed in a machine room with a higher security level of a storage array manufacturer.
After the management software is installed and started, the key component needs to be imported. The key component is a binary executable program, such as an executable program written in C language, and guarantees that anyone cannot inversely compile program content. Specifically, after the management server submits the key component acquisition request, the key administrator operates the key software to cause the key software to generate the following keys: pubKey _1/privKey _1, pubKey _2/privKey _2, pubKey _3/privKey _3, each key function as shown in Table 1; and then, replacing the pubKey _1 and the privKey _2 in the source code of the key component by using the pubKey _1 and the privKey _2, compiling the pubKey _1 and the privKey _2 into an executable program, obtaining the key component, and sending the key component to the management server so that an operator can conveniently import the key software into the management software on one side of the management server.
TABLE 1
Finally, the key component is deployed in the management server, and provides the following interfaces for the management server to call:
1) encrypting management server device information;
2) decrypting the authorization file content;
3) and the encryption management server sends a hard disk grading instruction to the grading server.
S202, encrypting the own equipment information by using the key component, and sending the encrypted equipment information to the key server to request authorization;
after the key component is imported, the management software is in an unauthorized state, and the management software needs to be authorized to normally provide services, so that an authorization request needs to be sent to the key server. Specifically, the management software derives the device information of the management server, encrypts the device information by using the pubKey _1 in the key component, and finally sends the encrypted device information to the key server as an authorization request. The device information includes a UUID (universal Unique Identifier) as a dynamic Identifier, and further includes any one or more of the following items: CPU identification number, memory serial number, mainboard serial number.
S203, when the key server judges the authorization, acquiring an authorization file generated by the key server and a grading device corresponding to the dynamic identification code;
after receiving the authorization request, the key server firstly decrypts by using the privKey-1, then determines whether to authorize according to the operation of a key administrator, if the authorization is confirmed, generates an authorization file and a classification device corresponding to a dynamic identification code in the authorization request, then encrypts the authorization file and the classification device by using the privKey-1, and sends the authorization file and the classification device to the management server after encryption. The authorization file is a file with an authorization success mark added at the tail part of the original equipment information; the grading device is a binary executable program and is responsible for receiving the instruction of the management software and grading the hard disk.
S204, decrypting the authorization file by using the key component; if the decryption obtains the self equipment information and the authorization success mark, the authorization is confirmed to be successful, and the grading device is deployed to a grading server;
specifically, the pubKey _1 in the key component is used for decrypting the received ciphertext, if the decryption obtains the own equipment information and the authorization success mark, the authorization is confirmed to be successful, and the host machine of the grading device is a grading server arranged on a storage array production line and is arranged on the grading server by a graded hard disk, so that the grading device is arranged on the grading server.
It should be noted that, the management software stores the authorization state of the UUID in the memory, so that re-authorization is required after each restart, so as to ensure security.
S205, generating a hard disk grading instruction according to the grading grade and the UUID;
s206, encrypting the hard disk grading instruction by using the key component, and sending the encrypted hard disk grading instruction to the grading server;
and S207, when judging that the UUID in the hard disk grading instruction is consistent with the pre-stored UUID, the grading device encrypts the grading level in the hard disk grading instruction and writes the encrypted grading level into a target area of a target hard disk so as to realize hard disk grading.
Specifically, the hard disk classification instruction is encrypted by using the privKey _2 of the key component, and after receiving the encrypted hard disk classification instruction, the classification device decrypts the hard disk classification instruction by using the pubKey _ 2. And if the UUID obtained by decryption is consistent with the UUID prestored by the grading device, carrying out hard disk grading operation, and otherwise, refusing to carry out hard disk grading operation.
As further detailed below, the authorization process of the management software as described in S202 to S204 above, as shown in fig. 3, includes:
step 1: the operator clicks the "export device information" button from the page of the management software;
step 2: the management software acquires equipment information of a server, wherein the equipment information comprises a CPUID (compact peripheral device identifier), a memory serial number, a mainboard serial number and a UUID (user identifier);
step 3: the management software calls a key component to encrypt the equipment information by using the pubKey _ 1;
step 4: the management software writes the encrypted equipment information into an equipment information file and exports the equipment information file;
step 5: the operator sends the device information file to the key server to apply for authorization;
step 6: after the authorization is confirmed, a key administrator operates the key software, the key software decrypts the equipment information by using the privKey _1, adds an authorization mark to the end of the equipment information, and encrypts by using the privKey _1 to generate an authorization file;
step 7: the key software updates pubKey _2, privKey _3 and UUID into the source code of the hierarchical device, and compiles to generate an executable hierarchical device;
step 8: exporting the authorization file and the grading device, and sending the authorization file and the grading device to a management server by a key manager;
step 9: an operator at one side of the management server imports the authorization file into the management software;
step 10: the management software calls a Master key component, uses pubKey _1 to decrypt the content of the authorization file, acquires the equipment information and the authorization mark, if the equipment information is successfully matched with the self equipment and the authorization success mark exists, the authorization is confirmed to be successful, otherwise, the authorization fails;
step 11: when the authorization is successful, the operator deploys the grading device into the grading server and starts the grading device.
As shown in fig. 4, the hard disk ranking process described in S205 to S207 includes:
step 1: an operator clicks a 'hard disk grading' button from an interface of management software and inputs grading grade;
step 2: the management software generates a hard disk grading instruction which comprises a grading grade and a UUID, and calls a key component to encrypt by using a privKey-2;
step 3: the management software assembles the encrypted hard disk grading instructions into messages and sends the messages to the grading device;
step 4: the grading device analyzes the message, decrypts the hard disk grading instruction by using the pubKey _2 to obtain the grading grade and the UUID, and compares whether the UUID is consistent with the UUID of the grading device; if the results are consistent, turning to the next Step, otherwise, considering that the grading fails, sending the grading result and the failure reason to the management software, and turning to Step 6;
step 5: the hierarchical device encrypts the hierarchical level by using the privKey-3, writes the hierarchical level into a specific area of the hard disk (the area is not used by the client data), and returns an operation result to the management software;
step 6: and the management software displays the grading result.
It can be seen that, the hard disk classification method provided by this embodiment is implemented based on a management server, and the scheme needs to send its own device information to a key server to request for authorization before hard disk classification, and the key server further generates a classification device corresponding to a UUID.
In the following, a hard disk grading device provided by an embodiment of the present application is introduced, and a hard disk grading device described below and a hard disk grading method described above may be referred to in correspondence.
The hard disk ranking device of the present embodiment is implemented based on a management server, and as shown in fig. 5, the device includes:
the request authorization module 501: for requesting authorization from the dynamic identity of the key server itself;
the staging device deployment module 502: the system comprises a key server, a grading device and a grading server, wherein the grading device is used for acquiring the grading device which is generated by the key server when the key server judges authorization and corresponds to the dynamic identification code, and deploying the grading device to the grading server;
hierarchical command generation module 503: the hard disk grading instruction is generated according to the grading requirement data and the dynamic identification code;
hard disk grading module 504: and the hard disk grading instruction is used for sending the hard disk grading instruction to the grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
The hard disk classification device of this embodiment is used to implement the foregoing hard disk classification method, and therefore, the specific implementation manner of this device can be seen in the foregoing embodiment portions of the hard disk classification method, for example, the request authorization module 501, the classification device deployment module 502, the classification command generation module 503, and the hard disk classification module 504, which are respectively used to implement steps S101, S102, S103, and S104 in the foregoing hard disk classification method. Therefore, specific embodiments thereof may be referred to in the description of the corresponding respective partial embodiments, and will not be described herein.
In addition, since the hard disk grading device of this embodiment is used for implementing the hard disk grading method, the function of the hard disk grading device corresponds to that of the hard disk grading method, and is not described herein again.
In addition, the present application also provides a management server, as shown in fig. 6, including:
the memory 601: for storing a computer program;
the processor 602: for executing said computer program for implementing the steps of a hard disk ranking method as described above.
Finally, the present application provides a hard disk ranking system, as shown in fig. 7, comprising: a management server 701, a key server 702, and a hierarchical server 703;
the hard disk classification device of the management server 701 is configured to: sending its own dynamic identification code to the key server 702 to request authorization; acquiring a grading device corresponding to the dynamic identification code generated by the key server 702 when determining authorization, and deploying the grading device to the grading server 703; generating a hard disk grading instruction according to the grading requirement data and the dynamic identification code; and sending the hard disk grading instruction to the grading server 703 so that the grading device executes corresponding hard disk grading operation according to the grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with the pre-stored dynamic identification code.
The embodiments are described in a progressive manner, each embodiment focuses on differences from other embodiments, and the same or similar parts among the embodiments are referred to each other. The device disclosed by the embodiment corresponds to the method disclosed by the embodiment, so that the description is simple, and the relevant points can be referred to the method part for description.
The steps of a method or algorithm described in connection with the embodiments disclosed herein may be embodied directly in hardware, in a software module executed by a processor, or in a combination of the two. A software module may reside in Random Access Memory (RAM), memory, Read Only Memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art.
The above detailed descriptions of the solutions provided in the present application, and the specific examples applied herein are set forth to explain the principles and implementations of the present application, and the above descriptions of the examples are only used to help understand the method and its core ideas of the present application; meanwhile, for a person skilled in the art, according to the idea of the present application, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present application.
Claims (10)
1. A hard disk grading method is realized based on a management server, and comprises the following steps:
sending a dynamic identification code of the key server to request authorization;
acquiring a grading device which is generated by the key server when the authorization is judged and corresponds to the dynamic identification code, and deploying the grading device to a grading server;
generating a hard disk grading instruction according to the grading requirement data and the dynamic identification code;
and sending the hard disk grading instruction to the grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
2. The method of claim 1, wherein sending the dynamic identification code of itself to the key server to request authorization comprises:
sending a key component acquisition request to a key server to acquire a key component;
and encrypting the dynamic identification code by using the key component, and sending the encrypted dynamic identification code to the key server to request authorization.
3. The method of claim 2, wherein obtaining a rating device corresponding to the dynamic identification code generated by the key server when determining authorization and deploying the rating device to a rating server comprises:
when the key server judges the authorization, acquiring an authorization file generated by the key server and a grading device corresponding to the dynamic identification code;
decrypting the authorization file using the key component;
if the decryption obtains the self equipment information and the authorization success mark, the authorization success is confirmed, and the grading device is deployed to the grading server.
4. The method of claim 2, wherein said sending said hard disk ranking instructions to said ranking server comprises:
and encrypting the hard disk grading instruction by using the key component, and sending the encrypted hard disk grading instruction to the grading server.
5. The method of claim 4, wherein generating hard disk ranking instructions based on the ranking requirement data and the dynamic identification code comprises:
and generating a hard disk grading instruction according to the grading grade and the dynamic identification code.
6. The method of claim 5, wherein after said sending said hard disk ranking instructions to said ranking server, further comprising:
and when judging that the dynamic identification code in the hard disk grading instruction is consistent with the pre-stored dynamic identification code, the grading device encrypts the grading level in the hard disk grading instruction and writes the encrypted grading level into a target area of a target hard disk so as to realize hard disk grading.
7. The method of any one of claims 1-6, wherein sending a dynamic identification code of itself to a key server to request authorization, comprises:
sending own equipment information to a key server to request authorization, wherein the equipment information comprises a UUID (user identifier) serving as a dynamic identifier, and any one or more of the following items: CPU identification number, memory serial number, mainboard serial number.
8. A hard disk grading device is realized based on a management server and comprises the following components:
a request authorization module: for requesting authorization from the dynamic identity of the key server itself;
a grading device deployment module: the system comprises a key server, a grading device and a grading server, wherein the grading device is used for acquiring the grading device which is generated by the key server when the key server judges authorization and corresponds to the dynamic identification code, and deploying the grading device to the grading server;
a hierarchical command generation module: the hard disk grading instruction is generated according to the grading requirement data and the dynamic identification code;
hard disk grading module: and the hard disk grading instruction is used for sending the hard disk grading instruction to the grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
9. A management server, comprising:
a memory: for storing a computer program;
a processor: for executing said computer program for carrying out the steps of a hard disk ranking method according to any of claims 1-7.
10. A hard disk ranking system, comprising: a management server, a key server and a classification server;
wherein, the hard disk grading device of the management server is used for: sending a dynamic identification code of the key server to request authorization; acquiring a grading device which is generated by the key server when the authorization is judged and corresponds to the dynamic identification code, and deploying the grading device to the grading server; generating a hard disk grading instruction according to the grading requirement data and the dynamic identification code; and sending the hard disk grading instruction to the grading server so that the grading device can execute corresponding hard disk grading operation according to grading requirement data in the hard disk grading instruction when judging that the dynamic identification code in the hard disk grading instruction is consistent with a pre-stored dynamic identification code.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910827653.XA CN110674514B (en) | 2019-09-03 | 2019-09-03 | Hard disk grading method, device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910827653.XA CN110674514B (en) | 2019-09-03 | 2019-09-03 | Hard disk grading method, device and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110674514A CN110674514A (en) | 2020-01-10 |
| CN110674514B true CN110674514B (en) | 2021-04-30 |
Family
ID=69076207
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910827653.XA Active CN110674514B (en) | 2019-09-03 | 2019-09-03 | Hard disk grading method, device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110674514B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113468619A (en) * | 2021-05-28 | 2021-10-01 | 邓丰赣 | Computer hard disk encryption key management system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1983291A (en) * | 2005-12-16 | 2007-06-20 | 联想(北京)有限公司 | Method and system for centrally managing code to enterprise hard disk |
| CN103441986A (en) * | 2013-07-29 | 2013-12-11 | 中国航天科工集团第二研究院七〇六所 | Data resource security control method in thin client mode |
| CN109977644A (en) * | 2019-04-03 | 2019-07-05 | 山东超越数控电子股份有限公司 | Right management method is classified under a kind of Android platform |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9357247B2 (en) * | 2008-11-24 | 2016-05-31 | Time Warner Cable Enterprises Llc | Apparatus and methods for content delivery and message exchange across multiple content delivery networks |
| US20130254858A1 (en) * | 2012-03-26 | 2013-09-26 | Computer Associates Think, Inc. | Encoding an Authentication Session in a QR Code |
| US10733300B2 (en) * | 2017-10-24 | 2020-08-04 | Ncr Corporation | Basic input/output system (BIOS)/unified extensible firmware interface (UEFI) hard drive authentication |
-
2019
- 2019-09-03 CN CN201910827653.XA patent/CN110674514B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1983291A (en) * | 2005-12-16 | 2007-06-20 | 联想(北京)有限公司 | Method and system for centrally managing code to enterprise hard disk |
| CN103441986A (en) * | 2013-07-29 | 2013-12-11 | 中国航天科工集团第二研究院七〇六所 | Data resource security control method in thin client mode |
| CN109977644A (en) * | 2019-04-03 | 2019-07-05 | 山东超越数控电子股份有限公司 | Right management method is classified under a kind of Android platform |
Non-Patent Citations (1)
| Title |
|---|
| "计算机网络存储技术";王刚;《计算机系统应用》;20150115;第24卷(第1期);第14-20页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110674514A (en) | 2020-01-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Kim et al. | Predictability of android openssl's pseudo random number generator | |
| JP4638912B2 (en) | Method for transmitting a direct proof private key in a signed group to a device using a distribution CD | |
| US7356709B2 (en) | Systems and methods for deterring software piracy in a volume license environment | |
| US20220209951A1 (en) | Authentication method, apparatus and device, and computer-readable storage medium | |
| US7802092B1 (en) | Method and system for automatic secure delivery of appliance updates | |
| CN102404314A (en) | Remote resources single-point sign on | |
| CN110688660B (en) | Method and device for safely starting terminal and storage medium | |
| KR19980081644A (en) | Information processing apparatus, methods and recording media | |
| WO2019229234A1 (en) | Shared secret establishment | |
| CN108200078B (en) | Downloading and installing method of signature authentication tool and terminal equipment | |
| CN106790045B (en) | distributed virtual machine agent device based on cloud environment and data integrity guarantee method | |
| CN110414248B (en) | Method for debugging microprocessor and microprocessor | |
| CN111460410A (en) | Server login method, device and system and computer readable storage medium | |
| CN111538977A (en) | Cloud API key management method, cloud platform access method, cloud API key management device, cloud platform access device and server | |
| CN112596740A (en) | Program deployment method and device | |
| CN106936797A (en) | The management method and system of magnetic disk of virtual machine and file encryption key in a kind of cloud | |
| CN111639357A (en) | Encryption network disk system and authentication method and device thereof | |
| CN110837643B (en) | Activation method and device of trusted execution environment | |
| CN110674514B (en) | Hard disk grading method, device and system | |
| CN113609514A (en) | Cloud hard disk encryption and decryption method, device and system and readable storage medium | |
| CN111737747A (en) | Database security method, device, equipment and computer storage medium | |
| CN107241341B (en) | Access control method and device | |
| CN109150813B (en) | Equipment verification method and device | |
| CN112118209A (en) | Account number operation method and device of vehicle equipment | |
| CN114139114A (en) | Development and maintenance system and method based on front-end low code |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |