CN112600709A - Management system for local area network terminal and use method - Google Patents

Management system for local area network terminal and use method Download PDF

Info

Publication number
CN112600709A
CN112600709A CN202011473165.2A CN202011473165A CN112600709A CN 112600709 A CN112600709 A CN 112600709A CN 202011473165 A CN202011473165 A CN 202011473165A CN 112600709 A CN112600709 A CN 112600709A
Authority
CN
China
Prior art keywords
module
user terminal
server
client
terminal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202011473165.2A
Other languages
Chinese (zh)
Inventor
徐驰
吕小兵
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Xian Aircraft Industry Group Co Ltd
Original Assignee
Xian Aircraft Industry Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xian Aircraft Industry Group Co Ltd filed Critical Xian Aircraft Industry Group Co Ltd
Priority to CN202011473165.2A priority Critical patent/CN112600709A/en
Publication of CN112600709A publication Critical patent/CN112600709A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0803Configuration setting
    • H04L41/0823Configuration setting characterised by the purposes of a change of settings, e.g. optimising configuration for enhancing reliability
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/0654Management of faults, events, alarms or notifications using network fault recovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/55Push-based network services

Abstract

A management system and a using method for a local area network terminal comprise a server and a plurality of clients, wherein the server comprises a strategy maintenance module, a parameter setting module, a notice issuing module and a statistical analysis module, and the clients comprise a compliance checking module, a network fault detection module and an operation and maintenance auxiliary module. Issuing a strategy standard to the client through the server, and executing inspection by the client through a compliance inspection module and feeding the inspection and treatment results back to a statistical analysis module of the server; the client can also display the basic state information of the terminal and the network condition to the user terminal and provide the system basic environment repairing function for the user terminal. The invention can realize the implementation and control of the safety state of the local area network terminal based on the windows operating system environment, is suitable for the daily compliance management of the local area network, and can effectively improve the safety of the local area network.

Description

Management system for local area network terminal and use method
Technical Field
The invention relates to a network security technology, in particular to a management system aiming at the compliance check and operation and maintenance assistance of a local area network terminal and a using method thereof.
Background
First, the security and compliance of lan terminals are particularly important in the context of increasingly severe information security and cyber security risks. Network management of enterprises and public institutions and various groups puts strict requirements on compliance check of terminals, such as: the terminal storage part, the operating system, the corresponding security product and the terminal in a controllable state must be installed, the terminal must be added with a domain, the terminal account must not have security requirements such as administrator authority, and the like.
In order to meet the requirements, a large amount of manpower and time are needed to perform periodic inspection work on all local area network terminals, the phenomenon of violation cannot be fundamentally avoided even if the inspection force is large and frequent, and the number of the terminals is increased along with the development of information-based construction, so that the problem of the phenomenon cannot be solved by a manual mode. Moreover, as the size of the lan becomes larger and larger along with the development of informatization, when a network problem occurs at a user terminal, a user is difficult to solve the problem in the first time, a large amount of manpower is wasted, and a professional is arranged to perform on-site troubleshooting and processing, so how to solve the problem of daily operation and maintenance of the lan terminal is also an important task which needs to be faced currently and in a period of time in the future.
In order to meet the requirements, the traditional scheme mostly adopts terminal access type and host auditing software to verify the network setting, antivirus software setting and patch setting of the user terminal and modify the configuration of the non-compliant terminal. Although the mode realizes a certain degree of control on the user terminal in the local area network access process, for a complex local area network environment, the traditional scheme has the defects of not strict control on the access process, not rich and standard check elements (such as network access software, Chinese patent publication specification 'a network access control system' CN111131297A) or has the defects of not controlling the network access behavior of an illegal terminal because of the emphasis on behavior audit after network access (such as host audit software, Chinese patent publication specification 'a client policy processing method of a host audit system' CN 111131170A).
Although the two management modes realize the terminal access and audit management functions to a certain extent, the two management modes only solve the specific compliance of the user terminal, have no universality, cannot meet the more strict management requirements of terminal safety monitoring and blocking for relevant service processes, antivirus software versions and virus library versions which must be operated by the terminal, a CPU, a memory, a display card, a hard disk, a mainboard and the like of the user terminal, do not have the functions of network fault detection, system basic environment restoration and the like, and are mainly embodied in that:
(1) terminal admission software: and the safety access control module is used for controlling and detecting the input information of the client terminal and judging whether the client terminal is allowed to access or not according to the detection result and the access rule in the safety access control database. The access control mode only detects and compares the IP and Mac information of the user terminal base, and the detection means is single and lacks of detecting the state of the storage part of the user terminal;
(2) host audit software: and (3) detecting the IP/Mac binding condition, the power-on and power-off time period and the patch updating condition of the user terminal which is accessed to the network in a polling mode by adopting a client architecture and correcting the configuration which does not meet the requirement. The method has insufficient control on the network access behaviors of the illegal terminal, can not block the network access behaviors of the illegal user terminal in time, and simultaneously does not have operation and maintenance auxiliary functions such as network fault detection and the like;
(3) the two management modes also do not have the operation and maintenance auxiliary functions of network fault detection, system foundation environment restoration and the like, a large amount of manpower and time are still consumed in daily work to manage the compliance of the terminal, and meanwhile, the strategy maintenance flexibility is not enough for relevant management and control elements of information safety management and control.
In summary, the above solutions cannot meet the requirement for compliance management of the lan terminal in the current environment, and further cannot meet the requirement for efficient operation and maintenance management. A management system meeting the management requirements of the local area network terminal in the aspects of compliance, intellectualization, high efficiency, closed-loop management and the like in daily operation and maintenance is urgently needed.
Disclosure of Invention
The invention aims to provide a management system and a using method for a local area network terminal.
A management system for a local area network terminal comprises a server and a plurality of clients, wherein the server is positioned on a server, and the clients are arranged on a user terminal, and the management system is characterized in that the server comprises a strategy maintenance module, a parameter setting module, an announcement publishing module and a statistical analysis module, and the strategy maintenance module can perform reference strategy maintenance for one or more user terminals and comprises the following steps: the method comprises the following steps of performing actions after policy specification, policy standard and violation, and setting parameters of a management system by a parameter setting module, wherein the actions comprise: the system comprises a communication port, a heartbeat interval, an announcement issuing module, a statistical analysis module and a heartbeat interval, wherein the announcement issuing module can perform centralized issuing of operation and maintenance announcements, and the statistical analysis module can perform statistics on the compliance of a user terminal and display a statistical result; the client side runs in a silent mode at a user terminal background, and comprises a compliance checking module, a network fault detection module and an operation and maintenance auxiliary module, wherein the compliance checking module is used for checking the user terminal in real time according to a strategy standard issued by a server side strategy maintenance module, presenting a detection result to the user terminal and returning the detection result to the server side, the network fault detection module comprises a user terminal network fault checking function, and the operation and maintenance auxiliary module comprises a user terminal basic environment repairing function and an operation and maintenance announcement pushing function.
The compliance inspection module of the client comprises a heartbeat communication unit, a service process acquisition unit, a antivirus software acquisition unit, a hardware acquisition unit, a strategy comparison unit and a user process management unit, the compliance inspection module inspects the user terminal in real time according to the strategy standard of the server, executes action treatment on the user terminal which does not conform to the strategy standard according to violation set by the strategy maintenance module of the server, prompts or isolates the user terminal, and feeds inspection and treatment results back to the statistical analysis module of the server.
The compliance checking module of the client checks the user terminal in real time according to the policy standard of the server, and the checking content comprises: and checking whether the storage component of the user terminal is changed in real time, such as: hard disk, mainboard, memory, display card, carry out real-time check to user terminal's installation and software of operation, if: process check, service check, check the adding domain condition of the user terminal, such as: and checking whether to add a domain or not and checking the updating condition of antivirus software of the user terminal.
The network fault detection module of the client comprises a physical connectivity detection unit, a loop connectivity detection unit, an IP configuration detection unit, a DNS configuration detection unit, a PING packet detection unit and an HTTP access detection unit, and can check the physical connectivity of a user terminal network, the loop address connectivity of a host, the configuration correctness of an IP address, the correctness of DNS configuration, the correctness of gateway address configuration, the packet loss rate of a PING packet and the connectivity of an HTTP 80 port and feed back the check result to a terminal user through the client.
The operation and maintenance auxiliary module of the client comprises a registry repairing unit, a system environment variable repairing unit and a system key service repairing unit, and the registry, the system environment variable and the system key service of the basic environment of the user terminal system are repaired.
The application also provides a using method of the management system for the local area network terminal, the management system for the compliance check and the operation and maintenance assistance of the local area network terminal is used, the server detects the user terminal provided with the client through heartbeat, the policy standard is issued to the user terminal provided with the client, after the user terminal client receives the policy standard, the compliance check module of the client carries out the compliance check on the user terminal according to the policy standard, the action disposal is carried out on the user terminal which does not accord with the policy standard according to the violation set by the server policy maintenance module, the user terminal is prompted or isolated, and meanwhile, the check and disposal results are fed back to the statistical analysis module of the server.
The beneficial effect of this application lies in:
(1) the safety control level of the local area network terminal is improved, and the real-time detection of the compliance of the user terminal is realized;
(2) the operation and maintenance efficiency is improved, and the working intensity of daily operation and maintenance safety control is effectively reduced;
(3) the problem that the traditional mode in the market can not monitor the state of the storage components (such as a hard disk, a mainboard, a memory, a display card and the like) of the user terminal is solved.
The present application is described in further detail below with reference to the accompanying drawings of embodiments.
Drawings
Fig. 1 is an architecture diagram of a terminal management system for a local area network according to the present invention.
Detailed Description
The management system for the local area network terminal comprises a server and a client, and the server and the client are matched to realize the functions of the local area network terminal in compliance check and operation and maintenance assistance. The server is located on the server, the client is deployed on the user terminal, the server is used for issuing an inspection strategy to the client and collecting an inspection result of the client, and the client is used for performing real-time compliance inspection on the user terminal and providing functions of network fault detection, system basic environment repair and the like.
The service terminal part is provided with a strategy maintenance module, a parameter setting module, an announcement publishing module, a statistical analysis module and the like. The policy maintenance module can perform benchmark policy maintenance for one or more user terminals, and comprises: policy specification, policy criteria, execute actions after violation, etc. The parameter setting module can set parameters of the management system, and comprises the following steps: communication port, heartbeat interval, cycle detection time, etc. The announcement issuing module can perform centralized issuing of the operation and maintenance announcements. The statistical analysis module can perform statistics on the compliance of the user terminal and display the statistical result.
The client part can run in a silent mode in the background of the user terminal, and has three functional modules: (1) and the compliance checking module is used for checking the user terminal in real time according to the policy standard issued by the server policy maintenance module, and presenting the checking result to the user terminal and returning the checking result to the server. (2) And the network fault detection module comprises a user terminal network fault checking function. (3) And the operation and maintenance auxiliary module comprises a user terminal basic environment restoration function, an operation and maintenance announcement pushing function and the like.
The compliance checking module of the client comprises a heartbeat communication unit, a service process obtaining unit, a antivirus software obtaining unit, a hardware obtaining unit, a strategy comparison unit and a user process management unit, and the compliance checking module carries out real-time checking on the user terminal according to the strategy standard of the server, and comprises the following steps: and checking whether the storage component is changed in real time, such as: hard disk, mainboard, memory, video card, etc.; and (3) performing real-time check on software installed and operated by the user terminal, such as: process check, service check, etc.; checking the domain adding condition of the user terminal, such as: whether to add a domain, domain name checking, etc.; and checking the update condition of the antivirus software. The method comprises the steps that action disposal is carried out on a user terminal which does not meet a strategy standard according to violation made by a server strategy maintenance module, when the execution action after violation is isolated after violation, the server informs a network access control system to isolate the user terminal, and an illegal item is prompted on a client UI (user interface); when the execution action is an alarm and is recorded after violation, only prompting an rectification item on a UI (user interface) of the client; meanwhile, the client feeds the inspection and treatment results back to the statistical analysis module of the server.
The network fault detection module of the client comprises a physical connectivity detection unit, a loop connectivity detection unit, an IP configuration detection unit, a DNS configuration detection unit, a PING packet detection unit and an HTTP access detection unit, and can check the physical connectivity of a user terminal network, the loop address connectivity of a host, the configuration correctness of an IP address, the correctness of DNS configuration, the correctness of gateway address configuration, the packet loss rate of a PING packet, the connectivity of an HTTP 80 port and the like and feed back the check result to a terminal user through a client UI interface.
The operation and maintenance auxiliary module of the client comprises a registry repairing unit, a system environment variable repairing unit and a system key service repairing unit, and can repair the registry, the system environment variable and the system key service of the basic environment of the user terminal system.
The application also provides a use method of the management system for the compliance check and the operation and maintenance assistance of the local area network terminal, the management system for the compliance check and the operation and maintenance assistance of the local area network terminal is used, the server detects the user terminal provided with the client through heartbeat, the policy standard is issued to the user terminal provided with the client, after the client of the user terminal receives the policy standard, the compliance check module of the client checks the compliance of the user terminal according to the policy standard, the action disposal is executed for the user terminal not meeting the policy standard after violation made by the policy maintenance module of the server, the prompt or isolation is carried out for the user terminal, and meanwhile, the check and disposal result is fed back to the statistical analysis module of the server.
In order to make the original features, technical means and achievement objects of the invention easy to understand, the technical principle of the invention is further explained as follows:
the technical architecture principle is as follows (see the attached figure 1):
(1) deploying server software to a server, setting policy standards of a policy maintenance module and executing actions after violation according to the management requirements of a local area network terminal, defining indexes such as a communication port, a heartbeat interval and cycle detection time of a parameter setting module, and storing the indexes in a database.
(2) The user terminal accesses the server through the network to download and install the client software, and the user terminal is allowed to access the normal service network only if the client software is installed and the user terminal passes the check of the compliance check module.
(3) After the user terminal installs the client, the server can display the installation list. The administrator of the management system can realize the unified management, the compliance detection and the running state analysis and presentation of the user terminal through the Web interface of the server.
(4) When a user logs in a terminal, a client engine program establishes a user process according to a logged-in user.
(5) The client (user process) on the user terminal checks in real time according to the policy standard issued by the server, if illegal contents exist, the client alarms the user and feeds back data to the server through a self-defined communication port, and the server can analyze and display related data.
(6) When the user terminal has network fault, the network fault checking module of the client can be operated. And informing a user terminal user or other professionals of the network fault detection result to provide a judgment basis for fault treatment.
(7) When the user terminal is abnormal in operation due to the fact that the user terminal changes a registry, system environment variables, system key services and the like in daily use, the operation and maintenance auxiliary module of the client can be operated to repair the system basic environment diagnosed by the user, and the system basic environment of the user terminal is recovered.
The technical timing principle is as follows:
(1) after the user terminal is installed with the client, when the local area network is required to be accessed, the client can automatically initiate a detection request to the server and inform the server of the time of active cyclic detection after the terminal successfully accesses the network, so that not only is strict detection of the user terminal when the user terminal accesses the network realized, but also cyclic detection can be carried out on the terminal in the local area network, and the non-compliant terminal is found and isolated and blocked in time.
(2) After the server receives the request of the client, it replies the conditions that the terminal should be allowed to access the network according to the policy standard content set by the policy maintenance module, and replies the cycle request time for confirming the client.
(3) And after the client side obtains the detection standard content, the client side immediately initiates detection, and if the client side does not accord with the detection standard content, the client side immediately informs the server side to execute action disposal according to violation.
(4) The user terminal can adjust the compliance according to the requirement, and can be in compliance and authorize to access the local area network at the next polling detection after the compliance.
After the user terminal normally accesses the network, when the cyclic detection time is up, the client communicates with the server to update the strategy standard and the cyclic detection time, and the technical time sequence is repeated.

Claims (6)

1. A management system for a local area network terminal comprises a server and a plurality of clients, wherein the server is positioned on a server, and the clients are arranged on a user terminal, and the management system is characterized in that the server comprises a strategy maintenance module, a parameter setting module, an announcement publishing module and a statistical analysis module, and the strategy maintenance module can perform reference strategy maintenance for one or more user terminals and comprises the following steps: the method comprises the following steps of performing actions after policy specification, policy standard and violation, and setting parameters of a management system by a parameter setting module, wherein the actions comprise: the system comprises a communication port, a heartbeat interval, an announcement issuing module, a statistical analysis module and a heartbeat interval, wherein the announcement issuing module can perform centralized issuing of operation and maintenance announcements, and the statistical analysis module can perform statistics on the compliance of a user terminal and display a statistical result; the client side runs in a silent mode at a user terminal background, and comprises a compliance checking module, a network fault detection module and an operation and maintenance auxiliary module, wherein the compliance checking module is used for checking the user terminal in real time according to a strategy standard issued by a server side strategy maintenance module, presenting a detection result to the user terminal and returning the detection result to the server side, the network fault detection module comprises a user terminal network fault checking function, and the operation and maintenance auxiliary module comprises a user terminal basic environment repairing function and an operation and maintenance announcement pushing function.
2. The management system for the lan terminal as claimed in claim 1, wherein the compliance checking module of the client includes a heartbeat communication unit, a service process obtaining unit, a antivirus software obtaining unit, a hardware obtaining unit, a policy comparing unit, and a user process management unit, and the compliance checking module checks the user terminal in real time according to the policy standard of the server, and performs action handling on the user terminal that does not meet the policy standard according to the violation made by the policy maintenance module of the server, and prompts or isolates the user terminal, and feeds back the checking and handling results to the statistical analysis module of the server.
3. The management system for the lan terminal as claimed in claim 2, wherein the compliance checking module of the client checks the ue in real time according to the policy criteria of the server, and the checking content includes: and checking whether the storage component of the user terminal is changed in real time, such as: hard disk, mainboard, memory, display card, carry out real-time check to user terminal's installation and software of operation, if: process check, service check, check the adding domain condition of the user terminal, such as: and checking whether to add a domain or not and checking the updating condition of antivirus software of the user terminal.
4. The management system for the lan terminal of claim 1, wherein the network failure detection module of the client comprises a physical connectivity detection unit, a loop connectivity detection unit, an IP configuration detection unit, a DNS configuration detection unit, a PING packet detection unit, and an HTTP access detection unit, and the network failure detection module can check the physical connectivity of the user terminal network, the host loop address connectivity, the configuration correctness of the IP address, the correctness of the DNS configuration, the correctness of the gateway address configuration, the packet loss rate of the PING packet, and the connectivity of the HTTP 80 port, and feed back the check result to the end user through the client.
5. The management system for the lan terminal as claimed in claim 1, wherein the operation and maintenance auxiliary module of the client includes a registry repair unit, a system environment variable repair unit, and a system key service repair unit, and repairs the registry, the system environment variable, and the system key service of the user terminal system infrastructure.
6. A method for using the management system of the local area network terminal according to claim 1 or 2 or 3 or 4 or 5, wherein the server detects the user terminal with the installed client through heartbeat, sends a policy standard to the user terminal with the installed client, the client of the user terminal receives the policy standard, the compliance checking module of the client checks the compliance of the user terminal according to the policy standard, performs action handling on the user terminal which does not meet the policy standard according to the violation made by the server policy maintenance module, prompts or isolates the user terminal, and feeds back the checking and handling results to the statistical analysis module of the server.
CN202011473165.2A 2020-12-15 2020-12-15 Management system for local area network terminal and use method Pending CN112600709A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011473165.2A CN112600709A (en) 2020-12-15 2020-12-15 Management system for local area network terminal and use method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011473165.2A CN112600709A (en) 2020-12-15 2020-12-15 Management system for local area network terminal and use method

Publications (1)

Publication Number Publication Date
CN112600709A true CN112600709A (en) 2021-04-02

Family

ID=75196518

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011473165.2A Pending CN112600709A (en) 2020-12-15 2020-12-15 Management system for local area network terminal and use method

Country Status (1)

Country Link
CN (1) CN112600709A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115550068A (en) * 2022-11-28 2022-12-30 天津安华易科技发展有限公司 Host log information security audit method
CN116545642A (en) * 2023-01-07 2023-08-04 杭州融至兴科技有限公司 Terminal monitoring management system for specific environment
CN116545642B (en) * 2023-01-07 2024-05-14 杭州融至兴科技有限公司 Terminal monitoring management system for specific environment

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104753887A (en) * 2013-12-31 2015-07-01 中国移动通信集团黑龙江有限公司 Safety control implementation method and system and cloud desktop system
WO2016101638A1 (en) * 2014-12-23 2016-06-30 国家电网公司 Operation management method for electric power system cloud simulation platform
CN107566430A (en) * 2016-06-30 2018-01-09 全球能源互联网研究院 A kind of electric power mobile terminal compliance inspection and policy controlling system
CN108667857A (en) * 2018-08-28 2018-10-16 深信服科技股份有限公司 A kind of security strategy maintaining method and system, server-side, client

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104753887A (en) * 2013-12-31 2015-07-01 中国移动通信集团黑龙江有限公司 Safety control implementation method and system and cloud desktop system
WO2016101638A1 (en) * 2014-12-23 2016-06-30 国家电网公司 Operation management method for electric power system cloud simulation platform
CN107566430A (en) * 2016-06-30 2018-01-09 全球能源互联网研究院 A kind of electric power mobile terminal compliance inspection and policy controlling system
CN108667857A (en) * 2018-08-28 2018-10-16 深信服科技股份有限公司 A kind of security strategy maintaining method and system, server-side, client

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
周佳等: "终端计算机准入系统在泰安供电公司的实施", 《电力信息与通信技术》 *
王广鹏: "企业内网终端安全管理系统的部署与应用", 《数字通信世界》 *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115550068A (en) * 2022-11-28 2022-12-30 天津安华易科技发展有限公司 Host log information security audit method
CN115550068B (en) * 2022-11-28 2023-03-10 天津安华易科技发展有限公司 Safety auditing method for log information of host
CN116545642A (en) * 2023-01-07 2023-08-04 杭州融至兴科技有限公司 Terminal monitoring management system for specific environment
CN116545642B (en) * 2023-01-07 2024-05-14 杭州融至兴科技有限公司 Terminal monitoring management system for specific environment

Similar Documents

Publication Publication Date Title
CN110493195B (en) Network access control method and system
CN107632918B (en) Monitoring system and method for computing storage equipment
US11165808B2 (en) Automated vulnerability assessment with policy-based mitigation
CN104270467B (en) A kind of virtual machine management-control method for mixed cloud
US20080276295A1 (en) Network security scanner for enterprise protection
CN107273748B (en) Method for realizing android system vulnerability detection based on vulnerability poc
US20050060567A1 (en) Embedded system administration
US20050154733A1 (en) Real-time change detection for network systems
CN111698283B (en) Management and control method, device, equipment and storage medium of distributed cluster host
CN111131170A (en) Client policy processing method of host auditing system
CN101719846A (en) Security monitoring method, device and system
CN1320801C (en) Computer auxilary security method and system
CN106911510B (en) Usability monitoring system and method for network access system
CN112600709A (en) Management system for local area network terminal and use method
CN110768963B (en) Trusted security management platform with distributed architecture
CN113965355B (en) Illegal IP (Internet protocol) intra-provincial network plugging method and device based on SOC (system on chip)
US20120072556A1 (en) Method and System for Detecting Network Upgrades
CN108600007B (en) Cloud platform responsibility tracing method and system
KR101233934B1 (en) Integrated Intelligent Security Management System and Method
CN115174563A (en) Driving method for remote operation and maintenance of computer bottom layer
CN101854254A (en) Method for monitoring resource utilization of server
CN206181087U (en) Active leak detecting system towards industrial control system
CN100590569C (en) Computer I/O port control program
Ghaleb et al. A framework architecture for agentless cloud endpoint security monitoring
CN109032647B (en) Software upgrading method based on software monitoring and strategy

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20210402

WD01 Invention patent application deemed withdrawn after publication