CN114584375A - Security protection method and device for streaming media system, platform equipment and storage medium - Google Patents
Security protection method and device for streaming media system, platform equipment and storage medium Download PDFInfo
- Publication number
- CN114584375A CN114584375A CN202210212092.4A CN202210212092A CN114584375A CN 114584375 A CN114584375 A CN 114584375A CN 202210212092 A CN202210212092 A CN 202210212092A CN 114584375 A CN114584375 A CN 114584375A
- Authority
- CN
- China
- Prior art keywords
- streaming media
- media system
- network
- platform
- network structure
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 60
- 238000002955 isolation Methods 0.000 claims abstract description 12
- 238000012545 processing Methods 0.000 claims description 21
- 238000004590 computer program Methods 0.000 claims description 4
- 230000009977 dual effect Effects 0.000 claims 1
- 238000004891 communication Methods 0.000 description 7
- 238000010586 diagram Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 4
- 238000012423 maintenance Methods 0.000 description 3
- 206010033799 Paralysis Diseases 0.000 description 1
- 230000005856 abnormality Effects 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 238000011835 investigation Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000008447 perception Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/08—Error detection or correction by redundancy in data representation, e.g. by using checking codes
- G06F11/10—Adding special bits or symbols to the coded information, e.g. parity check, casting out 9's or 11's
- G06F11/1076—Parity data used in redundant arrays of independent storages, e.g. in RAID systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/14—Error detection or correction of the data by redundancy in operation
- G06F11/1402—Saving, restoring, recovering or retrying
- G06F11/1446—Point-in-time backing up or restoration of persistent data
- G06F11/1448—Management of the data involved in backup or backup restore
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L1/00—Arrangements for detecting or preventing errors in the information received
- H04L1/22—Arrangements for detecting or preventing errors in the information received using redundant apparatus to increase reliability
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
Abstract
The invention discloses a safety protection method, a device, platform equipment and a storage medium of a streaming media system, wherein the safety protection method of the streaming media system comprises the following steps: configuring a platform device in a streaming media system based on a preset safe backup mechanism, wherein the safe backup mechanism comprises: a master backup mechanism and a load sharing mechanism; and performing double-network structure configuration aiming at the platform equipment to enable the interior of the streaming media system to form a double-network structure, and performing network isolation aiming at the streaming media system with the interior of the double-network structure. The invention can effectively improve the overall safety of the streaming media system by considering from two layers of equipment and network of the streaming media system, thereby ensuring the stable and reliable operation of the system.
Description
Technical Field
The present invention relates to the technical field of streaming media systems, and in particular, to a method and an apparatus for security protection of a streaming media system, a platform device in a streaming media system, and a computer storage medium.
Background
Nowadays, a unified service platform is used as a service center of a whole network, and the industry has very high requirements for stable and reliable operation of a system thereof, for example, it is necessary to ensure that the availability of the service platform in any scene of the network reaches more than 99.999%. Based on this, many system developers in the industry are focusing on how to effectively improve the security of the unified service platform, so as to ensure the stable and reliable operation of the system.
Disclosure of Invention
The invention mainly aims to provide a method and a device for protecting the safety of a streaming media system, platform equipment in the streaming media system and a computer storage medium, and aims to effectively improve the safety of the streaming media system so as to ensure the stable and reliable operation of the system.
In order to achieve the above object, the present invention provides a security protection method for a streaming media system, where the security protection method for the streaming media system includes:
configuring a platform device in a streaming media system based on a preset secure backup mechanism, wherein the secure backup mechanism comprises: a master backup mechanism and a load sharing mechanism;
and performing double-network structure configuration aiming at the platform equipment to enable the interior of the streaming media system to form a double-network structure, and performing network isolation aiming at the streaming media system with the interior of the double-network structure.
Further, the method for safeguarding a streaming media system further includes:
judging the load condition of the streaming media system, wherein the load condition comprises: system performance status and network traffic flow values;
and discarding the service to be accessed by the streaming media system according to the load condition, or discarding the service already accessed by the streaming media system according to the load condition.
Further, the step of configuring the dual-network structure for the platform device includes:
the two network cards of the platform device are combined into a working mode of a telecom network card (telecom is a network card binding technology, namely, a plurality of physical network cards on the same server are bound into a virtual network card through software) so as to realize dual-network structure configuration aiming at the platform device, wherein the two network cards are respectively connected with a switch.
Further, the streaming media system includes a plurality of the platform devices, each of the platform devices including: the step of configuring a dual-network structure for the platform device to enable the streaming media system to internally form a dual-network structure includes:
and respectively carrying out dual-network structure configuration on the master equipment and the slave equipment of each platform equipment.
Further, the method for safeguarding a streaming media system further includes:
and carrying out capacity expansion on the streaming media system according to the service processing capacity of the streaming media system.
Further, the streaming media system includes a plurality of clusters, and the step of expanding the capacity of the streaming media system according to the service processing capability of the streaming media system includes:
when the service processing capacity of the streaming media system is monitored to meet a preset capacity expansion condition, the cluster to be added is accessed to the streaming media system, and load configuration is carried out through a preset load balancing server so as to realize capacity expansion of the streaming media system.
In addition, to achieve the above object, the present invention further provides a security device of a streaming media system, where the security device of the streaming media system includes:
a system device security module, configured to configure a platform device in a streaming media system based on a preset security backup mechanism, where the security backup mechanism includes: a master backup mechanism and a load sharing mechanism;
and the system network security module is used for configuring a dual-network structure aiming at the platform equipment so as to enable the interior of the streaming media system to form the dual-network structure, and carrying out network isolation aiming at the streaming media system with the interior of the dual-network structure.
Further, the safety protection device of the streaming media system further comprises:
a system load judgment module, configured to judge a load condition of the streaming media system, where the load condition includes: system performance status and network traffic flow values;
and the overload control module is used for abandoning the service which is about to be accessed by the streaming media system according to the load condition, or abandoning the service which is already accessed by the streaming media system according to the load condition.
When running, each functional module of the safety protection device of the streaming media system of the invention realizes the steps of the safety protection method of the streaming media system.
In addition, to achieve the above object, the present invention further provides a platform device in a streaming media system, where the platform device includes: the system comprises a memory, a processor and a security program stored on the memory and capable of running on the processor, wherein the security program of the streaming media system realizes the steps of the security method of the streaming media system when being executed by the processor.
In addition, to achieve the above object, the present invention further provides a computer storage medium, where a computer program is stored, and when the computer program is executed by a processor, the computer program implements the steps of the security protection method of the streaming media system.
The invention provides a safety protection method and a device of a streaming media system, platform equipment in the streaming media system and a computer storage medium, wherein the safety protection method of the streaming media system comprises the following steps: configuring a platform device in a streaming media system based on a preset secure backup mechanism, wherein the secure backup mechanism comprises: a master backup mechanism and a load sharing mechanism; and performing double-network structure configuration aiming at the platform equipment to enable the interior of the streaming media system to form a double-network structure, and performing network isolation aiming at the streaming media system with the interior of the double-network structure.
The invention considers from two layers of equipment and network of the stream media system, and carries on the related configuration of the main backup mechanism and the load sharing mechanism for the platform equipment facing the concrete service processing, and further carries on the dual-network structure configuration for the platform equipment to make the whole stream media system form the dual-network interface, and after forming the dual-network interface in the whole stream media system, carries on the network isolation to the stream media system, so, the invention can effectively promote the whole safety of the stream media system, thus ensures the stable and reliable operation of the system.
Drawings
Fig. 1 is a schematic structural diagram of the hardware operation of a terminal device according to an embodiment of the present invention;
FIG. 2 is a flow chart illustrating a method for securing a streaming media system according to an embodiment of the present invention;
fig. 3 is a schematic diagram of an application scenario involved in an embodiment of a security protection method for a streaming media system according to the present invention;
fig. 4 is a schematic structural diagram of functional modules of a safety device of a streaming media system according to the present invention.
The objects, features and advantages of the present invention will be further explained with reference to the accompanying drawings.
Detailed Description
It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
As shown in fig. 1, fig. 1 is a schematic structural diagram of a hardware operating environment related to a terminal device according to an embodiment of the present invention.
As shown in fig. 1, the terminal device may include: a processor 1001, such as a CPU, a network interface 1004, a user interface 1003, a memory 1005, a communication bus 1002. Wherein a communication bus 1002 is used to enable connective communication between these components. The user interface 1003 may include a Display (Display), an input unit such as a Keyboard (Keyboard), and the optional user interface 1003 may also include a standard wired interface, a wireless interface. The network interface 1004 may optionally include a standard wired interface, a wireless interface (e.g., WI-FI interface). The memory 1005 may be a non-volatile memory (e.g., Flash memory), a high-speed RAM memory, or a non-volatile memory (e.g., a disk memory). The memory 1005 may alternatively be a storage device separate from the processor 1001.
Those skilled in the art will appreciate that the terminal device configuration shown in fig. 1 is not intended to be limiting of the terminal device and may include more or fewer components than those shown, or some components may be combined, or a different arrangement of components.
As shown in fig. 1, a memory 1005, which is a kind of computer storage medium, may include therein an operating system, a network communication module, a user interface module, and a security program of a streaming media system. The operating system is a program for managing and controlling hardware and software resources of the sample terminal equipment, and supports the running of a security protection program of the streaming media system and other software or programs.
In the terminal apparatus shown in fig. 1, the user interface 1003 is mainly used for data communication with each terminal; the network interface 1004 is mainly used for connecting a background server and performing data communication with the background server; and the processor 1001 may be configured to call a security protection program of the streaming media system stored in the memory 1005, and perform the following operations:
configuring a platform device in a streaming media system based on a preset secure backup mechanism, wherein the secure backup mechanism comprises: a master backup mechanism and a load sharing mechanism;
and performing double-network structure configuration aiming at the platform equipment to enable the interior of the streaming media system to form a double-network structure, and performing network isolation aiming at the streaming media system with the interior of the double-network structure.
Further, the processor 1001 may call a security protection program of the streaming media system stored in the memory 1005, and further perform the following operations:
judging the load condition of the streaming media system, wherein the load condition comprises: system performance status and network traffic flow values;
and discarding the service to be accessed by the streaming media system according to the load condition, or discarding the service already accessed by the streaming media system according to the load condition.
Further, the processor 1001 may call a security protection program of the streaming media system stored in the memory 1005, and further perform the following operations:
and combining the two network cards of the platform equipment into a working mode of a Teaming network card so as to realize the double-network structure configuration aiming at the platform equipment, wherein the two network cards are respectively connected with a switch.
Further, the streaming media system includes a plurality of the platform devices, each of the platform devices including: a master device and a slave device, the processor 1001 may call a security protection program of the streaming media system stored in the memory 1005, and further perform the following operations:
and respectively carrying out dual-network structure configuration on the master equipment and the slave equipment of each platform equipment.
Further, the processor 1001 may call a security protection program of the streaming media system stored in the memory 1005, and further perform the following operations:
and carrying out capacity expansion on the streaming media system according to the service processing capacity of the streaming media system.
Further, the streaming media system includes a plurality of clusters, and the processor 1001 may call a security protection program of the streaming media system stored in the memory 1005, and further perform the following operations:
and when the service processing capacity of the streaming media system is monitored to meet a preset capacity expansion condition, accessing the cluster to be added to the streaming media system and carrying out load configuration through a preset load balancing server so as to realize capacity expansion of the streaming media system.
Based on the above structure, embodiments of the security protection method of the streaming media system of the present invention are provided.
It should be noted that, nowadays, a unified service platform is used as a service center of a whole network, and the industry has very high requirements for stable and reliable operation of the system, for example, it is necessary to ensure that the availability of the service platform in any scene of the network reaches more than 99.999%. Based on this, many system developers in the industry are focusing on how to effectively improve the security of the unified service platform, so as to ensure the stable and reliable operation of the system.
In view of the above phenomena, the present application provides a method for security protection of a streaming media system, which performs related configuration of a primary backup mechanism and a load sharing mechanism for a platform device facing specific service processing, further performs dual-network structure configuration for the platform device to form a dual-network interface inside the whole streaming media system, and performs network isolation for the streaming media system after the dual-network interface is formed inside the whole streaming media system, by considering from two layers of devices and a network of the streaming media system.
Specifically, referring to fig. 2, fig. 2 is a flowchart illustrating a security protection method of a streaming media system according to a first embodiment of the present invention.
The embodiment of the invention provides an embodiment of a security protection method of a streaming media system, which is applied to the terminal equipment. It should be noted that, although a logical order is shown in the flow chart, in some cases, the steps shown or described may be performed in an order different than that shown or described herein.
In this embodiment, the security protection method of the streaming media system of the present invention includes:
step S100, configuring a platform device in a streaming media system based on a preset secure backup mechanism, where the secure backup mechanism includes: a master backup mechanism and a load sharing mechanism;
in this embodiment, the terminal device configures all platform devices in the streaming media system according to the secure backup mechanism, that is, configures each platform device in the streaming media system according to the primary backup mechanism or according to the load sharing mechanism, so that each platform device in the entire streaming media system adopts the primary backup method or the load sharing method.
Specifically, for example, the streaming media system includes: a DB (database), an AS (Application Server), a third party interface machine, a network device router, a firewall, a switch, and so on, and the number of each platform device is plural. The terminal device configures the DB and the third-party interface machine AS a main-standby machine according to a main-backup mechanism, and configures the terminal device AS an "N + 1" load sharing mode according to a load sharing mechanism for the AS.
It should be noted that, in this embodiment, all disk arrays of the database server in the streaming media system use a RAID (Redundant Array of independent Disks) technology, and data is extracted across Disks by using a RAID0+1 (or RAID5) mode, so that each disk has a mirror image disk. Thus, the streaming media system can provide 100% data redundancy. In addition, the network equipment router, the firewall and the switch in the streaming media system are connected in a dual-network dual-plane mode respectively.
Step S200, performing dual-network configuration on the platform device to enable the streaming media system to form a dual-network structure therein, and performing network isolation on the streaming media system with the dual-network structure therein.
In this embodiment, the terminal device performs dual-network structure configuration for each platform device in the streaming media system, so that a dual-network structure is formed inside the whole streaming media system, the dual-network structure mainly considers increasing reliability of network cables, network cards and switches, avoids hidden danger of paralysis due to single-point device failure, and is configured as a dual-network structure in an intranet by using a hardware redundancy mode. Then, the terminal device further adopts a multi-zone VLAN (Virtual Local Area Network) mode for the streaming media system, so that each VLAN adopts an independent device system connection, accesses an intranet zone through a DMZ (discrete zone), and performs intranet interception through an independent firewall, thereby implementing Network isolation for the streaming media system.
Further, in a possible embodiment, in the step S200, the step of "performing dual-network configuration for the platform device" may include:
and combining the two network cards of the platform equipment into a working mode of a Teaming network card so as to realize the double-network structure configuration aiming at the platform equipment, wherein the two network cards are respectively connected with a switch.
In this embodiment, each platform device in the media system is equipped with two network cards, and the terminal device performs dual-network configuration for each platform device in a unified manner or in sequence, that is, for each platform device, the two network cards of the platform device are respectively connected with one switch, so that the two network cards form a working mode of the Teaming network card, and thus, the dual-network configuration for the platform device is realized.
Further, in a possible embodiment, the streaming media system includes a plurality of the platform devices, each of the platform devices includes: the step S200 of "performing dual-network configuration for the platform device to enable the streaming media system to form a dual-network structure inside" includes:
and respectively carrying out dual-network structure configuration on the master equipment and the slave equipment of each platform equipment.
In this example, when the terminal device performs dual-network configuration on a platform device in a streaming media system, since each platform device is a master-slave type, that is, each platform device has a master device and a slave device, the terminal device performs dual-network configuration on the master device and the slave device respectively.
Specifically, for example, the above-mentioned internet structure configuration process is exemplified by a key platform device, namely a server, in a streaming media system. The key platform device in the streaming media system, namely the server, is provided with a master server and a slave server at the same time, the master server and the slave server are respectively provided with two network cards, the terminal device uses the Teaming technology to enable the two network cards on the master server to form a working mode similar to the Teaming network card, the two network cards are respectively connected to two switch switches through double network cables, similarly, the terminal device also uses the Teaming technology to enable the two network cards on the slave server to form a working mode similar to the Teaming network card, and the two network cards are respectively connected to the other two switch switches through the double network cables. Therefore, as the servers are master-standby, when two network cards of the master server or the connected network cables are failed, the standby slave server can take over the work.
In addition, in this embodiment, when the terminal device performs dual-network configuration on the platform device in the streaming media system, two network cards are also configured for an important background node and a service processor node, such as a maintenance desk in the streaming media system, and the two network cards also form a Teaming working mode according to the above process, and the Teaming network cards are also connected to the two switch switches respectively. Therefore, when the main network card fails or the network cable of the network card fails, the system can be switched to the standby network card to work.
In this embodiment, the above-described configuration of each switch employs a redundancy scheme, and a structure in which switches are master and backup to each other is configured, and switches in master and backup to each other need to be connected in cascade.
In this embodiment, the terminal device configures the platform device in the streaming media system to form a dual-network structure inside the system, so that the network card and the network cable of the background node, such as the server and the maintenance platform, in the system can be switched to the standby link when the network card and the network cable fail, and even the standby switch can take over the work when the main switch is powered off or fails. The dual-network structure can greatly enhance the network reliability and avoid communication interruption faults caused by network abnormality.
Further, based on the above first embodiment of the security protection method of the streaming media system of the present invention, a second embodiment of the security protection method of the streaming media system of the present invention is provided, and in this embodiment, the security protection method of the streaming media system of the present invention may further include:
judging the load condition of the streaming media system, wherein the load condition comprises: system performance status and network traffic flow values;
and discarding the service to be accessed by the streaming media system according to the load condition, or discarding the service already accessed by the streaming media system according to the load condition.
In this embodiment, the terminal device performs overload control on the streaming media system in real time based on an overload control principle, that is, by judging the load condition of the whole streaming media system, when the load condition is that the system performance state of the streaming media system reaches a limit or the network traffic flow value of the streaming media system reaches or exceeds a preset traffic, the terminal device protects each module of the whole streaming media system from normal operation in a manner of actively giving up part of traffic by controlling the streaming media system, so as to avoid the phenomena of message congestion, downtime, system restart, and the like.
It should be noted that, in this embodiment, the part of the service that is actively discarded by the streaming media system may be a service that is to be accessed by the streaming media system for processing, or may be a service that is already accessed by the streaming media system but has been overtime for successful processing.
Specifically, for example, when the streaming media system receives a new session sent from the network side, if the terminal device determines that the streaming media system is overloaded at this time, the streaming media system is controlled to determine whether to discard the service according to the ratio of the discarded services. And if the streaming media system determines to abandon the service, sending a release instruction. The distribution of the dropped traffic in the traffic flow should be as even as possible.
In addition, in the present embodiment, the overload control of the terminal device on the streaming media system is mainly divided into two parts, that is, determination of the system load and protection at the time of the system overload. In order to comprehensively, reasonably and accurately judge the load condition of the system, the terminal device considers the system load, the message congestion and the system and specific process resource occupancy rate, so that the corresponding investigation indexes to be performed by the terminal device for the streaming media system are as follows: the CPU occupancy rate of the system, the process message waiting time, the maximum occupancy rate of the system user data area and the occupancy rate of the conversation ID.
Further, based on the above first embodiment of the security protection method of the streaming media system of the present invention, a third embodiment of the security protection method of the streaming media system of the present invention is provided, and in this embodiment, the security protection method of the streaming media system of the present invention may further include:
step S300, performing capacity expansion on the streaming media system according to the service processing capability of the streaming media system.
In this embodiment, in the overall operation and maintenance process of the streaming media system, the terminal device monitors the service processing capability of the streaming media system in real time, so as to further expand the capacity of the streaming media system according to the service processing capability.
It should be noted that, in this embodiment, the streaming media system is designed by using a cluster architecture, so that the streaming media system includes a plurality of clusters, each cluster may be deployed in a centralized manner or in a distributed manner, each cluster is composed of the DB and a plurality of ASs, and centralized access of a SIP (Session initiation Protocol) message and an HTTP (hypertext Transfer Protocol) message of the Internet is controlled by a load balancer respectively.
Further, in a possible embodiment, the step S300 may include:
when the service processing capacity of the streaming media system is monitored to meet a preset capacity expansion condition, the cluster to be added is accessed to the streaming media system, and load configuration is carried out through a preset load balancing server so as to realize capacity expansion of the streaming media system.
In this embodiment, the preset expansion condition is that the service processing capability of a certain cluster in the streaming media system indicates that the DB capability is sufficient and the AS capability is insufficient.
Referring to the application scenario shown in fig. 3, the service processing capability of the terminal device monitored in real time for the streaming media system is realized by load sharing of each cluster in the streaming media system, and thus, when the service capability indicates that the processing capability of a certain cluster is insufficient, the terminal device realizes system capacity expansion by adding a cluster.
It should be noted that, in this embodiment, when the terminal device adds the cluster to be added to the streaming media system, it needs to perform corresponding configuration on the load balancing server at the same time to implement load distribution, so that the streaming media system does not add an IP (Internet Protocol) address and an interface to the outside, and thus the external network and the user do not have any perception.
In addition, referring to fig. 4, an embodiment of the present invention further provides a security device of the streaming media system, where the security device of the streaming media system includes:
a system device security module 10, configured to configure a platform device in a streaming media system based on a preset security backup mechanism, where the security backup mechanism includes: a master backup mechanism and a load sharing mechanism;
a system network security module 20, configured to perform dual-network structure configuration on the platform device, so that a dual-network structure is formed inside the streaming media system, and perform network isolation on the streaming media system with the dual-network structure inside.
Preferably, the safety guard device of the streaming media system further comprises:
a system load judgment module, configured to judge a load condition of the streaming media system, where the load condition includes: system performance status and network traffic flow values;
and the overload control module is used for abandoning the service which is about to be accessed by the streaming media system according to the load condition, or abandoning the service which is already accessed by the streaming media system according to the load condition.
Preferably, the system network security module 20 is further configured to combine the two network cards of the platform device into a working mode of a roaming network card to implement dual-network configuration for the platform device, where the two network cards are respectively connected to one switch.
Preferably, the streaming media system includes a plurality of the platform devices, each of the platform devices including: a master device, a slave device, and a system network security module 20, further configured to perform dual-network configuration for the master device and the slave device of each platform device respectively.
Preferably, the safety guard device of the streaming media system further comprises:
and the system capacity expansion module is used for expanding the capacity of the streaming media system according to the service processing capacity of the streaming media system.
Preferably, the streaming media system includes a plurality of clusters, and the system capacity expansion module is further configured to access the cluster to be added to the streaming media system and perform load configuration through a preset load balancing server to implement capacity expansion of the streaming media system when it is monitored that the service processing capability of the streaming media system meets a preset capacity expansion condition.
The steps implemented by each functional module of the security device of the streaming media system when the controller runs may refer to each embodiment of the security method of the streaming media system of the present invention, and are not described herein again.
In addition, an embodiment of the present invention further provides a platform device in a streaming media system, including: the system comprises a memory, a processor and a security program stored on the memory and capable of running on the processor, wherein the security program of the streaming media system realizes the steps of the security protection method of the streaming media system when being executed by the processor.
The steps implemented when the security protection program of the streaming media system running on the processor is executed may refer to various embodiments of the security protection method of the streaming media system of the present invention, and are not described herein again.
In addition, an embodiment of the present invention further provides a computer storage medium applied to a computer, where the computer storage medium may be a non-volatile computer-readable computer storage medium, and a security program of a streaming media system is stored on the computer storage medium, and when executed by a processor, the method for implementing security protection of the streaming media system as described above is implemented.
The steps implemented when the data storage program running on the processor is executed may refer to various embodiments of the security protection method of the streaming media system, and are not described herein again.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or system that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or system. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or system that comprises the element.
The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.
Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solution of the present invention or portions thereof that contribute to the prior art may be embodied in the form of a software product, where the computer software product is stored in a computer storage medium (e.g., Flash memory, ROM/RAM, magnetic disk, optical disk), and includes several instructions for enabling a controller, which is used for controlling a terminal device (e.g., a mobile phone, a computer, a server, or a network device), to perform data reading and writing operations on the storage medium to execute the method according to the embodiments of the present invention.
The above description is only a preferred embodiment of the present invention, and not intended to limit the scope of the present invention, and all modifications of equivalent structures and equivalent processes, which are made by using the contents of the present specification and the accompanying drawings, or directly or indirectly applied to other related technical fields, are included in the scope of the present invention.
Claims (10)
1. A security protection method of a streaming media system is characterized in that the security protection method of the streaming media system comprises the following steps:
configuring a platform device in a streaming media system based on a preset secure backup mechanism, wherein the secure backup mechanism comprises: a master backup mechanism and a load sharing mechanism;
and performing double-network structure configuration aiming at the platform equipment to enable the interior of the streaming media system to form a double-network structure, and performing network isolation aiming at the streaming media system with the interior of the double-network structure.
2. The method for securing a streaming media system according to claim 1, wherein the method for securing a streaming media system further comprises:
judging the load condition of the streaming media system, wherein the load condition comprises: system performance status and network traffic flow values;
and discarding the service to be accessed by the streaming media system according to the load condition, or discarding the service already accessed by the streaming media system according to the load condition.
3. The method for securing a streaming media system according to claim 1, wherein the step of configuring a dual network structure for the platform device comprises:
and combining the two network cards of the platform equipment into a working mode of a Teaming network card so as to realize the double-network structure configuration aiming at the platform equipment, wherein the two network cards are respectively connected with a switch.
4. A method for securing a streaming media system according to claim 1 or 3, wherein said streaming media system comprises a plurality of said platform devices, each of said platform devices comprising: the step of configuring a dual-network structure for the platform device to enable the streaming media system to internally form a dual-network structure includes:
and respectively carrying out dual-network structure configuration on the master equipment and the slave equipment of each platform equipment.
5. The method for securing a streaming media system according to claim 1, wherein the method for securing a streaming media system further comprises:
and carrying out capacity expansion on the streaming media system according to the service processing capacity of the streaming media system.
6. The method of claim 5, wherein the streaming media system comprises a plurality of clusters, and the step of expanding the capacity of the streaming media system according to the service processing capability of the streaming media system comprises:
when the service processing capacity of the streaming media system is monitored to meet a preset capacity expansion condition, the cluster to be added is accessed to the streaming media system, and load configuration is carried out through a preset load balancing server so as to realize capacity expansion of the streaming media system.
7. A safety protection device of a streaming media system is characterized in that the safety protection device of the streaming media system comprises:
a system device security module, configured to configure a platform device in a streaming media system based on a preset security backup mechanism, where the security backup mechanism includes: a master backup mechanism and a load sharing mechanism;
and the system network security module is used for configuring a dual-network structure aiming at the platform equipment so as to enable the interior of the streaming media system to form the dual-network structure, and carrying out network isolation aiming at the streaming media system with the interior of the dual-network structure.
8. The streaming media system security guard of claim 7, wherein the streaming media system security guard further comprises:
a system load judgment module, configured to judge a load condition of the streaming media system, where the load condition includes: system performance status and network traffic flow values;
and the overload control module is used for abandoning the service which is about to be accessed by the streaming media system according to the load condition, or abandoning the service which is already accessed by the streaming media system according to the load condition.
9. A platform device in a streaming media system, the platform device comprising: memory, processor and a security program stored on the memory and being capable of running on the processor, the security program of the streaming media system implementing the steps of the security method of the streaming media system according to any one of claims 1 to 6 when executed by the processor.
10. A computer storage medium, characterized in that the computer storage medium has stored thereon a computer program which, when being executed by a processor, implements the steps of the method for securing a streaming media system according to any of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210212092.4A CN114584375A (en) | 2022-03-04 | 2022-03-04 | Security protection method and device for streaming media system, platform equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210212092.4A CN114584375A (en) | 2022-03-04 | 2022-03-04 | Security protection method and device for streaming media system, platform equipment and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114584375A true CN114584375A (en) | 2022-06-03 |
Family
ID=81773864
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210212092.4A Pending CN114584375A (en) | 2022-03-04 | 2022-03-04 | Security protection method and device for streaming media system, platform equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114584375A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1527618A (en) * | 2003-03-04 | 2004-09-08 | 深圳市中兴通讯股份有限公司上海第二 | Short message center system with double-network double-plane structure |
| CN101039263A (en) * | 2007-03-01 | 2007-09-19 | 华为技术有限公司 | Method for processing node overload of core network and mobile switch equipment and communication system |
| CN101127726A (en) * | 2007-09-27 | 2008-02-20 | 中兴通讯股份有限公司 | A traffic control method and system based on service priority |
| WO2017035788A1 (en) * | 2015-09-01 | 2017-03-09 | 深圳好视网络科技有限公司 | Streaming media service system |
| US20170339093A1 (en) * | 2016-05-23 | 2017-11-23 | Yahoo! Inc. | Computerized system and method for automatically creating and communicating media streams of digital content |
| CN111314215A (en) * | 2020-02-17 | 2020-06-19 | 华云数据有限公司 | Data message forwarding control method and computing device |
| CN114124667A (en) * | 2021-10-13 | 2022-03-01 | 北京国科天迅科技有限公司 | Dual-network-port redundancy backup method and system |
-
2022
- 2022-03-04 CN CN202210212092.4A patent/CN114584375A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1527618A (en) * | 2003-03-04 | 2004-09-08 | 深圳市中兴通讯股份有限公司上海第二 | Short message center system with double-network double-plane structure |
| CN101039263A (en) * | 2007-03-01 | 2007-09-19 | 华为技术有限公司 | Method for processing node overload of core network and mobile switch equipment and communication system |
| CN101127726A (en) * | 2007-09-27 | 2008-02-20 | 中兴通讯股份有限公司 | A traffic control method and system based on service priority |
| WO2017035788A1 (en) * | 2015-09-01 | 2017-03-09 | 深圳好视网络科技有限公司 | Streaming media service system |
| US20170339093A1 (en) * | 2016-05-23 | 2017-11-23 | Yahoo! Inc. | Computerized system and method for automatically creating and communicating media streams of digital content |
| CN111314215A (en) * | 2020-02-17 | 2020-06-19 | 华云数据有限公司 | Data message forwarding control method and computing device |
| CN114124667A (en) * | 2021-10-13 | 2022-03-01 | 北京国科天迅科技有限公司 | Dual-network-port redundancy backup method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107231221B (en) | Method, device and system for controlling service flow among data centers | |
| JP6047577B2 (en) | System and method for providing load balancing and data compression flexibility in a traffic director environment | |
| EP2908470B1 (en) | Method, system, device, controller, and measurement device for controlling traffic measurement | |
| CN102075556B (en) | Method for designing service architecture with large-scale loading capacity | |
| US8670422B2 (en) | System and method for sending and receiving packets | |
| US8984114B2 (en) | Dynamic session migration between network security gateways | |
| US9460274B1 (en) | Distributing and sharing licenses across network devices in a virtual private network (VPN) | |
| CN112398689A (en) | Network recovery method and device, storage medium and electronic equipment | |
| JP7348983B2 (en) | Load balancing systems, methods, devices, electronic devices and storage media | |
| KR101678612B1 (en) | Method and System for providing Dynamic Policy Application, Load-Balancing, and failover by dynamically controlling Proxy-Selector and Proxy configuration in each Managed End-Device | |
| WO2014146541A1 (en) | Cdn and network convergence system, scheduling module selection method and computer storage medium | |
| US7519855B2 (en) | Method and system for distributing data processing units in a communication network | |
| WO2009152700A1 (en) | Method, system and transfer device for managing the network device port status | |
| JP4864210B2 (en) | Work group server implementation method and apparatus | |
| CN108366087B (en) | ISCSI service realization method and device based on distributed file system | |
| US20090316572A1 (en) | Method and system for managing port statuses of a network device and relay device | |
| US8966606B2 (en) | Apparatus and security system for data loss prevention, and operating method of data loss prevention apparatus | |
| CN114584375A (en) | Security protection method and device for streaming media system, platform equipment and storage medium | |
| CN101227378B (en) | Communication service establishing method based on network storage and storage device thereof | |
| CN101202658A (en) | System and method for service take-over of multi-host system | |
| CN104375889B (en) | A kind of Web layers switching system and method | |
| WO2021120778A1 (en) | Method, apparatus, and system for linking vrrp and service interface, and storage apparatus | |
| CN112953932B (en) | Identity authentication gateway integration design method and system based on CA certificate | |
| CN111614763B (en) | Method, equipment and storage medium for dynamically adjusting load of application server | |
| CN113132137B (en) | Multiple virtual network system for guaranteeing communication and implementation method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |