CN202772927U - Internal network information safety management system based on cloud desktop - Google Patents
Internal network information safety management system based on cloud desktop Download PDFInfo
- Publication number
- CN202772927U CN202772927U CN 201220458504 CN201220458504U CN202772927U CN 202772927 U CN202772927 U CN 202772927U CN 201220458504 CN201220458504 CN 201220458504 CN 201220458504 U CN201220458504 U CN 201220458504U CN 202772927 U CN202772927 U CN 202772927U
- Authority
- CN
- China
- Prior art keywords
- server
- cloud desktop
- internal network
- desktop
- network device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Computer And Data Communications (AREA)
Abstract
Disclosed is an internal network information safety management system based on cloud desktop, comprising a data source server, a core network device, a safety gateway server, an online behavior management server, a data storage center, and a cloud desktop system, wherein the cloud desktop system comprises a control terminal and a plurality of desktop virtual clients; the data source server is connected with the safety gateway server via the core network device; the control terminal of the cloud desktop system controls the desktop virtual clients connected to the cloud desktop system via the core network device; the core network device is connected with the online behavior management server; the online behavior management server is further connected with the data storage center; and the online behavior management server is connected with the external network via a router. The internal network information safety management system of the utility model employs the cloud desktop for technical support, is based on identity authentication, and takes data safety as the core and monitoring audit as the assistance. The internal network information safety management system allows the making and enforcement of various safety strategies in a flexible and comprehensive manner, and realizes the safety management over the users, computers, and information in the internal network.
Description
Technical field
The utility model relates in particular to a kind of safety management system for internal network information based on the cloud desktop about a kind of safety management system for internal network information.
Background technology
There are in the market many Intranet safety information products, mainly contain two classes: monitor audit system and file encryption system.Wherein, although the monitoring and auditing system provides certain network control function, its emphasis is that network data is recorded and audits, and therefore can not stop well the generation of the unit information leakage of a state or party secret.
The file encryption system of Equations of The Second Kind adopts various encryption softwares realizations to the encryption of computer data, but its management to network, computer and user is dumb, and the Intranet resource is numerous, need to carry out respectively the setting of authority, management difficulty is large, especially in the time of user right generation frequent, cause easily leak.
In a word, this two series products also lacks effective countermeasure, cracked by the strong enterprise staff of computer technology ability.
Above-mentioned two types safety product, all need to be on client security agent, with some security strategies controls and monitor the operating position of client-side computer, and client Agent has the risk that is cracked.The present invention is take the cloud desktop as technical support, client need not to install Agent, can't store any data on the client computer, evade leakage problem in the client fully, and take authentication as the basis, take data security as core, take monitor audit as auxiliary, cooperate various security strategies, make up a complete consistent Intranet information solution, for enterprises and institutions provide a kind of information security method and management mode easily and effectively, substantially solved the Intranet information security issue.
Summary of the invention
The purpose of this utility model is to address the above problem, and a kind of safety management system for internal network information based on the cloud desktop is provided.Specifically, the utility model is take the cloud desktop as technical support, take authentication as the basis, take data security as core, take monitor audit as auxiliary, can comprehensively customize flexibly and implement various security strategies, realize the safety management to user, computer and information in the Intranet, reach effective user identity management, computer equipment manager, data security kept secure and prevent the target such as confidential information leakage.Be highly suitable for each enterprises and institutions, particularly research and development, Technology design, the enterprise such as innovative.
The utility model discloses a kind of safety management system for internal network information based on the cloud desktop, it is characterized in that, comprise the Data Source server, core network device, the security gateway server, the internet behavior management server, data storage center and cloud desktop system, described cloud desktop system comprises control end and some desktop virtual clients, wherein said Data Source server connects described security gateway server by described core network device, the control end of described cloud desktop system is controlled described some desktop virtual clients of its connection by described core network device, described core network device connects described internet behavior management server, described internet behavior management server also connects described data storage center, and described internet behavior management server connects outer net by described router.
According to an embodiment of safety management system for internal network information of the present utility model, described Data Source server comprises the server that source code is provided.
According to an embodiment of safety management system for internal network information of the present utility model, described Data Source server comprises the server that financial data is provided.
Embodiment according to safety management system for internal network information of the present utility model, described cloud desktop system also comprises virtual desktop host server, virtual application server and View Manager center and IP network switch, IP network memory, and described IP network switch, IP network memory are connected described core network device by described virtual desktop host server, virtual application server and View Manager center.
According to an embodiment of safety management system for internal network information of the present utility model, the source code server is connected front end and is connected another security gateway with the financial data server.
The utility model contrast prior art has following beneficial effect:
Compare other encryption softwares or intranet security software, the utility model need not at any Agent software of client secure, effectively evades the risk that the interior employee cracks and causes data to reveal; Terminal does not have the data storage, effectively evades data from the terminal disclosure risk; Data centralization management and control and carry out control of authority by strict authentication has effectively been evaded single employee and has been obtained whole project data data.The utility model provides whole consistent Intranet information security solution.
Description of drawings
Below, with reference to accompanying drawing, for those skilled in the art that, to the detailed description of the present utility model, above and other purpose of the present utility model, feature and advantage will be apparent.
Fig. 1 shows the structure chart of the safety management system for internal network information embodiment based on the cloud desktop of the present utility model.
Embodiment
The utility model will be further described below in conjunction with drawings and Examples.
Fig. 1 shows the structure of the embodiment of the safety management system for internal network information based on the cloud desktop of the present utility model.See also Fig. 1, the safety management system for internal network information based on the cloud desktop of present embodiment comprises Data Source server (being source code server 10a and financial data server 10b shown in Fig. 1), security gateway server 12, core network device 100, internet behavior management server 14, router one 1c, external data storage center 16, external the Internet 18, below core network device 100, also connected each desktop virtual client (VDM Client) 171-173, these desktop virtual clients, itself does not possess memory function, isolate physically the employee and directly obtained data from client, thereby evaded the risk that client data is revealed.
The core network device 100 of native system also connects the control end of cloud desktop system, namely by virtual desktop host server 112 (Virtual Desktop Host Server), virtual application server 111 (Virtual APP Server) and View Manager center 113 (View Manager vCenter) and the device build such as IP network switch 15 (IP SAN Switch), IP network memory 13 (IP SAN Storage).
System of the present utility model is when work, and the source code server 10a that the Data Source server is included and financial data server 10b have represented needs the closely data of protection, by the security gateway server 12 that connects.Security gateway server 12 allows all visitor's user name passwords by accessed database server authentication, its employed computer then carries out the computer identifier authentication by security gateway server 12, authentication conducts interviews by the rear access rights of setting according to security gateway server 12, anyly attempts to attack or unauthorized access all can trigger Realtime Alerts.Here the major function of security gateway server 12 is authentication and Realtime Alerts; the front end of source code server 10a and financial data server 10b is protected by a security gateway; all visitor's user name passwords are by accessed database server authentication; its employed computer then carries out the computer identifier authentication by security gateway; authentication conducts interviews by the rear access rights of setting by security gateway, anyly attempts to attack or unauthorized access all can trigger Realtime Alerts.Security gateway server 12 has ensured the independence of project teams' data by authentication, and project teams are setting item deposit data and access rights as required, so that the company personnel can only access the data in its extent of competence.
Internet behavior management server 14 audit and standard network behaviors, it sets corporate lan internet behavior authority, and to the data type such as the HTTP File Upload that allow to upload of appointment, FTP uploads and the transport behavior such as Mail annex is examined clearance, and the transfer of data of ciphering type such as SSH etc. all forbid, and carry out the backstage storage to granting the data of letting pass.
So both ensure company's normal communication needs, also stopped the risk that the employee crosses tight data communication device the network unofficial biography.
Internet behavior management server 14 also connects the outer data storage center 16 of sending out, and internet behavior management server 14 connects external the Internet 18 by router one 1c.
In addition, present embodiment also is encrypted management to computer peripheral equipment and hard disk.
Above-described embodiment provides to those of ordinary skills and realizes and use of the present invention, those of ordinary skills can be in the situation that does not break away from invention thought of the present invention, above-described embodiment is made various modifications or variation, thereby invention scope of the present invention do not limit by above-described embodiment, and should be the maximum magnitude that meets the inventive features that claims mention.
Claims (5)
1. safety management system for internal network information based on the cloud desktop, it is characterized in that, comprise the Data Source server, core network device, the security gateway server, the internet behavior management server, data storage center and cloud desktop system, described cloud desktop system comprises control end and some desktop virtual clients, wherein said Data Source server connects described security gateway server by described core network device, the control end of described cloud desktop system is controlled described some desktop virtual clients of its connection by described core network device, described core network device connects described internet behavior management server, described internet behavior management server also connects described data storage center, and described internet behavior management server connects outer net by described router.
2. safety management system for internal network information according to claim 1 is characterized in that, described Data Source server comprises the server that source code is provided.
3. safety management system for internal network information according to claim 1 is characterized in that, described Data Source server comprises the server that financial data is provided.
4. according to claim 2 or 3 described safety management system for internal network informations, it is characterized in that, described cloud desktop system also comprises virtual desktop host server, virtual application server and View Manager center and IP network switch, IP network memory, and described IP network switch, IP network memory are connected described core network device by described virtual desktop host server, virtual application server and View Manager center.
5. safety management system for internal network information according to claim 4 is characterized in that, the source code server is connected front end and is connected another security gateway with the financial data server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201220458504 CN202772927U (en) | 2012-09-10 | 2012-09-10 | Internal network information safety management system based on cloud desktop |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201220458504 CN202772927U (en) | 2012-09-10 | 2012-09-10 | Internal network information safety management system based on cloud desktop |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN202772927U true CN202772927U (en) | 2013-03-06 |
Family
ID=47779467
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 201220458504 Expired - Fee Related CN202772927U (en) | 2012-09-10 | 2012-09-10 | Internal network information safety management system based on cloud desktop |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN202772927U (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104283870A (en) * | 2014-09-18 | 2015-01-14 | 广东顺德中山大学卡内基梅隆大学国际联合研究院 | Cloud desktop network access control method |
| CN104283844A (en) * | 2013-07-03 | 2015-01-14 | 北京宝利明威软件技术有限公司 | Distributed cloud security system and control method |
| CN104618313A (en) * | 2013-11-05 | 2015-05-13 | 华为技术有限公司 | System and method for security management |
| CN104753930A (en) * | 2015-03-17 | 2015-07-01 | 成都盛思睿信息技术有限公司 | Cloud desktop management system based on security gateway and security access control method thereof |
| CN104780156A (en) * | 2015-03-17 | 2015-07-15 | 成都盛思睿信息技术有限公司 | Secure cloud desktop system and USB access control method thereof |
| CN105049414A (en) * | 2015-06-03 | 2015-11-11 | 北京朋创天地科技有限公司 | Dataflow control method facing virtual desktop and information safety device |
| CN105656903A (en) * | 2016-01-15 | 2016-06-08 | 国家计算机网络与信息安全管理中心 | Hive platform user safety management system and application |
| CN106210134A (en) * | 2016-08-26 | 2016-12-07 | 四川天邑康和通信股份有限公司 | A kind of enterprise based on virtual desktop cloud service system |
| CN107038839A (en) * | 2017-06-16 | 2017-08-11 | 郑州云海信息技术有限公司 | A kind of server security alarm method and the warning system for implementing this method |
| CN116938602A (en) * | 2023-09-15 | 2023-10-24 | 天津卓朗昆仑云软件技术有限公司 | Data transmission method and device based on cloud desktop |
-
2012
- 2012-09-10 CN CN 201220458504 patent/CN202772927U/en not_active Expired - Fee Related
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104283844A (en) * | 2013-07-03 | 2015-01-14 | 北京宝利明威软件技术有限公司 | Distributed cloud security system and control method |
| CN104618313B (en) * | 2013-11-05 | 2018-02-13 | 华为技术有限公司 | Safety management system and method |
| CN104618313A (en) * | 2013-11-05 | 2015-05-13 | 华为技术有限公司 | System and method for security management |
| WO2015067037A1 (en) * | 2013-11-05 | 2015-05-14 | 华为技术有限公司 | Security management system and method |
| CN104283870A (en) * | 2014-09-18 | 2015-01-14 | 广东顺德中山大学卡内基梅隆大学国际联合研究院 | Cloud desktop network access control method |
| CN104753930A (en) * | 2015-03-17 | 2015-07-01 | 成都盛思睿信息技术有限公司 | Cloud desktop management system based on security gateway and security access control method thereof |
| CN104780156A (en) * | 2015-03-17 | 2015-07-15 | 成都盛思睿信息技术有限公司 | Secure cloud desktop system and USB access control method thereof |
| CN105049414A (en) * | 2015-06-03 | 2015-11-11 | 北京朋创天地科技有限公司 | Dataflow control method facing virtual desktop and information safety device |
| CN105656903A (en) * | 2016-01-15 | 2016-06-08 | 国家计算机网络与信息安全管理中心 | Hive platform user safety management system and application |
| CN105656903B (en) * | 2016-01-15 | 2018-07-27 | 国家计算机网络与信息安全管理中心 | A kind of user safety management system of Hive platforms and application |
| CN106210134A (en) * | 2016-08-26 | 2016-12-07 | 四川天邑康和通信股份有限公司 | A kind of enterprise based on virtual desktop cloud service system |
| CN107038839A (en) * | 2017-06-16 | 2017-08-11 | 郑州云海信息技术有限公司 | A kind of server security alarm method and the warning system for implementing this method |
| CN116938602A (en) * | 2023-09-15 | 2023-10-24 | 天津卓朗昆仑云软件技术有限公司 | Data transmission method and device based on cloud desktop |
| CN116938602B (en) * | 2023-09-15 | 2023-12-01 | 天津卓朗昆仑云软件技术有限公司 | Data transmission method and device based on cloud desktop |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN202772927U (en) | Internal network information safety management system based on cloud desktop | |
| Zhe et al. | Study on data security policy based on cloud storage | |
| Shahzad | State-of-the-art survey on cloud computing security challenges, approaches and solutions | |
| CN108696520B (en) | Multi-rights data security and access | |
| US9800560B1 (en) | Systems and methods for monitoring encrypted data transmission | |
| Alotaibi et al. | A review of BYOD security challenges, solutions and policy best practices | |
| Montesino et al. | Information security automation: how far can we go? | |
| Tsai et al. | Information security issue of enterprises adopting the application of cloud computing | |
| Tajadod et al. | Microsoft and Amazon: A comparison of approaches to cloud security | |
| CN102667792B (en) | For the method and apparatus of the file of the file server of access security | |
| Alajmi et al. | What should be done to achieve greater use of cloud computing by higher education institutions | |
| Chandramouli et al. | Security guidelines for storage infrastructure | |
| Belmabrouk | Cyber criminals and data privacy measures | |
| Ozer et al. | Cloud incident response: Challenges and opportunities | |
| Brandao | Bases, challenges, and main dangers for deploying cybersecurity in industry 4.0 | |
| Vorakulpipat et al. | Managing mobile device security in critical infrastructure sectors | |
| CN202218262U (en) | Safety management system for internal network information | |
| McGowan et al. | SAN security | |
| Ponnumani et al. | Various Threats and Attack on Cloud Computing: A Review | |
| Kabata | Outsourcing records storage to the cloud: Challenges and prospects for African records managers and archivists | |
| CN202918328U (en) | Intranet safety device | |
| Mahalingam et al. | Enhanced data security framework for storage area networks | |
| Haber et al. | Industrial Control Systems (ICS) | |
| Johnson et al. | Securing stored data | |
| Biberaj et al. | Cyber attack against E-Albania and its social, economic and strategic effects |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20130306 Termination date: 20210910 |