CN112422504B - Working method for carrying out remote safety information authentication and identification through cloud platform - Google Patents

Working method for carrying out remote safety information authentication and identification through cloud platform Download PDF

Info

Publication number
CN112422504B
CN112422504B CN202011084574.3A CN202011084574A CN112422504B CN 112422504 B CN112422504 B CN 112422504B CN 202011084574 A CN202011084574 A CN 202011084574A CN 112422504 B CN112422504 B CN 112422504B
Authority
CN
China
Prior art keywords
information
node
safety
engineering data
cloud platform
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011084574.3A
Other languages
Chinese (zh)
Other versions
CN112422504A (en
Inventor
洪敏�
万里
熊榆
白金龙
胡宇
唐良艳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Chongqing Hui Hui Information Technology Co ltd
Original Assignee
Chongqing Hui Hui Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chongqing Hui Hui Information Technology Co ltd filed Critical Chongqing Hui Hui Information Technology Co ltd
Priority to CN202011084574.3A priority Critical patent/CN112422504B/en
Publication of CN112422504A publication Critical patent/CN112422504A/en
Application granted granted Critical
Publication of CN112422504B publication Critical patent/CN112422504B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • General Health & Medical Sciences (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Bioethics (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Databases & Information Systems (AREA)
  • Medical Informatics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention provides a working method for carrying out remote safety information authentication and identification through a cloud platform, which comprises the following steps: s1, acquiring the building engineering data through a cloud platform, and dividing the data of multiple nodes by using a safety information acquisition method to form a building engineering data original database; s2, after an original database is formed by multi-node collection, a safety information preparation process is carried out for the original database, and a safety interaction mechanism of each node is established; and S3, providing information identification for the building engineering data through a multi-node safety interaction mechanism, and performing an interaction authentication process through safety information so as to provide safety guarantee for the building engineering data.

Description

Working method for carrying out remote safety information authentication and identification through cloud platform
Technical Field
The invention relates to the field of engineering data safety, in particular to a working method for carrying out remote safety information authentication and identification through a cloud platform.
Background
Because in the building engineering work progress, need to carry out the engineering operation in later stage through cloud platform collection magnanimity engineering data, but can cause packet loss and data delay because of network stability reason in carrying out the transmission process through the network, and the data that the cloud platform was collected carry out the transfer process between the node, launch the network attack through unknown node, make the integrality and the accuracy of data suffer heavy strike, thereby can't obtain the building engineering data safely, and data stability can't obtain the guarantee, this needs technical staff in the art to solve corresponding technical problem urgently.
Disclosure of Invention
The invention aims to at least solve the technical problems in the prior art, and particularly creatively provides a working method for carrying out remote security information authentication and identification through a cloud platform.
In order to achieve the above object, the present invention provides a working method for performing remote security information authentication and identification through a cloud platform, comprising the following steps:
s1, acquiring the construction engineering data through the cloud platform, and dividing the data of the multiple nodes by using a safety information acquisition method to form an original database of the construction engineering data;
s2, after an original database is formed by multi-node collection, a safety information preparation process is carried out for the original database, and a safety interaction mechanism of each node is established;
and S3, providing information identification for the building engineering data through a multi-node safety interaction mechanism, and performing an interaction authentication process through safety information so as to provide safety guarantee for the building engineering data.
Preferably, the S1 includes:
s1-1, acquiring the construction engineering data at the cloud platform, performing the safety information collection process to the construction engineering data, setting the safety information collection time interval and sending the authentication command to the cloud platform regularly, thereby obtaining the safety information verification code, transmitting the safety information verification code in a file packet form, forming the safety file processing format data by the safety information verification code in the process of sending the construction engineering data to multiple nodes, storing the loaded safety information verification code in the construction engineering data storage area of each node,
s1-2, extracting file fields in the building engineering data to extract security information keywords from the security file processing format data, wherein the contained security information keywords form a URL (Uniform resource locator) list through security authentication levels, synchronously matching security information keywords with different contents in real time on a cloud platform, shearing the file fields of the building engineering data to form security information input time and obtain regular response time of the security information, and using the regular response time as setting information, appointing node positions made by corresponding building engineering data in the URL list in the cloud platform, and continuously and repeatedly executing the security information keywords to continuously optimize and accumulate the extracted security information keywords in the shearing process of the building engineering data;
preferably, the S1 further includes:
s1-3, the cloud platform judges all records of the construction engineering data, and if the construction engineering data in all the records are cut successfully, the building process of the construction engineering data original database is completed; if the shearing is not completed, the cloud platform access control function sends security information keyword loading information, the access control function judges whether each node passes the security authentication or not, and if the node passes the security authentication, completion information is sent to the cloud platform; if the building engineering data do not pass the authentication, each node receiving the building engineering data carries out authentication; the access control function authenticates and authorizes each node, if the cloud platform passes the authentication, the construction project data request information is returned to each node in the authentication process, and safety information is selected through file field slices of the construction project data;
s1-4, in the building engineering data passing the node authentication, an access control function replies a confirmation message to the cloud platform, wherein the message carries a safety information verification code and safety information verification code formed safety file processing format data; when the cloud platform selects at least one piece of slice data according to the content cut by the file field of the construction engineering data requested by each node; the cloud platform sends the security level information accessed into the request information of each node to the slice information of the selected building engineering data, the slice judges whether the node can be accessed into the slice information of the building engineering data according to the request information of the cloud platform to each node, if the node can be accessed into the slice information, the slice information is processed to form original database information of the building engineering data, confirmation information is formed, and if the slice information is processed to form authentication information of the building engineering data, the confirmed information is returned to the cloud platform.
Preferably, the S2 includes:
s2-1, for the constructional engineering user configuration information in the safety information of the constructional engineering data, the constructional engineering task state information, the constructional engineering terrain detection state information and the construction period statistical state information are used; transportation flow state information and construction site abnormal behavior information; preparing safety information data by using the engineering budget index statistical information; converting the construction engineering data into cloud platform identification information; the cloud platform analyzes the converted identification information, determines safety information in the construction engineering user configuration information, converts the safety information in the construction engineering user configuration information into information which can be identified by multiple nodes of the cloud platform, and sends the converted identification information to each node; each node sends a response message of the safety information of the construction engineering data; meanwhile, the cloud platform combines the received safety information sent by each node;
preferably, the S2 further includes:
s2-2, after the safety information of the construction engineering data is received by the cloud platform, firstly verifying the user identity and the access authority of the node, and converting the request message into a request message which can be identified by the cloud platform through authentication; receiving a request message of a current safety certification file which is sent by each node and used for acquiring safety information of the construction engineering data received by the cloud platform; sending a request message of a current safety certification file for acquiring the safety information of the construction engineering data received by the cloud platform to each node; receiving a response message which is sent by each node and comprises the current security authentication file; if the current safety certification file of the safety information of the building engineering data received by the cloud platform needs to be certified, sending a request message for acquiring an updated safety certification file of the safety information of the building engineering data received by the cloud platform to each node, and after each node acquires the updated safety certification file of the safety information, feeding the current safety certification file of the safety information back to the cloud platform;
s2-3, each node sends a request message for acquiring the difference between the updated security authentication file of the security information of the construction engineering data received by the cloud platform and the designated security authentication file; sending a request message for the difference between an updated security authentication file of the security information of the construction engineering data received by the cloud platform and a specified security authentication file to each node; receiving a response message sent by each node and comprising the difference between the updated security authentication file and the specified security authentication file; if the updated security authentication file of the security information of the building engineering data received by the cloud platform is different from the designated security authentication file, sending a request for acquiring the difference between the updated security authentication file of the security information and the designated security authentication file to each node, and after acquiring the difference, feeding the difference back to the cloud platform by each node;
preferably, the S2 further includes:
s2-4, in the interaction process of each node, hiding the safety information of the building engineering data and carrying out messy code setting, and when each node detects that the response time of the safety information of the building engineering data which is not received by the cloud platform is longer than the threshold value, executing protection on the safety information of the building engineering data and hiding the safety information of the building engineering data; after safety certification protection, detecting that each node does not receive safety information operation of the building engineering data of the cloud platform, judging whether the certification duration is greater than the threshold value, and when detecting that each node is not in a safety information free operation state, regularly requesting each node to receive the building engineering data safety information; when each node is detected to be in a safety information free operation state, reminding each node of protecting the safety information;
s2-5, when the protection condition of the constructional engineering data safety information of each node is a dormant state and the dormancy time of any node is up, judging whether the constructional engineering data safety information of the cloud platform needs to be protected or not by judging whether each node is in the dormant state or not, and when the constructional engineering data safety information is in a freely operable state, if the cloud platform and the corresponding node are in the dormant state, stopping transmission of the constructional engineering data safety information, blocking the safety information, and forming a safety risk; detecting whether the safety information of the building engineering data of each node meets the deprotection condition, if so, canceling the protection of the safety information, and if not, continuing the protection; skipping to a protection operation instruction of the building engineering data safety information, and detecting whether each node is switched to a safety state again; and when each node receives a safety state switching instruction for opening the safety information of the construction engineering data, judging whether the operation instruction of the safety information of the construction engineering is legal or not, if so, switching to the safety state, and if not, continuing the safety information authentication process.
Preferably, the S3 includes:
s3-1, when the cloud platform initiates a construction engineering data security interaction mechanism request, for the security information of construction engineering data running on each node, processing format data of security files running on each node, and establishing a security information carrier list of the cloud platform and each node; if the acquired building engineering data security interaction mechanism request is matched with the building engineering data virtual security information carrier list, prompting the cloud platform to pass authentication of the related virtual security information carrier, download an activation instruction and synchronize the activation instruction in the virtual security information carriers of other nodes;
s3-2, when the building engineering data safety information is mutually authenticated, prompting each node to select an authentication virtual safety information carrier instruction from the virtual safety information carrier list; when the data interaction is carried out between the authentication data sent to each node by the construction engineering data of the cloud platform and the construction engineering data safety information carriers through the safety channel, the safety channel establishes a connection in a bidirectional identity verification mode, the construction engineering data of the cloud platform is sent to the authentication data of each node, the connection with the virtual safety information carriers indicated in the currently available virtual safety information carrier list can be started in parallel, and the number of all the corresponding virtual safety information carriers and the number of the parallelly started virtual safety information carriers, which are sent to the authentication data of each node by the construction engineering data of the cloud platform, do not exceed a preset threshold value;
preferably, the S3 further includes:
s3-3, acquiring the virtual safety information carrier list by the construction engineering data safety information: (1) acquiring building engineering task state information, building engineering terrain detection state information, construction period statistical state information, transportation flow state information and construction site abnormal behavior information of a building engineering safety information interaction request initiated by a cloud platform, and acquiring a currently available virtual safety information carrier list through interaction with each node; (2) reading a building engineering data virtual safety information carrier list which is stored in the started virtual safety information carrier and is associated with the cloud platform; the safety certification information is matched and activated by recording the certification instruction request of the safety information carrier of the construction engineering data of each node;
s3-4, constructing and initiating a real-time safety interaction authentication request for each node building engineering data target virtual safety information carrier, thereby executing a subsequent safety information interaction process, constructing and initiating a building engineering safety information interaction request of a cloud platform through safety information interaction: (1) transmitting the identification number of the target virtual safety information carrier of the constructional engineering data of each node to a cloud platform; (2) the cloud platform returns a response after receiving the identification number of the building engineering data target virtual safety information carrier of each node, and sends a building engineering data safety interaction authentication element to each node; (3) and the nodes which acquire the building engineering data security interaction authentication elements respond to the virtual security information associated with the target virtual security information carrier, construct building engineering data security information interaction ciphertext information, and transmit the security information interaction request to the cloud platform according to an actual security information interaction request so as to complete the interaction authentication process.
In summary, due to the adoption of the technical scheme, the invention has the beneficial effects that:
after the request of the building engineering data safety information is received through the cloud platform, the safety information is sent to each node, the cloud platform safety information is achieved through a safety information authentication and identification process, and the safety trust degree of the cloud platform on the building engineering data is improved.
Additional aspects and advantages of the invention will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the invention.
Drawings
The above and/or additional aspects and advantages of the present invention will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings of which:
FIG. 1 is a general schematic of the present invention;
FIG. 2 is a schematic diagram of an embodiment of the present invention.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like reference numerals refer to the same or similar elements or elements having the same or similar functions throughout. The embodiments described below with reference to the accompanying drawings are illustrative only for the purpose of explaining the present invention and are not to be construed as limiting the present invention.
As shown in fig. 1 and 2, the invention discloses a working method for performing remote security information authentication and identification through a cloud platform, which comprises the following steps:
s1, acquiring the building engineering data through a cloud platform, and dividing the data of multiple nodes by using a safety information acquisition method to form a building engineering data original database;
s2, after an original database is formed by multi-node collection, a safety information preparation process is carried out for the original database, and a safety interaction mechanism of each node is established;
and S3, providing information identification for the building engineering data through a multi-node safety interaction mechanism, and performing an interaction authentication process through safety information so as to provide safety guarantee for the building engineering data.
The S1 includes:
s1-1, acquiring the construction engineering data at the cloud platform, carrying out the safety information collection process to the construction engineering data, setting the safety information collection time interval and sending the authentication command to the cloud platform periodically, thereby obtaining the safety information verification code, transmitting the safety information verification code in the form of a file packet, forming the safety file processing format data by the safety information verification code in the process of sending the construction engineering data to a plurality of nodes, storing the loaded safety information verification code in the construction engineering data storage area of each node,
s1-2, extracting a file field in the building engineering data, extracting a security information keyword, wherein the security information keyword is contained in the file field of the building engineering data and forms a URL (uniform resource locator) list through a security authentication level, synchronously matching security information keywords with different contents in a cloud platform in real time, carrying out shearing operation on the file field of the building engineering data to form security information input time and obtain regular response time of the security information, wherein the regular response time is used as setting information, a node position formulated by corresponding building engineering data in the URL list is appointed in the cloud platform, and the extracted security information keyword is continuously optimized and accumulated in the shearing process of the building engineering data through continuously repeatedly executing the security information keyword;
s1-3, the cloud platform judges all records of the building engineering data, and if the building engineering data in all the records are successfully cut, the building engineering data original database is established; if the shearing is not completed, the cloud platform access control function sends security information keyword loading information, the access control function judges whether each node passes the security authentication, and if the node passes the security authentication, completion information is sent to the cloud platform; if the building engineering data do not pass, each node receiving the building engineering data is authenticated; the access control function authenticates and authorizes each node, if the cloud platform passes the authentication, the construction project data request information is returned to each node in the authentication process, and safety information is selected through file field slices of the construction project data;
s1-4, replying a confirmation message to the cloud platform by the access control function on the construction engineering data which passes the node authentication, wherein the message carries a safety information verification code and safety information verification code formed safety file processing format data; when the cloud platform selects at least one piece of slice data according to the content cut by the file field of the construction engineering data requested by each node; the cloud platform sends the security level information accessed into the request information of each node to the slice information of the selected building engineering data, the slice judges whether the node can be accessed into the slice information of the building engineering data according to the request information of the cloud platform to each node, if the node can be accessed into the slice information, the node is processed to form original database information of the building engineering data, confirmation information is formed, and if the slice information is processed into the authentication information of the building engineering data, the confirmed information is returned to the cloud platform.
The S2 includes:
s2-1, building engineering user configuration information in the safety information of the building engineering data is composed of building engineering task state information, building engineering terrain detection state information and construction period statistical state information; transportation flow state information and construction site abnormal behavior information; preparing safety information data by using the engineering budget index statistical information; converting the construction engineering data into cloud platform identification information; the cloud platform analyzes the converted identification information, determines safety information in the construction engineering user configuration information, converts the safety information in the construction engineering user configuration information into information which can be identified by multiple nodes of the cloud platform, and sends the converted identification information to each node; each node sends a response message of the safety information of the construction engineering data; meanwhile, the cloud platform combines the received safety information sent by each node;
s2-2, after the safety information of the building engineering data is received by the cloud platform, firstly verifying the identity and the access authority of the node user, and converting the request message into a request message which can be identified by the cloud platform through authentication; receiving a request message of a current safety certification file which is sent by each node and used for acquiring safety information of the construction engineering data received by the cloud platform; sending a request message of the current security authentication file for acquiring the security information of the construction engineering data received by the cloud platform to each node; receiving a response message which is sent by each node and comprises the current security authentication file; if the current safety certification file of the safety information of the building engineering data received by the cloud platform needs to be certified, sending a request message for acquiring an updated safety certification file of the safety information of the building engineering data received by the cloud platform to each node, and after each node acquires the updated safety certification file of the safety information, feeding the current safety certification file of the safety information back to the cloud platform;
s2-3, each node sends a request message for acquiring the difference between the updated security authentication file of the security information of the construction engineering data received by the cloud platform and the designated security authentication file; sending a request message for the difference between an updated security authentication file of the security information of the construction engineering data received by the cloud platform and a specified security authentication file to each node; receiving a response message sent by each node, wherein the response message comprises the difference between the updated security authentication file and the specified security authentication file; if the updated security authentication file of the security information of the building engineering data received by the cloud platform is different from the specified security authentication file, sending a request for acquiring the difference between the updated security authentication file of the security information and the specified security authentication file to each node, and feeding the difference back to the cloud platform after each node acquires the difference;
s2-4, in the interaction process of each node, hiding the safety information of the building engineering data and carrying out messy code setting, and when each node detects that the response time of the safety information of the building engineering data which is not received by the cloud platform is longer than the threshold value, executing protection on the safety information of the building engineering data and hiding the safety information of the building engineering data; after safety certification protection, detecting that each node does not receive safety information operation of the building engineering data of the cloud platform, judging whether the certification duration is greater than the threshold value, and when detecting that each node is not in a safety information free operation state, regularly requesting each node to receive the building engineering data safety information; when detecting that each node is in a safety information free operation state, reminding each node of protecting the safety information;
s2-5, when the protection condition of the constructional engineering data safety information of each node is a dormant state and the dormancy time of any node is up, judging whether the constructional engineering data safety information of the cloud platform needs to be protected or not by judging whether each node is in the dormant state or not, and when the constructional engineering data safety information is in a free operation state, if the cloud platform and the corresponding node are in the dormant state, stopping transmission of the constructional engineering data safety information, causing safety information blocking and forming safety risks; detecting whether the safety information of the construction engineering data of each node meets a protection removing condition, if so, cancelling the protection of the safety information, and if not, continuing the protection; skipping to a protection operation instruction of the building engineering data safety information, and detecting whether each node is switched to a safety state again; and when each node receives a safety state switching instruction for opening the safety information of the construction engineering data, judging whether the operation instruction of the safety information of the construction engineering is legal or not, if so, switching to the safety state, and if not, continuing the safety information authentication process. In order to ensure that the cloud platform can successfully check the accuracy and the integrity of the building engineering data when acquiring stable safety information, each node protects the safety information in the safety system and performs different judgments in different states, thereby forming a safety interaction mechanism which can be matched between the nodes.
The S3 includes:
s3-1, when the cloud platform initiates a construction engineering data security interaction mechanism request, the cloud platform establishes a security information carrier list of the cloud platform and each node for the safety information of the construction engineering data running on each node and the safety file processing format data running on each node; if the acquired building engineering data security interaction mechanism request is matched with the building engineering data virtual security information carrier list, prompting the cloud platform to pass authentication of the related virtual security information carrier, download an activation instruction and synchronize the activation instruction in the virtual security information carriers of other nodes;
s3-2, prompting each node to select an authentication virtual safety information carrier instruction from the virtual safety information carrier list when the building engineering data safety information is subjected to mutual authentication; when the data interaction is carried out between the authentication data sent to each node by the construction engineering data of the cloud platform and the construction engineering data safety information carriers through the safety channel, the safety channel establishes a connection in a bidirectional identity verification mode, the construction engineering data of the cloud platform is sent to the authentication data of each node, the building engineering data of the cloud platform can be parallelly started to be associated with the virtual safety information carriers indicated in the currently available virtual safety information carrier list, and the number of all corresponding virtual safety information carriers and the parallelly started virtual safety information carriers on the authentication data sent to each node by the construction engineering data of the cloud platform is not more than a preset threshold value;
s3-3, acquiring the virtual safety information carrier list by the construction engineering data safety information: (1) acquiring building engineering task state information, building engineering terrain detection state information, construction period statistical state information, transportation flow state information and construction site abnormal behavior information of a building engineering safety information interaction request initiated by a cloud platform, and acquiring a currently available virtual safety information carrier list through interaction with each node; (2) reading a building engineering data virtual safety information carrier list which is stored in the started virtual safety information carrier and is associated with the cloud platform; matching safety certification information and activating the safety certification information by recording the certification instruction request of the construction engineering data safety information carrier of each node;
s3-4, constructing and initiating a real-time safety interaction authentication request for each node building engineering data target virtual safety information carrier, thereby executing a subsequent safety information interaction process, constructing safety information interaction and initiating a building engineering safety information interaction request of a cloud platform: (1) transmitting the identification number of the target virtual safety information carrier of the constructional engineering data of each node to a cloud platform; (2) the cloud platform returns a response after receiving the identification number of the virtual safety information carrier of the construction engineering data target of each node, and sends out construction engineering data safety interaction authentication elements to each node; (3) and the node which acquires the constructional engineering data safety interaction authentication element responds to the virtual safety information associated with the target virtual safety information carrier, the constructional engineering data safety information interaction ciphertext information is constructed, and the safety information interaction request is transmitted to the cloud platform according to the actual safety information interaction request so as to complete the interaction authentication process.
While embodiments of the invention have been shown and described, it will be understood by those of ordinary skill in the art that: various changes, modifications, substitutions and alterations can be made to the embodiments without departing from the principles and spirit of the invention, the scope of which is defined by the claims and their equivalents.

Claims (1)

1. A working method for carrying out remote security information authentication and identification through a cloud platform is characterized by comprising the following steps:
s1, acquiring the construction engineering data through the cloud platform, and dividing the data of the multiple nodes by using a safety information acquisition method to form an original database of the construction engineering data;
the S1 includes:
s1-1, acquiring the construction engineering data at the cloud platform, performing the safety information collection process to the construction engineering data, setting the safety information collection time interval and sending the authentication command to the cloud platform regularly, thereby obtaining the safety information verification code, transmitting the safety information verification code in a file packet form, forming the safety file processing format data by the safety information verification code in the process of sending the construction engineering data to multiple nodes, storing the loaded safety information verification code in the construction engineering data storage area of each node,
s1-2, extracting file fields in the building engineering data to extract security information keywords from the security file processing format data, wherein the contained security information keywords form a URL (Uniform resource locator) list through security authentication levels, synchronously matching security information keywords with different contents in real time on a cloud platform, and shearing the file fields of the building engineering data to form security information input time and obtain regular response time of the security information, wherein the regular response time is used as set information, node positions made by corresponding building engineering data are appointed in the URL list in the cloud platform, and the extracted security information keywords are continuously optimized and accumulated in the shearing process of the building engineering data through continuously and repeatedly executing the security information keywords;
s1-3, the cloud platform judges all records of the construction engineering data, and if the construction engineering data in all the records are cut successfully, the building process of the construction engineering data original database is completed; if the shearing is not completed, the cloud platform access control function sends security information keyword loading information, the access control function judges whether each node passes the security authentication or not, and if the node passes the security authentication, completion information is sent to the cloud platform; if the building engineering data do not pass the authentication, each node receiving the building engineering data carries out authentication; the access control function authenticates and authorizes each node, if the cloud platform passes the authentication, the construction project data request information is returned to each node in the authentication process, and safety information is selected through file field slices of the construction project data;
s1-4, replying a confirmation message to the cloud platform by the access control function on the construction engineering data which passes the node authentication, wherein the message carries a safety information verification code and safety information verification code formed safety file processing format data; when the cloud platform selects at least one piece of slice data according to the content cut by the file field of the construction engineering data requested by each node; the cloud platform sends the security level information accessed into the request information of each node to the slice information of the selected building engineering data, the slice judges whether the node can be accessed into the slice information of the building engineering data according to the request information of the cloud platform for each node, if the node can be accessed into the slice information, the node is processed to form original database information of the building engineering data, confirmation information is formed, and if the slice information is processed to form authentication information of the building engineering data, the confirmed information is returned to the cloud platform;
s2, after an original database is formed by multi-node collection, a safety information preparation process is carried out for the original database, and a safety interaction mechanism of each node is established;
the S2 includes:
s2-1, for the constructional engineering user configuration information in the safety information of the constructional engineering data, the constructional engineering task state information, the constructional engineering terrain detection state information and the construction period statistical state information are used; transportation flow state information and construction site abnormal behavior information; preparing safety information data by using the engineering budget index statistical information; converting the construction engineering data into cloud platform identification information; the cloud platform analyzes the converted identification information, determines safety information in the construction engineering user configuration information, converts the safety information in the construction engineering user configuration information into information which can be identified by multiple nodes of the cloud platform, and sends the converted identification information to each node; each node sends a response message of the safety information of the construction engineering data; meanwhile, the cloud platform combines the received safety information sent by each node;
s2-2, after the safety information of the construction engineering data is received by the cloud platform, firstly verifying the user identity and the access authority of the node, and converting the request message into a request message which can be identified by the cloud platform through authentication; receiving a request message of a current safety certification file which is sent by each node and used for acquiring safety information of the construction engineering data received by the cloud platform; sending a request message of a current safety certification file for acquiring the safety information of the construction engineering data received by the cloud platform to each node; receiving a response message which is sent by each node and comprises the current security authentication file; if the current safety certification file of the safety information of the building engineering data received by the cloud platform needs to be certified, sending a request message for acquiring an updated safety certification file of the safety information of the building engineering data received by the cloud platform to each node, and after acquiring the updated safety certification file of the safety information, feeding the current safety certification file of the safety information back to the cloud platform by each node;
s2-3, each node sends a request message for acquiring the difference between the updated security authentication file of the security information of the construction engineering data received by the cloud platform and the specified security authentication file; sending a request message for the difference between an updated security authentication file of the security information of the construction engineering data received by the cloud platform and a specified security authentication file to each node; receiving a response message sent by each node and comprising the difference between the updated security authentication file and the specified security authentication file; if the updated security authentication file of the security information of the building engineering data received by the cloud platform is different from the designated security authentication file, sending a request for acquiring the difference between the updated security authentication file of the security information and the designated security authentication file to each node, and after acquiring the difference, feeding the difference back to the cloud platform by each node;
s2-4, in the interaction process of each node, hiding the safety information of the building engineering data and carrying out messy code setting, and when each node detects that the response time length of the safety information of the building engineering data which is not received by the cloud platform is greater than a threshold value, executing protection on the safety information of the building engineering data and hiding the safety information of the building engineering data; after safety certification protection, detecting that each node does not receive safety information operation of the building engineering data of the cloud platform, judging whether the certification duration is greater than the threshold value, and when detecting that each node is not in a safety information free operation state, regularly requesting each node to receive the building engineering data safety information; when each node is detected to be in a safety information free operation state, reminding each node of protecting the safety information;
s2-5, when the protection condition of the constructional engineering data safety information of each node is a dormant state and the dormancy time of any node is up, judging whether the constructional engineering data safety information of the cloud platform needs to be protected or not by judging whether each node is in the dormant state or not, and when the constructional engineering data safety information is in a free operation state, if the cloud platform and the corresponding node are in the dormant state, stopping transmission of the constructional engineering data safety information, causing safety information blocking and forming safety risks; detecting whether the safety information of the building engineering data of each node meets the deprotection condition, if so, canceling the protection of the safety information, and if not, continuing the protection; skipping to a protection operation instruction of the building engineering data safety information, and detecting whether each node is switched to a safety state again; when each node receives a safety state switching instruction for opening the safety information of the construction engineering data, judging whether an operation instruction of the safety information of the construction engineering is legal or not, if so, switching to a safety state, and if not, continuing a safety information authentication process;
s3, providing information identification for the building engineering data through a multi-node safety interaction mechanism, and performing an interaction authentication process through safety information so as to provide safety guarantee for the building engineering data;
the S3 includes:
s3-1, when the cloud platform initiates a construction engineering data security interaction mechanism request, for the security information of construction engineering data running on each node, processing format data of security files running on each node, and establishing a security information carrier list of the cloud platform and each node; if the acquired building engineering data security interaction mechanism request is matched with the building engineering data virtual security information carrier list, prompting the cloud platform to pass through the authentication of the relevant virtual security information carriers, download activation instructions and synchronize the activation instructions in the virtual security information carriers of other nodes;
s3-2, prompting each node to select an authentication virtual safety information carrier instruction from the virtual safety information carrier list when the building engineering data safety information is subjected to mutual authentication; when the data interaction is carried out between the authentication data sent to each node by the construction engineering data of the cloud platform and the construction engineering data safety information carriers through the safety channel, the safety channel establishes a connection in a bidirectional identity verification mode, the construction engineering data of the cloud platform is sent to the authentication data of each node, the connection with the virtual safety information carriers indicated in the currently available virtual safety information carrier list can be started in parallel, and the number of all the corresponding virtual safety information carriers and the number of the parallelly started virtual safety information carriers, which are sent to the authentication data of each node by the construction engineering data of the cloud platform, do not exceed a preset threshold value;
s3-3, acquiring a virtual safety information carrier list of the construction engineering data safety information: (1) acquiring building engineering task state information, building engineering terrain detection state information, construction period statistics state information, transportation flow state information and construction site abnormal behavior information of a building engineering safety information interaction request initiated by a cloud platform, and acquiring a currently available virtual safety information carrier list through interaction with each node; (2) reading a building engineering data virtual safety information carrier list which is stored in the started virtual safety information carrier and is associated with the cloud platform; matching safety certification information and activating the safety certification information by recording the certification instruction request of the construction engineering data safety information carrier of each node;
s3-4, constructing and initiating a real-time safety interaction authentication request for each node building engineering data target virtual safety information carrier, thereby executing a subsequent safety information interaction process, constructing safety information interaction and initiating a building engineering safety information interaction request of a cloud platform: (1) transmitting the identification number of the virtual safety information carrier of each node building engineering data target to a cloud platform; (2) the cloud platform returns a response after receiving the identification number of the building engineering data target virtual safety information carrier of each node, and sends a building engineering data safety interaction authentication element to each node; (3) and the nodes which acquire the building engineering data security interaction authentication elements respond to the virtual security information associated with the target virtual security information carrier, construct building engineering data security information interaction ciphertext information, and transmit the security information interaction request to the cloud platform according to an actual security information interaction request so as to complete the interaction authentication process.
CN202011084574.3A 2020-10-12 2020-10-12 Working method for carrying out remote safety information authentication and identification through cloud platform Active CN112422504B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011084574.3A CN112422504B (en) 2020-10-12 2020-10-12 Working method for carrying out remote safety information authentication and identification through cloud platform

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011084574.3A CN112422504B (en) 2020-10-12 2020-10-12 Working method for carrying out remote safety information authentication and identification through cloud platform

Publications (2)

Publication Number Publication Date
CN112422504A CN112422504A (en) 2021-02-26
CN112422504B true CN112422504B (en) 2022-07-15

Family

ID=74854903

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011084574.3A Active CN112422504B (en) 2020-10-12 2020-10-12 Working method for carrying out remote safety information authentication and identification through cloud platform

Country Status (1)

Country Link
CN (1) CN112422504B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN118250101A (en) * 2024-05-29 2024-06-25 飞腾信息技术有限公司 Cloud platform safety control method and device, processor, cloud platform, storage medium and product

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2731041A1 (en) * 2012-11-08 2014-05-14 CompuGroup Medical AG Computer system for storing and retrieval of encrypted data items, client computer, computer program product and computer-implemented method
CN106209378A (en) * 2016-07-06 2016-12-07 中国银联股份有限公司 Safety information interaction method based on virtual secure information carrier
CN107767296A (en) * 2017-10-23 2018-03-06 青岛理工大学 Urban building cloud platform
CN208334944U (en) * 2017-09-21 2019-01-04 金军民 A kind of field farmland agricultural data acquisition and analysis system
CN110532312A (en) * 2019-08-28 2019-12-03 上海仪电智能科技有限公司 A kind of industry interconnection cloud platform system based on big data
CN110913004A (en) * 2019-11-28 2020-03-24 乌鲁木齐明华智能电子科技有限公司 Data security exchange method based on cloud platform

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2731041A1 (en) * 2012-11-08 2014-05-14 CompuGroup Medical AG Computer system for storing and retrieval of encrypted data items, client computer, computer program product and computer-implemented method
CN106209378A (en) * 2016-07-06 2016-12-07 中国银联股份有限公司 Safety information interaction method based on virtual secure information carrier
CN208334944U (en) * 2017-09-21 2019-01-04 金军民 A kind of field farmland agricultural data acquisition and analysis system
CN107767296A (en) * 2017-10-23 2018-03-06 青岛理工大学 Urban building cloud platform
CN110532312A (en) * 2019-08-28 2019-12-03 上海仪电智能科技有限公司 A kind of industry interconnection cloud platform system based on big data
CN110913004A (en) * 2019-11-28 2020-03-24 乌鲁木齐明华智能电子科技有限公司 Data security exchange method based on cloud platform

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
基于云平台的企业数据安全研究与保护;瞿飞;《中国优秀硕士学位论文全文数据库(电子期刊)》;20160815;全文 *

Also Published As

Publication number Publication date
CN112422504A (en) 2021-02-26

Similar Documents

Publication Publication Date Title
CN112714193A (en) Community data processing system, method, device and equipment based on Internet of things platform
CN105100708A (en) Request processing method and device
CN110096996B (en) Biological information identification method, device, terminal, system and storage medium
CN104113519A (en) Network attack detection method and device thereof
EP2849068A1 (en) Distributed events in an access control system
CN104751032A (en) Authentication method and authentication device
US11995734B2 (en) Auditing recorded data from a recording device
CN102045192A (en) Apparatus and system for estimating network configuration
CN109067881B (en) Remote authorization method, device, equipment and storage medium thereof
CN112422504B (en) Working method for carrying out remote safety information authentication and identification through cloud platform
CN109076011A (en) Relay
CN109606151B (en) Automatic charging method and system based on cloud optimization scheduling
CN111401844A (en) Data sharing cooperative office method and data sharing platform based on Internet of things
CN111930599B (en) Operation and maintenance data processing method and device of cloud service system and storage medium
CN116418587A (en) Data cross-domain switching behavior audit trail method and data cross-domain switching system
CN113507691A (en) Information pushing system and method based on power distribution network cross-region service
EP2916616A2 (en) M2m gateway device and applying method thereof
CN117574422A (en) Intelligent contract blockchain processing method and system based on consensus algorithm
CN108924086A (en) A kind of host information acquisition method based on TSM Security Agent
CN116546025B (en) Cloud computing-based edge data management system
CN112995130A (en) Electric power thing networking data transmission system
CN112105003A (en) Data synchronization system, method and device of intelligent door lock and readable storage medium
CN104994225B (en) A kind of short message sending control method and short message transmission control device
CN111858098B (en) Data exchange method based on mass data
CN112861159A (en) Range-based permission determination method and system in intelligent education platform

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant