CN114726722A - Edge cloud collaborative baseline verification and configuration updating method, system and storage medium - Google Patents
Edge cloud collaborative baseline verification and configuration updating method, system and storage medium Download PDFInfo
- Publication number
- CN114726722A CN114726722A CN202210334442.4A CN202210334442A CN114726722A CN 114726722 A CN114726722 A CN 114726722A CN 202210334442 A CN202210334442 A CN 202210334442A CN 114726722 A CN114726722 A CN 114726722A
- Authority
- CN
- China
- Prior art keywords
- baseline
- configuration
- cloud server
- terminal equipment
- baseline configuration
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000012795 verification Methods 0.000 title claims abstract description 69
- 238000000034 method Methods 0.000 title claims abstract description 65
- 230000008859 change Effects 0.000 description 9
- 241000700605 Viruses Species 0.000 description 6
- 238000010586 diagram Methods 0.000 description 6
- 238000012546 transfer Methods 0.000 description 6
- 230000006870 function Effects 0.000 description 3
- 230000002159 abnormal effect Effects 0.000 description 2
- 238000004891 communication Methods 0.000 description 2
- 238000009434 installation Methods 0.000 description 2
- 239000000463 material Substances 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0813—Configuration setting characterised by the conditions triggering a change of settings
- H04L41/0816—Configuration setting characterised by the conditions triggering a change of settings the condition being an adaptation, e.g. in response to network events
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0631—Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/085—Retrieval of network configuration; Tracking network configuration history
- H04L41/0853—Retrieval of network configuration; Tracking network configuration history by actively collecting configuration information or by backing up configuration information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- Computing Systems (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Debugging And Monitoring (AREA)
Abstract
The invention discloses a method, a system and a storage medium for baseline verification and configuration updating of edge cloud cooperation, wherein the method comprises the following steps: receiving a baseline configuration sent by a cloud server, wherein the baseline configuration is generated by the cloud server according to identity information of terminal equipment; acquiring running state information of the terminal equipment, and sending alarm information to the cloud server when the running state information is not in accordance with the baseline configuration, so that the cloud server updates the baseline configuration according to the alarm information and the running state information; and receiving the updated baseline configuration sent by the cloud server. According to the verification and configuration updating method, the baseline configuration is updated through the cloud server according to the alarm information and the running state information of the terminal equipment, so that the baseline configuration can be more accurate, and the safe running of the terminal equipment is guaranteed.
Description
Technical Field
The invention relates to the technical field of network security, in particular to a side-cloud-collaborative baseline verification and configuration updating method, a computer-readable storage medium, a terminal device, a cloud server and a side-cloud-collaborative baseline verification and configuration updating system.
Background
With the rapid development of the internet of things, the internet of things is integrated with the existing industry, the rapid popularization of the internet of things terminal also has a huge safety risk, and the daily stability and normal operation of the terminal equipment are urgently ensured.
The existing baseline check mode is only to passively collect alarm information uploaded when the running state of the terminal is inconsistent with the baseline after the baseline configuration is issued by the cloud server, but cannot timely update the appropriate baseline configuration according to the change of software and hardware of the terminal equipment, cannot deal with new security threats, and certain computing pressure can be caused to the cloud server by uploading the updated baseline configuration to the cloud server by the terminal equipment every time.
Disclosure of Invention
The present invention is directed to solving, at least to some extent, one of the technical problems in the related art. Therefore, a first object of the present invention is to provide a method for baseline verification and configuration update in a side-cloud coordination, in which a cloud server updates a baseline configuration according to alarm information and operation state information of a terminal device, so that the baseline configuration is more accurate, and safe operation of the terminal device is ensured.
The second purpose of the invention is to provide a method for baseline verification and configuration updating of edge cloud cooperation.
A third object of the invention is to propose a computer-readable storage medium.
A fourth object of the present invention is to provide a terminal device.
The fifth objective of the present invention is to provide a cloud server.
The sixth purpose of the present invention is to provide a baseline verification and configuration update system with edge cloud coordination.
In order to achieve the above object, an embodiment of the first aspect of the present invention provides a method for baseline verification and configuration update in edge cloud coordination, including: receiving a baseline configuration sent by a cloud server, wherein the baseline configuration is generated by the cloud server according to identity information of terminal equipment; acquiring running state information of the terminal equipment, and sending alarm information to the cloud server when the running state information is not in accordance with the baseline configuration, so that the cloud server updates the baseline configuration according to the alarm information and the running state information; and receiving the updated baseline configuration sent by the cloud server.
According to the baseline verification and configuration updating method of the edge cloud cooperation, the baseline configuration sent by the cloud server is received, the baseline configuration is generated by the cloud server according to the identity information of the terminal device, then the running state information of the terminal device is obtained, when the running state information is not consistent with the baseline configuration, the alarm information is sent to the cloud server, so that the cloud server updates the baseline configuration according to the alarm information and the running state information, and finally the updated baseline configuration sent by the cloud server is received. Therefore, the method updates the baseline configuration through the cloud server according to the alarm information and the running state information of the terminal equipment, so that the baseline configuration can be more accurate, and the safe running of the terminal equipment is guaranteed.
In addition, the baseline verification and configuration update method based on edge cloud coordination according to the above embodiment of the present invention may further have the following additional technical features:
according to an embodiment of the present invention, after sending the warning message to the cloud server, the method further includes: receiving a negotiation instruction of a cloud server; after receiving a negotiation instruction, acquiring running state information after updating of the terminal equipment; and when the running time reaches the set negotiation time, sending the updated running state information to the cloud server so that the cloud server updates the baseline configuration of the terminal equipment according to the running state information of the terminal equipment and the updated running state information.
In order to achieve the above object, an embodiment of a second aspect of the present invention provides a method for baseline verification and configuration update in edge cloud coordination, including: receiving identity information of a plurality of terminal devices; generating a baseline configuration according to the identity information, and sending the baseline configuration to the corresponding terminal equipment; and receiving the alarm information and the running state information sent by the plurality of terminal devices, updating the baseline configuration of the plurality of terminal devices according to the alarm information and the running state information, and sending the updated baseline configuration to the corresponding terminal devices.
According to the method for baseline verification and configuration updating of edge cloud cooperation, firstly, identity information of a plurality of terminal devices is received, then baseline configuration is generated according to the identity information and is sent to corresponding terminal devices, finally, warning information and running state information sent by the plurality of terminal devices are received, the baseline configuration of the plurality of terminal devices is updated according to the warning information and the running state information, and the updated baseline configuration is sent to the corresponding terminal devices. Therefore, the method updates the baseline configuration through the cloud server according to the alarm information and the running state information of the terminal equipment, so that the baseline configuration can be more accurate, and the safe running of the terminal equipment is guaranteed.
In addition, the baseline verification and configuration update method for edge cloud coordination according to the above embodiment of the present invention may further have the following additional technical features:
according to an embodiment of the invention, after receiving the warning information, the method further comprises: determining a baseline configuration updating type according to the alarm information; when the baseline configuration updating type is application program updating, sending a negotiation instruction to the terminal equipment; and receiving the updated running state information of the terminal equipment, and updating the baseline configuration of the terminal equipment according to the running state information of the terminal equipment and the updated running state information.
According to an embodiment of the invention, after receiving the warning information, the method further comprises: and determining that the current baseline configuration influences the normal operation of the terminal equipment according to the alarm information, and sending the baseline configuration at the previous moment to the corresponding terminal equipment.
According to an embodiment of the present invention, sending the updated baseline configuration to the corresponding terminal device includes: updating the baseline configuration of all terminal devices with similar identity information with the terminal device.
To achieve the above object, a computer-readable storage medium according to a third aspect of the present invention is provided, on which a baseline verification and configuration update program of edge cloud coordination is stored, and when executed by a processor, the baseline verification and configuration update program of edge cloud coordination implements the above baseline verification and configuration update method of edge cloud coordination.
The computer-readable storage medium of the embodiment of the invention can enable the baseline configuration to be more accurate and ensure the safe operation of the terminal equipment by executing the above baseline verification and configuration updating method of the edge cloud cooperation.
In order to achieve the above object, a fourth aspect of the present invention provides a terminal device, including: the processor executes the baseline verification and configuration updating program of the edge cloud cooperation, and the baseline verification and configuration updating method of the edge cloud cooperation is realized.
According to the terminal device of the embodiment of the invention, by executing the baseline verification and configuration updating method of the edge cloud coordination of the embodiment of the first aspect, the baseline configuration can be more accurate, and the safe operation of the terminal device can be guaranteed.
In order to achieve the above object, an embodiment of a fifth aspect of the present invention provides a cloud server, including: the processor, the memory and the edge cloud collaborative baseline verification and configuration updating program which is stored on the memory and can run on the processor, and when the processor executes the edge cloud collaborative baseline verification and configuration updating program, the edge cloud collaborative baseline verification and configuration updating method is realized.
According to the cloud server provided by the embodiment of the invention, by executing the baseline verification and configuration updating method of the edge cloud cooperation in the embodiment of the second aspect, the baseline configuration can be more accurate, and the safe operation of the terminal equipment can be guaranteed.
In order to achieve the above object, a sixth aspect of the present invention provides a baseline verification and configuration update system with edge cloud coordination, including the terminal device and a cloud server.
The edge cloud collaborative baseline verification and configuration updating system provided by the embodiment of the invention comprises the terminal equipment and the cloud server, so that the baseline configuration can be more accurate, and the safe operation of the terminal equipment is ensured.
Additional aspects and advantages of the invention will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the invention.
Drawings
FIG. 1 is a flow diagram of a method for baseline verification and configuration update for edge cloud collaboration according to an embodiment of the invention;
FIG. 2 is an interaction diagram of a baseline verification and configuration update method for edge cloud coordination according to an embodiment of the present invention;
FIG. 3 is a flow diagram of a method for baseline verification and configuration update for edge cloud collaboration according to another embodiment of the invention;
fig. 4 is a block diagram of a terminal device according to an embodiment of the present invention;
fig. 5 is a schematic block diagram of a cloud server according to an embodiment of the present invention;
fig. 6 is a block diagram illustrating a baseline verification and configuration update system for edge cloud collaboration according to an embodiment of the present invention.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the drawings are illustrative and intended to be illustrative of the invention and are not to be construed as limiting the invention.
The method for baseline verification and configuration update of edge cloud coordination, the computer-readable storage medium, the terminal device, the cloud server, and the system for baseline verification and configuration update of edge cloud coordination according to the embodiments of the present invention are described below with reference to the accompanying drawings.
In embodiments of the present invention, the terminal device may be a Personal Computer (PC), a smart mobile device (e.g., a smart phone), a microprocessor-based system, a set-top box, or the like. The number of the terminal devices can be 1 or more, the terminal devices are connected with the cloud server, each user can correspond to one terminal device, and the cloud server can be in communication connection with the plurality of terminal devices. The cloud server is used as a cloud computing processing system, and is a decision-making system for performing data communication, analysis and statistics on multiple users established on a basic level of internet technology network equipment according to a specific rule.
Fig. 1 is a flowchart of a baseline verification and configuration update method for edge cloud coordination according to an embodiment of the present invention.
As shown in fig. 1, the baseline verification and configuration update method for edge cloud coordination according to the embodiment of the present invention may include the following steps:
and S1, receiving the baseline configuration sent by the cloud server, wherein the baseline configuration is generated by the cloud server according to the identity information of the terminal equipment.
Specifically, referring to fig. 2, first, the terminal device sends an access request to the cloud server, and the terminal device and the cloud server are communicatively connected, for example, by Wi-Fi (wireless fidelity). After successful connection, the terminal device uploads the identity information of the terminal device to the cloud server, wherein the identity information can include the unique number of the terminal device, the system version, the hardware module, the installation container, the application and other related information, and the cloud server can generate baseline configuration according to the identity information of the terminal device and send the baseline configuration to the terminal device. The baseline configuration corresponds to reference information (operating state information) configured by the system or the application program when the terminal device or the application program in the terminal device is normally operated.
And S2, acquiring the running state information of the terminal equipment, and sending alarm information to the cloud server when the running state information is not in accordance with the baseline configuration, so that the cloud server updates the baseline configuration according to the alarm information and the running state information.
And S3, receiving the updated baseline configuration sent by the cloud server.
Specifically, referring to fig. 2, running state information of the terminal device (for example, baseline configuration information such as configuration parameters of a current operating system, configuration parameters of an application program in the terminal device, and the like) is monitored in real time by baseline check software installed in the terminal device, when it is monitored that the running state information of the terminal device does not conform to the baseline configuration, alarm information is reported to the cloud server, the cloud server updates the baseline configuration according to the alarm information and the running state information of the current terminal device and sends the updated baseline configuration to the terminal device, and the terminal device receives the updated baseline configuration sent by the cloud server. The alarm information may include a baseline configuration update of the operating system and a baseline configuration update of an application program in the terminal device.
For example, the cloud server determines a baseline configuration update type according to the alarm information, and when the alarm information is the baseline configuration update of the operating system, if an attacker scans the target terminal device by using software, the open condition of the network port of the target terminal device is obtained. Services provided by the target terminal device can be obtained through the port open condition, for example: a 21 port provides FTP (File Transfer Protocol) service, a 25 port provides SMTP (Simple Mail Transfer Protocol) service, an 80 port provides HTTP (hypertext Transfer Protocol) service, a 135 port provides RPC (Remote Procedure Call) service, and the like. Because the service is provided with certain vulnerabilities of the service, according to the vulnerabilities, an attacker can attack the terminal device, for example, generally, the 80 port is used for webpage browsing, that is, the 80 port is in an open state, and the 8080 port is in a closed state. The method includes that an 8080 port in baseline information configured by current terminal equipment is in a closed state, when an attacker opens the 8080 port through some operations, the port can be utilized by various virus programs, baseline verification software discovers that baseline configuration changes at the moment and reports alarm information to a cloud server, the cloud server judges that the changed baseline configuration causes damage to the terminal equipment, normal operation of the terminal equipment is affected, the cloud server can send the baseline configuration at the last moment to the corresponding terminal equipment, and the terminal equipment receives updated baseline configuration sent by the cloud server, namely the baseline configuration of the terminal equipment is restored to the baseline configuration state when the 8080 port is closed, so that safety of the terminal equipment is guaranteed. In addition, if the baseline configuration information at the last moment is lost, or the current baseline configuration is not matched with the terminal equipment, so that the equipment cannot normally run, the baseline configuration of the terminal equipment can be restored to default factory settings.
It should be noted that, when the baseline verification software monitors that the running state information of the terminal device does not conform to the baseline configuration, the change of the configuration information may be passive (for example, an attacker or a virus is applied) or may be a user actively changing the baseline configuration.
When a user needs to perform some operations to open some ports, for example, to achieve uploading and downloading of files between two pieces of terminal equipment, 21 ports of the two pieces of terminal equipment can be opened, when the baseline configuration is found to be changed by the baseline verification software, alarm information is reported to the cloud server, if the cloud server judges that the changed baseline configuration does not cause harm or is not harmful, the updated baseline configuration can be sent to all pieces of terminal equipment of the same type (for example, the pieces of terminal equipment with similar identity information are the pieces of terminal equipment of the same type), and the terminal equipment receives the updated baseline configuration sent by the cloud server. It should be noted that, when the cloud server determines that the changed baseline configuration does not cause damage to the terminal device according to the warning information, the updated baseline configuration may be sent to all terminal devices of the same type, only the baseline configuration of the current terminal device may be updated, and the baseline configuration of the terminal device may not be updated. For example, when the user only uses the port to realize the file uploading and downloading service between two terminal devices, the port 21 of the two terminal devices is opened, and the current baseline configuration of the terminal devices can not be updated without using the port for the next time, so that the situation that bugs are possibly brought to the system by opening some ports, and the damage is caused to the terminal devices by the way that trojans or viruses attack the terminal devices can be prevented.
According to an embodiment of the present invention, after sending the warning message to the cloud server, the method further includes: receiving a negotiation instruction of a cloud server; after receiving a negotiation instruction, acquiring running state information after updating of the terminal equipment; and when the running time reaches the set negotiation time, sending the updated running state information to the cloud server so that the cloud server updates the baseline configuration of the terminal equipment according to the running state information of the terminal equipment and the updated running state information. Wherein, the setting negotiation time can be set according to the actual situation.
Specifically, referring to fig. 2, the cloud server determines a baseline configuration update type according to the alarm information, sends a negotiation instruction to the terminal device when the baseline configuration update type is application update, and the terminal device receives the negotiation instruction sent by the cloud server and obtains updated operating state information. For example, when an application in a terminal device crashes, is stuck, and cannot obtain data during use, normal operation of the application is affected, for example, if a server connected to the application is changed or a database connected to the application is changed, a developer generally updates the version of the application and issues a new version, so as to reduce software errors. When a user updates an application program, the cloud server determines that the configuration update type is application program update according to alarm information, sends a negotiation instruction to the terminal equipment, the terminal equipment receives the negotiation instruction and acquires updated baseline configuration, the terminal equipment preliminarily judges whether the new baseline configuration affects the normal operation of the application program, if the new baseline configuration affects the normal operation of the application program, the new baseline configuration is rejected, if the new baseline configuration does not affect the normal operation of the application program, when the application program is updated (reaching a set negotiation time), the updated operation state information is sent to the cloud server, the cloud server can compare the updated baseline configuration with the baseline configuration before updating according to the updated baseline configuration, if the updated baseline configuration can enable the terminal equipment to normally operate, the updated baseline configuration is determined to be the new baseline configuration, and the updated baseline configuration is sent to all terminal equipment of the same type (if the terminal equipment with similar identity information is the terminal equipment of the same type), and the terminal equipment receives the updated baseline configuration sent by the cloud server. And if the updated baseline configuration causes the abnormal operation of the terminal equipment, returning the baseline configuration of the terminal to the baseline configuration at the previous moment.
And when the change of some configurations does not affect the normal operation of the application program, the baseline configuration of the terminal equipment can be updated or not updated, and the current baseline configuration is kept unchanged. If the positions of folders for storing information such as program running logs in the application program are changed, the baseline check software monitors that the configuration of the application program is changed, and sends alarm information to the cloud server, the cloud server determines that the configuration updating type is application program updating according to the alarm information, and sends a negotiation instruction to the terminal equipment, the terminal equipment receives the negotiation instruction and acquires updated baseline configuration, the terminal equipment preliminarily judges whether the new baseline configuration affects normal operation of the application program, if so, the new baseline configuration is rejected, if not, the new baseline configuration is updated, and when the application program is updated (reaching the set negotiation time), the updated running state information is sent to the cloud server. The cloud server can compare the updated baseline configuration with the baseline configuration before updating, and if the updated baseline configuration can enable the terminal equipment to normally operate, the updated baseline configuration is determined to be the new baseline configuration, and the updated baseline configuration is sent to all the terminal equipment of the same type. In addition, because the change of the configuration does not affect the normal operation of the application program, the terminal device also can not be updated, and the current baseline configuration is kept unchanged.
In summary, in the baseline verification and configuration update method for edge cloud coordination according to the embodiments of the present invention, a baseline configuration sent by a cloud server is received, where the baseline configuration is generated by the cloud server according to identity information of a terminal device, then operation state information of the terminal device is obtained, when it is monitored that the operation state information does not match the baseline configuration, alarm information is sent to the cloud server, so that the cloud server updates the baseline configuration according to the alarm information and the operation state information, and finally, the updated baseline configuration sent by the cloud server is received. Therefore, the method updates the baseline configuration through the cloud server according to the alarm information and the running state information of the terminal equipment, so that the baseline configuration is more accurate, and the safe running of the terminal equipment is ensured.
Corresponding to the embodiment, the invention further provides a method for baseline verification and configuration updating of edge cloud cooperation.
As shown in fig. 3, the baseline verification and configuration update method for edge cloud coordination according to the embodiment of the present invention includes the following steps:
s101, receiving identity information of a plurality of terminal devices.
And S102, generating a baseline configuration according to the identity information, and sending the baseline configuration to the corresponding terminal equipment.
Specifically, referring to fig. 2, the cloud server may be communicatively connected to a plurality of terminal devices, for example, may be communicatively connected through Wi-Fi (wireless fidelity). After successful connection, the identity information sent by each terminal device is received, and different terminal devices have different identity information, for example, the unique numbers of different terminal devices are different, the operating systems and versions installed by different terminal devices are different, the hardware modules and installation containers installed by different terminal devices are different from the applications, and the like. And the cloud server determines the corresponding baseline configuration according to the identity information and sends the baseline configuration to the corresponding terminal equipment according to the unique number of the terminal equipment.
S103, receiving the alarm information and the running state information sent by the plurality of terminal devices, updating the baseline configuration of the plurality of terminal devices according to the alarm information and the running state information, and sending the updated baseline configuration to the corresponding terminal devices.
According to an embodiment of the invention, after receiving the warning information, the method further comprises: and determining that the current baseline configuration influences the normal operation of the terminal equipment according to the alarm information, and sending the baseline configuration at the previous moment to the corresponding terminal equipment.
According to an embodiment of the present invention, sending the updated baseline configuration to the corresponding terminal device includes: updating the baseline configuration of all terminal devices with similar identity information with the terminal device.
Specifically, referring to fig. 2, running state information of the terminal device (for example, baseline configuration information such as configuration parameters of a current operating system, configuration parameters of an application program in the terminal device, and the like) is monitored in real time by baseline check software installed in the terminal device, when it is monitored that the running state information of the terminal device does not conform to the baseline configuration, alarm information is reported to the cloud server according to a unique number of the terminal device, the cloud server updates the baseline configuration according to the unique number of the terminal device, the alarm information, and the running state information of the current terminal device and sends the updated baseline configuration to the terminal device, and the terminal device receives the updated baseline configuration sent by the cloud server. The alarm information may include a baseline configuration update of the operating system and a baseline configuration update of an application program in the terminal device.
For example, the cloud server determines a baseline configuration update type according to the alarm information, and when the alarm information is the baseline configuration update of the operating system, if an attacker scans the target terminal device by using software, the open condition of the network port of the target terminal device is obtained. Services provided by the target terminal device can be obtained through the port open condition, for example: a 21 port provides FTP (File Transfer Protocol) service, a 25 port provides SMTP (Simple Mail Transfer Protocol) service, an 80 port provides HTTP (Hyper Text Transfer Protocol) service, a 135 port provides RPC (Remote Procedure Call) service, and the like. Since the service is provided with certain vulnerabilities of the service, an attacker can attack the terminal device according to the vulnerabilities. For example, in the terminal device with the unique number a1, we generally use the 80 port to browse the web page, i.e. the 80 port is in the open state, and the 8080 port is in the closed state. The method includes that an 8080 port in baseline information configured by current terminal equipment is in a closed state, when an attacker opens the 8080 port through some operations, the port can be utilized by various virus programs, at the moment, baseline verification software finds that baseline configuration changes and reports alarm information to a cloud server, the cloud server judges that the changed baseline configuration can cause harm to the terminal equipment, normal operation of the terminal equipment is affected, the cloud server can send the baseline configuration at the last moment to the terminal equipment with the unique number of A1, the terminal equipment receives the updated baseline configuration sent by the cloud server, and the baseline configuration of the terminal equipment is restored to the baseline configuration state when the 8080 port is closed, so that safety of the terminal equipment is guaranteed. In addition, if the baseline configuration information at the last moment is lost, or the current baseline configuration is not matched with the terminal equipment, so that the equipment cannot normally run, the baseline configuration of the terminal equipment can be restored to default factory settings.
It should be noted that, when the baseline verification software monitors that the running state information of the terminal device does not conform to the baseline configuration, the change of the configuration information may be a passive change (e.g., an attacker or a virus), or may be an active change of the baseline configuration by the user.
When a user needs to perform some operations to open some ports, for example, in a terminal device with the unique number of a2, in order to achieve file uploading and downloading with a terminal device with the unique number of A3, 21 ports of two terminal devices may be opened, when baseline configuration is found to be changed by baseline verification software, alarm information is reported to a cloud server, if the cloud server determines that the changed baseline configuration does not cause damage or is not so harmful to the terminal device with the unique number of a2, the updated baseline configuration may be sent to all terminal devices with the same type (for example, the terminal devices with the unique number of a2 and the unique number of A3 are similar to the terminal devices with the same type), and the terminal devices with the unique numbers of a2 and A3 receive the updated baseline configuration sent by the cloud server.
It should be noted that, when the cloud server determines that the changed baseline configuration does not cause damage to the terminal device according to the warning information, the updated baseline configuration may be sent to all terminal devices of the same type, only the baseline configuration of the current terminal device may be updated, and the baseline configuration of the terminal device may not be updated. For example, when the user only uses the terminal device with the unique number a2 and the terminal device with the unique number A3 to realize the file uploading and downloading service, the ports of the two terminal devices 21 are opened, and the current baseline configuration of the terminal device with the unique number a2 is not updated next time without using the port, so that the situation that the opening of some ports may cause a leak to the system, and a way for trojans or viruses to attack the terminal devices is prevented, and the damage is caused to the terminal devices.
According to an embodiment of the invention, after receiving the warning information, the method further comprises: determining a baseline configuration updating type according to the alarm information; when the baseline configuration updating type is application program updating, sending a negotiation instruction to the terminal equipment; and receiving the updated running state information of the terminal equipment, and updating the baseline configuration of the terminal equipment according to the running state information of the terminal equipment and the updated running state information.
Specifically, referring to fig. 2, the cloud server determines a baseline configuration update type according to the alarm information, sends a negotiation instruction to the terminal device when the baseline configuration update type is application update, and the terminal device receives the negotiation instruction sent by the cloud server and obtains updated operating state information. For example, when an application in the terminal device with the unique number a1 crashes, is stuck, and cannot obtain data during use, normal operation of the application is affected, for example, if a server connected to the application is changed or a database connected to the application is changed, a developer generally updates the version of the application and issues a new version, so as to reduce software errors. When a user updates an application program, the cloud server determines that the configuration updating type is application program updating according to alarm information, sends a negotiation instruction to a terminal device with the unique number of A1, the terminal device receives the negotiation instruction and obtains updated baseline configuration, the terminal device preliminarily judges whether the new baseline configuration affects normal operation of the application program, if the new baseline configuration affects the normal operation of the application program, the terminal device refunds the new baseline configuration, if the new baseline configuration does not affect the normal operation of the application program, when the application program is updated (reaching the set negotiation time), the updated operation state information is sent to the cloud server, the cloud server can compare the updated baseline configuration with the baseline configuration before updating, if the updated baseline configuration can enable the terminal device to normally operate, the updated baseline configuration is determined to be new baseline configuration, and the updated baseline configuration is sent to all terminal devices of the same type (such as terminal devices with similar identity information), and the terminal equipment receives the updated baseline configuration sent by the cloud server. And if the updated baseline configuration causes the abnormal operation of the terminal equipment, returning the baseline configuration of the terminal to the baseline configuration at the previous moment.
And when the change of some configurations does not affect the normal operation of the application program, the baseline configuration of the terminal equipment can be updated or not updated, and the current baseline configuration is kept unchanged. If the position of some folders for storing information such as program running logs in an application program is changed in the terminal device with the unique number of A1, the baseline check software monitors that the configuration of the application program changes, sends alarm information to the cloud server, the cloud server determines the configuration update type to be application program update according to the alarm information and sends a negotiation instruction to the terminal device, the terminal device receives the negotiation instruction and obtains updated baseline configuration, the terminal device preliminarily judges whether the new baseline configuration affects the normal operation of the application program, if the new baseline configuration affects the normal operation of the application program, the application program is rejected, if the new baseline configuration does not affect the normal operation of the application program, the updated running state information is sent to the cloud server when the update of the application program is completed (the set negotiation time is reached), and the cloud server can compare the updated baseline configuration with the baseline configuration before the update according to the updated baseline configuration, and if the updated baseline configuration can enable the terminal equipment to normally operate, determining the updated baseline configuration as a new baseline configuration, and sending the updated baseline configuration to all the terminal equipment of the same type. In addition, since the change of the configuration does not affect the normal operation of the application program, the terminal device may not be updated, that is, the baseline configuration before the application program is updated is maintained.
In summary, in the method for baseline verification and configuration update of edge cloud coordination according to the embodiments of the present invention, identity information of a plurality of terminal devices is received, a baseline configuration is generated according to the identity information, the baseline configuration is sent to a corresponding terminal device, alarm information and operation state information sent by the plurality of terminal devices are received, the baseline configuration of the plurality of terminal devices is updated according to the alarm information and the operation state information, and the updated baseline configuration is sent to the corresponding terminal device. Therefore, the method updates the baseline configuration through the cloud server according to the alarm information and the running state information of the terminal equipment, so that the baseline configuration is more accurate, and the safe running of the terminal equipment is ensured.
The invention further provides a computer readable storage medium corresponding to the above embodiment.
The computer-readable storage medium of the present invention stores a baseline verification and configuration update program of edge cloud coordination, and when executed by a processor, the baseline verification and configuration update program of edge cloud coordination implements the above baseline verification and configuration update method of edge cloud coordination.
The computer-readable storage medium of the invention can make the baseline configuration more accurate and ensure the safe operation of the terminal equipment by executing the above-mentioned baseline verification and configuration updating method of edge cloud cooperation.
Corresponding to the above embodiment, the invention also provides a terminal device.
As shown in fig. 4, the terminal device 200 of the present invention may include: memory 210, processor 220.
The memory 210 is configured to store a baseline verification and configuration update program for edge cloud coordination, and transmit the program code to the processor 220. In other words, the processor 220 may invoke and run a baseline verification and configuration update program of edge cloud coordination from the memory 210 to implement the method in the embodiment of the present application.
As shown in fig. 4, the terminal device 200 of the present invention may further include: a transceiver 230, the transceiver 230 being connectable to the processor 220 or the memory 210.
The processor 220 may control the transceiver 230 to communicate with other devices, and specifically, may transmit information or data to the other devices or receive information or data transmitted by the other devices. The transceiver 230 may include a transmitter and a receiver.
It should be understood that the various components in the terminal device are connected by a bus system, wherein the bus system includes a power bus, a control bus and a status signal bus in addition to a data bus.
According to the terminal equipment, the baseline configuration can be more accurate and the safe operation of the terminal equipment can be guaranteed by executing the edge cloud collaborative baseline verification and configuration updating method.
Corresponding to the embodiment, the invention further provides a cloud server.
As shown in fig. 5, the cloud server 300 of the present invention may include: memory 310, processor 320.
The memory 310 is configured to store a baseline verification and configuration update program for edge cloud coordination, and transmit the program code to the processor 320. In other words, the processor 320 may invoke and run the edge cloud collaborative baseline verification and configuration update program from the memory 310 to implement the method in the embodiment of the present application.
For example, the processor 320 may be configured to perform the method embodiments described above according to instructions in the baseline verification and configuration update program of the edge cloud collaboration.
As shown in fig. 5, the cloud server may further include: a transceiver 330, the transceiver 330 being connectable to the processor 320 or the memory 310.
The processor 320 may control the transceiver 330 to communicate with other devices, and specifically, may transmit information or data to the other devices or receive information or data transmitted by the other devices. The transceiver 330 may include a transmitter and a receiver.
It should be understood that the various components in the cloud server are connected by a bus system, wherein the bus system includes a power bus, a control bus, and a status signal bus in addition to a data bus.
According to the cloud server, the baseline configuration can be more accurate and the safe operation of the terminal equipment can be guaranteed by executing the edge cloud collaborative baseline verification and configuration updating method.
Corresponding to the embodiment, the invention further provides a side cloud collaborative baseline verification and configuration updating system.
As shown in fig. 6, the edge cloud collaborative baseline verification and configuration update system 400 of the present invention may include a terminal device 200 and a cloud server 300.
The edge cloud collaborative baseline verification and configuration updating system provided by the invention can enable baseline configuration to be more accurate and ensure safe operation of the terminal equipment by including the terminal equipment and the cloud server.
It should be noted that the logic and/or steps represented in the flowcharts or otherwise described herein, such as an ordered listing of executable instructions that can be considered to implement logical functions, can be embodied in any computer-readable medium for use by or in connection with an instruction execution system, apparatus, or device, such as a computer-based system, processor-containing system, or other system that can fetch the instructions from the instruction execution system, apparatus, or device and execute the instructions. For the purposes of this description, a "computer-readable medium" can be any means that can contain, store, communicate, propagate, or transport the program for use by or in connection with the instruction execution system, apparatus, or device. More specific examples (a non-exhaustive list) of the computer-readable medium would include the following: an electrical connection (electronic device) having one or more wires, a portable computer diskette (magnetic device), a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber device, and a portable compact disc read-only memory (CDROM). Additionally, the computer-readable medium could even be paper or another suitable medium upon which the program is printed, as the program can be electronically captured, via for instance optical scanning of the paper or other medium, then compiled, interpreted or otherwise processed in a suitable manner if necessary, and then stored in a computer memory.
It should be understood that portions of the present invention may be implemented in hardware, software, firmware, or a combination thereof. In the above embodiments, the various steps or methods may be implemented in software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, any one or combination of the following techniques, which are known in the art, may be used: a discrete logic circuit having a logic gate circuit for implementing a logic function on a data signal, an application specific integrated circuit having an appropriate combinational logic gate circuit, a Programmable Gate Array (PGA), a Field Programmable Gate Array (FPGA), or the like.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
Furthermore, the terms "first", "second" and "first" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defined as "first" or "second" may explicitly or implicitly include at least one such feature. In the description of the present invention, "a plurality" means at least two, e.g., two, three, etc., unless specifically limited otherwise.
In the present invention, unless otherwise expressly stated or limited, the terms "mounted," "connected," "secured," and the like are to be construed broadly and can, for example, be fixedly connected, detachably connected, or integrally formed; can be mechanically or electrically connected; they may be directly connected or indirectly connected through intervening media, or they may be connected internally or in any other suitable relationship, unless expressly stated otherwise. The specific meanings of the above terms in the present invention can be understood by those skilled in the art according to specific situations.
Although embodiments of the present invention have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present invention, and that variations, modifications, substitutions and alterations can be made to the above embodiments by those of ordinary skill in the art within the scope of the present invention.
Claims (10)
1. A baseline verification and configuration updating method for edge cloud coordination is characterized by comprising the following steps:
receiving a baseline configuration sent by a cloud server, wherein the baseline configuration is generated by the cloud server according to identity information of terminal equipment;
acquiring running state information of the terminal equipment, and sending alarm information to the cloud server when the running state information is not in accordance with the baseline configuration, so that the cloud server updates the baseline configuration according to the alarm information and the running state information;
and receiving the updated baseline configuration sent by the cloud server.
2. The edge-cloud collaborative baseline verification and configuration update method of claim 1, wherein after sending an alert message to the cloud server, the method further comprises:
receiving a negotiation instruction of the cloud server;
after receiving the negotiation instruction, acquiring the updated running state information of the terminal equipment;
and when the running time reaches the set negotiation time, sending the updated running state information to the cloud server so that the cloud server updates the baseline configuration of the terminal equipment according to the running state information of the terminal equipment and the updated running state information.
3. A baseline verification and configuration updating method for edge cloud coordination is characterized by comprising the following steps:
receiving identity information of a plurality of terminal devices;
generating a baseline configuration according to the identity information, and sending the baseline configuration to the corresponding terminal equipment;
and receiving alarm information and running state information sent by a plurality of terminal devices, updating the baseline configuration of the plurality of terminal devices according to the alarm information and the running state information, and sending the updated baseline configuration to the corresponding terminal devices.
4. The edge cloud collaborative baseline verification and configuration update method of claim 3, wherein after receiving the alert information, the method further comprises:
determining a baseline configuration updating type according to the alarm information;
when the baseline configuration updating type is application program updating, sending a negotiation instruction to the terminal equipment;
and receiving the updated running state information of the terminal equipment, and updating the baseline configuration of the terminal equipment according to the running state information of the terminal equipment and the updated running state information.
5. The edge cloud collaborative baseline verification and configuration update method of claim 3, wherein after receiving the alert information, the method further comprises:
and determining that the current baseline configuration influences the normal operation of the terminal equipment according to the alarm information, and sending the baseline configuration at the last moment to the corresponding terminal equipment.
6. The edge cloud collaborative baseline verification and configuration update method according to claim 3, wherein sending the updated baseline configuration to the corresponding terminal device comprises:
updating the baseline configuration of all the terminal devices with similar identity information with the terminal device.
7. A computer-readable storage medium having stored thereon a edge cloud coordinated baseline verification and configuration update program which, when executed by a processor, implements the edge cloud coordinated baseline verification and configuration update method of any of claims 1-6.
8. A terminal device, comprising a memory, a processor, and a side cloud collaborative baseline verification and configuration update program stored in the memory and executable on the processor, wherein the processor implements the side cloud collaborative baseline verification and configuration update method according to claim 1 or 2 when executing the side cloud collaborative baseline verification and configuration update program.
9. A cloud server, comprising a memory, a processor, and a side cloud collaborative baseline verification and configuration update program stored in the memory and executable on the processor, wherein when the processor executes the side cloud collaborative baseline verification and configuration update program, the side cloud collaborative baseline verification and configuration update method according to any one of claims 3 to 6 is implemented.
10. A edge cloud collaborative baseline verification and configuration update system, comprising: the terminal device of claim 8 and the cloud server of claim 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210334442.4A CN114726722B (en) | 2022-03-30 | 2022-03-30 | Bian Yun collaborative baseline checking and configuration updating method, system and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210334442.4A CN114726722B (en) | 2022-03-30 | 2022-03-30 | Bian Yun collaborative baseline checking and configuration updating method, system and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114726722A true CN114726722A (en) | 2022-07-08 |
| CN114726722B CN114726722B (en) | 2023-10-27 |
Family
ID=82241404
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210334442.4A Active CN114726722B (en) | 2022-03-30 | 2022-03-30 | Bian Yun collaborative baseline checking and configuration updating method, system and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114726722B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115150208A (en) * | 2022-09-06 | 2022-10-04 | 信联科技(南京)有限公司 | Zero-trust-based Internet of things terminal secure access method and system |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6615038B1 (en) * | 2000-04-28 | 2003-09-02 | Samsung Electronics Co., Ltd. | System and method for automatically creating and updating a mobile station configuration database in a wireless network |
| CN103971295A (en) * | 2014-05-08 | 2014-08-06 | 国家电网公司 | Power grid state estimation result analysis and alarm method and device |
| CN104363107A (en) * | 2014-10-21 | 2015-02-18 | 中国联合网络通信集团有限公司 | Inspection method and equipment for security baseline |
| CN106685691A (en) * | 2016-11-09 | 2017-05-17 | 苏州数言信息技术有限公司 | Efficient configuration update method and system of terminal device in Internet of things system |
| CN109743195A (en) * | 2018-12-11 | 2019-05-10 | 中国联合网络通信集团有限公司 | A kind of check method and device of security baseline |
| CN110620768A (en) * | 2019-09-16 | 2019-12-27 | 北京方研矩行科技有限公司 | Baseline safety detection method and device for intelligent terminal of Internet of things |
| CN110995650A (en) * | 2019-10-31 | 2020-04-10 | 博智安全科技股份有限公司 | Multi-terminal checking early warning system based on industrial control base line |
| US20200119983A1 (en) * | 2018-10-16 | 2020-04-16 | Nicholas M. D'Onofrio | Secure configuration management system |
| US10936462B1 (en) * | 2020-04-29 | 2021-03-02 | Split Software, Inc. | Systems and methods for real-time application anomaly detection and configuration |
| CN113885957A (en) * | 2021-09-28 | 2022-01-04 | 深信服科技股份有限公司 | Configuration file processing method, terminal device, server and storage medium |
-
2022
- 2022-03-30 CN CN202210334442.4A patent/CN114726722B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6615038B1 (en) * | 2000-04-28 | 2003-09-02 | Samsung Electronics Co., Ltd. | System and method for automatically creating and updating a mobile station configuration database in a wireless network |
| CN103971295A (en) * | 2014-05-08 | 2014-08-06 | 国家电网公司 | Power grid state estimation result analysis and alarm method and device |
| CN104363107A (en) * | 2014-10-21 | 2015-02-18 | 中国联合网络通信集团有限公司 | Inspection method and equipment for security baseline |
| CN106685691A (en) * | 2016-11-09 | 2017-05-17 | 苏州数言信息技术有限公司 | Efficient configuration update method and system of terminal device in Internet of things system |
| US20200119983A1 (en) * | 2018-10-16 | 2020-04-16 | Nicholas M. D'Onofrio | Secure configuration management system |
| CN109743195A (en) * | 2018-12-11 | 2019-05-10 | 中国联合网络通信集团有限公司 | A kind of check method and device of security baseline |
| CN110620768A (en) * | 2019-09-16 | 2019-12-27 | 北京方研矩行科技有限公司 | Baseline safety detection method and device for intelligent terminal of Internet of things |
| CN110995650A (en) * | 2019-10-31 | 2020-04-10 | 博智安全科技股份有限公司 | Multi-terminal checking early warning system based on industrial control base line |
| US10936462B1 (en) * | 2020-04-29 | 2021-03-02 | Split Software, Inc. | Systems and methods for real-time application anomaly detection and configuration |
| CN113885957A (en) * | 2021-09-28 | 2022-01-04 | 深信服科技股份有限公司 | Configuration file processing method, terminal device, server and storage medium |
Non-Patent Citations (2)
| Title |
|---|
| TAO CHEN: "Security Baseline Evaluation and Standard Research of Power Intelligent Internet of Things Terminal", 《2021 IEEE 6TH INTERNATIONAL CONFERENCE ON SIGNAL AND IMAGE PROCESSING》 * |
| 马铮: "网络设备安全基线配置核查分析系统设计与实现", 《邮电设计技术》, pages 6 - 11 * |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115150208A (en) * | 2022-09-06 | 2022-10-04 | 信联科技(南京)有限公司 | Zero-trust-based Internet of things terminal secure access method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114726722B (en) | 2023-10-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11550560B2 (en) | Enhanced device updating | |
| US9860263B2 (en) | System and method for assessing data objects on mobile communications devices | |
| US9344431B2 (en) | System and method for assessing an application based on data from multiple devices | |
| EP2609538B1 (en) | System and method for server-coupled malware prevention | |
| US8544095B2 (en) | System and method for server-coupled application re-analysis | |
| US9367680B2 (en) | System and method for mobile communication device application advisement | |
| US8984628B2 (en) | System and method for adverse mobile application identification | |
| CN112668913A (en) | Network construction method, device, equipment and storage medium based on federal learning | |
| CN114726722A (en) | Edge cloud collaborative baseline verification and configuration updating method, system and storage medium | |
| CN115296860A (en) | Vehicle safety operation and maintenance operation system based on central computing platform and vehicle | |
| CN113986289A (en) | Firmware upgrading method and device for edge computing gateway | |
| CN115510427B (en) | Cross-platform process running credible monitoring method and system | |
| US11792288B2 (en) | Wireless network device with directional communication functionality | |
| CN114884963B (en) | Digital certificate management method and management device | |
| EP4093076A1 (en) | Method, mobile equipment, and system for vulnerability detection and prevention in a sim, and storage media | |
| CN114928502A (en) | Information processing method, device, equipment and medium for 0day bug | |
| CN115695415A (en) | File processing method, system, device and readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |