CN116089936A - AI cloud network security capability pond system based on wisdom computer lab - Google Patents

AI cloud network security capability pond system based on wisdom computer lab Download PDF

Info

Publication number
CN116089936A
CN116089936A CN202310020715.2A CN202310020715A CN116089936A CN 116089936 A CN116089936 A CN 116089936A CN 202310020715 A CN202310020715 A CN 202310020715A CN 116089936 A CN116089936 A CN 116089936A
Authority
CN
China
Prior art keywords
file
machine room
data
decompression
temporary storage
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310020715.2A
Other languages
Chinese (zh)
Inventor
张春
杨旋
张震昕
吴海敏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Prt Technology Co ltd
Original Assignee
Shenzhen Prt Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Prt Technology Co ltd filed Critical Shenzhen Prt Technology Co ltd
Priority to CN202310020715.2A priority Critical patent/CN116089936A/en
Publication of CN116089936A publication Critical patent/CN116089936A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/554Detecting local intrusion or implementing counter-measures involving event detection and direct action
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/566Dynamic detection, i.e. detection performed at run-time, e.g. emulation, suspicious activities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/568Computer malware detection or handling, e.g. anti-virus arrangements eliminating virus, restoring damaged files
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02PCLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
    • Y02P90/00Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
    • Y02P90/02Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]

Abstract

The invention discloses an AI cloud network security capability pool system based on an intelligent machine room, and particularly relates to the field of machine room system protection, which comprises the following components: safety protection pool: firstly, the safety protection pool is used as a main machine room protection means to prevent the situation that the machine room is unavailable due to virus invasion. The invention detects the downloaded compressed package through the compressed package detection, then the file enters the file temporary storage area and the pre-decompression module respectively, the file package is decompressed through the pre-decompression module to check whether the file carries viruses, if the file in the pre-decompression module has viruses, an alarm is sent out by the viruses early warning to prompt an operator to delete the compressed package and process the viruses, the website is checked through the above mode respectively, and the file is isolated independently for decompression when the downloading is finished and the decompression is needed, so that the internal file is prevented from carrying the viruses, and the integral safety of the machine room is ensured.

Description

AI cloud network security capability pond system based on wisdom computer lab
Technical Field
The invention relates to the field of machine room system protection, in particular to an AI cloud network security capability pool system based on an intelligent machine room.
Background
In the IT industry, a machine room generally refers to telecommunications, network communication, mobile, two-wire, electric power, government or enterprise, etc., where servers are stored, where IT services are provided for users and employees, two thirty cabinets are typically placed in a small few tens of square meters, thousands of cabinets are placed in a large tens of square meters, and even more, various servers and small machines, such as IBM small machines, HP small machines, SUN small machines, etc., are typically placed in the machine room, and strict requirements are placed on temperature and humidity of the machine room and antistatic measures, so that non-professional project personnel cannot generally enter, and the servers in the machine room run many services, such as mobile multimedia messages, short messages, call services, etc. The machine room is important, and is not needed, so that work and life can be greatly influenced, each machine room is managed by professionals, and normal operation of the service is guaranteed.
In the prior art: the machine room needs to be supplemented with running data through external software or files in the using process, external data has a certain risk to a certain extent, when resources are acquired from other addresses in the first time, the webpage itself has a certain risk, because the machine room cannot enter the external webpage by using the virtual ip address, the whole ip address is possibly attacked by the outside by using the real ip address to enter the external webpage, meanwhile, downloaded files also have a certain risk of carrying viruses, once the two problems are triggered at will, the condition that the whole machine room is possibly paralyzed is possibly caused, the whole machine room cannot be used, and a certain trouble is caused.
Disclosure of Invention
The invention aims to solve the problem that in the prior art, a virtual ip address cannot be used in a machine room to enter an external webpage, so that the whole ip address is possibly attacked by the outside when the real ip address is used in the external webpage, meanwhile, downloaded files have a certain risk of carrying viruses, once the two problems are triggered at will, the situation that the whole machine room is possibly paralyzed is possibly caused, the whole machine room cannot be used, and a certain trouble is caused, and provides an AI cloud network security capability pool system based on an intelligent machine room.
In order to achieve the above purpose, the present invention adopts the following technical scheme:
AI cloud net security capability pond system based on wisdom computer lab includes:
safety protection pool: firstly, a safety protection pool is used as a main machine room protection means to prevent the situation that the machine room is unavailable due to virus invasion;
target address: when a machine room needs to download a certain piece of software or a certain file needs to acquire a file package by entering a target address, the purpose of downloading the file or the software is achieved;
download channel: downloading the file package through the downloading channel when the file is determined;
and (3) link detection: the target address sends a link for the host to use, and the link enters the target address in a decoding mode, so that the link detection can enter the target address through the link, detect the current webpage and observe whether the current webpage is safe or not;
and (3) detecting a compressed packet: detecting the downloaded compressed packet;
file temporary storage area: temporarily storing the downloaded compressed package in a file temporary storage area;
a pre-decompression module: transmitting the compressed package to a file temporary storage area and transmitting the compressed package to a pre-decompression module, decompressing the file package through the pre-decompression module, and checking whether the file carries viruses or not;
virus early warning: if the file in the pre-decompression module has viruses, warning by the viruses to prompt operators to delete the compressed package and process the viruses;
file decompression dedicated area: when the virus early warning determines that the problem does not exist, the file temporary storage area transmits information to the file decompression special area;
and (3) a main control host: as a main control means;
machine room unit: the main components of the machine room, and the downloaded files are mapped into the machine room unit at the same time;
an auditing module: and auditing the file which needs to be stored by a certain computer in the machine room unit.
The invention is further provided with: the file decompression dedicated area includes: the file decompression module, the file classification module, the software type temporary storage area, the file type temporary storage area and the file decompression module decompress the compressed package, and the file classification module classifies the types of the files; the software class scratch pad stores the decompressed software installation package.
By adopting the technical scheme: by the method, the files are classified and stored, then the files are backed up, damage to the files in the importing process is prevented, and if the files are damaged, the data can be exported from the file type temporary storage area or the software type temporary storage area again.
The invention is further provided with: the file temporary storage area transmits the file to the file decompression special area, then the file temporary storage area is imported to the file decompression module, the file is decompressed through the file decompression module, the file temporary storage area is imported to the file classification module after decompression is completed, and the installation package of the software class or the data of the file class are respectively imported to the software class temporary storage area or the file class temporary storage area.
By adopting the technical scheme: firstly, after the files are decompressed in the file temporary storage area, the files are respectively stored in the file type temporary storage area or the software type temporary storage area according to the types, and if the files in the middle need to be searched, the files can be quickly searched according to the types.
The invention is further provided with: the main control host comprises: the system comprises a mirror hard disk, a safety protection system and a monitoring module, wherein the mirror hard disk is used as a primary choice for receiving data in a file decompression special area, the safety protection system can check files required to be stored in a machine room unit, and the monitoring module monitors all machines of the machine room unit.
By adopting the technical scheme: by using the mirror image hard disk as a main storage medium, certain safety is ensured to a certain extent.
The invention is further provided with: the mirror hard disk receives data from the file decompression special area, if the data is the file temporary area, the data is stored, if the data is the software temporary area, the data is installed into the mirror hard disk through the main control host, after the file or the software is installed through the steps, the machine room unit in the machine room is directly mapped into the machine room unit through the mirror hard disk when the machine room unit in the machine room is needed, and then normal use can be started.
The invention is further provided with: the machine room unit is used for storing certain data in the process of use, but in order to ensure certain safety, the machine room unit can not store hard disks in individuals any more, all the data are stored in mirror image hard disks, when the data are required to be stored, the machine room unit is required to report the data, then personnel operating a main control host can audit the data through an audit module, if the data can be stored and imported into a safety protection system, safety detection is carried out on the data required to be stored through the safety protection system, and the data can be imported into the mirror image hard disks for storage after detection is finished.
The invention is further provided with: the monitoring module monitors the machine room unit.
The beneficial effects of the invention are as follows:
when the file is required to be downloaded externally, the required address is firstly entered, the link detection is carried out in the target address through the link, the current webpage is detected, whether the current webpage is safe or not is detected, under the condition of safety, the downloaded compressed package is downloaded through a downloading channel when the file is determined, meanwhile, the downloaded compressed package is detected safely through the compressed package detection, then the file is respectively entered into a file temporary storage area and a pre-decompression module, the file package is decompressed through the pre-decompression module, whether the file carries viruses is checked, if the file in the pre-decompression module has viruses, an alarm is sent out by a virus early warning, an operator is prompted to delete the compressed package and process the viruses, the website is respectively checked through the mode, the downloaded file is independently isolated for decompression when the downloading is completed and the decompression is required, the internal file is prevented from carrying the viruses, and the whole safety of a machine room is ensured.
Drawings
Fig. 1 is a schematic flow chart of a downloading system in the present invention.
Detailed Description
The following description of the embodiments of the present invention will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present invention, but not all embodiments.
As shown in fig. 1, an AI cloud network security capability pool system based on a smart machine room includes:
safety protection pool: firstly, a safety protection pool is used as a main machine room protection means to prevent the situation that the machine room is unavailable due to virus invasion;
target address: when a machine room needs to download a certain piece of software or a certain file needs to acquire a file package by entering a target address, the purpose of downloading the file or the software is achieved;
download channel: downloading the file package through the downloading channel when the file is determined;
and (3) link detection: the target address sends a link for the host to use, and the link enters the target address in a decoding mode, so that the link detection can enter the target address through the link, detect the current webpage and observe whether the current webpage is safe or not;
and (3) detecting a compressed packet: detecting the downloaded compressed packet;
file temporary storage area: temporarily storing the downloaded compressed package in a file temporary storage area;
a pre-decompression module: transmitting the compressed package to a file temporary storage area and transmitting the compressed package to a pre-decompression module, decompressing the file package through the pre-decompression module, and checking whether the file carries viruses or not;
virus early warning: if the file in the pre-decompression module has viruses, warning by the viruses to prompt operators to delete the compressed package and process the viruses;
file decompression dedicated area: when the virus early warning determines that the problem does not exist, the file temporary storage area transmits information to the file decompression special area;
and (3) a main control host: as a main control means;
machine room unit: the main components of the machine room, and the downloaded files are mapped into the machine room unit at the same time;
an auditing module: checking a file which is required to be stored by a certain computer in the machine room unit;
the file decompression dedicated area includes: the file decompression module, the file classification module, the software type temporary storage area, the file type temporary storage area and the file decompression module decompress the compressed package, and the file classification module classifies the types of the files; the software type temporary storage area stores the decompressed software installation package; the files are classified and stored in the mode, then the files are backed up, damage to the files in the importing process is prevented, and if the files are damaged, the data can be exported again from the file temporary storage area or the software temporary storage area respectively; the file temporary storage area transmits the file to the special file decompression area, then the file is imported to the file decompression module, the file is decompressed through the file decompression module, and after decompression, the file is imported to the file classification module, and the installation package of the software class or the data of the file class are respectively imported to the software class temporary storage area or the file class temporary storage area; firstly, after the files are decompressed in the file temporary storage area, the files are respectively stored in the file temporary storage area or the software temporary storage area according to categories, and if the files in the middle need to be searched, the files can be quickly searched according to the categories; the main control host comprises: the system comprises a mirror hard disk, a safety protection system and a monitoring module, wherein the mirror hard disk is used as a primary choice for receiving data in a file decompression special area, the safety protection system can check files required to be stored in a machine room unit, and the monitoring module monitors all machines of the machine room unit; the mirror hard disk is used as a main storage medium, so that certain safety is ensured to a certain extent; the mirror hard disk receives data from the file decompression special area, if the data is the file temporary area, the data is stored, if the data is the software temporary area, the data is required to be installed into the mirror hard disk through the main control host, after the file or the software is installed through the steps, the machine room unit in the machine room is directly mapped into the machine room unit through the mirror hard disk when the machine room unit in the machine room is required to be used, and then normal use can be started at the moment; the machine room unit is required to store certain data in the use process, but in order to ensure certain safety, the machine room unit does not store hard disks in individuals any more, all the data are stored in mirror image hard disks, when the data are required to be stored, the machine room unit is required to report the data, then personnel operating a main control host can audit the data through an audit module, if the data can be stored and imported into a safety protection system, the safety protection system is used for carrying out safety detection on the data required to be stored, and the data can be imported into the mirror image hard disks for storage after the detection is finished;
working principle: when the invention needs to download files externally, firstly entering the required address, then entering the target address through the link for detection, detecting whether the current webpage is safe or not, under the safe condition, downloading the file package through a downloading channel when determining the files, simultaneously, carrying out the safe detection on the downloaded compressed package through the compressed package detection, then respectively entering a file temporary storage area and a pre-decompression module, decompressing the file package through the pre-decompression module, checking whether the files carry viruses, if the files in the pre-decompression module have viruses, sending an alarm by the viruses early warning, prompting an operator to delete the compressed package and process the viruses, when the viruses early warning determines that the file temporary storage area has no problem, transmitting information into the file decompression special area, decompressing the compressed package, transmitting the files into the file decompression special area, then guiding the files into the file decompression special area, decompressing the files through the file temporary storage module, decompressing the files, guiding the files into the file temporary storage area to be respectively, installing the files into the file temporary storage area, or installing the files into the data temporary storage area, if the data is the data temporary storage area, and the data is respectively installed in the host or the data temporary storage area is installed by the host, if the data is the data temporary storage area, and the data is installed in the data temporary storage area is respectively, and the data is installed in the data storage area is installed if the data area is installed, when the machine room unit in the machine room needs to be used, the machine room unit can be directly mapped into the machine room unit through the mirror image hard disk, and then normal use can be started.
The foregoing is only a preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art, who is within the scope of the present invention, should make equivalent substitutions or modifications according to the technical scheme of the present invention and the inventive concept thereof, and should be covered by the scope of the present invention.

Claims (7)

1. AI cloud net security capability pond system based on wisdom computer lab, its characterized in that includes:
safety protection pool: firstly, a safety protection pool is used as a main machine room protection means to prevent the situation that the machine room is unavailable due to virus invasion;
target address: when a machine room needs to download a certain piece of software or a certain file needs to acquire a file package by entering a target address, the purpose of downloading the file or the software is achieved;
download channel: downloading the file package through the downloading channel when the file is determined;
and (3) link detection: the target address sends a link for the host to use, and the link enters the target address in a decoding mode, so that the link detection can enter the target address through the link, detect the current webpage and observe whether the current webpage is safe or not;
and (3) detecting a compressed packet: detecting the downloaded compressed packet;
file temporary storage area: temporarily storing the downloaded compressed package in a file temporary storage area;
a pre-decompression module: transmitting the compressed package to a file temporary storage area and transmitting the compressed package to a pre-decompression module, decompressing the file package through the pre-decompression module, and checking whether the file carries viruses or not;
virus early warning: if the file in the pre-decompression module has viruses, warning by the viruses to prompt operators to delete the compressed package and process the viruses;
file decompression dedicated area: when the virus early warning determines that the problem does not exist, the file temporary storage area transmits information to the file decompression special area;
and (3) a main control host: as a main control means;
machine room unit: the main components of the machine room, and the downloaded files are mapped into the machine room unit at the same time;
an auditing module: and auditing the file which needs to be stored by a certain computer in the machine room unit.
2. The AI cloud network security capability pool system based on a smart machine room of claim 1, wherein the file decompression dedicated area comprises: the file decompression module, the file classification module, the software type temporary storage area, the file type temporary storage area and the file decompression module decompress the compressed package, and the file classification module classifies the types of the files; the software class scratch pad stores the decompressed software installation package.
3. The AI cloud network security capability pool system based on the intelligent machine room according to claim 1, wherein the file temporary storage area transmits the file to the file decompression dedicated area, then to the file decompression module, decompresses the file by the file decompression module, and after decompression, guides the file to the file classification module, and respectively guides the installation package of the software class or the data of the file class to the software class temporary storage area or the file class temporary storage area.
4. The AI cloud network security capability pool system based on the intelligent machine room of claim 1, wherein the master host comprises: the system comprises a mirror hard disk, a safety protection system and a monitoring module, wherein the mirror hard disk is used as a primary choice for receiving data in a file decompression special area, the safety protection system can check files required to be stored in a machine room unit, and the monitoring module monitors all machines of the machine room unit.
5. The system of claim 4, wherein the mirror hard disk receives data from the dedicated area for file decompression, stores the data if the data is a file type temporary storage area, and installs the data in the mirror hard disk by the host computer if the data is a software type temporary storage area, and then directly maps the data to the machine room unit through the mirror hard disk when the machine room unit in the machine room needs to be used after the file or the software is installed by the steps.
6. The AI cloud network security capability pool system based on the intelligent machine room as claimed in claim 1, wherein the machine room unit is required to store certain data in the use process, but in order to ensure certain security, the machine room unit can not store hard disks in individuals, all data are stored in mirror image hard disks, when the data are required to be stored, the machine room unit needs to report the data, then a person operating the main control host can audit the data through an audit module, if the data can be stored and imported into the security protection system, the security protection system can carry out security detection on the data required to be stored, and the data can be imported into the mirror image hard disks for storage after the detection is finished.
7. The intelligent machine room based AI cloud network security capability pool system of claim 4, wherein the monitoring module monitors a machine room unit.
CN202310020715.2A 2023-01-06 2023-01-06 AI cloud network security capability pond system based on wisdom computer lab Pending CN116089936A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310020715.2A CN116089936A (en) 2023-01-06 2023-01-06 AI cloud network security capability pond system based on wisdom computer lab

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310020715.2A CN116089936A (en) 2023-01-06 2023-01-06 AI cloud network security capability pond system based on wisdom computer lab

Publications (1)

Publication Number Publication Date
CN116089936A true CN116089936A (en) 2023-05-09

Family

ID=86187870

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310020715.2A Pending CN116089936A (en) 2023-01-06 2023-01-06 AI cloud network security capability pond system based on wisdom computer lab

Country Status (1)

Country Link
CN (1) CN116089936A (en)

Similar Documents

Publication Publication Date Title
KR20070099201A (en) Method of security management for mobile wireless device and apparatus for security management using the same
US20090125755A1 (en) System and method for detection and recovery of malfunction in mobile devices
CN104662517A (en) Techniques for detecting a security vulnerability
CN107347057B (en) Intrusion detection method, detection rule generation method, device and system
CN110351277A (en) Electric power monitoring system security protection alarm method
CN112653654A (en) Security monitoring method and device, computer equipment and storage medium
CN113872965B (en) SQL injection detection method based on Snort engine
CN105528543A (en) Remote antivirus method, client, console and system
CN101127645A (en) An integrity check method for remote network service
US9654491B2 (en) Network filtering apparatus and filtering method
CN114726633B (en) Traffic data processing method and device, storage medium and electronic equipment
WO2009037377A1 (en) Tracking mobile communication devices
KR20000063357A (en) Remote anti-virus system and method on the wireless network
CN111897556B (en) Video monitoring service system based on cloud computing
CN112258137A (en) Mail blocking method and device
CN110008092B (en) Virtual machine safety monitoring method, device, equipment and readable storage medium
CN116089936A (en) AI cloud network security capability pond system based on wisdom computer lab
US10325093B1 (en) Techniques for protecting against unauthorized tech support calls
CN106101193B (en) Information backup method, terminal equipment, operator server and backup system
CN110958267B (en) Method and system for monitoring threat behaviors in virtual network
CN107040515A (en) A kind of ATM Prevention-Securities detecting system and method
CN111314131A (en) Task issuing method and device, storage medium and electronic device
CN112346791B (en) AAA-based dangerous command identification and shielding method and device
CN115577369B (en) Source code leakage behavior detection method and device, electronic equipment and storage medium
CN117521087B (en) Equipment risk behavior detection method, system and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination