CN114448986B - License control method based on MC centralized management system - Google Patents
License control method based on MC centralized management system Download PDFInfo
- Publication number
- CN114448986B CN114448986B CN202210002088.5A CN202210002088A CN114448986B CN 114448986 B CN114448986 B CN 114448986B CN 202210002088 A CN202210002088 A CN 202210002088A CN 114448986 B CN114448986 B CN 114448986B
- Authority
- CN
- China
- Prior art keywords
- license
- centralized management
- management system
- control method
- method based
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 20
- 238000012795 verification Methods 0.000 claims description 5
- 238000013475 authorization Methods 0.000 claims description 4
- 230000007246 mechanism Effects 0.000 abstract description 5
- 238000004891 communication Methods 0.000 abstract description 3
- 238000005516 engineering process Methods 0.000 abstract description 3
- 238000010586 diagram Methods 0.000 description 3
- 230000006872 improvement Effects 0.000 description 2
- 238000007689 inspection Methods 0.000 description 2
- 230000000903 blocking effect Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000013480 data collection Methods 0.000 description 1
- 230000010365 information processing Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0631—Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
Abstract
The invention discloses a License control method based on an MC centralized management system, which manages a plurality of associated subordinate systems or software and hardware by means of a unified identity authentication mechanism by means of a modern network communication technology, realizes real-time sharing of data, has low management cost, flattened information management, rights management and the like, and has the advantages of reducing labor cost, management cost and inquiry question cost. The system can monitor the states of the load balancing devices in a plurality of client networks in real time through a centralized management system, visually display the device system information, manage the license of the load balancing devices in a large scale and perform a keep-alive mechanism.
Description
Technical Field
The invention relates to the technical field of computer information processing, in particular to a License control method based on an MC centralized management system.
Background
Load balancing is a critical component of a high availability network infrastructure, typically used to distribute workload to multiple servers to improve the performance and reliability of websites, applications, databases, or other services. The centralized management is to manage a plurality of subordinate systems or software and hardware related to the centralized management by means of a modern network communication technology through a unified identity authentication mechanism, so that the real-time sharing of data is realized, the management cost is low, the information flattening management is realized, the authority management realizes a plurality of advantages such as data authority management and the like.
At present, a load balancer has a License management function, but needs to manually upload License and periodically maintain and patrol; in order to ensure the load balancing efficiency, a client core network arranges a large number of load balancers, and under the condition that manual inspection is omitted, the client can face the problems of access blocking, server downtime and the like, and one load balancer is required to inspect the problem, so that the labor cost, the management cost and the problem inspection cost are greatly increased; the problems that data collection is not timely, states of a plurality of load balancing devices cannot be monitored in real time and the like are also revealed. Therefore, a License control method based on the MC centralized management system is a problem to be solved.
Disclosure of Invention
The technical problem to be solved by the invention is a License control method based on an MC centralized management system
In order to solve the technical problems, the technical scheme provided by the invention is a License control method based on an MC centralized management system, which comprises the following steps:
step one: generating a unique serial number of the centralized management system and generating a public and private key;
step two: encrypting license information and the serial number by using a public key through an advanced encryption standard in cryptography;
step three: uploading the corresponding license to a centralized management system, and decrypting the license by the centralized management system;
step four: the centralized management platform activates the license for the first time and performs authority authentication on the license every time, and only opens part of the functions of the authority authentication;
step five: binding the load balancing equipment to the centralized management system through the unique ID of the load balancing equipment;
step six: configuring traffic bandwidth selectively for the load equalizer, and issuing license of corresponding bandwidth;
step seven: keep alive is carried out on the load balancing equipment issued with license, and the availability of the equipment is ensured.
As an improvement, the public and private key generation mode in the first step is to adopt an opensl tool.
In the third step, if decryption fails, verification is not passed, license uploading failure is returned, and if correct license expiration date is returned, license bandwidth and other information are displayed.
As an improvement, in the fourth step, if the authorization is terminated or the authentication of the unique serial number fails, the related function is closed, and the device is not available.
Compared with the prior art, the invention has the advantages that: the centralized management is to manage a plurality of subordinate systems or software and hardware related to the system by means of a modern network communication technology through a unified identity authentication mechanism, so that the real-time sharing of data is realized, the management cost is low, the information flattening management is realized, the authority management realizes a plurality of advantages of data authority management and the like. The system can monitor the states of the load balancing devices in a plurality of client networks in real time through a centralized management system, visually display the device system information, manage the license of the load balancing devices in a large scale and perform a keep-alive mechanism.
Drawings
Fig. 1 is a flowchart of a License control method based on the MC centralized management system of the present invention.
Fig. 2 is a schematic diagram of a central management system of a License control method based on an MC central management system according to the present invention.
Fig. 3 is a schematic diagram of a License control method based on the MC centralized management system of the present invention.
Fig. 4 is a License state diagram of a License control method based on the MC centralized management system of the present invention.
Detailed Description
The License control method based on the MC centralized management system is further described in detail below with reference to the accompanying drawings.
1-4, a License control method based on an MC centralized management system comprises the following steps:
step one: generating a unique serial number of the centralized management system and generating a public and private key;
step two: encrypting license information and the serial number by using a public key through an advanced encryption standard in cryptography;
step three: uploading the corresponding license to a centralized management system, and decrypting the license by the centralized management system;
step four: the centralized management platform activates the license for the first time and performs authority authentication on the license every time, and only opens part of the functions of the authority authentication;
step five: binding the load balancing equipment to the centralized management system through the unique ID of the load balancing equipment;
step six: configuring traffic bandwidth selectively for the load equalizer, and issuing license of corresponding bandwidth;
step seven: keep alive is carried out on the load balancing equipment issued with license, and the availability of the equipment is ensured.
The public and private keys are generated in the first step by adopting an opensl tool.
And step three, if decryption fails, the verification is not passed, license uploading fails, and if the license uploading fails, the license bandwidth and other information are displayed by returning the correct and authorized expiration date.
In the fourth step, if the authorization is terminated or the authentication of the unique serial number fails, the related function is closed, and the equipment is not available.
The License control method based on the MC centralized management system comprises the following specific implementation processes:
generating a unique serial number of the centralized management system and generating a public and private key through an opensl tool; encrypting license information and the serial number with a public key by an advanced encryption standard (Advanced Encryption Standard, AES) in cryptography;
uploading the corresponding license to a centralized management system, decrypting the license by the centralized management system, if the decryption fails, the verification is not passed, returning to the failure of license uploading, and if the verification is passed, displaying information such as license bandwidth and the like by returning to the correct and authorized expiration date;
the centralized management platform activates and starts up each time to carry out authority authentication on the license, only opens part of functions of the authority authentication, closes related functions if the authorization is terminated or the authentication of the unique serial number fails, and the equipment is not available;
binding the load balancing equipment to the centralized management system through the unique ID of the load balancing equipment;
configuring traffic bandwidth selectively for the load equalizer, and issuing license of corresponding bandwidth;
keep alive is carried out on the load balancing equipment issued with license, and the availability of the equipment is ensured.
The following conditions are specific to the implementation:
1. installing and deploying MC centralized management system hardware in a client network;
2. the realization network of the large-batch load equalizer and the MC centralized management system is reachable;
3. the load balancer version is MC requirement version and above.
The invention and its embodiments have been described above with no limitation, and the actual construction is not limited to the embodiments of the invention as shown in the drawings. In summary, if one of ordinary skill in the art is informed by this disclosure, a structural manner and an embodiment similar to the technical solution should not be creatively devised without departing from the gist of the present invention.
Claims (4)
1. A License control method based on an MC centralized management system is characterized in that: the method comprises the following steps:
step one: generating a unique serial number of the centralized management system and generating a public and private key;
step two: encrypting license information and the serial number by using a public key through an advanced encryption standard in cryptography;
step three: uploading the corresponding license to a centralized management system, and decrypting the license by the centralized management system;
step four: the centralized management platform activates the license for the first time and performs authority authentication on the license every time, and only opens part of the functions of the authority authentication;
step five: binding the load balancing equipment to the centralized management system through the unique ID of the load balancing equipment;
step six: configuring traffic bandwidth selectively for the load equalizer, and issuing license of corresponding bandwidth;
step seven: keep alive is carried out on the load balancing equipment issued with license, and the availability of the equipment is ensured.
2. The License control method based on the MC centralized management system according to claim 1, wherein: the public and private keys are generated in the first step by adopting an opensl tool.
3. The License control method based on the MC centralized management system according to claim 1, wherein: and step three, if decryption fails, the verification is not passed, license uploading fails, and if the license uploading fails, the license bandwidth and other information are displayed by returning the correct and authorized expiration date.
4. The License control method based on the MC centralized management system according to claim 1, wherein: in the fourth step, if the authorization is terminated or the authentication of the unique serial number fails, the related function is closed, and the equipment is not available.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210002088.5A CN114448986B (en) | 2022-01-04 | 2022-01-04 | License control method based on MC centralized management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210002088.5A CN114448986B (en) | 2022-01-04 | 2022-01-04 | License control method based on MC centralized management system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114448986A CN114448986A (en) | 2022-05-06 |
| CN114448986B true CN114448986B (en) | 2024-03-01 |
Family
ID=81365585
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210002088.5A Active CN114448986B (en) | 2022-01-04 | 2022-01-04 | License control method based on MC centralized management system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114448986B (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103067211A (en) * | 2013-01-25 | 2013-04-24 | 烽火通信科技股份有限公司 | License management and authentication method and system for passive optical network equipment |
| CN103207965A (en) * | 2013-03-13 | 2013-07-17 | 杭州华三通信技术有限公司 | Method and device for License authentication in virtual environment |
| CN108200055A (en) * | 2017-12-29 | 2018-06-22 | 深圳市安佳威视信息技术有限公司 | A kind of software approach of embedded product intellectual property protection |
| US10263789B1 (en) * | 2016-03-28 | 2019-04-16 | Amazon Technologies, Inc. | Auto-generation of security certificate |
| CN110996319A (en) * | 2019-11-01 | 2020-04-10 | 北京握奇智能科技有限公司 | System and method for performing activation authorization management on software service |
| CN111245844A (en) * | 2020-01-14 | 2020-06-05 | 南通先进通信技术研究院有限公司 | Centralized control method based on core network equipment License |
| CN113806786A (en) * | 2021-11-18 | 2021-12-17 | 北京持安科技有限公司 | Software authorization management method, system, equipment and storage medium |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060247057A1 (en) * | 2005-04-28 | 2006-11-02 | Green Anthony E | Logic Interface Engine System and Method |
-
2022
- 2022-01-04 CN CN202210002088.5A patent/CN114448986B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103067211A (en) * | 2013-01-25 | 2013-04-24 | 烽火通信科技股份有限公司 | License management and authentication method and system for passive optical network equipment |
| CN103207965A (en) * | 2013-03-13 | 2013-07-17 | 杭州华三通信技术有限公司 | Method and device for License authentication in virtual environment |
| US10263789B1 (en) * | 2016-03-28 | 2019-04-16 | Amazon Technologies, Inc. | Auto-generation of security certificate |
| CN108200055A (en) * | 2017-12-29 | 2018-06-22 | 深圳市安佳威视信息技术有限公司 | A kind of software approach of embedded product intellectual property protection |
| CN110996319A (en) * | 2019-11-01 | 2020-04-10 | 北京握奇智能科技有限公司 | System and method for performing activation authorization management on software service |
| CN111245844A (en) * | 2020-01-14 | 2020-06-05 | 南通先进通信技术研究院有限公司 | Centralized control method based on core network equipment License |
| CN113806786A (en) * | 2021-11-18 | 2021-12-17 | 北京持安科技有限公司 | Software authorization management method, system, equipment and storage medium |
Non-Patent Citations (1)
| Title |
|---|
| 网格环境中面向按需服务的软件license管理方法;侯正雄;周兴社;王云岚;钟冬;;华中科技大学学报(自然科学版)(第S2期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114448986A (en) | 2022-05-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109639406B (en) | Efficient trust solution method based on block chain and IPFS | |
| CN111930851B (en) | Control data processing method, device, medium and electronic equipment of block chain network | |
| US11153101B2 (en) | Scalable certificate management system architectures | |
| US11005290B2 (en) | Electric grid control system based on peer-to-peer network | |
| JP2023103358A (en) | Secure provisioning and management of devices | |
| EP2037651A1 (en) | Method and system for accessing devices in a secure manner | |
| CN111406260B (en) | Object storage system with secure object replication | |
| CN101366233A (en) | Methods and system for managing security keys within a wireless network | |
| AU2014334842A2 (en) | Method and system for providing a secure secrets proxy | |
| US9325697B2 (en) | Provisioning and managing certificates for accessing secure services in network | |
| CN109523040B (en) | User equipment repair method, server, system and medium capable of protecting privacy | |
| CN105577677A (en) | Remote login method and system based on J2EE | |
| TWI829219B (en) | De-centralized data authorization control system capable of transferring read token from block chain subsystem to data requester device | |
| CN114866346B (en) | Password service platform based on decentralization | |
| US20090185685A1 (en) | Trust session management in host-based authentication | |
| CN111814131A (en) | Method and device for equipment registration and configuration management | |
| CN109547551B (en) | Scientific and technological project dynamic supervision system | |
| CN114448986B (en) | License control method based on MC centralized management system | |
| Balachandran et al. | EDISON: a blockchain-based secure and auditable orchestration framework for multi-domain software defined networks | |
| US20130046989A1 (en) | Digital signature management and verification systems and methods for distributed software | |
| CN114466038B (en) | Communication protection system of electric power thing networking | |
| JP7297861B2 (en) | Extensible certificate management system architecture | |
| Ateeq et al. | Encryption as a service for multi-cloud environment | |
| JP3919519B2 (en) | Client server system | |
| TWI829215B (en) | De-centralized data authorization control system capable of inspecting transfer history of read token to verify activity of read token |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |