WO2009155849A1 - Method for monitoring and updating security status of terminal and system thereof - Google Patents

Method for monitoring and updating security status of terminal and system thereof Download PDF

Info

Publication number
WO2009155849A1
WO2009155849A1 PCT/CN2009/072381 CN2009072381W WO2009155849A1 WO 2009155849 A1 WO2009155849 A1 WO 2009155849A1 CN 2009072381 W CN2009072381 W CN 2009072381W WO 2009155849 A1 WO2009155849 A1 WO 2009155849A1
Authority
WO
WIPO (PCT)
Prior art keywords
domain
security
security status
terminal
metadata
Prior art date
Application number
PCT/CN2009/072381
Other languages
French (fr)
Chinese (zh)
Inventor
任兰芳
尹瀚
贾科
刘冰
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2009155849A1 publication Critical patent/WO2009155849A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Definitions

  • the present invention relates to communication technologies, and in particular, to a method and system for monitoring and updating a terminal security state. Background technique
  • the evaluation of terminal security status information is performed by a TNC server in the same security domain as the terminal.
  • the security status information of the terminal refers to some information reflecting the security status of the terminal, for example, the operating system version, the patch information, the firewall version, the anti-virus software version, and the version of the browser.
  • the TNC architecture can also provide metadata from other security devices to correlate stateful runtimes associated with the TNC client.
  • the metadata indicates some information about the current state of installation in the network, adding additional data sources for security-related decisions. Metadata sharing is also used only in a single security domain to support the sharing of gesture information, ie the publisher and subscriber of TNC data and metadata belong to the same organization.
  • the server in the Relying Security Domain can request the corresponding security status information of the terminal from the server in the Asserting Security Domain (ASD). Conduct a security assessment so that access control can be performed.
  • the new security domain not only needs to perform access control on the terminal, but also needs real-time monitoring of the security state of the terminal. For example, when a terminal wants to access a service provided by a third-party service provider, the server providing the service needs not only the end of the service. The terminal performs security status assessment and performs access control. At the same time, it also needs to know the changes of the security status information of the terminal during the entire service process, so that adjustments can be made in time.
  • FNC Federated Trusted Network Connect
  • the embodiments of the present invention provide a method and system for monitoring and updating a security state of a terminal, and monitoring and/or updating the security state of the terminal by performing metadata interaction between different domains.
  • the embodiment of the present invention provides a method for monitoring and updating a security state of a terminal, including: the requesting party obtains metadata related to the security state of the terminal from the provider; the requesting party is a third-party service provider, or the security state information a request domain; the provider provides a security status information providing domain; the requesting party monitors and/or updates the security state of the terminal according to the metadata related to the security state of the terminal.
  • the embodiment of the invention further provides a system for monitoring and updating the security status of the terminal, comprising: a requesting party and a provider;
  • the requesting party is configured to obtain, from the provider, metadata related to a security status of the terminal; the requesting party is a third-party service provider, or in a security status information request domain; the party is in a security status information providing domain;
  • the requesting party monitors and/or updates the security status of the terminal according to the metadata related to the terminal security status.
  • FIG. 1 is a schematic flowchart of a first embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • FIG. 2 is a schematic flowchart of a second embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • FIG. 3 is a schematic flowchart of a third embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • FIG. 4 is a schematic flowchart of a fourth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • FIG. 5 is a schematic flowchart of a fifth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • FIG. 6 is a schematic flowchart of a sixth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • FIG. 7 is a schematic flowchart of a seventh embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • FIG. 8 is a schematic structural diagram of a first embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention.
  • FIG. 9 is a schematic structural diagram of a second embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention.
  • FIG. 10 is a schematic structural diagram of a third embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention.
  • FIG. 11 is a fourth embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention. Schematic diagram of the structure. detailed description
  • the embodiments of the present invention provide a method and system for monitoring and updating a security state of a terminal, which implements monitoring and/or updating the security state of the terminal by performing metadata interaction between different domains.
  • the terminal security state information described in the embodiment of the present invention refers to some information that can reflect the security state of the terminal, such as the operating system version, the patch information, the firewall version, the version of the antivirus software, and the browser of the terminal. Version and other related information;
  • the metadata described in the embodiment of the present invention may include: terminal security status information; and/or status information indicating devices, users, and traffic in the network where the terminal is currently located, where the status information includes registered address binding and authentication. Information such as status, terminal policy compliance status, terminal behavior, and authorization status.
  • FIG. 1 is a schematic flowchart of a first embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • Step 100 The requesting party obtains metadata related to the security status of the terminal from the provider; the requesting party is a third-party service provider, or requests the domain provider to provide a domain in the security state information in the security state information;
  • the requesting party is a terminal security state information requesting party
  • the providing party is a terminal security state information providing party
  • Step 101 The requesting party monitors and/or updates the security status of the terminal according to the metadata related to the security status of the terminal. It should be noted that, the requesting party obtains metadata related to the security state of the terminal from the provider by connecting the connection interface of the server in the security state information providing domain;
  • the server is specifically a trusted network connection server
  • the connection interface is specifically an Interface for Federated Trusted Network Connection (IF-FTNC).
  • IF-FTNC Interface for Federated Trusted Network Connection
  • Metadata interaction between different domains can be implemented to monitor and/or update the security status of the terminal.
  • FIG. 2 is a schematic flowchart of a second embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • the domain in which the terminal is located before the domain is used as the security state information providing domain, and the domain in which the terminal crosses the domain is the security state information requesting domain, and the terminal security state information requesting party is the third-party service provider.
  • the security status information requests an application server in the domain, and the terminal security status information provider provides a metadata access point in the domain for the security status information.
  • Step 200 The third-party service provider or the application server in the security status information request domain sends a metadata request message to the trusted network connection server in the security state information providing domain through the joint trusted network connection interface.
  • Step 201 After receiving the metadata request message, the trusted network connection server in the security state information providing domain forwards the metadata access point to the security state information providing domain.
  • Step 202 After receiving the metadata request message, the metadata access point in the security status information providing domain sends a element related to the terminal security status to the trusted network connection server in the security status information request domain.
  • Step 203 The trusted network connection server in the security status information providing domain returns the metadata to the third party service provider or the application server in the security state information request domain through the joint trusted network connection interface.
  • Step 204 The third party service provider or the security status information request application service in the domain The device monitors and/or updates the security status of the terminal according to the metadata.
  • the second embodiment for implementing the monitoring and updating method of the terminal security state is provided by the joint trusted network connection interface between the third-party service provider and the security state information providing domain, or the security state information requesting domain and the security state information providing domain. Metadata interaction enables third-party service providers or application servers in the security status information request domain to monitor and/or update the security status of the terminal.
  • FIG. 3 is a schematic flowchart of a second embodiment of a method for monitoring and updating a terminal security state according to an embodiment of the present invention
  • the domain in which the terminal crosses the domain is the assertion security domain (ASD).
  • ASD assertion security domain
  • ASD as the home domain of the terminal, has the right to assert whether the terminal is secure and can provide security status information or security status of the terminal. Evaluation results or security credentials and metadata, etc.
  • RSD assertion dependent security domain
  • RSD the so-called RSD, as the visited domain of the terminal, it does not know whether the terminal is secure or not, and depends on the security state provided by ASD.
  • the information or the security status assessment result of the terminal or the security certificate and the metadata can be used to determine whether the terminal is secure.
  • the third-party service provider or the application server When a terminal accesses a service provided by a third-party service provider or an application server in the RSD, the third-party service provider or the application server not only needs to perform access control through the security assessment when the terminal accesses. Moreover, it is also necessary to complete the mastering of the security state of the terminal in real time after the terminal is accessed, so that corresponding measures can be taken in time after the security state of the terminal changes.
  • the domain in which the terminal crosses the domain, that is, the ASD is used as the security state information providing domain
  • the domain in which the terminal crosses the domain, that is, the RSD is used as the security state information requesting domain, and the terminal security state information requesting party
  • the terminal is a TNC client that supports the TNC function.
  • the following is described by the TNC client.
  • the MAP is implemented by the MAP server in the embodiment, and the following will be described by the MAP server;
  • Step 300 The TNC client sends a request for a certain service to a third-party service provider or an application server in the RSD.
  • Step 301 The third-party service provider or the application server in the RSD determines the provider of the appropriate security status or security assessment result.
  • the assertion here may be only the security status information of the TNC client or the security status assessment result or security of the terminal. Credentials and metadata, etc., may also be an assertion containing all the information of the above terminal; the process of determining the appropriate assertion by the third-party service provider or the application server in the RSD is the discovery process of the ASD. It should be noted that the discovery of the ASD may be the result of mutual negotiation between the TNC client and the third-party service provider or the application server in the RSD, and the TNC client may directly notify the third-party service provider or the application server in the RSD. .
  • Step 302 The third-party service provider or the application server in the RSD sends a request message to the TNC server in the ASD, requesting the assertion of the TNC client;
  • Step 303 The TNC server performs information exchange with the MAP server in the ASD to obtain the metadata of the TNC client. As shown in FIG. 3, the TNC server in the ASD sends an IF-MAP query message to the MAP server to obtain the metadata of the terminal.
  • Step 304 The TNC server returns a response message to the third-party service provider in the RSD or the application server in the RSD, and provides a corresponding assertion to the TNC client.
  • Step 305 According to the assertion of the TNC client provided by the TNC server in the ASD, the third-party service provider or the application server in the RSD returns a response message to the TNC client, and allows access to the service request of the TNC client.
  • the third-party service provider or the application server in the RSD can respond to the TNC client's service request by denying access.
  • Step 306 the TNC client accesses the service to the third-party service provider or the application in the RSD.
  • the server provides the service service provided by the third-party service provider or the application server in the RSD.
  • Step 307 For the third-party service provider or the application server in the RSD, not only the security status of the TNC client during access is required. Moreover, it is necessary to further grasp the real-time security status of the TNC client in enjoying the business service provided by it, so as to avoid threat to its own service after the security status of the TNC client changes. Therefore, the third-party service provider or the application server in the RSD sends a metadata subscribe message to the TNC server of the ASD where the TNC client is located through the IF-FTNC;
  • Step 308 After receiving the metadata subscribe message, the TNC server in the ASD sends the message to the MAP server in the ASD.
  • Step 309 when the MAP server in the ASD where the TNC client is located receives the security status change of the TNC client, sending a metadata result message to the TNC server in the ASD;
  • Step 310 The TNC server in the ASD informs the third-party service provider or the application server in the RSD of the result of the TNC client security state change by using the IF-FTNC in time by the metadata result message.
  • the third-party service provider or the application server in the RSD can perform corresponding operations on the terminal according to the metadata result message, and further implement monitoring and/or updating of the security state of the terminal.
  • FIG. 4 is a schematic flowchart of a fourth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • the domain in which the terminal is located before the domain is used as the security state information requesting domain
  • the domain in which the terminal is located after the domain is the security state information providing domain
  • the terminal security state information requesting party is the security state information requesting domain.
  • a trusted network connection server wherein the terminal security status information provider provides a metadata access point in the domain for the security status information
  • Step 400 When the terminal security status changes or an abnormal situation, provide the security status information
  • the sensors IDS, Inbreak Detect System
  • IPS Intrusion Prevention System
  • Inbreak Protect System issues terminal security status change or abnormal situation information to a metadata access point in the security status information providing domain
  • Step 401 The metadata access point in the security status information providing domain issues the terminal security status change or abnormal situation information to the trusted network connection server in the security status information providing domain;
  • Step 402 The trusted network connection server in the security status information providing domain sends the metadata related to the terminal security status to the trusted network connection server in the security status information request domain through the joint trusted network connection interface.
  • Step 403 The trusted network connection server in the security status information request domain sends the metadata to a metadata access point in the security state information request domain.
  • Step 404 After the metadata access point in the security status information request domain summarizes and analyzes the metadata, the analysis result is notified to the trusted network connection server in the security status information request domain;
  • Step 405 The trusted network connection server in the security status information request domain monitors and/or updates the terminal according to the metadata analysis result.
  • the fourth embodiment uses the joint trusted network connection interface to perform metadata interaction between the security state information request domain and the security state information providing domain to implement trustedness in the security state information request domain.
  • the network connection server monitors and updates the security status of the terminal in real time.
  • FIG. 5 is a schematic flowchart of a fifth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • the domain in which the terminal crosses the domain is the assertion security domain (ASD).
  • ASD assertion security domain
  • ASD as the home domain of the terminal, has the right to assert whether the terminal is secure and can provide security status information or security status of the terminal. Evaluation results or security credentials and metadata, etc.; terminal cross-domain The domain that is located is the assertion dependent security domain (RSD).
  • RSD assertion dependent security domain
  • the so-called RSD as the visited domain of the terminal, does not know whether the terminal is secure or not. It depends on the security status information provided by the ASD or the security status assessment result or security certificate of the terminal. Metadata, can be clear whether the terminal is safe.
  • the terminal After the terminal is connected to the RSD, the terminal is not currently in the ASD. However, for the ASD, the security status of the terminal needs to be known in real time to implement real-time monitoring of the terminal. At the same time, the security status of the terminal (such as software version, system patch, etc.) is updated in real time.
  • the metadata associated with the terminal such as Sensors /IDS/IPS in the RSD, is required to be transmitted to the MAP server in the ASD.
  • the generated metadata result is sent to the TNC server in the ASD, thereby allowing the TNC server in the ASD to update and upgrade the security status of the terminal in time.
  • the domain ASD in which the terminal crosses the domain is used as the security state information requesting domain
  • the domain RSD in which the terminal crosses the domain is used as the security state information providing domain
  • the terminal security state information requesting party is the TNC in the ASD.
  • the terminal security status information provider is a MAP in the RSD;
  • the terminal is a TNC client that supports the TNC function.
  • the following describes the TNC client.
  • the MAP is implemented by the MAP server in the embodiment, and the MAP server is used for the following description;
  • Steps 500 to 506 are basically the same as steps 300 to 306 in the third embodiment.
  • the TNC server in the RSD is responsible for the access evaluation of the TNC client, and is not described here.
  • Step 507 The TNC client accesses the RSD.
  • the Sensor/IDS/IPS in the RSD finds that some state of the TNC client changes, or finds that the TNC client has an abnormal situation, it sends the message to the MAP server in the RSD.
  • a metadata publisher message which announces that the state of the TNC client has changed or that the TNC client has an abnormal condition;
  • Step 508 After receiving the information, the MAP server in the RSD sends the information to the TNC server in the RSD.
  • Step 509 The TNC server in the RSD uses the IF-FTNC interface to advertise the metadata related to the TNC client security status information to the TNC server in the ASD where the TNC client is located by using a metadata publisher message;
  • Step 510 The TNC server in the ASD also issues the information to the MAP server in the ASD through a metadata publisher message;
  • Step 511 After collecting, summarizing, and analyzing the metadata, the MAP server in the ASD notifies the TNC server in the ASD of the final result;
  • Step 512 The TNC server in the ASD monitors and/or updates the TNC client according to the analysis and summary result of the metadata.
  • FIG. 6 is a schematic flowchart of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention
  • the domain in which the terminal is located before the domain is used as the security state information providing domain, and the domain in which the terminal crosses the domain is used as the security state information requesting domain, and the terminal security state information requesting party is the security state information requesting domain.
  • the terminal security status information provider provides a metadata access point in the domain for the security status information.
  • Step 600 The trusted network connection server in the security status information requesting domain sends a metadata request message to the trusted network connection server in the security state information providing domain through the joint trusted network connection interface;
  • Step 601 The trusted network connection server in the security status information providing domain sends the metadata request message to a metadata access point in the security state information providing domain;
  • Step 602 The metadata access point in the security status information providing domain receives the metadata request message, and when the security information of the terminal needs to be updated, the security information of the terminal needs to be updated to notify the security status information providing domain.
  • Trusted network connection server Step 603: The trusted network connection server in the security state information providing domain sends metadata to the trusted network connection server in the security state information requesting domain through the joint trusted network connection interface, and informs the terminal that the security information needs to be updated. ;
  • Step 604 The trusted network connection server in the security status information request domain sends the metadata to the metadata access point in the security state information request domain, and informs the metadata access point that the security information of the terminal needs Update
  • Step 605 The metadata access point in the security status information request domain monitors and/or updates the terminal according to the metadata.
  • the method for monitoring and updating the terminal security state is as follows:
  • the metadata interaction between the security state information request domain and the security state information providing domain is performed through the joint trusted network connection interface, and the terminal security state information may request the element in the domain.
  • the data access point monitors and/or updates the security status of the terminal.
  • FIG. 7 is a schematic flowchart diagram of a seventh embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention.
  • the domain in which the terminal crosses the domain is the assertion security domain (ASD).
  • ASD assertion security domain
  • ASD as the home domain of the terminal, has the right to assert whether the terminal is secure and can provide security status information or security status of the terminal. Evaluation results or security credentials and metadata, etc.
  • RSD assertion dependent security domain
  • RSD the so-called RSD, as the visited domain of the terminal, it does not know whether the terminal is secure or not, and depends on the security state provided by ASD.
  • the information or the security status assessment result of the terminal or the security certificate and the metadata can be used to determine whether the terminal is secure.
  • the ASD When the terminal accesses from the ASD to another security domain RSD, once the terminal's ASD discovers that one or some security states of the terminal need to be updated or upgraded, the ASD must promptly inform the terminal of the current RSD, so that Real-time update of terminal security status information.
  • the domain in which the terminal crosses the domain, that is, the ASD is used as the security state information providing domain
  • the domain in which the terminal crosses the domain, that is, the RSD is used as the security state information request domain
  • the terminal security status information requester is a TNC server in the RSD
  • the terminal security status information provider is a MAP in the ASD
  • the terminal is a TNC client that supports the TNC function.
  • the following describes the TNC client.
  • the MAP is implemented by the MAP server in the embodiment, and the MAP server is used for the following description;
  • Steps 700 to 706 are substantially the same as steps 300 to 306 in the third embodiment, and details are not described herein again.
  • the TNC server in the RSD needs to receive the metadata published by the MAP server in the ASD.
  • step 707 the TNC server in the RSD sends a metadata subscribe message to the TNC server in the ASD through the IF-FTNC;
  • Step 708 The TNC server in the ASD forwards the metadata subscribe message to the MAP server in the ASD.
  • Step 709 When the ASD finds that a certain security information of the TNC client needs to be upgraded, the MAP server in the ASD sends a metadata result message to the TNC server in the ASD, and informs the terminal that a certain security information needs to be upgraded. Update
  • Step 710 The TNC server in the ASD sends the metadata result message to the TNC server in the RSD through the IF-FTNC, and informs the terminal that a certain security information needs to be upgraded and updated.
  • Step 711 The TNC server in the RSD sends a metadata publish message to the MAP server in the RSD, and the security information of the TNC client needs to be updated to update the information to the MAP server.
  • the MAP server in the RSD can update and update a certain security information of the TNC client.
  • FIG. 8 is a first embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention.
  • the requesting party 200 is configured to obtain metadata related to a terminal security state from the provider 100; the requesting party 200 is a third-party service provider 4, or in a security state information requesting domain; the provider 100 is Security status information is provided in the domain;
  • the requesting party 200 monitors and/or updates the security status of the terminal according to the metadata related to the terminal security status.
  • the requesting party 200 is a terminal security state information requesting party
  • the provider 100 is a terminal security state information providing party.
  • the security status information providing domain further includes: a server, in the embodiment and the following embodiments, the server is specifically a trusted network connection server;
  • the requesting party 200 obtains metadata related to the security status of the terminal from the provider 100 through the trusted state network connection server in the security state information providing domain;
  • the trusted network connection server in the security state information providing domain is further connected with the connection interface 3, and in the embodiment and the following embodiments, the connection interface 3 is specifically a joint trusted network connection interface;
  • the requesting party 200 obtains metadata related to the terminal security status from the provider 100 by connecting the connection interface 3 of the trusted network connection server in the security status information providing domain.
  • real-time control of the security status of the terminal and/or timely update of the security information of the terminal can be implemented by performing metadata interaction between different domains.
  • FIG. 9 is a schematic structural diagram of a second embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention.
  • the domain in which the terminal crosses the domain before, that is, the asserted security domain (ASD) 1 serves as the security state information providing domain, and the domain in which the terminal crosses the domain, that is, relies on the asserted security domain (RSD) 2 as security.
  • the status information request domain, the terminal security status information requester is the third party service provider 4 or the application server 20 in the RSD 2, and the terminal security status information provider is ASD1 MAP (implemented by the MAP server 11 in this implementation); the ASD1 further includes a TNC server 10;
  • the third-party service provider 4 or the application server 20 in the RSD 2 is configured to send a metadata request message to the TNC server 10 in the ASD1 through the joint trusted network connection interface (IF-FTNC) 3;
  • IF-FTNC joint trusted network connection interface
  • the TNC server 10 in the ASD1 is configured to forward the metadata request message to the MAP server 11 in the ASD1 after receiving the metadata customization message;
  • the MAP server 11 is configured to send the metadata related to the security status of the terminal to the TNC server 10 in the ASD1 after receiving the metadata request message;
  • the TNC server 10 in the ASD1 is configured to return the metadata to the third-party service provider 4 or the application server 20 in the RSD2 through the IF-FTNC3, and notify the third-party service provider 4 of the security status information of the terminal. Or the application server 20 in the RSD 2;
  • the third party service provider 4 or the application server 20 in the RSD 2 monitors and/or updates the security status of the terminal according to the metadata related to the security status of the terminal returned by the TNC server 10.
  • the second embodiment of the monitoring and updating system for implementing the security status of the terminal can implement the metadata interaction between the third-party service provider and the ASD, or between the RSD and the ASD through the IF-FTNC, so that the third-party service provider or the application in the RSD can be implemented.
  • the server monitors and/or updates the security status of the terminal.
  • FIG. 10 is a schematic structural diagram of a third embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention.
  • the domain in which the terminal crosses the domain that is, the asserted security domain (ASD) 1 as the security state information request domain
  • the domain in which the terminal crosses the domain that is, the assertion security domain (RSD) 2
  • the status information provides a domain
  • the terminal security status information requester is the TNC server 10 in the ASD1
  • the terminal security status information provider is the MAP in the RSD2 (implemented by the MAP server 22 in this embodiment); TNC Server 21 and Sensor/Intrusion Detection System System/Intrusion Prevention System (Sersor/IDS/IPS) 23;
  • the Sersor/IDS/IPS23 of the RSD2 is used to issue terminal security status change or abnormal situation information to the MAP server 22 in the RSD2 when the terminal security status changes or the terminal abnormality occurs;
  • the MAP server 22 of the RSD2 is configured to release the security status change or abnormal situation information of the terminal to the TNC server 21 in the RSD2;
  • the TNC server 21 in the RSD2 is configured to release the metadata related to the security status of the terminal to the TNC server 10 in the ASD1 through the joint trusted network connection interface (IF-FTNC) 3;
  • IF-FTNC joint trusted network connection interface
  • the TNC server 10 in the ASD1 is configured to monitor and/or update the terminal according to the metadata.
  • the third embodiment of the monitoring and updating system for implementing the terminal security status the metadata interaction between the RSD and the ASD through the IF-FTNC interface enables the TNC server in the ASD to monitor and/or update the security status of the terminal.
  • FIG. 11 is a schematic structural diagram of a fourth embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention.
  • the domain in which the terminal crosses the domain serves as the security state information providing domain
  • the domain in which the terminal crosses the domain that is, the asserted security domain (RSD) 2
  • the information request domain, the terminal security state information requester is the TNC server 21 in the RSD2
  • the terminal security state information provider is the MAP in the ASD1 (implemented by the MAP server 11 in this embodiment)
  • the RSD2 is also Including MAP (implemented by the MAP server 22 in this implementation)
  • the ASD1 further includes a TNC server 10:
  • the TNC server 21 in the RSD2 is configured to send a metadata request message to the TNC server 10 in the ASD1 through the joint trusted network connection interface (IF-FTNC) 3;
  • IF-FTNC joint trusted network connection interface
  • the TNC server 10 in the ASD1 sends the metadata request message to the MAP server 11 in the ASD1;
  • the MAP server 11 in the ASD1 is configured to receive the metadata request message, and notify the TNC server 10 in the ASD1 that the security information of the terminal needs to be updated when the security information of the terminal needs to be updated;
  • the TNC server 10 in the ASD1 is configured to send metadata to the TNC server 21 in the RSD2 through the IF-FTNC3, and inform the terminal that the security information needs to be updated;
  • the TNC server 21 in the RSD2 is configured to send the metadata to the MAP server 22 in the RSD2, and notify the MAP server 22 that the security information of the terminal needs to be updated;
  • the MAP server 22 in the RSD 2 monitors and/or updates the terminal according to the metadata.
  • the method and system for monitoring and updating the security state of the terminal provided by the embodiment of the present invention can implement monitoring and/or updating the security state of the terminal by performing metadata interaction between different domains.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Telephonic Communication Services (AREA)
  • Computer And Data Communications (AREA)

Abstract

A method for monitoring and updating the security status of a terminal and the system thereof are provided. The method comprises the following steps: a requesting party acquires the metadata related to the security status of the terminal from a providing party; and the requesting party monitors and/or updates the security status of the terminal, according to the metadata related to the security status of the terminal. Among others, the requesting party is a provider of a third party service or is in a security status requesting domain; and the providing party is in a security status providing domain.

Description

终端安全状态的监控和更新方法及系统 本申请要求于 2008 年 6 月 25 日提交中国专利局、 申请号为 200810029005.1、发明名称为"终端安全状态的监控和更新方法及系统"的中国 专利申请的优先权, 其全部内容通过引用结合在本申请中。  Method and system for monitoring and updating terminal security status This application claims a Chinese patent application filed on June 25, 2008 by the Chinese Patent Office, application number 200810029005.1, and the invention titled "Monitoring and Updating Method and System for Terminal Security Status" Priority is hereby incorporated by reference in its entirety.
技术领域 Technical field
本发明涉及通信技术, 尤其涉及一种终端安全状态的监控和更新方法和 系统。 背景技术  The present invention relates to communication technologies, and in particular, to a method and system for monitoring and updating a terminal security state. Background technique
在现有的可信网络连接 ( TNC , Trusted Network Connect ) 架构中, 对终 端安全状态信息的评估是由与终端处在同一安全域中的 TNC服务器执行的。 所述终端的安全状态信息是指反映终端安全状态的一些信息, 比如, 终端所 在的操作系统版本、 补丁信息、 防火墙版本、 杀毒软件版本以及浏览器的版 本等相关的信息。 TNC架构也能够提供来自其他安全设备的元数据( metadata ) 用以关联与 TNC客户端相关的状态运行环境信息 ( stateful runtime )。 所述元 数据表明网络中当前安装状态的一些信息, 为安全相关决策增加了其他的数 据来源。 元数据共享同样只被用于单个安全域下用以支持姿态信息的共享, 即 TNC数据和元数据的发布者和订阅者都属于同一组织。  In the existing Trusted Network Connect (TNC) architecture, the evaluation of terminal security status information is performed by a TNC server in the same security domain as the terminal. The security status information of the terminal refers to some information reflecting the security status of the terminal, for example, the operating system version, the patch information, the firewall version, the anti-virus software version, and the version of the browser. The TNC architecture can also provide metadata from other security devices to correlate stateful runtimes associated with the TNC client. The metadata indicates some information about the current state of installation in the network, adding additional data sources for security-related decisions. Metadata sharing is also used only in a single security domain to support the sharing of gesture information, ie the publisher and subscriber of TNC data and metadata belong to the same organization.
当终端跨安全域访问其他安全域中的服务时, 依赖断言安全域(RSD , Relying Security Domain ) 中的服务器可以向断言安全域(ASD , Asserting Security Domain )中的服务器请求终端相应的安全状态信息进行安全评估,从 而可以进行接入控制。  When the terminal accesses services in other security domains across the security domain, the server in the Relying Security Domain (RSD) can request the corresponding security status information of the terminal from the server in the Asserting Security Domain (ASD). Conduct a security assessment so that access control can be performed.
当终端跨安全域进行访问时, 新的安全域不仅需要对终端进行接入控制, 而且也需要对终端的安全状态进行实时监控。 例如, 当终端想访问一个由第 三方业务提供者所提供的一个服务时, 提供该业务的服务器不仅需要对此终 端进行安全状态评估, 进行接入控制, 同时还需要掌握终端在整个服务过程 中的安全状态信息变化情况, 以便能够及时做出调整。 When a terminal accesses across a security domain, the new security domain not only needs to perform access control on the terminal, but also needs real-time monitoring of the security state of the terminal. For example, when a terminal wants to access a service provided by a third-party service provider, the server providing the service needs not only the end of the service. The terminal performs security status assessment and performs access control. At the same time, it also needs to know the changes of the security status information of the terminal during the entire service process, so that adjustments can be made in time.
在实现本发明的过程中, 发明人发现, 在目前的联合可信网络连接 In the process of implementing the present invention, the inventors have found that in the current joint trusted network connection
( FTNC, Federated Trusted Network Connect ) 中, 只涉及到终端跨域时如何 在不同域之间交互终端的安全状态信息以及安全评估结果, 对于跨域时如何 进行元数据交互, 以及终端跨域接入之后, ASD或者 RSD如何对终端的安全 状态进行实时监控还没有相应的解决方案。 (FTNC, Federated Trusted Network Connect), only how to exchange the security status information of the terminal and the security assessment result between different domains when the terminal crosses the domain, how to perform metadata interaction when inter-domain, and cross-domain access of the terminal After that, there is no corresponding solution for how ASD or RSD can monitor the security status of the terminal in real time.
发明内容 Summary of the invention
本发明实施例提供一种终端安全状态的监控和更新方法和系统, 通过在 不同的域之间进行元数据交互, 对终端的安全状态进行监控和 /或更新。  The embodiments of the present invention provide a method and system for monitoring and updating a security state of a terminal, and monitoring and/or updating the security state of the terminal by performing metadata interaction between different domains.
本发明实施例提供了一种终端安全状态的监控和更新方法, 包括: 请求方从提供方获得与终端安全状态相关的元数据; 所述请求方为第三 方业务提供者, 或者在安全状态信息请求域; 提供方在安全状态信息提供域; 所述请求方根据所述终端安全状态相关的元数据, 对终端的安全状态进 行监控和 /或更新。  The embodiment of the present invention provides a method for monitoring and updating a security state of a terminal, including: the requesting party obtains metadata related to the security state of the terminal from the provider; the requesting party is a third-party service provider, or the security state information a request domain; the provider provides a security status information providing domain; the requesting party monitors and/or updates the security state of the terminal according to the metadata related to the security state of the terminal.
本发明实施例还提供了一种终端安全状态的监控和更新系统, 包括: 请求方和提供方;  The embodiment of the invention further provides a system for monitoring and updating the security status of the terminal, comprising: a requesting party and a provider;
所述请求方, 用于从所述提供方获得与终端安全状态相关的元数据; 所 述请求方为第三方业务提供者, 或者在安全状态信息请求域; 方在安全状态 信息提供域;  The requesting party is configured to obtain, from the provider, metadata related to a security status of the terminal; the requesting party is a third-party service provider, or in a security status information request domain; the party is in a security status information providing domain;
所述请求方根据所述终端安全状态相关的元数据, 对终端的安全状态进 行监控和 /或更新。  The requesting party monitors and/or updates the security status of the terminal according to the metadata related to the terminal security status.
实现对终端安全状态的监控和 /或更新。 附图说明 施例或现有技术描述中所需要使用的附图作简单地介绍, 显而易见地, 下面 描述中的附图是本发明的一些实施例, 对于本领域普通技术人员来讲, 在不 付出创造性劳动性的前提下, 还可以根据这些附图获得其他的附图。 Implement monitoring and/or updating of the terminal's security status. BRIEF DESCRIPTION OF THE DRAWINGS The accompanying drawings, which are used in the description of the embodiments of the present invention, are briefly described, and the drawings in the following description are in some embodiments of the present invention, Other drawings can also be obtained from these drawings on the premise of creative labor.
图 1 是本发明实施例提供的终端安全状态的监控和更新方法第一实施例 的流程示意图;  1 is a schematic flowchart of a first embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
图 2是本发明实施例提供的终端安全状态的监控和更新方法第二实施例 的流程示意图;  2 is a schematic flowchart of a second embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
图 3是本发明实施例提供的终端安全状态的监控和更新方法第三实施例 的流程示意图;  3 is a schematic flowchart of a third embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
图 4是本发明实施例提供的终端安全状态的监控和更新方法第四实施例 的流程示意图;  4 is a schematic flowchart of a fourth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
图 5是本发明实施例提供的终端安全状态的监控和更新方法第五实施例 的流程示意图;  5 is a schematic flowchart of a fifth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
图 6是本发明实施例提供的终端安全状态的监控和更新方法第六实施例 的流程示意图;  6 is a schematic flowchart of a sixth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
图 7是本发明实施例提供的终端安全状态的监控和更新方法第七实施例 的流程示意图;  7 is a schematic flowchart of a seventh embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
图 8是本发明实施例提供的终端安全状态的监控和更新系统第一实施例 的结构示意图;  FIG. 8 is a schematic structural diagram of a first embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention; FIG.
图 9是本发明实施例提供的终端安全状态的监控和更新系统第二实施例 的结构示意图;  9 is a schematic structural diagram of a second embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention;
图 10是本发明实施例提供的终端安全状态的监控和更新系统第三实施例 的结构示意图;  FIG. 10 is a schematic structural diagram of a third embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention; FIG.
图 11是本发明实施例提供的终端安全状态的监控和更新系统第四实施例 的结构示意图。 具体实施方式 FIG. 11 is a fourth embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention; Schematic diagram of the structure. detailed description
下面将结合本发明实施例中的附图, 对本发明实施例中的技术方案进行 清楚、 完整地描述, 显然, 所描述的实施例仅仅是本发明一部分实施例, 而 不是全部的实施例。 基于本发明中的实施例, 本领域普通技术人员在没有作 出创造性劳动前提下所获得的所有其他实施例, 都属于本发明保护的范围。  The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
本发明实施例提供了一种终端安全状态的监控和更新方法和系统, 通过 在不同的域之间进行元数据交互,实现对终端的安全状态进行监控和 /或更新。 需要说明的是, 本发明实施例所描述的终端安全状态信息, 是指可以反映终 端安全状态的一些信息, 比如终端所在的操作系统版本、 补丁信息、 防火墙 版本、 杀毒软件的版本以及浏览器的版本等相关信息;  The embodiments of the present invention provide a method and system for monitoring and updating a security state of a terminal, which implements monitoring and/or updating the security state of the terminal by performing metadata interaction between different domains. It should be noted that the terminal security state information described in the embodiment of the present invention refers to some information that can reflect the security state of the terminal, such as the operating system version, the patch information, the firewall version, the version of the antivirus software, and the browser of the terminal. Version and other related information;
本发明实施例所描述的元数据可以包括: 终端安全状态信息; 和 /或, 表 明终端当前所在网络中设备、 用户、 流量的状态信息, 其中, 所述状态信息 包括注册的地址绑定、 认证状态、 终端的策略合规状态、 终端行为、 以及授 权状态等信息。  The metadata described in the embodiment of the present invention may include: terminal security status information; and/or status information indicating devices, users, and traffic in the network where the terminal is currently located, where the status information includes registered address binding and authentication. Information such as status, terminal policy compliance status, terminal behavior, and authorization status.
参见图 1 ,为本发明实施例提供的终端安全状态的监控和更新方法第一实 施例的流程示意图;  1 is a schematic flowchart of a first embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
本实施例提供的方法包括:  The method provided in this embodiment includes:
步骤 100,请求方从提供方获得与终端安全状态相关的元数据; 所述请求 方为第三方业务提供者, 或者在安全状态信息请求域提供方在安全状态信息 提供域;  Step 100: The requesting party obtains metadata related to the security status of the terminal from the provider; the requesting party is a third-party service provider, or requests the domain provider to provide a domain in the security state information in the security state information;
在本实施例中及以下的实施例中, 所述请求方为终端安全状态信息请求 方, 所述提供方为终端安全状态信息提供方。  In this embodiment and the following embodiments, the requesting party is a terminal security state information requesting party, and the providing party is a terminal security state information providing party.
步骤 101 , 所述请求方根据所述终端安全状态相关的元数据, 对终端的安 全状态进行监控和 /或更新。 需要说明的是, 所述请求方通过连接所述安全状态信息提供域中的服务 器的连接接口, 从提供方获得与终端安全状态相关的元数据; Step 101: The requesting party monitors and/or updates the security status of the terminal according to the metadata related to the security status of the terminal. It should be noted that, the requesting party obtains metadata related to the security state of the terminal from the provider by connecting the connection interface of the server in the security state information providing domain;
在本实施例及以下的实施例中, 所述服务器具体为可信网络连接服务器, 所述连接接口具体为联合可信网络连接接口 ( IF-FTNC , Interface for Federated Trusted Network Connection )。  In the embodiment and the following embodiments, the server is specifically a trusted network connection server, and the connection interface is specifically an Interface for Federated Trusted Network Connection (IF-FTNC).
实施终端安全状态的监控和更新方法第一实施例, 在不同的域之间进行 元数据交互, 可以实现对终端的安全状态进行监控和 /或更新。  Method for Monitoring and Updating Terminal Security Status In the first embodiment, metadata interaction between different domains can be implemented to monitor and/or update the security status of the terminal.
参见图 2,是本发明实施例提供的终端安全状态的监控和更新方法第二实 施例的流程示意图;  2 is a schematic flowchart of a second embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
本发明实施例中, 所述终端跨域之前所在的域作为安全状态信息提供域, 终端跨域之后所在的域作为安全状态信息请求域, 所述终端安全状态信息请 求方为第三方业务提供者或者安全状态信息请求域中的应用服务器, 所述终 端安全状态信息提供方为安全状态信息提供域中的元数据访问点。  In the embodiment of the present invention, the domain in which the terminal is located before the domain is used as the security state information providing domain, and the domain in which the terminal crosses the domain is the security state information requesting domain, and the terminal security state information requesting party is the third-party service provider. Or the security status information requests an application server in the domain, and the terminal security status information provider provides a metadata access point in the domain for the security status information.
本实施例提供的终端安全状态的监控和更新方法包括:  The method for monitoring and updating the security status of the terminal provided in this embodiment includes:
步骤 200,第三方业务提供者或者安全状态信息请求域中的应用服务器通 过联合可信网络连接接口向安全状态信息提供域中的可信网络连接服务器发 送元数据请求消息;  Step 200: The third-party service provider or the application server in the security status information request domain sends a metadata request message to the trusted network connection server in the security state information providing domain through the joint trusted network connection interface.
步骤 201 ,安全状态信息提供域中的可信网络连接服务器收到所述元数据 请求消息后, 转发给所述安全状态信息提供域中的元数据访问点;  Step 201: After receiving the metadata request message, the trusted network connection server in the security state information providing domain forwards the metadata access point to the security state information providing domain.
步骤 202,所述安全状态信息提供域中的元数据访问点接收到所述元数据 请求消息后, 向所述安全状态信息提供求域中的可信网络连接服务器发送与 终端安全状态相关的元数据;  Step 202: After receiving the metadata request message, the metadata access point in the security status information providing domain sends a element related to the terminal security status to the trusted network connection server in the security status information request domain. Data
步骤 203 ,所述安全状态信息提供域中的可信网络连接服务器通过联合可 信网络连接接口向第三方业务提供者或者安全状态信息请求域中的应用服务 器返回所述元数据;  Step 203: The trusted network connection server in the security status information providing domain returns the metadata to the third party service provider or the application server in the security state information request domain through the joint trusted network connection interface.
步骤 204,所述第三方业务提供者或者安全状态信息请求域中的应用服务 器根据所述元数据, 对终端的安全状态进行监控和 /或更新。 Step 204: The third party service provider or the security status information request application service in the domain The device monitors and/or updates the security status of the terminal according to the metadata.
实施终端安全状态的监控和更新方法第二实施例, 通过联合可信网络连 接接口, 在第三方业务提供者与安全状态信息提供域, 或者安全状态信息请 求域和与安全状态信息提供域之间进行元数据交互, 可以实现第三方业务提 供者或者安全状态信息请求域中的应用服务器对终端的安全状态进行监控和 / 或更新。  The second embodiment for implementing the monitoring and updating method of the terminal security state is provided by the joint trusted network connection interface between the third-party service provider and the security state information providing domain, or the security state information requesting domain and the security state information providing domain. Metadata interaction enables third-party service providers or application servers in the security status information request domain to monitor and/or update the security status of the terminal.
参见图 3 ,是本发明实施例提供的终端安全状态的监控和更新方法第二实 施例的流程示意图;  3 is a schematic flowchart of a second embodiment of a method for monitoring and updating a terminal security state according to an embodiment of the present invention;
首先说明的是, 本实施中, 终端跨域之前所在的域为断言安全域(ASD ), 所谓 ASD, 作为终端的归属域, 有权断言终端是否安全, 可以提供安全状态 信息或者终端的安全状态评估结果或者安全凭证以及 metadata等; 终端跨域 之后所在的域为断言依赖安全域(RSD ), 所谓 RSD, 作为终端的拜访域, 它 本身不知道终端是否安全, 需要依赖于 ASD提供的安全状态信息或者终端的 安全状态评估结果或者安全凭证以及 metadata, 才可以明确所述终端是否安 全。  First, in this implementation, the domain in which the terminal crosses the domain is the assertion security domain (ASD). The so-called ASD, as the home domain of the terminal, has the right to assert whether the terminal is secure and can provide security status information or security status of the terminal. Evaluation results or security credentials and metadata, etc.; the domain after the terminal cross-domain is the assertion dependent security domain (RSD), the so-called RSD, as the visited domain of the terminal, it does not know whether the terminal is secure or not, and depends on the security state provided by ASD. The information or the security status assessment result of the terminal or the security certificate and the metadata can be used to determine whether the terminal is secure.
当终端访问一个第三方业务提供者或者 RSD中的某一应用服务器提供的 服务时, 对于第三方业务提供者或者应用服务器来说, 不仅需要对终端在接 入的时候通过安全评估进行接入控制, 而且还需要在终端接入之后实时完成 对终端安全状态的掌握, 以便能够在终端的安全状态发生变化后, 及时采取 相应的措施。  When a terminal accesses a service provided by a third-party service provider or an application server in the RSD, the third-party service provider or the application server not only needs to perform access control through the security assessment when the terminal accesses. Moreover, it is also necessary to complete the mastering of the security state of the terminal in real time after the terminal is accessed, so that corresponding measures can be taken in time after the security state of the terminal changes.
本实施例中, 将所述终端跨域之前所在的域, 即 ASD作为安全状态信息 提供域, 终端跨域之后所在的域, 即 RSD作为安全状态信息请求域, 所述终 端安全状态信息请求方则为第三方业务提供者或者为 RSD中的应用服务器, 所述终端安全状态信息提供方为 ASD 中的元数据访问点 (MAP, Metadata Access Point );  In this embodiment, the domain in which the terminal crosses the domain, that is, the ASD is used as the security state information providing domain, and the domain in which the terminal crosses the domain, that is, the RSD is used as the security state information requesting domain, and the terminal security state information requesting party The third party service provider or the application server in the RSD, where the terminal security status information provider is a metadata access point (MAP, Metadata Access Point) in the ASD;
需要说明的是, 终端在本发明实施例中为支持 TNC功能的 TNC客户端, 以下以 TNC客户端进行说明 , MAP在实施例中是以 MAP服务器实现的 , 以 下将以 MAP服务器进行说明; It should be noted that, in the embodiment of the present invention, the terminal is a TNC client that supports the TNC function. The following is described by the TNC client. The MAP is implemented by the MAP server in the embodiment, and the following will be described by the MAP server;
具体方法流程如下所示:  The specific method flow is as follows:
步骤 300, TNC客户端向第三方业务提供者或者 RSD中的应用服务器发 起针对某种业务的请求;  Step 300: The TNC client sends a request for a certain service to a third-party service provider or an application server in the RSD.
步骤 301 , 第三方业务提供者或者 RSD中的应用服务器确定合适的安全 状态或安全评估结果(assertion ) 的提供者, 这里的 assertion可能只是 TNC 客户端的安全状态信息或者终端的安全状态评估结果或者安全凭证以及 metadata等, 也可以是包含以上终端的所有信息的 assertion; 第三方业务提供 者或者 RSD中的应用服务器确定合适的 assertion的过程也即对 ASD的发现 过程。 需要说明的是, 对于 ASD的发现可以是 TNC客户端和第三方业务提 供者或者 RSD中的应用服务器相互协商的结果, 也可以由 TNC客户端直接 告知第三方业务提供者或者 RSD中的应用服务器。  Step 301: The third-party service provider or the application server in the RSD determines the provider of the appropriate security status or security assessment result. The assertion here may be only the security status information of the TNC client or the security status assessment result or security of the terminal. Credentials and metadata, etc., may also be an assertion containing all the information of the above terminal; the process of determining the appropriate assertion by the third-party service provider or the application server in the RSD is the discovery process of the ASD. It should be noted that the discovery of the ASD may be the result of mutual negotiation between the TNC client and the third-party service provider or the application server in the RSD, and the TNC client may directly notify the third-party service provider or the application server in the RSD. .
步骤 302,第三方业务提供者或者 RSD中的应用服务器向 ASD中的 TNC 服务器发送请求消息, 请求 TNC客户端的 asserion;  Step 302: The third-party service provider or the application server in the RSD sends a request message to the TNC server in the ASD, requesting the assertion of the TNC client;
步骤 303, TNC服务器与 ASD中的 MAP服务器进行信息交互获取该 TNC 客户端的 metadata; 如图 3所示, ASD中的 TNC服务器向所述 MAP服务器 发送 IF-MAP询问消息, 获取该终端的 metadata;  Step 303: The TNC server performs information exchange with the MAP server in the ASD to obtain the metadata of the TNC client. As shown in FIG. 3, the TNC server in the ASD sends an IF-MAP query message to the MAP server to obtain the metadata of the terminal.
步骤 304, ASD中 TNC服务器向 RSD中的第三方业务提供者或者 RSD 中的应用服务器返回响应消息, 给该 TNC客户端提供对应的 assertion;  Step 304: The TNC server returns a response message to the third-party service provider in the RSD or the application server in the RSD, and provides a corresponding assertion to the TNC client.
步骤 305, 根据 ASD中的 TNC服务器提供的 TNC客户端的 assertion, 第三方业务提供者或者 RSD中的应用服务器向 TNC客户端返回响应消息, 允许接入 TNC客户端的业务请求。 当然, 如果 TNC客户端的 assertion不能 满足该业务提供者对安全状态的要求, 则第三方业务提供者或者 RSD中的应 用服务器可以对 TNC客户端的业务请求作出拒绝接入的响应。  Step 305: According to the assertion of the TNC client provided by the TNC server in the ASD, the third-party service provider or the application server in the RSD returns a response message to the TNC client, and allows access to the service request of the TNC client. Of course, if the assertion of the TNC client cannot meet the security state requirements of the service provider, the third-party service provider or the application server in the RSD can respond to the TNC client's service request by denying access.
步骤 306, TNC客户端将业务接入第三方业务提供者或者 RSD中的应用 服务器, 享用第三方业务提供者或者 RSD中的应用服务器提供的业务服务; 步骤 307, 对于第三方业务提供者或者 RSD中的应用服务器来说, 不仅 需要掌握 TNC客户端在接入时候的安全状态, 而且还需要进一步掌握 TNC 客户端在享用它提供的业务服务过程中的实时安全状态, 以免在 TNC客户端 的安全状态发生变化后, 给自己的服务带来威胁。 因此该第三方业务提供者 或者 RSD中的应用服务器通过 IF - FTNC向 TNC客户端所在 ASD的 TNC 服务器发送元数据请求( metadata subscribe ) 消息; Step 306, the TNC client accesses the service to the third-party service provider or the application in the RSD. The server provides the service service provided by the third-party service provider or the application server in the RSD. Step 307: For the third-party service provider or the application server in the RSD, not only the security status of the TNC client during access is required. Moreover, it is necessary to further grasp the real-time security status of the TNC client in enjoying the business service provided by it, so as to avoid threat to its own service after the security status of the TNC client changes. Therefore, the third-party service provider or the application server in the RSD sends a metadata subscribe message to the TNC server of the ASD where the TNC client is located through the IF-FTNC;
步骤 308, ASD中的 TNC服务器收到所述 metadata subscribe消息之后, 发给 ASD中的 MAP服务器;  Step 308: After receiving the metadata subscribe message, the TNC server in the ASD sends the message to the MAP server in the ASD.
步骤 309, 当 TNC客户端所在 ASD中的 MAP服务器收到关于该 TNC 客户端的安全状态变化情况时, 发送元数据结果(metadata result ) 消息给该 ASD中的 TNC服务器;  Step 309, when the MAP server in the ASD where the TNC client is located receives the security status change of the TNC client, sending a metadata result message to the TNC server in the ASD;
步骤 310, 所述 ASD中的 TNC服务器将元数据结果(metadata result )消 息通过 IF - FTNC及时将 TNC客户端安全状态变化的结果告知所述第三方业 务提供者或者 RSD中的应用服务器。  Step 310: The TNC server in the ASD informs the third-party service provider or the application server in the RSD of the result of the TNC client security state change by using the IF-FTNC in time by the metadata result message.
这时所述第三方业务提供者或者 RSD中的应用服务器根据所述 metadata result消息就可以对终端进行相应的操作, 进一步实现对终端安全状态的监控 和 /或更新。  At this time, the third-party service provider or the application server in the RSD can perform corresponding operations on the terminal according to the metadata result message, and further implement monitoring and/or updating of the security state of the terminal.
参见图 4,为本发明实施例提供的终端安全状态的监控和更新方法第四实 施例的流程示意图;  4 is a schematic flowchart of a fourth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
本发明实施例中, 所述终端跨域之前所在的域作为安全状态信息请求域, 终端跨域之后所在的域作为安全状态信息提供域, 所述终端安全状态信息请 求方为安全状态信息请求域中的可信网络连接服务器, 所述终端安全状态信 息提供方为安全状态信息提供域中的元数据访问点;  In the embodiment of the present invention, the domain in which the terminal is located before the domain is used as the security state information requesting domain, and the domain in which the terminal is located after the domain is the security state information providing domain, and the terminal security state information requesting party is the security state information requesting domain. a trusted network connection server, wherein the terminal security status information provider provides a metadata access point in the domain for the security status information;
本实施例提供的方法, 包括:  The method provided in this embodiment includes:
步骤 400, 在终端安全状态变化或异常情况时, 向所述安全状态信息提供 在终端安全状态变化时, 或网络中与该终端异常情况时, 是由所述安全状态 信息提供域中的传感器( Sensors ) /入侵检测系统( IDS , Inbreak Detect System ) /入侵防护系统(IPS, Inbreak Protect System ) 向安全状态信息提供域中的元 数据访问点发布终端安全状态变化或异常情况信息; Step 400: When the terminal security status changes or an abnormal situation, provide the security status information When the security status of the terminal changes, or when the terminal is abnormal with the terminal, the sensors (IDS, Inbreak Detect System)/Intrusion Prevention System (IPS) in the domain of the security status information are provided. Inbreak Protect System) issues terminal security status change or abnormal situation information to a metadata access point in the security status information providing domain;
步骤 401,所述安全状态信息提供域中的元数据访问点将所述终端安全状 态变化或异常情况信息发布给安全状态信息提供域中的可信网络连接服务 器;  Step 401: The metadata access point in the security status information providing domain issues the terminal security status change or abnormal situation information to the trusted network connection server in the security status information providing domain;
步骤 402 ,所述安全状态信息提供域中的可信网络连接服务器通过联合可 信网络连接接口将与终端安全状态相关的元数据发送给安全状态信息请求域 中的可信网络连接服务器;  Step 402: The trusted network connection server in the security status information providing domain sends the metadata related to the terminal security status to the trusted network connection server in the security status information request domain through the joint trusted network connection interface.
步骤 403 ,所述安全状态信息请求域中的可信网络连接服务器将所述元数 据发送给所述安全状态信息请求域中的元数据访问点;  Step 403: The trusted network connection server in the security status information request domain sends the metadata to a metadata access point in the security state information request domain.
步骤 404,所述安全状态信息请求域中的元数据访问点汇总并分析元数据 以后, 将分析结果告知给安全状态信息请求域中的可信网络连接服务器;  Step 404: After the metadata access point in the security status information request domain summarizes and analyzes the metadata, the analysis result is notified to the trusted network connection server in the security status information request domain;
步骤 405 ,所述安全状态信息请求域中的可信网络连接服务器根据所述元 数据分析结果对所述终端进行监控和 /或更新。  Step 405: The trusted network connection server in the security status information request domain monitors and/or updates the terminal according to the metadata analysis result.
实施终端安全状态的监控和更新方法第四实施例, 利用联合可信网络连 接接口在安全状态信息请求域和安全状态信息提供域之间进行元数据交互, 实现安全状态信息请求域中的可信网络连接服务器对终端的安全状态进行实 时监控和更新。  The fourth embodiment uses the joint trusted network connection interface to perform metadata interaction between the security state information request domain and the security state information providing domain to implement trustedness in the security state information request domain. The network connection server monitors and updates the security status of the terminal in real time.
参见图 5 ,为本发明实施例提供的终端安全状态的监控和更新方法第五实 施例的流程示意图;  5 is a schematic flowchart of a fifth embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
首先说明的是, 本实施中, 终端跨域之前所在的域为断言安全域(ASD ), 所谓 ASD, 作为终端的归属域, 有权断言终端是否安全, 可以提供安全状态 信息或者终端的安全状态评估结果或者安全凭证以及 metadata等; 终端跨域 之后所在的域为断言依赖安全域(RSD ), 所谓 RSD, 作为终端的拜访域, 它 本身不知道终端是否安全, 需要依赖于 ASD提供的安全状态信息或者终端的 安全状态评估结果或者安全凭证以及 metadata, 才可以明确所述终端是否安 全。 First, in this implementation, the domain in which the terminal crosses the domain is the assertion security domain (ASD). The so-called ASD, as the home domain of the terminal, has the right to assert whether the terminal is secure and can provide security status information or security status of the terminal. Evaluation results or security credentials and metadata, etc.; terminal cross-domain The domain that is located is the assertion dependent security domain (RSD). The so-called RSD, as the visited domain of the terminal, does not know whether the terminal is secure or not. It depends on the security status information provided by the ASD or the security status assessment result or security certificate of the terminal. Metadata, can be clear whether the terminal is safe.
当终端跨域接入到 RSD之后, 虽然终端当前并不在 ASD,但是对于 ASD 来说, 需要实时知道该终端的安全状态情况, 实现对终端进行实时监控。 同 时及时对终端的安全状态(如, 软件版本、 系统补丁等)进行实时更新升级。 这种情况下, 需要 RSD内的 Sensors /IDS/IPS等将与该终端相关的元数据传 输给 ASD中的 MAP服务器。 经 ASD中的 MAP服务器分析处理所述元数据 后将产生的 metadata result发送给 ASD中的 TNC服务器, 从而允许 ASD中 的 TNC服务器对终端安全状态等信息进行及时更新升级。  After the terminal is connected to the RSD, the terminal is not currently in the ASD. However, for the ASD, the security status of the terminal needs to be known in real time to implement real-time monitoring of the terminal. At the same time, the security status of the terminal (such as software version, system patch, etc.) is updated in real time. In this case, the metadata associated with the terminal, such as Sensors /IDS/IPS in the RSD, is required to be transmitted to the MAP server in the ASD. After the metadata is analyzed and processed by the MAP server in the ASD, the generated metadata result is sent to the TNC server in the ASD, thereby allowing the TNC server in the ASD to update and upgrade the security status of the terminal in time.
本实施例中,所述终端跨域之前所在的域 ASD作为安全状态信息请求域, 终端跨域之后所在的域 RSD作为安全状态信息提供域, 所述终端安全状态信 息请求方为 ASD中的 TNC服务器, 所述终端安全状态信息提供方为 RSD中 的 MAP;  In this embodiment, the domain ASD in which the terminal crosses the domain is used as the security state information requesting domain, and the domain RSD in which the terminal crosses the domain is used as the security state information providing domain, and the terminal security state information requesting party is the TNC in the ASD. a server, the terminal security status information provider is a MAP in the RSD;
需要说明的是, 终端在本发明实施例中为支持 TNC功能的 TNC客户端, 以下以 TNC客户端进行说明 , MAP在实施例中是以 MAP服务器实现的 , 以 下将以 MAP服务器进行说明;  It should be noted that, in the embodiment of the present invention, the terminal is a TNC client that supports the TNC function. The following describes the TNC client. The MAP is implemented by the MAP server in the embodiment, and the MAP server is used for the following description;
具体方法流程如下所示:  The specific method flow is as follows:
步骤 500至步骤 506跟实施例三中的步骤 300至步骤 306基本相同, 只 是负责对 TNC客户端进行接入评估的是 RSD中的 TNC服务器, 在此不再赘 述。  Steps 500 to 506 are basically the same as steps 300 to 306 in the third embodiment. The TNC server in the RSD is responsible for the access evaluation of the TNC client, and is not described here.
步骤 507, TNC客户端接入 RSD,当该 RSD内的 Sensor/IDS/IPS发现 TNC 客户端的某些状态发生变化, 或者发现 TNC客户端有异常情况时, 就会向该 RSD中的 MAP服务器发送元数据发布( metadata publisher )消息, 发布 TNC 客户端的状态发生变化或者该 TNC客户端有异常情况的信息; 步骤 508, RSD中的 MAP服务器收到所述信息之后,就会发布给该 RSD 中的 TNC服务器; Step 507: The TNC client accesses the RSD. When the Sensor/IDS/IPS in the RSD finds that some state of the TNC client changes, or finds that the TNC client has an abnormal situation, it sends the message to the MAP server in the RSD. A metadata publisher message, which announces that the state of the TNC client has changed or that the TNC client has an abnormal condition; Step 508: After receiving the information, the MAP server in the RSD sends the information to the TNC server in the RSD.
步骤 509, RSD 内的 TNC服务器利用 IF-FTNC接口, 通过元数据发布 ( metadata publisher ) 消息将与该 TNC客户端安全状态信息相关的 metadata 发布给 TNC客户端所在 ASD中的 TNC服务器;  Step 509: The TNC server in the RSD uses the IF-FTNC interface to advertise the metadata related to the TNC client security status information to the TNC server in the ASD where the TNC client is located by using a metadata publisher message;
步骤 510, ASD中的 TNC服务器也将所述信息通过元数据发布( metadata publisher ) 消息发布给 ASD中的 MAP服务器;  Step 510: The TNC server in the ASD also issues the information to the MAP server in the ASD through a metadata publisher message;
步骤 511 , ASD中的 MAP服务器在收集、汇总并分析所述 metadata之后, 就会将最终的结果告知 ASD中的 TNC服务器;  Step 511: After collecting, summarizing, and analyzing the metadata, the MAP server in the ASD notifies the TNC server in the ASD of the final result;
步骤 512, ASD中的 TNC服务器根据 metadata的分析汇总结果, 对所述 TNC客户端进行监控和 /或更新升级。  Step 512: The TNC server in the ASD monitors and/or updates the TNC client according to the analysis and summary result of the metadata.
参见图 6,为本发明实施例提供的终端安全状态的监控和更新方法第六实 施例的流程示意图;  6 is a schematic flowchart of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention;
本发明实施例中, 所述终端跨域之前所在的域作为安全状态信息提供域, 终端跨域之后所在的域作为安全状态信息请求域, 所述终端安全状态信息请 求方为安全状态信息请求域中的可信网络连接服务器, 所述终端安全状态信 息提供方为安全状态信息提供域中的元数据访问点, 本实施例提供的方法, 包括:  In the embodiment of the present invention, the domain in which the terminal is located before the domain is used as the security state information providing domain, and the domain in which the terminal crosses the domain is used as the security state information requesting domain, and the terminal security state information requesting party is the security state information requesting domain. In the trusted network connection server, the terminal security status information provider provides a metadata access point in the domain for the security status information. The method provided in this embodiment includes:
步骤 600,所述安全状态信息请求域中的可信网络连接服务器通过联合可 信网络连接接口向安全状态信息提供域中的可信网络连接服务器发送元数据 请求消息;  Step 600: The trusted network connection server in the security status information requesting domain sends a metadata request message to the trusted network connection server in the security state information providing domain through the joint trusted network connection interface;
步骤 601 ,所述安全状态信息提供域中的可信网络连接服务器将所述元数 据请求消息发送给安全状态信息提供域中的元数据访问点;  Step 601: The trusted network connection server in the security status information providing domain sends the metadata request message to a metadata access point in the security state information providing domain;
步骤 602,所述安全状态信息提供域中的元数据访问点接收所述元数据请 求消息, 在终端的安全信息需要更新时, 将终端的安全信息需要更新的消息 告知所述安全状态信息提供域中的可信网络连接服务器; 步骤 603 ,所述安全状态信息提供域中的可信网络连接服务器通过联合可 信网络连接接口向安全状态信息请求域中的可信网络连接服务器发送元数 据, 告知所述终端的安全信息需要更新; Step 602: The metadata access point in the security status information providing domain receives the metadata request message, and when the security information of the terminal needs to be updated, the security information of the terminal needs to be updated to notify the security status information providing domain. Trusted network connection server; Step 603: The trusted network connection server in the security state information providing domain sends metadata to the trusted network connection server in the security state information requesting domain through the joint trusted network connection interface, and informs the terminal that the security information needs to be updated. ;
步骤 604,所述安全状态信息请求域中的可信网络连接服务器向所述安全 状态信息请求域中的元数据访问点发送所述元数据, 告知所述元数据访问点, 终端的安全信息需要更新;  Step 604: The trusted network connection server in the security status information request domain sends the metadata to the metadata access point in the security state information request domain, and informs the metadata access point that the security information of the terminal needs Update
步骤 605 , 所述安全状态信息请求域中的元数据访问点根据所述元数据, 对终端进行监控和 /或更新。  Step 605: The metadata access point in the security status information request domain monitors and/or updates the terminal according to the metadata.
实施终端安全状态的监控和更新方法第六实施例, 通过联合可信网络连 接接口在安全状态信息请求域和安全状态信息提供域之间进行元数据交互, 可以终端安全状态信息请求域中的元数据访问点对终端的安全状态进行监控 和 /或更新。  The method for monitoring and updating the terminal security state is as follows: In the sixth embodiment, the metadata interaction between the security state information request domain and the security state information providing domain is performed through the joint trusted network connection interface, and the terminal security state information may request the element in the domain. The data access point monitors and/or updates the security status of the terminal.
参见图 7,为本发明实施例提供的终端安全状态的监控和更新方法第七实 施例的流程示意图。  FIG. 7 is a schematic flowchart diagram of a seventh embodiment of a method for monitoring and updating a security state of a terminal according to an embodiment of the present invention.
首先说明的是, 本实施中, 终端跨域之前所在的域为断言安全域(ASD ), 所谓 ASD, 作为终端的归属域, 有权断言终端是否安全, 可以提供安全状态 信息或者终端的安全状态评估结果或者安全凭证以及 metadata等; 终端跨域 之后所在的域为断言依赖安全域(RSD ), 所谓 RSD, 作为终端的拜访域, 它 本身不知道终端是否安全, 需要依赖于 ASD提供的安全状态信息或者终端的 安全状态评估结果或者安全凭证以及 metadata, 才可以明确所述终端是否安 全。  First, in this implementation, the domain in which the terminal crosses the domain is the assertion security domain (ASD). The so-called ASD, as the home domain of the terminal, has the right to assert whether the terminal is secure and can provide security status information or security status of the terminal. Evaluation results or security credentials and metadata, etc.; the domain after the terminal cross-domain is the assertion dependent security domain (RSD), the so-called RSD, as the visited domain of the terminal, it does not know whether the terminal is secure or not, and depends on the security state provided by ASD. The information or the security status assessment result of the terminal or the security certificate and the metadata can be used to determine whether the terminal is secure.
当终端从 ASD跨域接入到另一个安全域 RSD中时, 一旦终端的 ASD发 现终端的某一或某些安全状态需要进行更新或者升级之时, ASD必须及时告 知终端当前所在的 RSD, 以便实现对终端安全状态信息的实时更新。  When the terminal accesses from the ASD to another security domain RSD, once the terminal's ASD discovers that one or some security states of the terminal need to be updated or upgraded, the ASD must promptly inform the terminal of the current RSD, so that Real-time update of terminal security status information.
本发明实施例中, 所述终端跨域之前所在的域, 即 ASD作为安全状态信 息提供域, 终端跨域之后所在的域, 即 RSD作为安全状态信息请求域, 所述 终端安全状态信息请求方为 RSD中的 TNC服务器, 所述终端安全状态信息 提供方为 ASD中的 MAP; In the embodiment of the present invention, the domain in which the terminal crosses the domain, that is, the ASD is used as the security state information providing domain, and the domain in which the terminal crosses the domain, that is, the RSD is used as the security state information request domain, The terminal security status information requester is a TNC server in the RSD, and the terminal security status information provider is a MAP in the ASD;
需要说明的是, 终端在本发明实施例中为支持 TNC功能的 TNC客户端, 以下以 TNC客户端进行说明 , MAP在实施例中是以 MAP服务器实现的 , 以 下将以 MAP服务器进行说明;  It should be noted that, in the embodiment of the present invention, the terminal is a TNC client that supports the TNC function. The following describes the TNC client. The MAP is implemented by the MAP server in the embodiment, and the MAP server is used for the following description;
具体方法流程如下所示:  The specific method flow is as follows:
步骤 700至步骤 706与实施例三中的步骤 300至步骤 306基本相同, 在 此不再赘述。  Steps 700 to 706 are substantially the same as steps 300 to 306 in the third embodiment, and details are not described herein again.
为了能够对 TNC客户端的安全状态信息进行升级更新, RSD中的 TNC 服务器需要接收 ASD中 MAP服务器发布的元数据。  In order to be able to update and update the security status information of the TNC client, the TNC server in the RSD needs to receive the metadata published by the MAP server in the ASD.
首先,步骤 707, RSD中的 TNC服务器通过 IF - FTNC向 ASD中的 TNC 服务器发送元数据请求( metadata subscribe ) 消息;  First, in step 707, the TNC server in the RSD sends a metadata subscribe message to the TNC server in the ASD through the IF-FTNC;
步骤 708, 所述 ASD中的 TNC服务器向所述 ASD中的 MAP服务器转 发所述 metadata subscribe消息。  Step 708: The TNC server in the ASD forwards the metadata subscribe message to the MAP server in the ASD.
步骤 709, 当 ASD发现 TNC客户端的某安全信息需要进行升级更新时, ASD中的 MAP服务器就会向 ASD中的 TNC服务器发送元数据结果( metadata result ) 消息, 告知终端的某安全信息需要进行升级更新;  Step 709: When the ASD finds that a certain security information of the TNC client needs to be upgraded, the MAP server in the ASD sends a metadata result message to the TNC server in the ASD, and informs the terminal that a certain security information needs to be upgraded. Update
步骤 710,所述 ASD中的 TNC服务器则通过 IF - FTNC向 RSD中的 TNC 服务器发送所述 metadata result消息, 告知终端的某安全信息需要进行升级更 新;  Step 710: The TNC server in the ASD sends the metadata result message to the TNC server in the RSD through the IF-FTNC, and informs the terminal that a certain security information needs to be upgraded and updated.
步骤 711 , RSD中的 TNC服务器向该 RSD中的 MAP服务器发送 metadata publish消息, 向 MAP服务器发布 TNC客户端的某安全信息需要进行升级更 新信息。  Step 711: The TNC server in the RSD sends a metadata publish message to the MAP server in the RSD, and the security information of the TNC client needs to be updated to update the information to the MAP server.
所述 RSD中的 MAP服务器接收到所述 metadata publish消息后, 就能够 对 TNC客户端的某安全信息进行升级更新。  After receiving the metadata publish message, the MAP server in the RSD can update and update a certain security information of the TNC client.
图 8是本发明实施例提供的终端安全状态的监控和更新系统第一实施例 的结构示意图; FIG. 8 is a first embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention; FIG. Schematic diagram of the structure;
请求方 200和提供方 100;  Requester 200 and provider 100;
所述请求方 200,用于从所述提供方 100获得与终端安全状态相关的元数 据; 所述请求方 200为第三方业务提供者 4, 或者在安全状态信息请求域中; 提供方 100在安全状态信息提供域中;  The requesting party 200 is configured to obtain metadata related to a terminal security state from the provider 100; the requesting party 200 is a third-party service provider 4, or in a security state information requesting domain; the provider 100 is Security status information is provided in the domain;
请求方 200根据所述终端安全状态相关的元数据, 对终端的安全状态进 行监控和 /或更新。  The requesting party 200 monitors and/or updates the security status of the terminal according to the metadata related to the terminal security status.
在本实施例及以下的实施例中, 所述请求方 200为终端安全状态信息请 求方, 所述提供方 100为终端安全状态信息提供方。  In this embodiment and the following embodiments, the requesting party 200 is a terminal security state information requesting party, and the provider 100 is a terminal security state information providing party.
所述安全状态信息提供域中还包括: 服务器, 在本实施例及以下的实施 例中, 所述服务器具体为可信网络连接服务器;  The security status information providing domain further includes: a server, in the embodiment and the following embodiments, the server is specifically a trusted network connection server;
请求方 200通过安全状态信息提供域中的可信网络连接服务器, 从提供 方 100获得与终端安全状态相关的元数据;  The requesting party 200 obtains metadata related to the security status of the terminal from the provider 100 through the trusted state network connection server in the security state information providing domain;
所述安全状态信息提供域中的可信网络连接服务器还连接有连接接口 3 , 在本实施例及以下的实施例中, 所述连接接口 3 具体为联合可信网络连接接 口;  The trusted network connection server in the security state information providing domain is further connected with the connection interface 3, and in the embodiment and the following embodiments, the connection interface 3 is specifically a joint trusted network connection interface;
请求方 200通过连接所述安全状态信息提供域中的可信网络连接服务器 的连接接口 3 , 从提供方 100获得与终端安全状态相关的元数据。  The requesting party 200 obtains metadata related to the terminal security status from the provider 100 by connecting the connection interface 3 of the trusted network connection server in the security status information providing domain.
实施本发明实施例提供的系统, 通过在不同域之间进行元数据交互, 能 够实现对终端的安全状态实时控制和 /或对终端的安全信息进行及时更新。  By implementing the system provided by the embodiment of the present invention, real-time control of the security status of the terminal and/or timely update of the security information of the terminal can be implemented by performing metadata interaction between different domains.
图 9是本发明实施例提供的终端安全状态的监控和更新系统第二实施例 的结构示意图;  9 is a schematic structural diagram of a second embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention;
在本实施例中, 所述终端跨域之前所在的域, 即断言安全域(ASD ) 1作 为安全状态信息提供域, 终端跨域之后所在的域, 即依赖断言安全域(RSD ) 2作为安全状态信息请求域,所述终端安全状态信息请求方为第三方业务提供 者 4或者 RSD2中的应用服务器 20, 所述终端安全状态信息提供方为 ASD1 中的 MAP (本实施中以 MAP服务器 11实现); 所述 ASD1中还包括 TNC服 务器 10; In this embodiment, the domain in which the terminal crosses the domain before, that is, the asserted security domain (ASD) 1 serves as the security state information providing domain, and the domain in which the terminal crosses the domain, that is, relies on the asserted security domain (RSD) 2 as security. The status information request domain, the terminal security status information requester is the third party service provider 4 or the application server 20 in the RSD 2, and the terminal security status information provider is ASD1 MAP (implemented by the MAP server 11 in this implementation); the ASD1 further includes a TNC server 10;
所述第三方业务提供者 4或者 RSD2中的应用服务器 20, 用于通过联合 可信网络连接接口 ( IF-FTNC ) 3向 ASD1中的 TNC服务器 10发送元数据请 求消息;  The third-party service provider 4 or the application server 20 in the RSD 2 is configured to send a metadata request message to the TNC server 10 in the ASD1 through the joint trusted network connection interface (IF-FTNC) 3;
所述 ASD1中的 TNC服务器 10, 用于在收到所述元数据定制消息后, 将 元数据请求消息转发给所述 ASD1中的 MAP服务器 11 ;  The TNC server 10 in the ASD1 is configured to forward the metadata request message to the MAP server 11 in the ASD1 after receiving the metadata customization message;
所述 MAP服务器 11 ,用于接收所述元数据请求消息后,将与终端安全状 态相关的元数据发送给所述 ASD1中的 TNC服务器 10;  The MAP server 11 is configured to send the metadata related to the security status of the terminal to the TNC server 10 in the ASD1 after receiving the metadata request message;
所述 ASD1中的 TNC服务器 10, 用于通过 IF-FTNC3向第三方业务提供 者 4或者 RSD2中的应用服务器 20返回所述元数据, 将终端的安全状态信息 告知所述第三方业务提供者 4或者 RSD2中的应用服务器 20;  The TNC server 10 in the ASD1 is configured to return the metadata to the third-party service provider 4 or the application server 20 in the RSD2 through the IF-FTNC3, and notify the third-party service provider 4 of the security status information of the terminal. Or the application server 20 in the RSD 2;
第三方业务提供者 4或者 RSD2中的应用服务器 20则根据所述 TNC服 务器 10返回的与终端安全状态相关的元数据, 对终端的安全状态进行监控和 /或更新。  The third party service provider 4 or the application server 20 in the RSD 2 monitors and/or updates the security status of the terminal according to the metadata related to the security status of the terminal returned by the TNC server 10.
实施终端安全状态的监控和更新系统第二实施例, 通过 IF-FTNC在第三 方业务提供者与 ASD, 或者 RSD与 ASD之间进行元数据交互, 可以实现第 三方业务提供者或者 RSD 中的应用服务器对终端的安全状态进行监控和 /或 更新。  The second embodiment of the monitoring and updating system for implementing the security status of the terminal can implement the metadata interaction between the third-party service provider and the ASD, or between the RSD and the ASD through the IF-FTNC, so that the third-party service provider or the application in the RSD can be implemented. The server monitors and/or updates the security status of the terminal.
图 10是本发明实施例提供的终端安全状态的监控和更新系统第三实施例 的结构示意图;  FIG. 10 is a schematic structural diagram of a third embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention; FIG.
在本实施例中, 所述终端跨域之前所在的域, 即断言安全域(ASD ) 1作 为安全状态信息请求域, 终端跨域之后所在的域, 即依赖断言安全域(RSD ) 2作为安全状态信息提供域,所述终端安全状态信息请求方为 ASD1中的 TNC 服务器 10, 所述终端安全状态信息提供方为 RSD2中的 MAP (本实施例中以 MAP服务器 22实现); RSD2中还包括 TNC服务器 21和传感器 /入侵检测系 统 /入侵防护系统( Sersor/IDS/IPS ) 23; In this embodiment, the domain in which the terminal crosses the domain, that is, the asserted security domain (ASD) 1 as the security state information request domain, and the domain in which the terminal crosses the domain, that is, the assertion security domain (RSD) 2 is used as security. The status information provides a domain, the terminal security status information requester is the TNC server 10 in the ASD1, and the terminal security status information provider is the MAP in the RSD2 (implemented by the MAP server 22 in this embodiment); TNC Server 21 and Sensor/Intrusion Detection System System/Intrusion Prevention System (Sersor/IDS/IPS) 23;
所述 RSD2的 Sersor/IDS/IPS23 , 用于在终端安全状态变化时, 或终端异 常情况时, 向 RSD2中的 MAP服务器 22发布终端安全状态变化或异常情况 信息;  The Sersor/IDS/IPS23 of the RSD2 is used to issue terminal security status change or abnormal situation information to the MAP server 22 in the RSD2 when the terminal security status changes or the terminal abnormality occurs;
所述 RSD2的 MAP服务器 22,用于将所述终端安全状态变化或异常情况 信息发布给 RSD2中的 TNC服务器 21 ;  The MAP server 22 of the RSD2 is configured to release the security status change or abnormal situation information of the terminal to the TNC server 21 in the RSD2;
所述 RSD2 中的 TNC 服务器 21 , 用于通过联合可信网络连接接口 ( IF-FTNC ) 3将与终端安全状态相关的元数据发布给 ASD1 中的 TNC服务 器 10;  The TNC server 21 in the RSD2 is configured to release the metadata related to the security status of the terminal to the TNC server 10 in the ASD1 through the joint trusted network connection interface (IF-FTNC) 3;
所述 ASD1中的 TNC服务器 10, 用于根据所述元数据, 对终端进行监控 和 /或更新。  The TNC server 10 in the ASD1 is configured to monitor and/or update the terminal according to the metadata.
实施终端安全状态的监控和更新系统第三实施例, 通过 IF-FTNC接口在 RSD和 ASD之间进行元数据交互,可以使得 ASD中的 TNC服务器对终端的 安全状态进行监控和 /或更新。  The third embodiment of the monitoring and updating system for implementing the terminal security status, the metadata interaction between the RSD and the ASD through the IF-FTNC interface enables the TNC server in the ASD to monitor and/or update the security status of the terminal.
图 11是本发明实施例提供的终端安全状态的监控和更新系统第四实施例 的结构示意图;  11 is a schematic structural diagram of a fourth embodiment of a monitoring and updating system for a terminal security state according to an embodiment of the present invention;
本实施例中, 所述终端跨域之前所在的域, 即断言安全域( ASD ) 1作为 安全状态信息提供域, 终端跨域之后所在的域, 即依赖断言安全域(RSD ) 2 作为安全状态信息请求域, 所述终端安全状态信息请求方为 RSD2中的 TNC 服务器 21 , 所述终端安全状态信息提供方为 ASD1中的 MAP (本实施例中以 MAP服务器 11实现), 所述 RSD2中还包括 MAP (本实施中以 MAP服务器 22实现), 所述 ASD1中还包括 TNC服务器 10:  In this embodiment, the domain in which the terminal crosses the domain, that is, the asserted security domain (ASD) 1 serves as the security state information providing domain, and the domain in which the terminal crosses the domain, that is, the asserted security domain (RSD) 2 is used as the security state. The information request domain, the terminal security state information requester is the TNC server 21 in the RSD2, and the terminal security state information provider is the MAP in the ASD1 (implemented by the MAP server 11 in this embodiment), and the RSD2 is also Including MAP (implemented by the MAP server 22 in this implementation), the ASD1 further includes a TNC server 10:
所述 RSD2 中的 TNC 服务器 21 , 用于通过联合可信网络连接接口 ( IF-FTNC ) 3向 ASD1中的 TNC服务器 10发送元数据请求消息;  The TNC server 21 in the RSD2 is configured to send a metadata request message to the TNC server 10 in the ASD1 through the joint trusted network connection interface (IF-FTNC) 3;
所述 ASD1 中的 TNC服务器 10将所述元数据请求消息发送给 ASD1 中 的 MAP服务器 11 ; 所述 ASD1中的 MAP服务器 11 ,用于接收所述元数据请求消息,在终端 的安全信息需要更新时,将终端的安全信息需要更新告知所述 ASD1中的 TNC 服务器 10; The TNC server 10 in the ASD1 sends the metadata request message to the MAP server 11 in the ASD1; The MAP server 11 in the ASD1 is configured to receive the metadata request message, and notify the TNC server 10 in the ASD1 that the security information of the terminal needs to be updated when the security information of the terminal needs to be updated;
所述 ASD1中的 TNC服务器 10,用于通过 IF-FTNC3向 RSD2中的 TNC 服务器 21发送元数据, 告知所述终端的安全信息需要更新;  The TNC server 10 in the ASD1 is configured to send metadata to the TNC server 21 in the RSD2 through the IF-FTNC3, and inform the terminal that the security information needs to be updated;
所述 RSD2中的 TNC服务器 21 , 用于向所述 RSD2中的 MAP服务器 22 发送所述元数据, 告知所述 MAP服务器 22, 终端的安全信息需要更新;  The TNC server 21 in the RSD2 is configured to send the metadata to the MAP server 22 in the RSD2, and notify the MAP server 22 that the security information of the terminal needs to be updated;
所述 RSD2中的 MAP服务器 22则根据所述元数据, 对终端进行监控和 / 或更新。  The MAP server 22 in the RSD 2 monitors and/or updates the terminal according to the metadata.
实施终端安全状态的监控和更新系统第四实施例, 通过 IF-FTNC接口在 ASD和 RSD之间进行元数据交互,可以使 RSD中的 MAP服务器对终端的安 全状态进行监控和 /或更新。 控和更新方法的装置或设备, 或者是组成本发明实施例提供的终端安全状态 的监控和更新系统的装置或设备, 都应当属于本发明的保护范围。  Implementation of Monitoring and Updating System of Terminal Security Status In the fourth embodiment, metadata interaction between ASD and RSD is performed through the IF-FTNC interface, so that the MAP server in the RSD can monitor and/or update the security status of the terminal. The apparatus or device for controlling and updating the method, or the device or device constituting the monitoring and updating system of the terminal security state provided by the embodiment of the present invention, should belong to the protection scope of the present invention.
实施本发明实施例提供的终端安全状态的监控和更新方法和系统, 通过 在不同域之间进行元数据交互, 可以实现对终端的安全状态进行监控和 /或更 新。  The method and system for monitoring and updating the security state of the terminal provided by the embodiment of the present invention can implement monitoring and/or updating the security state of the terminal by performing metadata interaction between different domains.
通过以上的实施方式的描述, 本领域的技术人员可以清楚地了解到本发 明可借助软件加必需的硬件平台的方式来实现, 当然也可以全部通过硬件来 实施。 基于这样的理解, 本发明的技术方案对背景技术做出贡献的全部或者 部分可以以软件产品的形式体现出来, 该计算机软件产品可以存储在存储介 质中, 如 ROM/RAM、 磁碟、 光盘等, 包括若干指令用以使得一台计算机设 备(可以是个人计算机, 服务器, 或者网络设备等)执行本发明各个实施例 或者实施例的某些部分所述的方法。  Through the description of the above embodiments, those skilled in the art can clearly understand that the present invention can be implemented by means of software plus a necessary hardware platform, and of course, can also be implemented entirely by hardware. Based on such understanding, all or part of the technical solution of the present invention contributing to the background art may be embodied in the form of a software product, which may be stored in a storage medium such as a ROM/RAM, a magnetic disk, an optical disk, or the like. A number of instructions are included to cause a computer device (which may be a personal computer, server, or network device, etc.) to perform the methods described in various embodiments of the present invention or portions of the embodiments.
以上所揭露的仅为本发明一种较佳实施例而已, 当然不能以此来限定本 发明之权利范围, 因此依本发明权利要求所作的等同变化, 仍属本发明所涵 盖的范围。 The above disclosure is only a preferred embodiment of the present invention, and of course, the present invention cannot be limited thereto. The scope of the invention, therefore, equivalent changes made in the claims of the invention are still within the scope of the invention.

Claims

权利 要求 书 Claim
1、 一种终端安全状态的监控和更新方法, 其特征在于, 包括:  A method for monitoring and updating a terminal security state, comprising:
请求方从提供方获得与终端安全状态相关的元数据;  The requesting party obtains metadata related to the security status of the terminal from the provider;
所述请求方为第三方业务提供者, 或者在安全状态信息请求域中; 提供方 在安全状态信息提供域中;  The requesting party is a third party service provider, or in a security status information request domain; the provider is in a security status information providing domain;
所述请求方根据所述终端安全状态相关的元数据, 对终端的安全状态进行 监控和 /或更新。  The requesting party monitors and/or updates the security status of the terminal according to the metadata related to the security status of the terminal.
2、 如权利要求 1所述的终端安全状态的监控和更新方法, 其特征在于, 所 述请求方通过安全状态信息提供域中的服务器, 从提供方获得与终端安全状态 信息相关的元数据。  2. The method for monitoring and updating a security status of a terminal according to claim 1, wherein the requesting party obtains metadata related to the terminal security status information from the provider through the server in the security status information providing domain.
3、 如权利要求 2所述的终端安全状态的监控和更新方法, 其特征在于, 所 述请求方通过连接所述安全状态信息提供域中的服务器的连接接口, 从提供方 获得与终端安全状态信息相关的元数据。  The method for monitoring and updating the security status of the terminal according to claim 2, wherein the requesting party obtains the security status of the terminal from the provider by connecting the connection interface of the server in the security state information providing domain. Information related metadata.
4、 如权利要求 3所述的终端安全状态的监控和更新方法, 其特征在于, 所 述终端跨域之前所在的域作为安全状态信息提供域, 终端跨域之后所在的域作 为安全状态信息请求域, 所述请求方为第三方业务提供者或者为安全状态信息 请求域中的应用服务器, 所述提供方为安全状态信息提供域中的元数据访问点, 所述方法包括:  The method for monitoring and updating the security status of the terminal according to claim 3, wherein the domain in which the terminal crosses the domain before is used as the security state information providing domain, and the domain in which the terminal crosses the domain is used as the security state information request. The requesting party is a third-party service provider or an application server in the domain for the security state information requesting, the provider provides a metadata access point in the domain for the security state information, the method includes:
第三方业务提供者或者安全状态信息请求域中的应用服务器通过连接接口 向安全状态信息提供域中的服务器发送元数据请求消息;  The third-party service provider or the application server in the security status information request domain sends a metadata request message to the server in the security state information providing domain through the connection interface;
安全状态信息提供域中的服务器收到所述元数据请求消息后, 转发给所述 安全状态信息提供域中的元数据访问点;  After receiving the metadata request message, the server in the security status information providing domain forwards the metadata access point to the security status information providing domain;
所述安全状态信息提供域中的元数据访问点接收到所述元数据请求消息 后, 向所述安全状态信息提供求域中的服务器发送与终端安全状态相关的元数 据;  After receiving the metadata request message, the metadata access point in the security status information providing domain sends a metadata related to the terminal security status to the server in the security status information providing domain;
所述安全状态信息提供域中的服务器通过连接接口向所述第三方业务提供 者或者安全状态信息请求域中的应用服务器返回所述元数据; Providing, by the server in the security status information providing domain, the third party service through the connection interface The application server in the security status information request domain returns the metadata;
所述第三方业务提供者或者安全状态信息请求域中的应用服务器根据所述 元数据, 对终端的安全状态进行监控和 /或更新。  The third-party service provider or the application server in the security status information request domain monitors and/or updates the security status of the terminal according to the metadata.
5、 如权利要求 3所述的终端安全状态的监控和更新方法, 其特征在于, 所 述终端跨域之前所在的域作为安全状态信息请求域, 终端跨域之后所在的域作 为安全状态信息提供域, 所述请求方为安全状态信息请求域中的服务器, 所述 提供方为安全状态信息提供域中的元数据访问点, 所述方法包括:  The method for monitoring and updating the security status of the terminal according to claim 3, wherein the domain in which the terminal is located before the domain is used as the security state information request domain, and the domain in which the terminal is located after the domain is provided as the security state information. The domain, the requesting party is a server in the security state information requesting domain, and the provider provides a metadata access point in the domain for the security state information, the method includes:
在终端安全状态变化或异常情况时, 向所述安全状态信息提供域中的元数 据访问点发布终端安全状态变化或异常情况信息;  When the terminal security state changes or an abnormal situation, the terminal security state change or abnormal situation information is issued to the metadata access point in the security state information providing domain;
所述安全状态信息提供域中的元数据访问点将所述终端安全状态变化或异 常情况信息发布给安全状态信息提供域中的服务器;  The metadata access point in the security status information providing domain releases the terminal security status change or abnormal situation information to a server in the security status information providing domain;
所述安全状态信息提供域中的服务器通过连接接口将与终端安全状态相关 的元数据发送给安全状态信息请求域中的服务器;  The server in the security status information providing domain sends the metadata related to the security status of the terminal to the server in the security status information requesting domain through the connection interface;
所述安全状态信息请求域中的服务器根据所述元数据, 对终端进行监控和 / 或更新。  The server in the security status information request domain monitors and/or updates the terminal according to the metadata.
6、 如权利要求 5所述的终端安全状态的监控和更新方法, 其特征在于, 所 述在终端安全状态变化或异常情况时, 向所述安全状态信息提供域中的元数据 访问点发布终端安全状态变化或异常情况信息, 包括:  The method for monitoring and updating a terminal security state according to claim 5, wherein, when the terminal security state changes or an abnormal situation, the metadata access point is issued to the security state information providing domain. Security status changes or abnormal situation information, including:
在终端安全状态变化或有异常情况时, 所述安全状态信息提供域中的传感 器 /入侵检测系统 /入侵防护系统向安全状态信息提供域中的元数据访问点发布 终端安全状态变化或异常情况信息。  When the terminal security status changes or an abnormal situation occurs, the sensor/intrusion detection system/intrusion prevention system in the security status information providing domain issues a terminal security status change or abnormal situation information to the metadata access point in the security status information providing domain. .
7、 如权利要求 5所述的终端安全状态的监控和更新方法, 其特征在于, 所 述安全状态信息请求域中的服务器根据所述元数据,对终端进行监控和 /或更新, 包括:  The method for monitoring and updating the security status of the terminal according to claim 5, wherein the server in the security status information requesting domain monitors and/or updates the terminal according to the metadata, including:
所述安全状态信息请求域中的服务器将所述元数据发送给所述安全状态信 息请求域中的元数据访问点; 所述安全状态信息请求域中的元数据访问点汇总并分析元数据以后, 将分 析结果告知给安全状态信息请求域中的服务器; The server in the security status information request domain sends the metadata to a metadata access point in the security status information request domain; After the metadata access point in the security status information request domain summarizes and analyzes the metadata, the analysis result is notified to the server in the security status information request domain;
所述安全状态信息请求域中的服务器根据所述元数据分析结果对所述终端 进行监控和 /或更新。  The server in the security status information request domain monitors and/or updates the terminal according to the metadata analysis result.
8、 如权利要求 3所述的终端安全状态的监控和更新方法, 其特征在于, 所 述终端跨域之前所在的域作为安全状态信息提供域, 终端跨域之后所在的域作 为安全状态信息请求域, 所述请求方为安全状态信息请求域中的服务器, 所述 提供方为安全状态信息提供域中的元数据访问点, 所述方法包括:  The method for monitoring and updating the security status of the terminal according to claim 3, wherein the domain in which the terminal is located before the domain serves as the security state information providing domain, and the domain in which the terminal crosses the domain as the security state information request The domain, the requesting party is a server in the security state information requesting domain, and the provider provides a metadata access point in the domain for the security state information, the method includes:
所述安全状态信息请求域中的服务器通过连接接口向安全状态信息提供域 中的服务器发送元数据请求消息;  The server in the security status information request domain sends a metadata request message to the server in the security status information providing domain through the connection interface;
所述安全状态信息提供域中的服务器将所述元数据请求消息发送给安全状 态信息提供域中的元数据访问点;  The server in the security status information providing domain sends the metadata request message to a metadata access point in the security status information providing domain;
所述安全状态信息提供域中的元数据访问点接收所述元数据请求消息, 在 终端的安全信息需要更新时, 将终端的安全信息需要更新的消息告知所述安全 状态信息提供域中的服务器;  The metadata access point in the security state information providing domain receives the metadata request message, and when the security information of the terminal needs to be updated, notifies the server in the security state information providing domain that the security information of the terminal needs to be updated. ;
所述安全状态信息提供域中的服务器通过连接接口向安全状态信息请求域 中的服务器发送元数据, 告知所述终端的安全信息需要更新;  The server in the security status information providing domain sends metadata to the server in the security status information request domain through the connection interface, and informs the terminal that the security information needs to be updated;
所述安全状态信息请求域中的服务器向所述安全状态信息请求域中的元数 据访问点发送所述元数据, 告知所述元数据访问点, 终端的安全信息需要更新; 所述安全状态信息请求域中的元数据访问点根据所述元数据, 对终端进行 监控和 /或更新。  Sending, by the server in the security status information request domain, the metadata to the metadata access point in the security status information requesting domain, informing the metadata access point that the security information of the terminal needs to be updated; the security status information The metadata access point in the request domain monitors and/or updates the terminal based on the metadata.
9、 一种网络系统, 其特征在于, 包括:  9. A network system, comprising:
请求方和提供方;  Requester and provider;
所述请求方, 用于从所述提供方获得与终端安全状态相关的元数据; 所述 请求方为第三方业务提供者, 或者在安全状态信息请求域中; 提供方在安全状 态信息提供域中; 所述请求方根据所述终端安全状态相关的元数据, 对终端的安全状态进行 监控和 /或更新。 The requesting party is configured to obtain metadata related to a terminal security state from the provider; the requesting party is a third-party service provider, or in a security state information requesting domain; the provider is in a security state information providing domain in; The requesting party monitors and/or updates the security status of the terminal according to the metadata related to the security status of the terminal.
10、 如权利要求 9所述的网络系统, 其特征在于, 所述安全状态信息提供 域中还包括: 服务器;  The network system according to claim 9, wherein the security status information providing domain further comprises: a server;
所述请求方通过安全状态信息提供域中的服务器, 从所述提供方获得与终 端安全状态相关的元数据。  The requestor provides a server in the domain through the security status information, and obtains metadata related to the terminal security status from the provider.
11、 如权利要求 10所述的网络系统, 其特征在于, 所述安全状态信息提供 域中的服务器还连接有连接接口;  The network system according to claim 10, wherein the server in the security status information providing domain is further connected with a connection interface;
所述请求方通过连接所述安全状态信息提供域中的服务器的连接接口, 从 所述提供方获得与终端安全状态相关的元数据。  The requesting party obtains metadata related to the terminal security status from the provider by connecting the connection interface of the server in the security status information providing domain.
12、 如权利要求 11所述的网络系统, 其特征在于, 所述终端跨域之前所在 的域作为安全状态信息提供域, 终端跨域之后所在的域作为安全状态信息请求 域, 所述请求方为第三方业务提供者或者安全状态信息请求域中的应用服务器, 所述提供方为安全状态信息提供域中的元数据访问点; 所述安全状态信息提供 域中还包括服务器;  The network system according to claim 11, wherein the domain in which the terminal crosses the domain is provided as a security state information providing domain, and the domain in which the terminal crosses the domain as a security state information requesting domain, the requesting party Providing a metadata access point in the domain for the security status information for the third-party service provider or the application server of the security status information requesting domain; the security status information providing domain further includes a server;
第三方业务提供者或者安全状态信息请求域中的应用服务器, 用于通过连 接接口向安全状态信息提供域中的服务器发送元数据请求消息;  The third-party service provider or the application server in the security status information request domain is configured to send a metadata request message to the server in the security state information providing domain through the connection interface;
安全状态信息提供域中的服务器, 用于在收到所述元数据请求消息后, 转 发给所述安全状态信息提供域中的元数据访问点;  The security status information is provided by the server in the domain, and after receiving the metadata request message, is forwarded to the metadata access point in the security status information providing domain;
所述安全状态信息提供域中的元数据访问点, 用于接收到所述元数据请求 消息后, 向所述安全状态信息提供求域中的服务器发送与终端安全状态相关的 元数据;  The security status information providing a metadata access point in the domain, after receiving the metadata request message, sending, to the security status information, a server in the request domain to send metadata related to the security status of the terminal;
所述安全状态信息提供域中的服务器, 用于通过连接接口向第三方业务提 供者或者安全状态信息请求域中的应用服务器返回所述元数据;  The security status information providing a server in the domain, configured to return the metadata to a third-party service provider or an application server in a security state information request domain through a connection interface;
所述第三方业务提供者或者安全状态信息请求域中的应用服务器则根据所 述元数据, 对终端的安全状态进行监控和 /或更新。 The third-party service provider or the application server in the security status information request domain monitors and/or updates the security status of the terminal according to the metadata.
13、 如权利要求 11所述的网络系统, 其特征在于, 所述终端跨域之前所在 的域作为安全状态信息请求域, 终端跨域之后所在的域作为安全状态信息提供 域, 所述请求方为安全状态信息请求域中的服务器, 所述提供方为安全状态信 息提供域中的元数据访问点; 安全状态信息提供域中还包括服务器和以下任意 一种终端安全状态信息报告设备: The network system according to claim 11, wherein the domain in which the terminal crosses the domain is used as the security state information requesting domain, and the domain in which the terminal crosses the domain as the security state information providing domain, the requesting party The security status information request server in the domain, the provider provides a metadata access point in the domain for the security status information; the security status information providing domain further includes a server and any one of the following terminal security status information reporting devices:
传感器, 或者入侵检测系统, 或者入侵防护系统;  a sensor, or an intrusion detection system, or an intrusion prevention system;
安全状态信息提供域中的终端安全状态信息报告设备, 用于在终端安全状 态变化或异常情况时, 向所述安全状态信息提供域中的元数据访问点发布终端 安全状态变化或异常情况信息;  The terminal security status information reporting device in the security status information is used to issue terminal security status change or abnormal situation information to the metadata access point in the security status information providing domain when the terminal security status changes or abnormal conditions;
所述安全状态信息提供域中的元数据访问点, 用于将所述终端安全状态变 化或异常情况信息发布给安全状态信息提供域中的服务器;  The security status information provides a metadata access point in the domain, and is used to issue the terminal security status change or abnormal situation information to a server in the security status information providing domain;
所述安全状态信息提供域中的服务器, 用于通过连接接口将与终端安全状 态相关的元数据发送给安全状态信息请求域中的服务器;  The security status information provides a server in the domain, configured to send, by using a connection interface, metadata related to the security status of the terminal to a server in the security status information request domain;
所述安全状态信息请求域中的服务器, 用于根据所述元数据, 对终端进行 监控和 /或更新。  The security status information request server in the domain is configured to monitor and/or update the terminal according to the metadata.
14、 如权利要求 13所述的网络系统, 其特征在于, 所述安全状态信息请求 域中还包括元数据访问点;  The network system according to claim 13, wherein the security status information request domain further includes a metadata access point;
所述安全状态信息请求域中的元数据访问点, 用于接收来自所述安全状态 信息请求域中的服务器发送的元数据, 将所述元数据进行汇总并分析元数据以 后, 将分析结果告知给安全状态信息请求域中的服务器。  The metadata access point in the security status information request field is configured to receive metadata sent by a server in the security status information request domain, summarize the metadata, analyze the metadata, and notify the analysis result. Request security status information for the server in the domain.
15、 如权利要求 11所述的网络系统, 其特征在于, 所述终端跨域之前所在 的域作为安全状态信息提供域, 终端跨域之后所在的域作为安全状态信息请求 域, 所述请求方为安全状态信息请求域中的服务器, 所述提供方为安全状态信 息提供域中的元数据访问点, 所述安全状态信息请求域中还包括元数据访问点, 所述安全状态信息提供域中还包括服务器;  The network system according to claim 11, wherein the domain in which the terminal is located before the domain is used as the security state information providing domain, and the domain in which the terminal crosses the domain is used as the security state information requesting domain, and the requesting party Requesting, by the security status information, a server in the domain, the provider provides a metadata access point in the domain for the security status information, and the security status information request domain further includes a metadata access point, where the security status information is provided in the domain. Also includes a server;
所述安全状态信息请求域中的服务器, 用于通过连接接口向安全状态信息 提供域中的服务器发送元数据请求消息; The security status information requesting a server in the domain for using the connection interface to provide security status information Providing a server in the domain to send a metadata request message;
所述安全状态信息提供域中的服务器, 用于将所述元数据请求消息发送给 安全状态信息提供域中的元数据访问点;  The security status information providing a server in the domain, configured to send the metadata request message to a metadata access point in a security status information providing domain;
所述安全状态信息提供域中的元数据访问点, 用于接收所述元数据请求消 息, 在终端的安全信息需要更新时, 将终端的安全信息需要更新的消息告知所 述安全状态信息提供域中的服务器;  The security status information provides a metadata access point in the domain, and is used to receive the metadata request message. When the security information of the terminal needs to be updated, the security information of the terminal needs to be updated to notify the security status information providing domain. Server in ;
所述安全状态信息提供域中的服务器, 还用于通过连接接口向安全状态信 息请求域中的服务器发送元数据, 告知所述终端的安全信息需要更新;  The security status information is provided by the server in the domain, and is further configured to send metadata to the server in the security status information request domain through the connection interface, and notify the terminal that the security information needs to be updated;
所述安全状态信息请求域中的服务器, 还用于向所述安全状态信息请求域 中的元数据访问点发送所述元数据, 告知所述元数据访问点, 终端的安全信息 需要更新;  The security status information requesting server in the domain is further configured to send the metadata to the metadata access point in the security status information request domain, to notify the metadata access point, and the security information of the terminal needs to be updated;
所述安全状态信息请求域中的元数据访问点, 还用于根据所述元数据, 对 终端进行监控和 /或更新。  The metadata access point in the security status information request domain is further configured to monitor and/or update the terminal according to the metadata.
PCT/CN2009/072381 2008-06-25 2009-06-22 Method for monitoring and updating security status of terminal and system thereof WO2009155849A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN2008100290051A CN101616034B (en) 2008-06-25 2008-06-25 Method and system for monitoring and updating terminal security status
CN200810029005.1 2008-06-25

Publications (1)

Publication Number Publication Date
WO2009155849A1 true WO2009155849A1 (en) 2009-12-30

Family

ID=41444033

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2009/072381 WO2009155849A1 (en) 2008-06-25 2009-06-22 Method for monitoring and updating security status of terminal and system thereof

Country Status (2)

Country Link
CN (1) CN101616034B (en)
WO (1) WO2009155849A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102013113380B3 (en) * 2013-11-27 2015-04-09 Damasko Gmbh METHOD FOR PRODUCING FUNCTION ELEMENTS FOR MECHANICAL MOVEMENTS AND FUNCTIONAL ELEMENT
WO2015087252A1 (en) 2013-12-11 2015-06-18 Damasko Gmbh Helical spring for mechanical timepieces

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101917430B (en) * 2010-08-11 2012-05-23 西安西电捷通无线网络通信股份有限公司 Indirect interaction realization method applicable to federated trusted network connection model and system thereof
CN102571475B (en) * 2010-12-27 2016-03-09 中国银联股份有限公司 The mutual monitoring system of safety information based on data analysis and method
CN102760213B (en) * 2012-06-04 2014-04-23 中国电力科学研究院 Credible Agent based MT (Mobile Terminal) credible state monitoring method
CN103891206B (en) 2012-10-12 2017-02-15 华为技术有限公司 Method and device for synchronizing network data flow detection status
CN106027518B (en) * 2016-05-19 2019-04-12 中国人民解放军装备学院 A kind of trusted network connection method based on quasi real time state feedback

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1889430A (en) * 2006-06-21 2007-01-03 南京联创网络科技有限公司 Safety identification control method based on 802.1 X terminal wideband switching-in
CN1921389A (en) * 2006-08-15 2007-02-28 杭州华为三康技术有限公司 Safety detecting method and purview control system for client terminal
US20080095373A1 (en) * 2006-10-19 2008-04-24 Fujitsu Limited Mobile terminal and gateway for remotely controlling data transfer from secure network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1889430A (en) * 2006-06-21 2007-01-03 南京联创网络科技有限公司 Safety identification control method based on 802.1 X terminal wideband switching-in
CN1921389A (en) * 2006-08-15 2007-02-28 杭州华为三康技术有限公司 Safety detecting method and purview control system for client terminal
US20080095373A1 (en) * 2006-10-19 2008-04-24 Fujitsu Limited Mobile terminal and gateway for remotely controlling data transfer from secure network

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102013113380B3 (en) * 2013-11-27 2015-04-09 Damasko Gmbh METHOD FOR PRODUCING FUNCTION ELEMENTS FOR MECHANICAL MOVEMENTS AND FUNCTIONAL ELEMENT
WO2015087252A1 (en) 2013-12-11 2015-06-18 Damasko Gmbh Helical spring for mechanical timepieces

Also Published As

Publication number Publication date
CN101616034B (en) 2012-06-20
CN101616034A (en) 2009-12-30

Similar Documents

Publication Publication Date Title
US11997111B1 (en) Attribute-controlled malware detection
US11863581B1 (en) Subscription-based malware detection
JP6735021B2 (en) User interface for secure and remote management of network endpoints
JP5714078B2 (en) Authentication for distributed secure content management systems
US20230283635A1 (en) Deceiving attackers accessing network data
US8561182B2 (en) Health-based access to network resources
US10326730B2 (en) Verification of server name in a proxy device for connection requests made using domain names
JP5509334B2 (en) Method for managing access to protected resources in a computer network, and physical entity and computer program therefor
TWI294726B (en)
US9100421B2 (en) Enterprise application session control and monitoring in a large distributed environment
WO2009155849A1 (en) Method for monitoring and updating security status of terminal and system thereof
US11616812B2 (en) Deceiving attackers accessing active directory data
WO2010003317A1 (en) Device, method and system for preventing web page from being tampered
US8990893B2 (en) Enterprise application session control and monitoring in a large distributed environment
US9058490B1 (en) Systems and methods for providing a secure uniform resource locator (URL) shortening service
US20080040470A1 (en) Method for extranet security
JP2008072655A (en) Service communication control method, service relaying apparatus and service communication control system
US20150150079A1 (en) Methods, systems and devices for network security
JP5864598B2 (en) Method and system for providing service access to a user
US9762444B1 (en) Detecting a configuration profile from a management agent
TWI416923B (en) Secure data communications in web services
WO2009105976A1 (en) Method, system and device for permission control
US20220150703A1 (en) Asserting user, app, and device binding in an unmanaged mobile device
US20150188932A1 (en) Apparatus, system, and method for identifying a man-in-the-middle (mitm) connection
CN114745145B (en) Business data access method, device and equipment and computer storage medium

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09768774

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 09768774

Country of ref document: EP

Kind code of ref document: A1