KR20150120607A - Cloud Computing System - Google Patents

Cloud Computing System Download PDF

Info

Publication number
KR20150120607A
KR20150120607A KR1020140046350A KR20140046350A KR20150120607A KR 20150120607 A KR20150120607 A KR 20150120607A KR 1020140046350 A KR1020140046350 A KR 1020140046350A KR 20140046350 A KR20140046350 A KR 20140046350A KR 20150120607 A KR20150120607 A KR 20150120607A
Authority
KR
South Korea
Prior art keywords
user
client computer
session
server
management unit
Prior art date
Application number
KR1020140046350A
Other languages
Korean (ko)
Inventor
김수하
Original Assignee
김수하
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 김수하 filed Critical 김수하
Priority to KR1020140046350A priority Critical patent/KR20150120607A/en
Publication of KR20150120607A publication Critical patent/KR20150120607A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F15/00Digital computers in general; Data processing equipment in general
    • G06F15/16Combinations of two or more digital computers each having at least an arithmetic unit, a program unit and a register, e.g. for a simultaneous processing of several programs

Abstract

A cloud computing system according to an embodiment of the present invention comprises: a server (100) which stores a plurality of operating systems and a plurality of application programs, visualizes the operating systems and the application programs, and provides the visualized operating systems and application programs to a client computer; and one or more client computers (400) including a network device for communicating with the server (100), and a connection unit for communicating with a memory key (300). The memory key (300) includes: a bootloader (310) which is connected to the connection unit, and multi-boots the client computer (400); and a booting module (320) which sets an environment for gaining access to the server (100), and boots up the client computer (400) by downloading an operating system stored in the server (100) through authentication of the server (100). According to an embodiment of the present invention, the cloud computing system can provide an active cloud computing system environment since an operating system suitable for an environment of the client computer can be selected in the client computer.

Description

[0001] Cloud Computing System [

The present invention relates to a cloud computing system, and more particularly, to a cloud computing system capable of providing an operating system and an application program program suitable for a client computer environment.

Background Art [2] As a network environment has been generalized and speeded up, a so-called cloud computing system capable of utilizing an operating system (OS) or a storage device stored in a server in a client computer has been provided.

Since the operating system stored in the server is unilaterally provided to the client computer, the operating system stored in the server can be used in the client computer, I have a problem that I can not use on my computer.

Also, in the conventional cloud computing system, the performance of the client computer is determined according to the bandwidth of the network and the performance of the server.

In addition, the conventional cloud computing system includes a server for remotely booting, a separate server (for example, a DHCP server) for giving an IP address to the client computer for other settings, a separate server (E.g., a TFTP server). However, according to the cloud computing system according to the related art, although it is easy to use in a local area (for example, a range capable of configuring a local area network), it is suitable for a range in which a wide area network is required not.

In addition, the conventional cloud computing system has to assign an IP address to a client computer and set an IP allocation rule according to a client computer and a remote boot through a separate server (for example, a DHCP server) for other settings Therefore, there is a problem that the remote boot can not be performed dynamically.

The present invention has been made to solve the above problems, and it is an object of the present invention to provide an active cloud computing system environment by allowing an operating system to be selected and used in a client computer.

It is another object of the present invention to provide a cloud computing system capable of classifying and distinguishing client computers and limiting application programs that can be used according to the client computers that are separated.

It is another object of the present invention to provide a cloud computing system capable of remote booting a client computer by accessing a server regardless of the location of the client computer.

In order to achieve the above object, a cloud system according to an embodiment of the present invention includes a server (100) that stores a plurality of operating systems and application programs, images the operating system and application programs and provides the images to the client computer ); And at least one client computer (400) having a network device for communication with the server (100) and a connection for communication with the memory key (300), wherein the memory key (300) A boot loader 310 for multiboot of the client computer 400 and an environment for connection with the server 100 and is stored in the server 100 through the authentication of the server 100. [ And a boot module 320 for downloading the operating system and booting the client computer 400.

The boot module 320 includes a driver module 321 for initializing the network device; An environment setting module 323 for setting an environment for remote boot through communication with the server 100 after initialization of the network device; A selection module 325 for selecting an operating system to be executed in the client computer 400; And an authentication module 327 including a serial number for authentication of the memory key 300 and the client computer 400.

The memory key 300 further includes a temporary boot module 330 for booting the client computer 400. The boot module 320 is connected to the network 100 for connecting the server 100 and the client computer 400, The client computer 400 may boot the client computer 400 through the operating system stored in the temporary boot module 330. [

The memory key 300 may further include a storage module 340 for temporarily storing data and the boot module 320 may be configured such that when an error occurs in a network connecting the server 100 and the client computer 400 And store the data in the storage module 340.

The memory key 300 is classified according to the class, and an application program executed in the client computer 400 may be limited according to the class of the memory key 300.

Wherein the client computer comprises: a session manager for creating and managing sessions for a plurality of users connected to the main computer through a hub allocated for each user; A storage management unit for allocating a storage space for each user connected to the session; A resource management unit for allocating resources using identification information of the hub for each user connected to the session; A key lock detection unit for detecting whether a key lock is inserted in a hub allocated to each user, identifying a hub in which the key lock is inserted, and transmitting the identification information of the hub to the session management unit; Wherein the session management unit connects the session with the user by using the identification information when the user who has inserted the key lock into the hub logs in and ends the session with the user when the key lock is removed from the hub, And a tablet processor for converting the touch signal input through the tablet device provided for each user into a mouse input signal and displaying the converted input signal on an output device provided for each user.

The resource management unit may include a device allocation unit for allocating an input / output device for each user connected to the session.

The apparatus allocating unit may include an index setting unit for setting the index of the input / output device in the registry so that the input / output devices allocated for each user are distinguished from each other.

The resource management unit may include a storage management unit for allocating a storage space of the server for each user connected to the session.

The storage management unit may include a display processing unit for preventing a partition or a drive allocated to each user or a drive of a removable storage device inserted in the hub from being displayed to another user.

The resource management unit may include an account allocation unit for allocating an account for each user connected to the session and an execution program allocating unit for allocating an execution program for each user connected to the session.

The resource managing unit may further include an IP allocating unit for allocating IPs for each user to which the session is connected, and the IP allocating unit may include an IP filtering unit for filtering the input / output data on the network and transmitting the filtered data to each user according to the IP address allocated for each user can do.

The session management unit may manage a session using a terminal service of the DOW operating system.

The tablet processor generates a virtual mouse device corresponding to a tablet device provided for each user, converts the touch signal input from the tablet device into a signal generated by a virtual mouse device, generates a signal generated by the virtual mouse device Can be captured and displayed on a user-specific output device.

According to the cloud computing system of the present invention as described above, since an operating system suitable for the environment of the client computer can be selected from the client computer, an active cloud computing system environment can be provided.

In addition, since the client computer can be graded by using the memory key, it is possible to restrict an application program usable in the client computer according to the class of the client computer.

In addition, since the environment for connecting to the server can be set by using the memory key, remote booting can be performed irrespective of the location of the client computer.

These drawings are for the purpose of describing an exemplary embodiment of the present invention, and therefore the technical idea of the present invention should not be construed as being limited to the accompanying drawings.
1 is a conceptual diagram illustrating a configuration of a cloud computing system according to an embodiment of the present invention.
2 is a block diagram illustrating a configuration of a memory key of a cloud computing system according to an embodiment of the present invention.
3 is a block diagram showing the configuration of a boot module according to an embodiment of the present invention.
4 is a conceptual diagram of a multi-user apparatus using a client computer according to an embodiment of the present invention.
5 and 6 are conceptual diagrams of a multi-user apparatus according to an embodiment of the present invention.
7A is a block diagram of a multi-user apparatus according to an embodiment of the present invention.
7B is a block diagram of a resource management unit according to an embodiment of the present invention.

Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings, which will be readily apparent to those skilled in the art to which the present invention pertains. The present invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein.

In order to clearly illustrate the present invention, parts not related to the description are omitted, and the same or similar components are denoted by the same reference numerals throughout the specification.

It is to be understood that both the foregoing general description and the following detailed description of the present invention are exemplary and explanatory and are intended to provide further explanation of the invention as claimed. .

1 is a conceptual diagram illustrating a configuration of a cloud computing system according to an embodiment of the present invention.

1, a cloud computing system according to an embodiment of the present invention includes a server 100 in which an operating system (OS) and an application program are stored, a plurality of servers 100 connected to the server 100 via a network, And a client computer 400.

The operating system and the application program stored in the server 100 are imaged and stored, and the imaged operating system and the application program are transferred to the client computer 400.

The client computer 400 includes a network communication device such as a CPU, a memory, and a LAN card, which constitute a general desktop computer, but does not include a hard disk for storing an operating system, application programs, and data. Accordingly, the client computer 400 is driven by downloading the imaged operating system and the application program from the server 100.

The client computer 400 is provided with a connection unit for communication with the memory key 300. A memory key 300 is connected to the connection unit.

In general, the memory key 300 may be an external memory such as a USB memory, an SD card, or a micro SD card.

2 is a block diagram illustrating a configuration of a memory key of a cloud computing system according to an embodiment of the present invention.

2, the memory key 300 connected to the connection unit includes a boot loader 310 for multi-booting the client computer 400, a boot loader 310 for connecting to the server 100, And a boot module 320 for setting an environment and downloading an operating system stored in the server 100 through the authentication of the server 100 and booting the client computer 400.

3 is a block diagram showing the configuration of a boot module according to an embodiment of the present invention.

3, the boot module 320 includes a driver module 321, an environment setting module 323, a selection module 325, and an authentication module 327.

The driver module 321 is provided in the client computer 400 and initializes a LAN card for communicating with the server 100 and loads the network stack.

The environment setting module 323 sets an environment for communication with the server 100. [ For example, an environment including address setting, IP setting, user account, and the like of the server 100 is set. The environment setting module 323 may use a protocol such as Internet Small Computer System Interface (iSCSI). It goes without saying that other network protocols may be used, but not necessarily limited thereto.

An operating system to be booted in the client computer 400 or an application program to be executed in the client computer 400 is selected through the selection module 325. For example, an operating system to be booted from the client computer 400 is selected from among various operating systems (window XP, window 7, window 8, etc.) stored in the server 100.

Also, user authentication information for allowing only the client computer 400 registered through the authentication module 327 to access the server 100 is stored. For example, by checking the serial number of the memory key 300 and the CPU ID of the client computer 400, only the registered client computer 400 is allowed to access the server 100, Prevents abnormal use.

The memory key 300 may further include a temporary boot module 330 for booting the client computer 400 and a storage module 340 for storing data.

The temporary boot module 330 may be configured to maintain the boot state of the client computer 400 from the server 100 in preparation for the occurrence of an error in the network connecting the server 100 and the client computer 400 The operating system is saved.

The boot module 320 can boot the client computer 400 or maintain the boot state through the operating system stored in the temporary boot module 330. [ In general, the operating system includes not only a basic program for booting the client computer 400, but also various programs for performing various functions. Therefore, only a minimum program for booting the client computer 400 is stored in the temporary boot module 330.

The storage module 340 stores data generated during a work process through the client computer 400. However, this configuration is not necessarily an essential configuration, and may be omitted if necessary.

Hereinafter, the operation of the cloud computing system according to the embodiment of the present invention will be described in detail.

First, when the user connects the memory key 300 to the connection unit of the client computer 400, the boot loader 310 of the memory key 300 is executed. The boot loader 310 executes the boot module 320.

The LAN module of the client computer 400 is initialized by the driver module 321 of the boot module 320 and the client computer 400 accesses the server 100 through the network. At this time, an address, an IP, a user account, and the like of the server 100 that the client computer 400 can access through the environment setting module 323 of the boot module 320 are set.

The server 100 selects an operating system to boot from the client computer 400 through the selection module 325 and transmits the selected operating system to the server 100 through the selection module 325 And transmits the image to the client computer 400.

At this time, the server 100 does not transfer the entire image of the operating system to the client computer 400, but transmits only a minimum number of files necessary for booting the client computer 400, and the remaining files, if necessary, And is transmitted from the server 100 to the client computer 400.

Meanwhile, when the client computer 400 boots through the network and executes a required application program, if a problem occurs in the network and the client computer 400 does not receive the necessary operating system file, the client computer 400 May be down.

In order to solve this problem, the temporary boot module 330 provided in the memory key 300 stores a minimum boot file for executing the corresponding operating system. Accordingly, when an error occurs in the network, the client computer 400 downloads a file necessary for operating the operating system from the temporary boot module 330 to maintain the boot state of the client computer 400, 400).

If necessary, the data file generated when the application program is executed in the client computer 400 is stored in the storage module 340 provided in the memory key 300, so that when an error occurs in the network, It can be prevented from being lost.

Hereinafter, a cloud computing system according to an embodiment of the present invention will be described in detail, taking as an example a retail store and a distributor selling cellular phones and the like.

The cloud computing system according to another embodiment of the present invention has substantially the same configuration as that of the cloud computing system described above. However, in the cloud computing system according to another embodiment of the present invention, the client computer 400 and the server 100 may be configured to have a hierarchical form.

Specifically, the memory key 300 may be graded, and an application program executed in the client computer 400 may be limited according to the class of the memory key 300.

Generally, since the agency acts as a service provider of a communication company, it performs various tasks such as subscription, termination, reception, change, etc. necessary for opening the mobile phone. Accordingly, in the client computer 400 used by the agency, an application program necessary for the operation such as opening and closing of the operating system and the cellular phone from the server 100 of the communication company is transmitted from the server 100 of the communication company through the network, The present invention can be constructed using a cloud computing system according to an embodiment of the present invention.

At this time, when the application program used for opening and closing the mobile phone is executed through the client computer 400 used in the agency, the memory key 300 is set to a relatively high grade.

On the other hand, the retailer acts on behalf of several carriers, but acts only as a receptionist for the opening of the mobile phone. Therefore, only the reception screen for selling the mobile phone is displayed through the client computer 400 used in the store, so the rank of the memory key 300 is set to a relatively low rank.

In this manner, by classifying the ratings of the client computers 400 used in the dealerships and the dealers through the memory key 300, it is possible to restrict the information of the application programs provided by the server 100 to dealers and dealers Do. Therefore, it is possible to prevent leakage of personal information or leakage of information of a communication company, which may occur at a retailer handling cellular phones of various communication companies.

Hereinafter, an embodiment of a multi-user apparatus will be described using the client computer. And can be displayed on a monitor connected to a plurality of users using one client computer using the multi-user device.

4 is a conceptual diagram of a multi-user apparatus using a client computer according to an embodiment of the present invention.

As shown in FIG. 4, the multi-user apparatus is a structure in which a plurality of extended computers 12 and 14 are connected to the client computer 400, and each of the extended computers 12 and 14 (or a user) And input / output devices. The input / output devices of the expansion computers 12 and 14 are connected to the client computer 400 through a hub. In the embodiment of the present invention, the USB hub 30 is described as an example. However, Various relay devices that physically connect the extended computers 12 and 14 and the client computer 400 in the network communication can be used.

The expansion computers 12 and 14 include input / output devices assigned to themselves. Input / output devices include a keyboard, a mouse, a USB hub, a tablet device, a monitor, an audio, a video card, .

The hub 30 is allocated to each extended computer and an account for the extended computers can be managed according to the identification of the corresponding hub 30. The client computer 400 can manage the extended computers by using the unique numbers of the hubs 30 Hubs 30 may be identified. In addition, a video card is installed in the client computer 400 according to the number of extended computers, and video information and other data are transmitted to a monitor through a video card.

Here, the USB hub 30 allocated to each extended computer serves as a parent for identifying the input / output devices bound to the extended computer by the extended computer, and the input / output devices connected to the USB hub 30 serve as a child .

Accordingly, the client computer 400 can identify which expansion computer is allocated to the children bound to the USB hub 30 through identification of the USB hub 30, and manage the account for each expansion computer .

The client computer 400 detects the corresponding USB hub 30 through a key lock device inserted into or removed from the USB hub 30 of each of the extended computers (hereinafter referred to as a key lock) 30) can protect the account of the extended computer to which it is assigned. Here, security can be emphasized and a unique key lock can be owned and used for each user.

That is, when the client computer 400 detects the USB hub 30 in which the key lock is inserted, the client computer 400 verifies whether the user is a legitimate user through log-in authentication, and makes the input / output device assigned to the logged-in user driveable. If the login authentication fails or the key lock is removed from the USB hub 30, the input / output devices of the extended computer are not operated.

As described above, the client computer 400 can use the parent-child relationship described in the account, input / output device, storage, IP (Internet Protocol), and executable program allocation described below.

5 and 6 are conceptual diagrams of a multi-user apparatus according to an embodiment of the present invention.

As described above, since the session connection is established between the client computer 400 and each extended computer, the extended computer can be used as a plurality of users use the personal computer. When each user inserts the key lock into the USB hub 30 and logs in, a session connection is established for each extended computer. A device driver is assigned to the input / output devices assigned to each extended computer, and the input / output devices can be driven through the corresponding device driver.

As shown in FIGS. 5 and 6, when a user performs a login and performs a predetermined operation using a keyboard, the client computer 400 performs a session connection to the logged-in users, Identify devices by expansion computer. Also, the keyboard driver 102 is allocated through a session of the extended computer so that the keyboard device is driven. Then, the input / output data of the extended computer is transmitted to the video card through a session of the extended computer, so that it is displayed on the monitor screen of the user.

Here, the multi-user device can manage a session that can be used by a plurality of users at the same time. In addition, the cloud computing system 200 communicates with the Windows kernel 120 through an RPC (Remote Procedure Call) interface and a LPC (Local Procedure Call) port, The information processing apparatus 100 can perform processing on the information and the operation. Here, the Windows kernel 120 provides various basic services to all other parts of the OS. For example, it is possible to perform processing for an instruction, a function of managing an address space of an OS in a memory or a storage device, or allocating a memory.

RPC (Remote Procedure Call) is a protocol used by one program for requesting a service located in another computer on the network.

Also, an LPC represents a message communication between processes in one computer, and an LPC can be realized through a port object of the kernel. For example, the server process first creates a port object with a name and waits for the client to connect. Next, the client process connects the server and the client by opening the port and sending a connection message to the server.

In addition, in the terminal service for session connection and management described above, the port for LPC used in the terminal service may be a port named " SmSsWinStationApiPort ", and the corresponding port is created in the terminal service and used for communication with CSRSS.EXE CSRSS.EXE stands for Client / Server Runtime SubSystem, which is a process that performs key functions such as creating a new console window (ConsoleWindow) and managing threads.

FIG. 7A is a block diagram of a cloud computing system according to an embodiment of the present invention, and FIG. 7B is a block diagram of a resource management unit according to an embodiment of the present invention.

7A, the multi-user device 200 includes a key lock detection unit 210, a session management unit 220, and a resource management unit 230. The cloud computing system 200 may be implemented within the client computer 400.

The key lock detection unit 210 detects whether a key lock is inserted into a predetermined USB hub 30 allocated to each user and identifies the USB hub 30 in which the key lock is inserted. The key lock detection unit 210 can identify the USB hub 30 inserted with the key lock through the unique number of the USB hub 30 and send the information of the identified USB hub 30 to the session management unit 220 And the like.

The product information and the serial number are assigned to the key lock, so that when the key lock is distributed for each user, the serial number of the key lock can be registered to manage the license according to the use of the key lock. That is, when a key lock storing product information is connected, the serial number is registered first so that the authorized user can receive the multi-user service.

In this manner, the key lock detection unit 210 may check whether the serial number of the key lock is registered, and may perform the registration process for the serial number with respect to the unregistered key lock.

The session management unit 220 creates and manages a session for each user. That is, when the user who has inserted the key lock logs in, the session management unit 220 connects the session with the user (extended computer). Also, when the key lock is removed, the corresponding session that was connected is terminated. 5 and 6, and when the key lock is removed from the USB hub 30, the session management unit 220 releases the session associated with the corresponding user can do.

In this manner, the session management unit 220 can determine whether a key lock is inserted or removed through data transmission / reception with the key lock detection unit 210. [

The resource management unit 230 allocates resources to users connected to the session. In this embodiment, not only these elements but also the accounts, IPs, input / output devices, executable programs, storages, and the like allocated to users (that is, extended computers) It can be a synonym for all the elements assigned to each user. The resource management unit 230 can allocate resources for each user by using the identification information of the USB hub 30, and will be described in detail with reference to FIG. 7B.

7B, the resource management unit 230 includes an account allocation unit 235, a device allocation unit 240, a storage management unit 250, an IP allocation unit 260, an execution program allocation unit 270, A storage unit 280, and a control unit 290.

The account assigning unit 235 assigns an account for each user connected to the session. For example, when a session for user 1 is connected, an account is assigned to the user, and then user 1 performs login through the account assigned to him / her. At this time, if an account is predefined for each user, this component may be omitted.

The device allocator 240 allocates I / O devices to each user connected to the session. That is, the device allocating unit 240 can allocate the children (input / output devices) corresponding to the parents for each user by using the USB hub 30 allocated for each user as a parent. In addition, the device allocator 240 allocates device drivers corresponding to the input / output devices to each user, so that the device can be operated.

Therefore, the input / output devices assigned to each user are identified for each user, and accordingly, the user can perform an operation using his or her input / output device without colliding with other users.

The device allocating unit 240 includes an index setting unit 245 for setting an index of an input / output device in a registry so that input / output devices are discriminated from each other for each user.

Specifically, the input / output devices to be identified include a video card, a keyboard, an audio device, a USB hub, and the like. The input device includes a keyboard, a mouse, and a USB hub and an output device can see. First, the identification of the input device will be described. Next, the identification of the output device will be described.

The identification of the input device can be performed in such a manner that the input device is waiting for input of the input, and the input device is notified at the moment when the input is received. For example, if a user wants to identify a keyboard device, when a predetermined user presses a key of the keyboard, an index corresponding to the keyboard device of the user is set in the registry. At this time, the index setting unit 245 can inform the user of the keyboard device set. This process can also be applied to other input devices.

Next, in the identification of the output device, when the user logs in and the session is connected with the user, the index setting unit 245 sets the output device index of the user in the registry and informs the user of the output device index. For example, since a video card is installed in the client computer 400 according to the number of users, when a predetermined user logs in and a session is connected, the index of the user's monitor device is set in the registry, and the user is notified of the index.

As another example, when the audio device 1 is assigned to the user 1, when the user 1 logs in, the index of the audio device 1 is set in the registry, and data indicating that the audio device 1 is the output device of the user 1 is output . Then, a sound is output to the audio apparatus 1 in accordance with the instruction of the user 1.

Therefore, users can freely access external devices using the input / output devices assigned to them, and can independently perform operations without being influenced by each other.

The resource management unit 230 is provided with a tablet processing unit 295. The tablet processor 247 serves to display a touch signal input to the tablet device on the monitor of each user.

Specifically, when the tablet apparatus 1 is assigned to the user 1, when the user 1 logs in, the index of the tablet apparatus 1 is set in the registry, and one virtual mouse apparatus corresponding to the tablet apparatus 1 is created.

When a user operates the tablet device to input a touch signal, the tablet device input from the tablet device connected to each user is converted into a signal generated from the virtual mouse device. And displays the converted virtual mouse signal on the monitor of each user session.

This operation can be performed through hook processing for an interface function of the operating system.

For example, a signal input from a tablet device in Microsoft's window operating system is managed by a shell program such as wisptis.exe. In other words, it processes tablet input information such as coordinates, pressure, size, and direction input from the tablet device and processes the tablet input by generating a mouse signal from the tablet input through an application programming interface (API) such as SendInput do.

At this time, since the shell program such as wisptis.exe is operated only in the client computer session in the Microsoft Windows operating system, the touch signal inputted from the tablet provided for each user is not displayed on the monitor provided for each user, At the kernel level, a shell program such as wisptis.exe hooks (eg, Hooking (NtUserSendInput)) the mouse signal generated by an API such as SendInput. That is, all the mouse signals generated through the SendInput are captured and the captured mouse signals are displayed on the monitor of each user session, so that the touch signals input from the tablet device can be outputted to the output devices provided for the respective users.

The storage management unit 250 allocates a storage space for each user connected to the session. That is, the storage management unit 250 allocates a storage space for each user connected to the session. At this time, storage space may be allocated for each user through a directory or disk partition. For example, the user 1 is assigned to the C drive of the server, the user 2 is assigned to the D drive of the server, the user 1 is assigned to the folder A created in the C drive of the server, and the user 2 is assigned to the folder B, To be allocated its own storage space.

Accordingly, the storage area management identified for each user can be performed so that the users can perform operations in their own storage areas and other users can not invade their own storage areas.

The storage management unit 250 includes a display processing unit 255. The display processing unit 255 controls the display of the partition or the drive assigned to each user or the drive of the removable storage device inserted in the USB hub Windows Explorer).

For example, when the user 1 connects the USB memory device to his / her USB hub, the drive corresponding to the USB memory device connected to the user 1 is not displayed on the screen of other users, So that a mistake using the memory device does not occur.

In addition, the display processing unit 255 allows each user to view his / her own storage space in a storage space allocated for each user through directory or disk partitioning, thereby providing an environment that the user is likely to use his personal computer do.

This operation can be performed through a hook process for the interface function of the OS. For example, the display processing unit 255 performs hook processing on interface functions such as CHardwareDevicesImpl :: Advise and CHardwareDevicesImpl :: EnumMountPoints in the Windows OS to insert into the partition or USB hub 30 that is not allocated to each user, The USB memory device is not displayed in the Windows Explorer.

In addition, the hook may be executed in the kernel to prevent other users from accessing the drive assigned to each user. For this purpose, a unique value for each user drive may be set in the registry. That is, a method may be used in which different "NoDrives" and "NoViewOnDrive" values are set for each user (extended PC), where "NoDrives" means that the specified drive is not displayed in the window explorer, and "NoViewOnDrive" Prevent the user from accessing.

When the display processing unit 255 operates in conjunction with the device allocation unit 240, the execution program allocation unit 270, and the account allocation unit 235 by utilizing the function of the display processing unit 255, It is needless to say that the present invention can be implemented so that each user can view his / her own account, execution program, and input / output devices.

The IP allocator 260 assigns an IP address to each user connected to the session. Here, the IP allocating unit 260 can dynamically allocate IPs for each user by using the add ip address function of Winsock of the Windows OS, and distribute input / output packets according to the identified IPs.

The IP allocating unit 260 includes an IP filtering unit 265. The IP filtering unit 265 filters input / output data on the network according to a user-specific IP address and transmits the filtered data to each user. That is, the IP filtering unit 265 performs a hook process on the controlled Cord processing portion of the TCP Driver to filter information on the IP address for each user, and transmits various data on the network to each user .

Therefore, users can use individual IP addresses by using one network card, and utilization and data input / output of the Internet and the like can be performed according to each user's IP address.

The execution program assigning unit 270 assigns an execution program to each user connected to the session. The executable program may be meant to include all executable programs such as Excel, Photoshop, Word, and the like.

Accordingly, the execution program assigning unit 270 can operate so that the execution programs selected for each user in the OS installed in the client computer 400 can be distinguished from each other, so that the execution programs executed by the users are operated mutually unaffected, So that they can perform necessary tasks using the execution program. In particular, when the authority is assigned for each user, the execution program assigning unit 270 can make a specific execution program available to a specific user.

In addition, since the execution program (or program) can be executed in the unique storage area allocated for each user, conflicts between resources are prevented to protect the client computer 400 from being down or malfunctioning.

The data storage unit 280 stores data related to the unique number, account, input / output device, storage, IP, and execution program of the USB hub 30 allocated to each user and a program for controlling the functions of the device 200 , Algorithms, and so on.

The control unit 290 controls the operation of each of the components 240, 250, 260, 270, 280, and 295. For example, when a session is connected, the control unit 290 causes the children (or resources) bundled with the USB hub 30 as a parent to be allocated to be identified for each user, and when the session ends, the input / So as not to operate. In addition, an index of an input / output device operated by each user is set in the registry through an index setting unit 245, and an execution program is run in a storage space allocated for each user. Thus, conflicts between resources are prevented and users can perform tasks as if they were using their personal computers in their own space.

The storage (storage space) and data storage unit 280 provided to each of the above-described users may be stored in a cache, a ROM, a programmable ROM, an erasable programmable ROM (EPROM), an electrically erasable programmable ROM (EEPROM) Volatile memory device such as a flash memory or a volatile memory device such as a RAM (Random Access Memory), or a storage medium such as a hard disk drive (HDD) and a CD ROM But is not limited thereto. It may be implemented as a storage medium such as a hard disk drive, or may be divided into logical areas.

In addition, each of the components shown in Figs. 7A and 7B may be configured as a 'module'. The term 'module' refers to a hardware component such as software or a Field Programmable Gate Array (FPGA) or an Application Specific Integrated Circuit (ASIC), and the module performs certain roles. However, a module is not limited to software or hardware. A module may be configured to reside on an addressable storage medium and may be configured to execute one or more processors. The functionality provided by the components and modules may be combined into a smaller number of components and modules or further separated into additional components and modules.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, but, on the contrary, And it goes without saying that the invention belongs to the scope of the invention.

12, 14: Extended computer
30: USB hub
100: Server
210:
220:
230: Resource Management Unit
235: Account Assignment Unit
240: device allocation unit
245: Index setting unit
250:
255:
260: IP allocation unit
265: IP filtering unit
270: Execution program assigning unit
280: Data storage unit
290:
400: client computer
300: Memory key
310: Boot Loader
320: Boot module
321: Driver module
323: Configuration module
325: Optional module
327: Authentication module
330: Temporary boot module
340: Storage module

Claims (14)

A server (100) for storing a plurality of operating systems and application programs, imaging the operating systems and application programs and providing the operating systems and application programs to the client computer (400); And
At least one client computer (400) having a network device for communication with the server (100) and a connection for communication with the memory key (300)
The memory key 300 is connected to the connection unit and includes a boot loader 310 for multi-boot of the client computer 400 and an environment for connection with the server 100, And a boot module (320) for downloading the operating system stored in the server (100) through the authentication and booting the client computer (400). The method according to claim 1,
The boot module 320
A driver module (321) for initializing the network device;
An environment setting module 323 for setting an environment for remote boot through communication with the server 100 after initialization of the network device;
A selection module 325 for selecting an operating system to be executed in the client computer 400; And
An authentication module (327) including the memory key (300) and a serial number for authentication of the client computer (400);
The cloud computing system comprising: The method according to claim 1,
The memory key 300 further includes a temporary boot module 330 for booting the client computer 400,
The boot module 320 may boot the client computer 400 through the operating system stored in the temporary boot module 330 when an error occurs in the network connecting the server 100 and the client computer 400 And a cloud computing system. The method according to claim 1,
The memory key 300 further includes a storage module 340 for temporarily storing data,
Wherein the boot module (320) stores data in the storage module (340) when an error occurs in a network connecting the server (100) and the client computer (400). The method according to claim 1,
Wherein the memory key (300) is classified according to the class, and the application program executed in the client computer (400) is limited according to the class of the memory key (300). The method according to claim 1,
The client computer
A session management unit for creating and managing sessions for a plurality of users connected to the main computer through a hub allocated for each user;
A storage management unit for allocating a storage space for each user connected to the session;
A resource management unit for allocating resources using identification information of the hub for each user connected to the session; And
A key lock detection unit for detecting whether or not a key lock is inserted in a hub allocated to each user, identifying a hub in which the key lock is inserted, and transmitting the identification information of the hub to the session management unit;
The session management unit connects the session with the user using the identification information when the user who has inserted the key lock into the hub logs in. When the key lock is removed from the hub, the session management unit terminates the session with the user,
Wherein the resource management unit includes a tablet processor for converting a touch signal input through a tablet device provided for each user into a mouse input signal and displaying the converted input signal on an output device provided for each user. The method according to claim 6,
Wherein the resource management unit includes a device allocation unit for allocating an input / output device for each user connected to the session. 8. The method of claim 7,
Wherein the device allocation unit includes an index setting unit for setting the index of the input / output device in the registry so that the input / output devices allocated for each user are identified to each other. The method according to claim 6,
Wherein the resource management unit includes a storage management unit that allocates a storage space of the server for each user connected to the session. The method according to claim 6,
Wherein the storage management unit includes a display processing unit for preventing a partition or a drive assigned to each user or a drive of a removable storage device inserted in the hub from being displayed to another user. The method according to claim 6,
The resource management unit,
An account assignment unit for assigning an account for each user connected to the session,
And an execution program assigning unit for assigning an execution program for each user connected to the session. The method according to claim 6,
The resource management unit,
Further comprising an IP allocating unit allocating an IP for each user connected to the session,
Wherein the IP allocation unit includes an IP filtering unit that filters input / output data on a network and transmits the filtered data to users according to IP addresses allocated to the users. The method according to claim 6,
The session management unit,
A cloud computing system that manages sessions using Terminal Services of the Windows operating system. The method according to claim 6,
The tablet processing unit includes:
A virtual mouse device corresponding to a tablet device provided for each user is created,
Converts the touch signal input from the tablet device into a signal generated by a virtual mouse device,
And a signal generated by the virtual mouse device is captured and displayed on an output device for each user.
KR1020140046350A 2014-04-18 2014-04-18 Cloud Computing System KR20150120607A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020140046350A KR20150120607A (en) 2014-04-18 2014-04-18 Cloud Computing System

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020140046350A KR20150120607A (en) 2014-04-18 2014-04-18 Cloud Computing System

Publications (1)

Publication Number Publication Date
KR20150120607A true KR20150120607A (en) 2015-10-28

Family

ID=54428767

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020140046350A KR20150120607A (en) 2014-04-18 2014-04-18 Cloud Computing System

Country Status (1)

Country Link
KR (1) KR20150120607A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112653741A (en) * 2020-12-14 2021-04-13 辽宁云也智能信息科技有限公司 Cloud computing system capable of remotely guiding client computer
US11429425B2 (en) 2016-12-23 2022-08-30 Samsung Electronics Co., Ltd. Electronic device and display and control method thereof to provide display based on operating system

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11429425B2 (en) 2016-12-23 2022-08-30 Samsung Electronics Co., Ltd. Electronic device and display and control method thereof to provide display based on operating system
CN112653741A (en) * 2020-12-14 2021-04-13 辽宁云也智能信息科技有限公司 Cloud computing system capable of remotely guiding client computer

Similar Documents

Publication Publication Date Title
US11388228B2 (en) Methods, systems and computer readable media for self-replicating cluster appliances
US8650273B2 (en) Virtual serial concentrator for virtual machine out-of-band management
US8370510B2 (en) Remote application presentation over a public network connection
CN109067877B (en) Control method for cloud computing platform deployment, server and storage medium
US7953830B2 (en) Automatic network reconfiguration upon changes in DHCP IP addresses
US8943606B2 (en) Systems and methods for associating a virtual machine with an access control right
TWI526931B (en) Inherited product activation for virtual machines
US9176761B2 (en) Management of mainframe resources in pre-boot environment
US20230004508A1 (en) Managing a smart network interface controller (nic) of an information handling system
US8332490B2 (en) Method, apparatus and program product for provisioning a computer system
US20080172492A1 (en) System and method for virtualized resource configuration
JP2019528005A (en) Method, apparatus, and system for a virtual machine to access a physical server in a cloud computing system
US8412901B2 (en) Making automated use of data volume copy service targets
US20160359982A1 (en) Server link state detection and notification
KR101587994B1 (en) Cloud computing service system with virtual hard disk
US9582444B1 (en) Selective partition based redirection for multi-partitioned USB devices
CN116848528A (en) Techniques for automatically configuring minimum cloud service access rights for container applications
CN109857464B (en) System and method for platform deployment and operation of mobile operating system
US11157628B2 (en) Method to transfer firmware level security indicators to OS level threat protection tools at runtime
US10896067B2 (en) Determining the cost of container-based workloads
KR101498965B1 (en) A system and method for isolating the internet and the intranet by using the virtual machines
US10979289B2 (en) Apparatuses and methods for remote computing node registration and authentication
US11212168B2 (en) Apparatuses and methods for remote computing node initialization using a configuration template and resource pools
US20120079393A1 (en) Adaptable License Platform for Remote Sessions
KR20150120607A (en) Cloud Computing System

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E601 Decision to refuse application