WO2018176700A1 - Data interaction method and system for remote access service - Google Patents

Data interaction method and system for remote access service Download PDF

Info

Publication number
WO2018176700A1
WO2018176700A1 PCT/CN2017/094340 CN2017094340W WO2018176700A1 WO 2018176700 A1 WO2018176700 A1 WO 2018176700A1 CN 2017094340 W CN2017094340 W CN 2017094340W WO 2018176700 A1 WO2018176700 A1 WO 2018176700A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
data server
graphic
server
client
Prior art date
Application number
PCT/CN2017/094340
Other languages
French (fr)
Chinese (zh)
Inventor
袁晖
李凝华
朱佳
陈毅
Original Assignee
深圳市科迈爱康科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳市科迈爱康科技有限公司 filed Critical 深圳市科迈爱康科技有限公司
Publication of WO2018176700A1 publication Critical patent/WO2018176700A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/565Conversion or adaptation of application format or content

Definitions

  • the present invention relates to the field of data interaction technologies, and in particular, to a data interaction method and system for a remote access service.
  • the main purpose of the present invention is to provide a data interaction method for a remote access service, which aims to solve the problem that the data loss caused by a data stealing event in the data interaction process is destroyed.
  • a data interaction method for a remote access service provided by the present invention includes:
  • the virtual data server sends a data graphic acquisition request to the data server when receiving the data access request of the client;
  • the data server acquires the request according to the received data graph, generates the data graph of the data content, and transmits the data graph to the virtual data server for access by the client through the encryption protocol;
  • the virtual data server acquires an operation content of the client on the data graphic, and transmits the content to the data server;
  • the data server operates the corresponding data according to the received operation content of the data graphic, and transmits the changed data content regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
  • the method before the step of generating the data graphic of the data content, the method further includes:
  • the virtual data server acquires the operation content of the data graphic by the client, and the step of transmitting to the data server includes:
  • the virtual data server captures the operation content of the client access virtual data server data graphic, and the operation content of the data graphic includes keyboard input values and/or mouse track values.
  • the method further includes:
  • the data server decrypts and restores the encrypted operation content according to a preset decryption format, and operates the data server corresponding data according to the decrypted restored operation content.
  • the method before the step of capturing, by the virtual data server, the operation content of the client accessing the virtual data server data graphic, the method further includes:
  • the virtual data server extracts the terminal identifier of the client according to the received access request of the client, reads the access authority of the client on the condition of the terminal identifier, and displays the access right for the client. Corresponding data graphics.
  • the step of the data server operating the corresponding data according to the received operation content of the data graphic comprises:
  • the step of confirming that the keyboard input value and/or the mouse track value are invalid data operations further includes:
  • the invalid data operation content generation operation prompt is transmitted to the virtual data server, prompting the client that the current operation content is an invalid data operation.
  • the method further includes:
  • the present invention further provides a data interaction system for a remote access service, including:
  • a sending module configured to send, by the virtual data server, a data graphics acquisition request to the data server when receiving the data access request of the client;
  • a generating module configured to: the data server acquires a request according to the received data graphic, and generates a data graphic by using the data content;
  • a transmission module configured to transmit the generated data graphic to the virtual data server for access by the client through an encryption protocol
  • Obtaining a module configured to acquire, by the virtual data server, an operation content of the client on the data graphic;
  • the transmission module is configured to transmit the obtained operation content to a data server
  • An operation module configured to: the data server operates the corresponding data according to the received operation content of the data graphic;
  • the generating module is further configured to regenerate the data graphic of the changed data content
  • the transmission module is further configured to transmit the regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
  • the obtaining module is further configured to acquire a preset format for generating a data graphic in the data server;
  • the generating module is further configured to generate data graphics corresponding to the preset format by using data content in the data server.
  • the system further comprises:
  • the capture module is configured to capture, by the virtual data server, operation content of the client access virtual data server data graphic, and the operation content of the data graphic includes a keyboard input value and/or a mouse track value.
  • the system further comprises:
  • the encryption module is configured to encrypt the operation content by using a preset encryption format, and transmit the encrypted operation content to the data server;
  • the transmission module is further configured to transmit the encrypted operation content to the data server;
  • a decryption module configured to receive, by the data server, the encrypted operation content, and decrypt and restore the encrypted operation content according to a preset decryption format
  • the operation module is further configured to operate the data server corresponding data according to the decrypted restored operation content.
  • the operation module is further configured to: the virtual data server extracts the terminal identifier of the client according to the received access request of the client, and reads the access authority of the client by using the terminal identifier as a condition, and Displaying a data graphic corresponding to the access right for the client.
  • the system further comprises:
  • the confirmation module is configured to confirm that the keyboard input value and/or the mouse track value are invalid data operations if the operation content cannot operate the corresponding data content of the data server.
  • the transmission module is further configured to transmit the invalid data operation content generation operation prompt to the virtual data server, and prompt the client that the current operation content is an invalid data operation.
  • the system further includes:
  • the delete module is used to delete all data graphics after the virtual data server receives the information of the client exiting the data access.
  • the virtual data server When receiving the data access request of the client, the virtual data server sends a data graphic acquisition request to the data server; the data server generates the data graphic according to the received data graphic acquisition request, and then transmits the data graphic to the virtual data through the encryption protocol.
  • the server accesses the client; the virtual data server acquires the operation content of the client for the data graphic, and transmits the content to the data server; the data server operates the corresponding data according to the received operation content of the data graphic, and the changed data is
  • the data content regeneration data graphics are transmitted to the virtual data server to replace the original data graphics of the data graphics.
  • the data content transmitted by the client is a graphic change value. If data is stolen, only the fragmented image is stolen, the real data cannot be obtained, and data loss is avoided. Data privacy is guaranteed.
  • FIG. 1 is a schematic flowchart of a first embodiment of a data interaction method of a remote access service according to the present invention
  • FIG. 2 is a schematic flowchart of a second embodiment of a data interaction method of a remote access service according to the present invention
  • FIG. 3 is a schematic flowchart of a third embodiment of a data interaction method of a remote access service according to the present invention.
  • FIG. 4 is a schematic diagram of functional modules of a first embodiment of a data interaction system for a remote access service according to the present invention
  • FIG. 5 is a schematic diagram of functional modules of a second embodiment of a data interaction system of a remote access service according to the present invention.
  • FIG. 6 is a schematic diagram of functional modules of a third embodiment of a data interaction system for a remote access service according to the present invention.
  • the present invention provides a data interaction method of a remote access service.
  • FIG. 1 is a schematic flowchart diagram of a first embodiment of a data interaction method of a remote access service according to the present invention.
  • the method comprises:
  • Step S10 the virtual data server sends a data graphic acquisition request to the data server when receiving the data access request of the client;
  • the client accesses the virtual data server by logging in the user account, and sends a data graph acquisition request to the data server when the virtual data server receives the client access request.
  • the data graphics acquisition request is a data acquisition request mechanism that has been set by the virtual data server and the data server, and is triggered only when the virtual data server receives the client access request, so as to avoid data loss caused by malicious access.
  • Step S20 the data server generates a data pattern according to the received data pattern, and then generates the data pattern by using the data content, and then transmits the data to the virtual data server for access by the client through the encryption protocol;
  • the data server receives the data graphic acquisition request of the virtual data server, and generates a data graphic according to the received data graphic acquisition request according to the preset data format; the preset format is a data graphic that has been set in the data server. Format, which allows you to modify the preset format in the data server to change how data graphics are generated.
  • the generated data graph is transmitted to the virtual data server through an encryption protocol that has been set by the virtual data server for the client to access the data graphic content in the virtual data server.
  • Step S30 the virtual data server acquires the operation content of the client on the data graphic, and transmits the content to the data server;
  • the virtual data server accesses the data graphics transmitted by the data server for the client to access, and obtains the data operation content of the client when accessing the data graphic, and transmits the obtained data operation content to the data server.
  • Step S40 the data server operates the corresponding data according to the received operation content of the data graphic, and transmits the changed data content regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
  • the corresponding data in the data server is modified according to the data operation content.
  • the data content in the data server changes and is saved.
  • the encryption protocol is a data encryption transmission protocol of a data server and a virtual data server associated with the data server, and the data server transmits the generated data graphic to the virtual data server through the encryption protocol. Perform encrypted transmission.
  • the operation steps of transmitting the data operation content to the data server to change the corresponding data and generate a new data graphic to be transferred to the virtual data server to replace the original data graphic are all real-time.
  • the data graphic is transmitted to the virtual data server in real time, and the data change operation content is transmitted to the data server to change the data in the data server, and after the data content in the data server is changed, the device is regenerated.
  • the data graph of the data change content is transmitted, and the data graph of the data change content is transmitted to the virtual data server to replace the original data graph.
  • the data interaction between the client and the data server is passed through the virtual data server, and in the data interaction process, the specific content of the data interaction is completed by the graphic change value, thereby completing the secret interaction of the data.
  • FIG. 2 is a second implementation of the data interaction method of the remote access service according to the present invention, according to the client data operation content acquired in the virtual data server, and transmitted to the data server to complete the data change.
  • the virtual data server acquires the operation content of the data graphic by the client, and the step of transmitting to the data server includes:
  • Step S50 the virtual data server captures an operation content of the client accessing the virtual data server data graphic, and the operation content of the data graphic includes a keyboard input value and/or a mouse track value;
  • the client performs data operations on the currently displayed data graph according to the user account authority of the access virtual data server, and the operation mode is a mouse movement track and/or a keyboard input value.
  • the virtual data server receives the data operation content of the client on the current data graphic according to the data pattern accessed by the client, that is, the client keyboard input value and/or the mouse movement track value.
  • the keyboard input value is used to change the data content, and the mouse track value locates the data modification position to complete the operation on the data.
  • the keyboard input value and the mouse movement track are captured, and the function of capturing the keyboard input value and the mouse movement track is a capture function of the prior art, which is not much Narration.
  • Step S60 Encrypt the operation content by using a preset encryption format, and transmit the encrypted operation content to the data server.
  • the captured keyboard input value and the mouse movement track are converted into a graphic form, and the preset format is used for encryption; the encryption operation is real-time, and the keyboard input value and the mouse track captured in real time are graphically converted and encrypted. And after the encryption is completed, the encrypted graphics are transmitted to the data server in real time.
  • the preset encryption format is an encryption mode that has been set, and the encryption mode can be changed according to the application scope of the current data server and its virtual data server.
  • Step S70 The data server decrypts and restores the encrypted operation content according to a preset decryption format, and operates the data server corresponding data according to the decrypted restored operation content.
  • the data server immediately receives the transmitted encrypted graphic, decrypts the encrypted value using a preset decryption format, parses the encrypted graphic format, restores the keyboard input value and the mouse track, and reads the encrypted data of the marked data graphic information to make the data
  • the server locates the data content corresponding to the flag data graphic, and causes the restored keyboard input value and the mouse movement track to operate on the data content. It locates the data content corresponding to the data graphic according to the read data graphic information, and is a data range of the data content included in the data graphic in the data server.
  • the preset decryption format and the preset encryption format are the same encryption manner, thereby completing the numerical encryption and decryption operations.
  • the value is decrypted. If the decrypted value fails or the decryption fails during the numerical decryption process, the encrypted value of the decryption failure and the decryption error is skipped, and according to the preset parsing content, If the reason for the decryption failure or the decryption error is confirmed, if the reason for the decryption failure and the decryption error is confirmed as a client problem, it is pushed to the virtual data server, prompting the current operation client to fail the modification, and displaying the cause of the decryption failure and the decryption error. .
  • Step S80 if the operation content cannot operate the corresponding data content of the data server, confirm that the keyboard input value and/or the mouse track value are invalid data operations.
  • the keyboard input value is a Chinese character
  • the modified position of the mouse track numerical value positioning is a birth age field
  • the content of the operation the content of this field is changed to Chinese characters, but the field set in the database has been set to a number, because this field does not meet the input value, this modification fails. That is, confirm that this data is modified to an invalid data operation.
  • the data operation in the current data server is an invalid data operation
  • the current data transmission is maintained, and the operation steps of decrypting the encrypted value are unchanged (ie, the invalid data operation is skipped, and the new encrypted value is received for decryption and restoration and data operation).
  • the data operation is an invalid data operation, and the data in the data server is also unchanged.
  • Step S90 The invalid data operation content generation operation prompt is transmitted to the virtual data server, and the current operation content of the client is prompted to be an invalid data operation.
  • the data server transmits the invalid data operation content and the invalid reason generation data invalidation reminder to the virtual data server.
  • the virtual data server receives the invalid reminder of the data, a prompt message is displayed to remind the client to modify the error and operate as invalid data.
  • the data operation content (keyboard input value and/or mouse movement track) of the data graphic of the client accessing the virtual data server is encrypted and transmitted to the data server, and the data server decrypts the value and restores the keyboard input value and the mouse. Move the track to modify the data content in the data server. And after the data content in the data server is changed, the changed data content is generated and the new data graphic is transmitted to the virtual data server to replace the original data graphic content, and the data is encrypted and transmitted and decrypted, and the data content of the data server is modified.
  • the data operation steps of the data graphics transfer to the virtual data server are real-time, so that the data server transmits the data of the virtual data server to the latest data through the real-time data transmission.
  • FIG. 3, 3 is a schematic flowchart of a third embodiment of the data interaction system of the remote access service of the present invention.
  • the method according to the first and second embodiments of the foregoing method further includes:
  • step S100 after receiving the information that the client exits the access data graph, the virtual data server deletes all the data graphics.
  • the client orientation virtual data server operation After the client orientation virtual data server operation is completed, the user account and the virtual server access interface are exited. After receiving the exit information, the virtual data server deletes all current data graphs. In order to protect the data graphics, avoid data loss caused by abnormal access and data theft.
  • the execution bodies of the data interaction methods of the remote access services of the above first to third embodiments may each be an electronic device having a virtual data server condition or other electronic device associated with the electronic device.
  • the electronic device that installs the virtual data server condition may include, but is not limited to, a mobile phone, a pad, a laptop, and the like.
  • the invention further provides a data interaction system for a remote access service.
  • FIG. 4 is a schematic diagram of functional modules of a first embodiment of a data interaction system for a remote access service according to the present invention.
  • the system includes: a sending module 10, a generating module 20, a transmitting module 30, an obtaining module 40, and an operating module 50.
  • the sending module 10 is configured to send, by the virtual data server, a data graphics acquisition request to the data server when receiving the data access request of the client;
  • the client accesses the virtual data server by logging in the user account, and sends a data graph acquisition request to the data server when the virtual data server receives the client access request.
  • the data graphics acquisition request is a data acquisition request mechanism that has been set by the virtual data server and the data server, and is triggered only when the virtual data server receives the client access request, so as to avoid data loss caused by malicious access.
  • a generating module 20 configured to: the data server generate a data graphic according to the received data graphic obtaining request;
  • the transmission module 30 is configured to transmit the generated data graphic to the virtual data server for access by the client through an encryption protocol
  • the data server receives the data graphic acquisition request of the virtual data server, and generates a data graphic according to the received data graphic acquisition request according to the preset data format; the preset format is a data graphic that has been set in the data server. Format, which allows you to modify the preset format in the data server to change how data graphics are generated.
  • the generated data graph is transmitted to the virtual data server through an encryption protocol that has been set by the virtual data server for the client to access the data graphic content in the virtual data server.
  • the obtaining module 40 is configured to acquire, by the virtual data server, an operation content of the client on the data graphic;
  • the transmission module 30 is configured to transmit the obtained operation content to a data server
  • the virtual data server accesses the data graphics transmitted by the data server for the client to access, and obtains the data operation content of the client when accessing the data graphic, and transmits the obtained data operation content to the data server.
  • the operation module 50 is configured to: the data server operates the corresponding data according to the received operation content of the data graphic;
  • the generating module 20 is further configured to regenerate the data graphic by using the changed data content
  • the transmission module 30 is further configured to transmit the regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
  • the corresponding data in the data server is modified according to the data operation content.
  • the data content in the data server changes and is saved.
  • the encryption protocol is a data encryption transmission protocol of a data server and a virtual data server associated with the data server, and the data server transmits the generated data graphic to the virtual data server through the encryption protocol. Perform encrypted transmission.
  • the operation steps of transmitting the data operation content to the data server to change the corresponding data and generate a new data graphic to be transferred to the virtual data server to replace the original data graphic are all real-time.
  • the data graphic is transmitted to the virtual data server in real time, and the data change operation content is transmitted to the data server to change the data in the data server, and after the data content in the data server is changed, the device is regenerated.
  • the data graph of the data change content is transmitted, and the data graph of the data change content is transmitted to the virtual data server to replace the original data graph.
  • the data interaction between the client and the data server is passed through the virtual data server, and in the data interaction process, the specific content of the data interaction is completed by the graphic change value, thereby completing the secret interaction of the data.
  • FIG. 5 is a schematic diagram of functional modules of a second embodiment of a data interaction system for a remote access service according to the present invention.
  • the system includes: a capture module 60, an encryption module 70, a decryption module 80, and a validation module 90.
  • the capturing module 60 is configured to capture, by the virtual data server, a client access virtual data server data graphics operation content, where the operation content of the data graphic includes a keyboard input value and/or a mouse track value;
  • the client performs data operations on the currently displayed data graph according to the user account authority of the access virtual data server, and the operation mode is a mouse movement track and/or a keyboard input value.
  • the virtual data server receives the data operation content of the client on the current data graphic according to the data pattern accessed by the client, that is, the client keyboard input value and/or the mouse movement track value.
  • the keyboard input value is used to change the data content, and the mouse track value locates the data modification position to complete the operation on the data.
  • the keyboard input value and the mouse movement track are captured, and the function of capturing the keyboard input value and the mouse movement track is a capture function of the prior art, which is not much Narration.
  • the encryption module 70 is configured to encrypt the operation content by using a preset encryption format, and transmit the encrypted operation content to the data server;
  • the transmission module 30 is further configured to transmit the encrypted operation content to the data server;
  • the captured keyboard input value and the mouse movement track are converted into a graphic form, and the preset format is used for encryption; the encryption operation is real-time, and the keyboard input value and the mouse track captured in real time are graphically converted and encrypted. And after the encryption is completed, the encrypted graphics are transmitted to the data server in real time.
  • the preset encryption format is an encryption mode that has been set, and the encryption mode can be changed according to the application scope of the current data server and its virtual data server.
  • the decryption module 80 is configured to receive, by the data server, the encrypted operation content, and decrypt and restore the encrypted operation content according to a preset decryption format;
  • the operation module 50 is further configured to operate the data server corresponding data according to the decrypted restored operation content.
  • the data server immediately receives the transmitted encrypted graphic, decrypts the encrypted value using a preset decryption format, parses the encrypted graphic format, restores the keyboard input value and the mouse track, and reads the encrypted data of the marked data graphic information to make the data
  • the server locates the data content corresponding to the flag data graphic, and causes the restored keyboard input value and the mouse movement track to operate on the data content. It locates the data content corresponding to the data graphic according to the read data graphic information, and is a data range of the data content included in the data graphic in the data server.
  • the preset decryption format and the preset encryption format are the same encryption manner, thereby completing the numerical encryption and decryption operations.
  • the value is decrypted. If the decrypted value fails or the decryption fails during the numerical decryption process, the encrypted value of the decryption failure and the decryption error is skipped, and according to the preset parsing content, If the reason for the decryption failure or the decryption error is confirmed, if the reason for the decryption failure and the decryption error is confirmed as a client problem, it is pushed to the virtual data server, prompting the current operation client to fail the modification, and displaying the cause of the decryption failure and the decryption error. .
  • the confirmation module 90 is configured to confirm that the keyboard input value and/or the mouse track value are invalid data operations if the operation content cannot operate the corresponding data content of the data server.
  • the keyboard input value is a Chinese character
  • the modified position of the mouse track numerical value positioning is a birth age field
  • the content of the operation the content of this field is changed to Chinese characters, but the field set in the database has been set to a number, because this field does not meet the input value, this modification fails. That is, confirm that this data is modified to an invalid data operation.
  • the data operation in the current data server is an invalid data operation
  • the current data transmission is maintained, and the operation steps of decrypting the encrypted value are unchanged (ie, the invalid data operation is skipped, and the new encrypted value is received for decryption and restoration and data operation).
  • the data operation is an invalid data operation, and the data in the data server is also unchanged.
  • the transmission module 30 is further configured to transmit the invalid data operation content generation operation prompt to the virtual data server, prompting the client that the current operation content is an invalid data operation.
  • the data server transmits the invalid data operation content and the invalid reason generation data invalidation reminder to the virtual data server.
  • the virtual data server receives the invalid reminder of the data, a prompt message is displayed to remind the client to modify the error and operate as invalid data.
  • the data operation content (keyboard input value and/or mouse movement track) of the data graphic of the client accessing the virtual data server is encrypted and transmitted to the data server, and the data server decrypts the value and restores the keyboard input value and the mouse. Move the track to modify the data content in the data server. And after the data content in the data server is changed, the changed data content is generated and the new data graphic is transmitted to the virtual data server to replace the original data graphic content, and the data is encrypted and transmitted and decrypted, and the data content of the data server is modified.
  • the data operation steps of the data graphics transfer to the virtual data server are real-time, so that the data server transmits the data of the virtual data server to the latest data through the real-time data transmission.
  • FIG. 6 is a schematic diagram of functional modules of a third embodiment of a data interaction system for a remote access service according to the present invention.
  • the system includes a deletion module 100.
  • the deleting module 100 is configured to delete all data graphics after the virtual data server receives the information that the client exits the access data graph.
  • the client orientation virtual data server operation After the client orientation virtual data server operation is completed, the user account and the virtual server access interface are exited. After receiving the exit information, the virtual data server deletes all current data graphs. In order to protect the data graphics, avoid data loss caused by abnormal access and data theft.

Abstract

Disclosed is a data interaction method for a remote access service, comprising: a virtual data server sending a data graph acquisition request to a data server; the data server forming data content into a data graph, and then transmitting, via an encryption protocol, same to the virtual data server; the virtual data server acquiring client operation content, and transmitting same to the data server; and the data server operating corresponding data according to the received operation content of the data graph, and re-forming the changed data content into a data graph and transmitting same to the virtual data server. Also disclosed is a data interaction system for a remote access service. The present invention achieves, in a virtual data server, data interaction carried out in an encrypted manner according to modified operation content of a data graph, thereby preventing data leakage after an interception event occurs in an interaction process, and protecting data confidentiality.

Description

远程访问服务的数据交互方法和系统  Data interaction method and system for remote access service
技术领域Technical field
本发明涉及数据交互技术领域,尤其涉及一种远程访问服务的数据交互方法和系统。The present invention relates to the field of data interaction technologies, and in particular, to a data interaction method and system for a remote access service.
背景技术Background technique
在当前现有技术的数据传输/交互过程中,所发生数据窃取事件,导致数据流失,且隐秘性遭到破坏后,造成的财物损失的事件多不胜数。但如果是在数据传输时采用加密的方式进行数据交互,其加密及解密操作的过程影响数据交互的实时性,待加密方式被破解后依旧会造成数据流失。In the current prior art data transmission/interaction process, data stealing events occur, resulting in data loss, and the hidden property is destroyed, resulting in numerous incidents of property loss. However, if data is exchanged during data transmission, the process of encryption and decryption affects the real-time nature of data interaction. After the encryption method is cracked, data loss will still occur.
上述内容仅用于辅助理解本发明的技术方案,并不代表承认上述内容是现有技术。The above content is only used to assist in understanding the technical solutions of the present invention, and does not constitute an admission that the above is prior art.
发明内容Summary of the invention
本发明的主要目的在于提供一种远程访问服务的数据交互方法,旨在解决的数据交互过程中发生数据窃取事件后导致的数据流失后,其隐秘性遭到破坏的问题。The main purpose of the present invention is to provide a data interaction method for a remote access service, which aims to solve the problem that the data loss caused by a data stealing event in the data interaction process is destroyed.
本发明提供的一种远程访问服务的数据交互方法,包括:A data interaction method for a remote access service provided by the present invention includes:
虚拟数据服务器在接收到客户端的数据访问请求时,向数据服务器发送数据图形获取请求;The virtual data server sends a data graphic acquisition request to the data server when receiving the data access request of the client;
数据服务器根据接收到的数据图形获取请求,将数据内容生成数据图形后通过加密协议传输至虚拟数据服务器供客户端访问;The data server acquires the request according to the received data graph, generates the data graph of the data content, and transmits the data graph to the virtual data server for access by the client through the encryption protocol;
所述虚拟数据服务器获取客户端对数据图形的操作内容,传输至数据服务器;The virtual data server acquires an operation content of the client on the data graphic, and transmits the content to the data server;
所述数据服务器根据接收到的所述数据图形的操作内容操作对应数据,并将已更改的数据内容重新生成数据图形传输至虚拟数据服务器用以替换所述数据图形的原有数据图形。The data server operates the corresponding data according to the received operation content of the data graphic, and transmits the changed data content regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
优选地,所述将数据内容生成数据图形的步骤之前,还包括:Preferably, before the step of generating the data graphic of the data content, the method further includes:
获取所述数据服务器中生成数据图形的预设格式,以此将所述数据服务器中的数据内容生成与所述预设格式对应的数据图形。Obtaining a preset format for generating a data graphic in the data server, so that the data content in the data server generates a data graphic corresponding to the preset format.
优选地,所述虚拟数据服务器获取客户端对数据图形的操作内容,传输至数据服务器的步骤包括:Preferably, the virtual data server acquires the operation content of the data graphic by the client, and the step of transmitting to the data server includes:
虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容,所述数据图形的操作内容包括键盘输入值和/或鼠标轨迹值。The virtual data server captures the operation content of the client access virtual data server data graphic, and the operation content of the data graphic includes keyboard input values and/or mouse track values.
优选地,所述虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容的步骤之后,还包括:Preferably, after the step of capturing, by the virtual data server, the operation content of the client accessing the data schema of the virtual data server, the method further includes:
通过预设加密格式对操作内容进行加密,并将加密后的操作内容传输至数据服务器;Encrypting the operation content by a preset encryption format, and transmitting the encrypted operation content to the data server;
所述数据服务器根据预设解密格式将所述加密后的操作内容解密还原,并根据解密还原后的操作内容操作数据服务器对应数据。The data server decrypts and restores the encrypted operation content according to a preset decryption format, and operates the data server corresponding data according to the decrypted restored operation content.
优选地,所述虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容的步骤之前,还包括:Preferably, before the step of capturing, by the virtual data server, the operation content of the client accessing the virtual data server data graphic, the method further includes:
虚拟数据服务器根据接收到的所述客户端的访问请求,提取所述客户端的终端标识,以所述终端标识为条件读取所述客户端的访问权限,并为所述客户端显示与所述访问权限对应的数据图形。The virtual data server extracts the terminal identifier of the client according to the received access request of the client, reads the access authority of the client on the condition of the terminal identifier, and displays the access right for the client. Corresponding data graphics.
优选地,所述数据服务器根据接收到的所述数据图形的操作内容操作对应数据的步骤,包括:Preferably, the step of the data server operating the corresponding data according to the received operation content of the data graphic comprises:
若所述操作内容无法操作数据服务器的对应数据内容,则确认所述键盘输入值和/或鼠标轨迹值为无效数据操作。If the operation content cannot operate the corresponding data content of the data server, confirm that the keyboard input value and/or the mouse track value are invalid data operations.
优选地,所述确认所述键盘输入值和/或鼠标轨迹值为无效数据操作的步骤,还包括:Preferably, the step of confirming that the keyboard input value and/or the mouse track value are invalid data operations further includes:
将无效数据操作内容生成操作提示传输至虚拟数据服务器,提示客户端当前操作内容为无效数据操作。The invalid data operation content generation operation prompt is transmitted to the virtual data server, prompting the client that the current operation content is an invalid data operation.
优选地,所述方法还包括:Preferably, the method further includes:
虚拟数据服务器接收到客户端退出数据访问的信息后,删除所有数据图形。After the virtual data server receives the information of the client exiting the data access, all data graphics are deleted.
此外,为实现上述目的,本发明还提供一种远程访问服务的数据交互系统,包括:In addition, to achieve the above object, the present invention further provides a data interaction system for a remote access service, including:
发送模块,用于虚拟数据服务器在接收到客户端的数据访问请求时,向数据服务器发送数据图形获取请求;a sending module, configured to send, by the virtual data server, a data graphics acquisition request to the data server when receiving the data access request of the client;
生成模块,用于数据服务器根据接收到的数据图形获取请求,将数据内容生成数据图形;a generating module, configured to: the data server acquires a request according to the received data graphic, and generates a data graphic by using the data content;
传输模块,用于将生成的数据图形通过加密协议传输至虚拟数据服务器供客户端访问;a transmission module, configured to transmit the generated data graphic to the virtual data server for access by the client through an encryption protocol;
获取模块,用于虚拟数据服务器获取客户端对数据图形的操作内容;Obtaining a module, configured to acquire, by the virtual data server, an operation content of the client on the data graphic;
所述传输模块,用于将获取到的操作内容,传输至数据服务器;The transmission module is configured to transmit the obtained operation content to a data server;
操作模块,用于数据服务器根据接收到的所述数据图形的操作内容操作对应数据;An operation module, configured to: the data server operates the corresponding data according to the received operation content of the data graphic;
所述生成模块,还用于将已更改的数据内容重新生成数据图形;The generating module is further configured to regenerate the data graphic of the changed data content;
所述传输模块,还用于将重新生成的数据图形传输至虚拟数据服务器用以替换所述数据图形的原有数据图形。The transmission module is further configured to transmit the regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
优选地,所述获取模块,还用于获取所述数据服务器中生成数据图形的预设格式;Preferably, the obtaining module is further configured to acquire a preset format for generating a data graphic in the data server;
所述生成模块,还用于将所述数据服务器中的数据内容生成与所述预设格式对应的数据图形。The generating module is further configured to generate data graphics corresponding to the preset format by using data content in the data server.
优选地,所述系统还包括:Preferably, the system further comprises:
捕获模块,用于虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容,所述数据图形的操作内容包括键盘输入值和/或鼠标轨迹值。The capture module is configured to capture, by the virtual data server, operation content of the client access virtual data server data graphic, and the operation content of the data graphic includes a keyboard input value and/or a mouse track value.
优选地,所述系统还包括:Preferably, the system further comprises:
加密模块,用于通过预设加密格式对操作内容进行加密,并将加密后的操作内容传输至数据服务器;The encryption module is configured to encrypt the operation content by using a preset encryption format, and transmit the encrypted operation content to the data server;
所述传输模块,还用于将加密后的操作内容传输至数据服务器;The transmission module is further configured to transmit the encrypted operation content to the data server;
解密模块,用于数据服务器接收加密后的操作内容,并根据预设解密格式将所述加密后的操作内容解密还原;a decryption module, configured to receive, by the data server, the encrypted operation content, and decrypt and restore the encrypted operation content according to a preset decryption format;
所述操作模块,还用于根据解密还原后的操作内容操作数据服务器对应数据。The operation module is further configured to operate the data server corresponding data according to the decrypted restored operation content.
优选地,所述操作模块,还用于虚拟数据服务器根据接收到的所述客户端的访问请求,提取所述客户端的终端标识,以所述终端标识为条件读取所述客户端的访问权限,并为所述客户端显示与所述访问权限对应的数据图形。Preferably, the operation module is further configured to: the virtual data server extracts the terminal identifier of the client according to the received access request of the client, and reads the access authority of the client by using the terminal identifier as a condition, and Displaying a data graphic corresponding to the access right for the client.
优选地,所述系统还包括:Preferably, the system further comprises:
确认模块,用于若所述操作内容无法操作数据服务器的对应数据内容,则确认所述键盘输入值和/或鼠标轨迹值为无效数据操作。The confirmation module is configured to confirm that the keyboard input value and/or the mouse track value are invalid data operations if the operation content cannot operate the corresponding data content of the data server.
优选地,所述传输模块,还用于将无效数据操作内容生成操作提示传输至虚拟数据服务器,提示客户端当前操作内容为无效数据操作。Preferably, the transmission module is further configured to transmit the invalid data operation content generation operation prompt to the virtual data server, and prompt the client that the current operation content is an invalid data operation.
优选地,所述系统,还包括:Preferably, the system further includes:
删除模块,用于虚拟数据服务器接收到客户端退出数据访问的信息后,删除所有数据图形。The delete module is used to delete all data graphics after the virtual data server receives the information of the client exiting the data access.
本发明通过虚拟数据服务器在接收到客户端的数据访问请求时,向数据服务器发送数据图形获取请求;数据服务器根据接收到的数据图形获取请求,将数据内容生成数据图形后通过加密协议传输至虚拟数据服务器供客户端访问;所述虚拟数据服务器获取客户端对数据图形的操作内容,传输至数据服务器;所述数据服务器根据接收到的所述数据图形的操作内容操作对应数据,并将已更改的数据内容重新生成数据图形传输至虚拟数据服务器用以替换所述数据图形的原有数据图形。使客户端在与数据服务器的数据在传输及交互过程中,所传输的数据内容为图形变化值,若遭到数据窃取,也只是窃取到碎片图像,无法得到真实数据,避免了数据流失,且保证了数据隐秘性。When receiving the data access request of the client, the virtual data server sends a data graphic acquisition request to the data server; the data server generates the data graphic according to the received data graphic acquisition request, and then transmits the data graphic to the virtual data through the encryption protocol. The server accesses the client; the virtual data server acquires the operation content of the client for the data graphic, and transmits the content to the data server; the data server operates the corresponding data according to the received operation content of the data graphic, and the changed data is The data content regeneration data graphics are transmitted to the virtual data server to replace the original data graphics of the data graphics. In the process of transmitting and interacting with the data of the data server, the data content transmitted by the client is a graphic change value. If data is stolen, only the fragmented image is stolen, the real data cannot be obtained, and data loss is avoided. Data privacy is guaranteed.
附图说明DRAWINGS
图1为本发明远程访问服务的数据交互方法的第一实施例的流程示意图;1 is a schematic flowchart of a first embodiment of a data interaction method of a remote access service according to the present invention;
图2为本发明远程访问服务的数据交互方法的第二实施例的流程示意图;2 is a schematic flowchart of a second embodiment of a data interaction method of a remote access service according to the present invention;
图3为本发明远程访问服务的数据交互方法的第三实施例的流程示意图;3 is a schematic flowchart of a third embodiment of a data interaction method of a remote access service according to the present invention;
图4为本发明远程访问服务的数据交互系统的第一实施例的功能模块示意图4 is a schematic diagram of functional modules of a first embodiment of a data interaction system for a remote access service according to the present invention;
图5为本发明远程访问服务的数据交互系统的第二实施例的功能模块示意图;5 is a schematic diagram of functional modules of a second embodiment of a data interaction system of a remote access service according to the present invention;
图6为本发明远程访问服务的数据交互系统的第三实施例的功能模块示意图。FIG. 6 is a schematic diagram of functional modules of a third embodiment of a data interaction system for a remote access service according to the present invention.
本发明目的的实现、功能特点及优点将结合实施例,参照附图做进一步说明。The implementation, functional features, and advantages of the present invention will be further described in conjunction with the embodiments.
具体实施方式detailed description
应当理解,此处所描述的具体实施例仅仅用以解释本发明,并不用于限定本发明。It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
基于上述问题,本发明提供一种远程访问服务的数据交互方法。Based on the above problems, the present invention provides a data interaction method of a remote access service.
参照图1,图1为本发明远程访问服务的数据交互方法的第一实施例的流程示意图。Referring to FIG. 1, FIG. 1 is a schematic flowchart diagram of a first embodiment of a data interaction method of a remote access service according to the present invention.
在一实施例中,所述方法包括:In an embodiment, the method comprises:
步骤S10,虚拟数据服务器在接收到客户端的数据访问请求时,向数据服务器发送数据图形获取请求;Step S10, the virtual data server sends a data graphic acquisition request to the data server when receiving the data access request of the client;
客户端通过登陆用户账号访问虚拟数据服务器,在虚拟数据服务器接收到所述客户端访问请求时,向数据服务器发送数据图形获取请求。所述数据图形获取请求,为虚拟数据服务器与数据服务器已设定的数据获取请求机制,只有在虚拟数据服务器接收到客户端访问请求时才触发,以规避恶意访问造成的数据流失情况。The client accesses the virtual data server by logging in the user account, and sends a data graph acquisition request to the data server when the virtual data server receives the client access request. The data graphics acquisition request is a data acquisition request mechanism that has been set by the virtual data server and the data server, and is triggered only when the virtual data server receives the client access request, so as to avoid data loss caused by malicious access.
步骤S20,数据服务器根据接收到的数据图形获取请求,将数据内容生成数据图形后通过加密协议传输至虚拟数据服务器供客户端访问;Step S20, the data server generates a data pattern according to the received data pattern, and then generates the data pattern by using the data content, and then transmits the data to the virtual data server for access by the client through the encryption protocol;
数据服务器接收虚拟数据服务器的数据图形获取请求,并根据已接收到的数据图形获取请求,将数据内容根据预设格式生成数据图形;所述预设格式,为数据服务器中已设定的数据图形格式,可在数据服务器中修改预设格式以更改数据图形的生成方式。将已生成的数据图形通过与虚拟数据服务器已设定的加密协议传输至虚拟数据服务器中,以供客户端访问虚拟数据服务器中的数据图形内容。The data server receives the data graphic acquisition request of the virtual data server, and generates a data graphic according to the received data graphic acquisition request according to the preset data format; the preset format is a data graphic that has been set in the data server. Format, which allows you to modify the preset format in the data server to change how data graphics are generated. The generated data graph is transmitted to the virtual data server through an encryption protocol that has been set by the virtual data server for the client to access the data graphic content in the virtual data server.
步骤S30,所述虚拟数据服务器获取客户端对数据图形的操作内容,传输至数据服务器;Step S30, the virtual data server acquires the operation content of the client on the data graphic, and transmits the content to the data server;
虚拟数据服务器将数据服务器传输来的数据图形供客户端访问,并获取客户端在访问数据图形时的数据操作内容,将获取到的所述数据操作内容传输至数据服务器中。The virtual data server accesses the data graphics transmitted by the data server for the client to access, and obtains the data operation content of the client when accessing the data graphic, and transmits the obtained data operation content to the data server.
步骤S40,所述数据服务器根据接收到的所述数据图形的操作内容操作对应数据,并将已更改的数据内容重新生成数据图形传输至虚拟数据服务器用以替换所述数据图形的原有数据图形。Step S40, the data server operates the corresponding data according to the received operation content of the data graphic, and transmits the changed data content regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic. .
待数据服务器接收到所述数据操作内容后,根据所述数据操作内容修改数据服务器中的对应数据。在数据服务器中的数据内容发生更改,并保存后。根据已更改的数据内容,重新生成数据图形,并将所述重新生成的数据图形通过加密协议传输至虚拟数据服务器中,用以替换虚拟数据服务器中所述重新生成的数据图形的原有数据图形,使客户端访问到的数据内容都是最新的数据。所述加密协议,为已设置的数据服务器及其与数据服务器关联的虚拟数据服务器的数据加密传输协议,其表现方式为,数据服务器在将生成的数据图形传输至虚拟数据服务器中,通过加密协议进行加密传输。其中,所述传输数据操作内容至数据服务器中更改对应数据并生成新的数据图形传输至虚拟数据服务器中替换原有数据图形的操作步骤,都是实时的。After the data server receives the data operation content, the corresponding data in the data server is modified according to the data operation content. The data content in the data server changes and is saved. Regenerating the data graphic according to the changed data content, and transmitting the regenerated data graphic to the virtual data server by using an encryption protocol to replace the original data graphic of the regenerated data graphic in the virtual data server So that the data content accessed by the client is the latest data. The encryption protocol is a data encryption transmission protocol of a data server and a virtual data server associated with the data server, and the data server transmits the generated data graphic to the virtual data server through the encryption protocol. Perform encrypted transmission. The operation steps of transmitting the data operation content to the data server to change the corresponding data and generate a new data graphic to be transferred to the virtual data server to replace the original data graphic are all real-time.
本实施例中,通过实时传输数据图形至虚拟数据服务器中,并将数据更改操作内容传输至数据服务器以使数据服务器中的数据发生更改,待数据服务器中的数据内容发生更改后,重新生成所述数据更改内容的数据图形,并将数据更改内容的数据图形传输至虚拟数据服务器中用以替换原有数据图形。使客户端与数据服务器的数据交互都通过虚拟数据服务器,且在数据交互过程中,以图形变化值完成数据交互的具体内容,以此完成数据的隐秘交互。采用此种数据交互方式,若是在交互过程中遭到数据窃取事件,所窃取的也是碎片图形,并不会泄露数据服务器中的数据,保证了数据的安全性。In this embodiment, the data graphic is transmitted to the virtual data server in real time, and the data change operation content is transmitted to the data server to change the data in the data server, and after the data content in the data server is changed, the device is regenerated. The data graph of the data change content is transmitted, and the data graph of the data change content is transmitted to the virtual data server to replace the original data graph. The data interaction between the client and the data server is passed through the virtual data server, and in the data interaction process, the specific content of the data interaction is completed by the graphic change value, thereby completing the secret interaction of the data. With this data interaction method, if a data stealing event occurs during the interaction process, the fragmented graphics are stolen, and the data in the data server is not leaked, thereby ensuring the security of the data.
根据虚拟数据服务器中已获取到的客户端数据操作内容,传输至数据服务器中以完成数据更改,还包括以下内容,参照图2,图2为本发明远程访问服务的数据交互方法的第二实施例的流程示意图。基于上述方法的第一实施例,所述虚拟数据服务器获取客户端对数据图形的操作内容,传输至数据服务器的步骤包括:According to the following, referring to FIG. 2, FIG. 2 is a second implementation of the data interaction method of the remote access service according to the present invention, according to the client data operation content acquired in the virtual data server, and transmitted to the data server to complete the data change. The flow chart of the example. Based on the first embodiment of the foregoing method, the virtual data server acquires the operation content of the data graphic by the client, and the step of transmitting to the data server includes:
步骤S50,虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容,所述数据图形的操作内容包括键盘输入值和/或鼠标轨迹值;Step S50, the virtual data server captures an operation content of the client accessing the virtual data server data graphic, and the operation content of the data graphic includes a keyboard input value and/or a mouse track value;
客户端根据访问虚拟数据服务器的用户账号权限,对当前显示的数据图形进行数据操作,其操作方式为鼠标移动轨迹和/或键盘输入值。虚拟数据服务器根据客户端访问的数据图形,接收所述客户端对当前数据图形的数据操作内容,即客户端键盘输入数值和/或鼠标移动轨迹值。所述键盘输入值用以更改数据内容,鼠标轨迹值定位数据修改位置,用以完成对数据的操作。根据当前客户端对虚拟数据服务器的数据图形的操作动作,捕获其键盘输入值及鼠标移动轨迹,所述捕获键盘输入数值及鼠标移动轨迹的功能,为现有技术的捕获功能,在此不多赘述。The client performs data operations on the currently displayed data graph according to the user account authority of the access virtual data server, and the operation mode is a mouse movement track and/or a keyboard input value. The virtual data server receives the data operation content of the client on the current data graphic according to the data pattern accessed by the client, that is, the client keyboard input value and/or the mouse movement track value. The keyboard input value is used to change the data content, and the mouse track value locates the data modification position to complete the operation on the data. According to the operation action of the current client on the data graph of the virtual data server, the keyboard input value and the mouse movement track are captured, and the function of capturing the keyboard input value and the mouse movement track is a capture function of the prior art, which is not much Narration.
步骤S60,通过预设加密格式对操作内容进行加密,并将加密后的操作内容传输至数据服务器。Step S60: Encrypt the operation content by using a preset encryption format, and transmit the encrypted operation content to the data server.
将捕获到的键盘输入值及鼠标移动轨迹转换为图形形式,使用预设格式进行加密;所述加密操作为实时的,即将实时捕获到的键盘输入值及鼠标轨迹进行图形转换并加密。并在加密完成后实时将加密后的图形传输至数据服务器。所述预设加密格式,为已设置的加密方式,并根据当前数据服务器及其虚拟数据服务器的应用范围可更改加密方式。The captured keyboard input value and the mouse movement track are converted into a graphic form, and the preset format is used for encryption; the encryption operation is real-time, and the keyboard input value and the mouse track captured in real time are graphically converted and encrypted. And after the encryption is completed, the encrypted graphics are transmitted to the data server in real time. The preset encryption format is an encryption mode that has been set, and the encryption mode can be changed according to the application scope of the current data server and its virtual data server.
步骤S70,所述数据服务器根据预设解密格式将所述加密后的操作内容解密还原,并根据解密还原后的操作内容操作数据服务器对应数据。Step S70: The data server decrypts and restores the encrypted operation content according to a preset decryption format, and operates the data server corresponding data according to the decrypted restored operation content.
数据服务器即时接收已传输的加密图形,并使用预设解密格式将加密数值解密,解析加密图形格式,还原为键盘输入值及鼠标轨迹,读取所述加密数值的标志数据图形信息,以使数据服务器定位至所述标志数据图形对应的数据内容,使还原的键盘输入值及鼠标移动轨迹对数据内容进行操作。其根据读取到的数据图形信息定位至所述数据图形对应的数据内容,为所述数据图形所包含数据内容在数据服务器中的数据范围。其中,所述预设解密格式与预设加密格式为同一种加密方式,以此完成数值加密及解密操作。The data server immediately receives the transmitted encrypted graphic, decrypts the encrypted value using a preset decryption format, parses the encrypted graphic format, restores the keyboard input value and the mouse track, and reads the encrypted data of the marked data graphic information to make the data The server locates the data content corresponding to the flag data graphic, and causes the restored keyboard input value and the mouse movement track to operate on the data content. It locates the data content corresponding to the data graphic according to the read data graphic information, and is a data range of the data content included in the data graphic in the data server. The preset decryption format and the preset encryption format are the same encryption manner, thereby completing the numerical encryption and decryption operations.
数据服务器将接收到的加密数值后将所述数值解密,若是在数值解密过程中,解密数值出现错误或解密失败,则略过解密失败及解密错误的加密数值,并根据已预设解析内容,确认所述解密失败或解密错误的原因,若确认解密失败及解密错误的原因为客户端问题,则推送至虚拟数据服务器中,提示当前操作客户端修改失败,并显示解密失败及解密错误的原因。After the data server receives the encrypted value, the value is decrypted. If the decrypted value fails or the decryption fails during the numerical decryption process, the encrypted value of the decryption failure and the decryption error is skipped, and according to the preset parsing content, If the reason for the decryption failure or the decryption error is confirmed, if the reason for the decryption failure and the decryption error is confirmed as a client problem, it is pushed to the virtual data server, prompting the current operation client to fail the modification, and displaying the cause of the decryption failure and the decryption error. .
步骤S80,若所述操作内容无法操作数据服务器的对应数据内容,则确认所述键盘输入值和/或鼠标轨迹值为无效数据操作。Step S80, if the operation content cannot operate the corresponding data content of the data server, confirm that the keyboard input value and/or the mouse track value are invalid data operations.
若当前还原的键盘输入值及鼠标移动轨迹无法对当前数据服务器中已定位的数据内容做数据修改操作,例如,键盘输入值为汉字,鼠标轨迹数值定位的修改位置为出生年龄的字段,根据数值操作内容,将本字段内容更改为汉字,但数据库中设置本字段已设置为数字,因不符合本字段输入值,本次修改失败。即确认本次数据修改为无效的数据操作。当前数据服务器中的数据操作为无效数据操作,则保持当前数据传输,解密加密数值的操作步骤不变(即略过无效数据操作,并接收新的加密数值进行解密还原及数据操作)。所述数据操作为无效数据操作,也表现在数据服务器中的数据无更改。If the currently restored keyboard input value and mouse movement track cannot perform data modification operations on the data content already located in the current data server, for example, the keyboard input value is a Chinese character, and the modified position of the mouse track numerical value positioning is a birth age field, according to the value The content of the operation, the content of this field is changed to Chinese characters, but the field set in the database has been set to a number, because this field does not meet the input value, this modification fails. That is, confirm that this data is modified to an invalid data operation. If the data operation in the current data server is an invalid data operation, the current data transmission is maintained, and the operation steps of decrypting the encrypted value are unchanged (ie, the invalid data operation is skipped, and the new encrypted value is received for decryption and restoration and data operation). The data operation is an invalid data operation, and the data in the data server is also unchanged.
步骤S90,将无效数据操作内容生成操作提示传输至虚拟数据服务器,提示客户端当前操作内容为无效数据操作。Step S90: The invalid data operation content generation operation prompt is transmitted to the virtual data server, and the current operation content of the client is prompted to be an invalid data operation.
数据服务器在当前数据操作内容为无效数据操作内容时,将所述无效数据操作内容及所述无效原因生成数据无效提醒,传输至虚拟数据服务器中。以使虚拟数据服务器在接收到所述数据无效提醒后,弹出提示信息,以提醒客户端修改出错,为无效数据操作。When the current data operation content is the invalid data operation content, the data server transmits the invalid data operation content and the invalid reason generation data invalidation reminder to the virtual data server. After the virtual data server receives the invalid reminder of the data, a prompt message is displayed to remind the client to modify the error and operate as invalid data.
本实施例中,通过捕获客户端访问虚拟数据服务器的数据图形的数据操作内容(键盘输入数值和/或鼠标移动轨迹)加密后传输至数据服务器,数据服务器解密数值后还原为键盘输入值及鼠标移动轨迹,对数据服务器中的数据内容做修改。并在数据服务器中数据内容更改后将更改的数据内容生成新的数据图形传输至虚拟数据服务器中替换原有数据图形内容,其数据加密传输及解密并对数据服务器的数据内容做修改后将新的数据图形传输至虚拟数据服务器的数据操作步骤流程,都是实时的,以便数据服务器通过实时数据传输,使客户端访问虚拟数据服务器的数据都是最新数据。In this embodiment, the data operation content (keyboard input value and/or mouse movement track) of the data graphic of the client accessing the virtual data server is encrypted and transmitted to the data server, and the data server decrypts the value and restores the keyboard input value and the mouse. Move the track to modify the data content in the data server. And after the data content in the data server is changed, the changed data content is generated and the new data graphic is transmitted to the virtual data server to replace the original data graphic content, and the data is encrypted and transmitted and decrypted, and the data content of the data server is modified. The data operation steps of the data graphics transfer to the virtual data server are real-time, so that the data server transmits the data of the virtual data server to the latest data through the real-time data transmission.
客户端通过访问及操作虚拟数据服务器的数据图形,以达到与数据服务器中数据交互的目的,在客户端数据访问完成并退出系统后,考虑到数据隐秘性的问题,还包括参考图3,图3为本发明远程访问服务的数据交互系统的第三实施例的流程示意图,基于上述方法的第一、二实施例,所述方法,还包括:The client accesses and manipulates the data graph of the virtual data server to achieve the purpose of interacting with the data in the data server. After the client data access is completed and exits the system, considering the data concealment problem, the reference also includes FIG. 3, 3 is a schematic flowchart of a third embodiment of the data interaction system of the remote access service of the present invention. The method according to the first and second embodiments of the foregoing method further includes:
步骤S100,虚拟数据服务器接收到客户端退出访问数据图形的信息后,删除所有数据图形。In step S100, after receiving the information that the client exits the access data graph, the virtual data server deletes all the data graphics.
客户端方位虚拟数据服务器的操作完成后,退出用户账号及虚拟服务器的访问界面。虚拟数据服务器在接收到所述退出信息后,将当前数据图形全部删除。以使数据图形得到保护,避免异常访问及数据窃取带来的数据损失。After the client orientation virtual data server operation is completed, the user account and the virtual server access interface are exited. After receiving the exit information, the virtual data server deletes all current data graphs. In order to protect the data graphics, avoid data loss caused by abnormal access and data theft.
上述第一至第三实施例的远程访问服务的数据交互方法的执行主体均可以为有安装虚拟数据服务器条件的电子设备或与该电子设备关联的其他电子设备。该安装虚拟数据服务器条件的电子设备可以包括但不限于手机、pad、笔记本电脑等。The execution bodies of the data interaction methods of the remote access services of the above first to third embodiments may each be an electronic device having a virtual data server condition or other electronic device associated with the electronic device. The electronic device that installs the virtual data server condition may include, but is not limited to, a mobile phone, a pad, a laptop, and the like.
本发明进一步提供一种远程访问服务的数据交互系统。The invention further provides a data interaction system for a remote access service.
参照图4,图4为本发明远程访问服务的数据交互系统的第一实施例的功能模块示意图。Referring to FIG. 4, FIG. 4 is a schematic diagram of functional modules of a first embodiment of a data interaction system for a remote access service according to the present invention.
在一实施例中,所述系统包括:发送模块10、生成模块20、传输模块30、获取模块40及操作模块50。In an embodiment, the system includes: a sending module 10, a generating module 20, a transmitting module 30, an obtaining module 40, and an operating module 50.
发送模块10,用于虚拟数据服务器在接收到客户端的数据访问请求时,向数据服务器发送数据图形获取请求;The sending module 10 is configured to send, by the virtual data server, a data graphics acquisition request to the data server when receiving the data access request of the client;
客户端通过登陆用户账号访问虚拟数据服务器,在虚拟数据服务器接收到所述客户端访问请求时,向数据服务器发送数据图形获取请求。所述数据图形获取请求,为虚拟数据服务器与数据服务器已设定的数据获取请求机制,只有在虚拟数据服务器接收到客户端访问请求时才触发,以规避恶意访问造成的数据流失情况。The client accesses the virtual data server by logging in the user account, and sends a data graph acquisition request to the data server when the virtual data server receives the client access request. The data graphics acquisition request is a data acquisition request mechanism that has been set by the virtual data server and the data server, and is triggered only when the virtual data server receives the client access request, so as to avoid data loss caused by malicious access.
生成模块20,用于数据服务器根据接收到的数据图形获取请求,将数据内容生成数据图形;a generating module 20, configured to: the data server generate a data graphic according to the received data graphic obtaining request;
传输模块30,用于将生成的数据图形通过加密协议传输至虚拟数据服务器供客户端访问;The transmission module 30 is configured to transmit the generated data graphic to the virtual data server for access by the client through an encryption protocol;
数据服务器接收虚拟数据服务器的数据图形获取请求,并根据已接收到的数据图形获取请求,将数据内容根据预设格式生成数据图形;所述预设格式,为数据服务器中已设定的数据图形格式,可在数据服务器中修改预设格式以更改数据图形的生成方式。将已生成的数据图形通过与虚拟数据服务器已设定的加密协议传输至虚拟数据服务器中,以供客户端访问虚拟数据服务器中的数据图形内容。The data server receives the data graphic acquisition request of the virtual data server, and generates a data graphic according to the received data graphic acquisition request according to the preset data format; the preset format is a data graphic that has been set in the data server. Format, which allows you to modify the preset format in the data server to change how data graphics are generated. The generated data graph is transmitted to the virtual data server through an encryption protocol that has been set by the virtual data server for the client to access the data graphic content in the virtual data server.
获取模块40,用于虚拟数据服务器获取客户端对数据图形的操作内容;The obtaining module 40 is configured to acquire, by the virtual data server, an operation content of the client on the data graphic;
所述传输模块30,用于将获取到的操作内容,传输至数据服务器;The transmission module 30 is configured to transmit the obtained operation content to a data server;
虚拟数据服务器将数据服务器传输来的数据图形供客户端访问,并获取客户端在访问数据图形时的数据操作内容,将获取到的所述数据操作内容传输至数据服务器中。The virtual data server accesses the data graphics transmitted by the data server for the client to access, and obtains the data operation content of the client when accessing the data graphic, and transmits the obtained data operation content to the data server.
操作模块50,用于数据服务器根据接收到的所述数据图形的操作内容操作对应数据;The operation module 50 is configured to: the data server operates the corresponding data according to the received operation content of the data graphic;
所述生成模块20,还用于将已更改的数据内容重新生成数据图形;The generating module 20 is further configured to regenerate the data graphic by using the changed data content;
所述传输模块30,还用于将重新生成的数据图形传输至虚拟数据服务器用以替换所述数据图形的原有数据图形。The transmission module 30 is further configured to transmit the regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
待数据服务器接收到所述数据操作内容后,根据所述数据操作内容修改数据服务器中的对应数据。在数据服务器中的数据内容发生更改,并保存后。根据已更改的数据内容,重新生成数据图形,并将所述重新生成的数据图形通过加密协议传输至虚拟数据服务器中,用以替换虚拟数据服务器中所述重新生成的数据图形的原有数据图形,使客户端访问到的数据内容都是最新的数据。所述加密协议,为已设置的数据服务器及其与数据服务器关联的虚拟数据服务器的数据加密传输协议,其表现方式为,数据服务器在将生成的数据图形传输至虚拟数据服务器中,通过加密协议进行加密传输。其中,所述传输数据操作内容至数据服务器中更改对应数据并生成新的数据图形传输至虚拟数据服务器中替换原有数据图形的操作步骤,都是实时的。After the data server receives the data operation content, the corresponding data in the data server is modified according to the data operation content. The data content in the data server changes and is saved. Regenerating the data graphic according to the changed data content, and transmitting the regenerated data graphic to the virtual data server by using an encryption protocol to replace the original data graphic of the regenerated data graphic in the virtual data server So that the data content accessed by the client is the latest data. The encryption protocol is a data encryption transmission protocol of a data server and a virtual data server associated with the data server, and the data server transmits the generated data graphic to the virtual data server through the encryption protocol. Perform encrypted transmission. The operation steps of transmitting the data operation content to the data server to change the corresponding data and generate a new data graphic to be transferred to the virtual data server to replace the original data graphic are all real-time.
本实施例中,通过实时传输数据图形至虚拟数据服务器中,并将数据更改操作内容传输至数据服务器以使数据服务器中的数据发生更改,待数据服务器中的数据内容发生更改后,重新生成所述数据更改内容的数据图形,并将数据更改内容的数据图形传输至虚拟数据服务器中用以替换原有数据图形。使客户端与数据服务器的数据交互都通过虚拟数据服务器,且在数据交互过程中,以图形变化值完成数据交互的具体内容,以此完成数据的隐秘交互。采用此种数据交互方式,若是在交互过程中遭到数据窃取事件,所窃取的也是碎片图形,并不会泄露数据服务器中的数据,保证了数据的安全性。In this embodiment, the data graphic is transmitted to the virtual data server in real time, and the data change operation content is transmitted to the data server to change the data in the data server, and after the data content in the data server is changed, the device is regenerated. The data graph of the data change content is transmitted, and the data graph of the data change content is transmitted to the virtual data server to replace the original data graph. The data interaction between the client and the data server is passed through the virtual data server, and in the data interaction process, the specific content of the data interaction is completed by the graphic change value, thereby completing the secret interaction of the data. With this data interaction method, if a data stealing event occurs during the interaction process, the fragmented graphics are stolen, and the data in the data server is not leaked, thereby ensuring the security of the data.
参照图5,图5为本发明远程访问服务的数据交互系统的第二实施例的功能模块示意图。Referring to FIG. 5, FIG. 5 is a schematic diagram of functional modules of a second embodiment of a data interaction system for a remote access service according to the present invention.
在一实施例中,所述系统包括:捕获模块60、加密模块70、解密模块80及确认模块90。In an embodiment, the system includes: a capture module 60, an encryption module 70, a decryption module 80, and a validation module 90.
捕获模块60,用于虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形操作内容,所述数据图形的操作内容包括键盘输入值和/或鼠标轨迹值;The capturing module 60 is configured to capture, by the virtual data server, a client access virtual data server data graphics operation content, where the operation content of the data graphic includes a keyboard input value and/or a mouse track value;
客户端根据访问虚拟数据服务器的用户账号权限,对当前显示的数据图形进行数据操作,其操作方式为鼠标移动轨迹和/或键盘输入值。虚拟数据服务器根据客户端访问的数据图形,接收所述客户端对当前数据图形的数据操作内容,即客户端键盘输入数值和/或鼠标移动轨迹值。所述键盘输入值用以更改数据内容,鼠标轨迹值定位数据修改位置,用以完成对数据的操作。根据当前客户端对虚拟数据服务器的数据图形的操作动作,捕获其键盘输入值及鼠标移动轨迹,所述捕获键盘输入数值及鼠标移动轨迹的功能,为现有技术的捕获功能,在此不多赘述。The client performs data operations on the currently displayed data graph according to the user account authority of the access virtual data server, and the operation mode is a mouse movement track and/or a keyboard input value. The virtual data server receives the data operation content of the client on the current data graphic according to the data pattern accessed by the client, that is, the client keyboard input value and/or the mouse movement track value. The keyboard input value is used to change the data content, and the mouse track value locates the data modification position to complete the operation on the data. According to the operation action of the current client on the data graph of the virtual data server, the keyboard input value and the mouse movement track are captured, and the function of capturing the keyboard input value and the mouse movement track is a capture function of the prior art, which is not much Narration.
加密模块70,用于通过预设加密格式对操作内容进行加密,并将加密后的操作内容传输至数据服务器;The encryption module 70 is configured to encrypt the operation content by using a preset encryption format, and transmit the encrypted operation content to the data server;
所述传输模块30,还用于将加密后的操作内容传输至数据服务器;The transmission module 30 is further configured to transmit the encrypted operation content to the data server;
将捕获到的键盘输入值及鼠标移动轨迹转换为图形形式,使用预设格式进行加密;所述加密操作为实时的,即将实时捕获到的键盘输入值及鼠标轨迹进行图形转换并加密。并在加密完成后实时将加密后的图形传输至数据服务器。所述预设加密格式,为已设置的加密方式,并根据当前数据服务器及其虚拟数据服务器的应用范围可更改加密方式。The captured keyboard input value and the mouse movement track are converted into a graphic form, and the preset format is used for encryption; the encryption operation is real-time, and the keyboard input value and the mouse track captured in real time are graphically converted and encrypted. And after the encryption is completed, the encrypted graphics are transmitted to the data server in real time. The preset encryption format is an encryption mode that has been set, and the encryption mode can be changed according to the application scope of the current data server and its virtual data server.
解密模块80,用于数据服务器接收加密后的操作内容,并根据预设解密格式将所述加密后的操作内容解密还原;The decryption module 80 is configured to receive, by the data server, the encrypted operation content, and decrypt and restore the encrypted operation content according to a preset decryption format;
所述操作模块50,还用于根据解密还原后的操作内容操作数据服务器对应数据。The operation module 50 is further configured to operate the data server corresponding data according to the decrypted restored operation content.
数据服务器即时接收已传输的加密图形,并使用预设解密格式将加密数值解密,解析加密图形格式,还原为键盘输入值及鼠标轨迹,读取所述加密数值的标志数据图形信息,以使数据服务器定位至所述标志数据图形对应的数据内容,使还原的键盘输入值及鼠标移动轨迹对数据内容进行操作。其根据读取到的数据图形信息定位至所述数据图形对应的数据内容,为所述数据图形所包含数据内容在数据服务器中的数据范围。其中,所述预设解密格式与预设加密格式为同一种加密方式,以此完成数值加密及解密操作。The data server immediately receives the transmitted encrypted graphic, decrypts the encrypted value using a preset decryption format, parses the encrypted graphic format, restores the keyboard input value and the mouse track, and reads the encrypted data of the marked data graphic information to make the data The server locates the data content corresponding to the flag data graphic, and causes the restored keyboard input value and the mouse movement track to operate on the data content. It locates the data content corresponding to the data graphic according to the read data graphic information, and is a data range of the data content included in the data graphic in the data server. The preset decryption format and the preset encryption format are the same encryption manner, thereby completing the numerical encryption and decryption operations.
数据服务器将接收到的加密数值后将所述数值解密,若是在数值解密过程中,解密数值出现错误或解密失败,则略过解密失败及解密错误的加密数值,并根据已预设解析内容,确认所述解密失败或解密错误的原因,若确认解密失败及解密错误的原因为客户端问题,则推送至虚拟数据服务器中,提示当前操作客户端修改失败,并显示解密失败及解密错误的原因。After the data server receives the encrypted value, the value is decrypted. If the decrypted value fails or the decryption fails during the numerical decryption process, the encrypted value of the decryption failure and the decryption error is skipped, and according to the preset parsing content, If the reason for the decryption failure or the decryption error is confirmed, if the reason for the decryption failure and the decryption error is confirmed as a client problem, it is pushed to the virtual data server, prompting the current operation client to fail the modification, and displaying the cause of the decryption failure and the decryption error. .
确认模块90,用于若所述操作内容无法操作数据服务器的对应数据内容,则确认所述键盘输入值和/或鼠标轨迹值为无效数据操作。The confirmation module 90 is configured to confirm that the keyboard input value and/or the mouse track value are invalid data operations if the operation content cannot operate the corresponding data content of the data server.
若当前还原的键盘输入值及鼠标移动轨迹无法对当前数据服务器中已定位的数据内容做数据修改操作,例如,键盘输入值为汉字,鼠标轨迹数值定位的修改位置为出生年龄的字段,根据数值操作内容,将本字段内容更改为汉字,但数据库中设置本字段已设置为数字,因不符合本字段输入值,本次修改失败。即确认本次数据修改为无效的数据操作。当前数据服务器中的数据操作为无效数据操作,则保持当前数据传输,解密加密数值的操作步骤不变(即略过无效数据操作,并接收新的加密数值进行解密还原及数据操作)。所述数据操作为无效数据操作,也表现在数据服务器中的数据无更改。If the currently restored keyboard input value and mouse movement track cannot perform data modification operations on the data content already located in the current data server, for example, the keyboard input value is a Chinese character, and the modified position of the mouse track numerical value positioning is a birth age field, according to the value The content of the operation, the content of this field is changed to Chinese characters, but the field set in the database has been set to a number, because this field does not meet the input value, this modification fails. That is, confirm that this data is modified to an invalid data operation. If the data operation in the current data server is an invalid data operation, the current data transmission is maintained, and the operation steps of decrypting the encrypted value are unchanged (ie, the invalid data operation is skipped, and the new encrypted value is received for decryption and restoration and data operation). The data operation is an invalid data operation, and the data in the data server is also unchanged.
所述传输模块30,还用于将无效数据操作内容生成操作提示传输至虚拟数据服务器,提示客户端当前操作内容为无效数据操作。The transmission module 30 is further configured to transmit the invalid data operation content generation operation prompt to the virtual data server, prompting the client that the current operation content is an invalid data operation.
数据服务器在当前数据操作内容为无效数据操作内容时,将所述无效数据操作内容及所述无效原因生成数据无效提醒,传输至虚拟数据服务器中。以使虚拟数据服务器在接收到所述数据无效提醒后,弹出提示信息,以提醒客户端修改出错,为无效数据操作。When the current data operation content is the invalid data operation content, the data server transmits the invalid data operation content and the invalid reason generation data invalidation reminder to the virtual data server. After the virtual data server receives the invalid reminder of the data, a prompt message is displayed to remind the client to modify the error and operate as invalid data.
本实施例中,通过捕获客户端访问虚拟数据服务器的数据图形的数据操作内容(键盘输入数值和/或鼠标移动轨迹)加密后传输至数据服务器,数据服务器解密数值后还原为键盘输入值及鼠标移动轨迹,对数据服务器中的数据内容做修改。并在数据服务器中数据内容更改后将更改的数据内容生成新的数据图形传输至虚拟数据服务器中替换原有数据图形内容,其数据加密传输及解密并对数据服务器的数据内容做修改后将新的数据图形传输至虚拟数据服务器的数据操作步骤流程,都是实时的,以便数据服务器通过实时数据传输,使客户端访问虚拟数据服务器的数据都是最新数据。In this embodiment, the data operation content (keyboard input value and/or mouse movement track) of the data graphic of the client accessing the virtual data server is encrypted and transmitted to the data server, and the data server decrypts the value and restores the keyboard input value and the mouse. Move the track to modify the data content in the data server. And after the data content in the data server is changed, the changed data content is generated and the new data graphic is transmitted to the virtual data server to replace the original data graphic content, and the data is encrypted and transmitted and decrypted, and the data content of the data server is modified. The data operation steps of the data graphics transfer to the virtual data server are real-time, so that the data server transmits the data of the virtual data server to the latest data through the real-time data transmission.
参照图6,图6为本发明远程访问服务的数据交互系统的第三实施例的功能模块示意图。Referring to FIG. 6, FIG. 6 is a schematic diagram of functional modules of a third embodiment of a data interaction system for a remote access service according to the present invention.
在一实施例中,所述系统包括:删除模块100。In an embodiment, the system includes a deletion module 100.
删除模块100,用于虚拟数据服务器接收到客户端退出访问数据图形的信息后,删除所有数据图形。The deleting module 100 is configured to delete all data graphics after the virtual data server receives the information that the client exits the access data graph.
客户端方位虚拟数据服务器的操作完成后,退出用户账号及虚拟服务器的访问界面。虚拟数据服务器在接收到所述退出信息后,将当前数据图形全部删除。以使数据图形得到保护,避免异常访问及数据窃取带来的数据损失。After the client orientation virtual data server operation is completed, the user account and the virtual server access interface are exited. After receiving the exit information, the virtual data server deletes all current data graphs. In order to protect the data graphics, avoid data loss caused by abnormal access and data theft.
以上仅为本发明的优选实施例,并非因此限制本发明的专利范围,凡是利用本发明说明书及附图内容所作的等效结构或等效流程变换,或直接或间接运用在其他相关的技术领域,均同理包括在本发明的专利保护范围内。The above are only the preferred embodiments of the present invention, and are not intended to limit the scope of the invention, and the equivalent structure or equivalent process transformations made by the description of the present invention and the drawings are directly or indirectly applied to other related technical fields. The same is included in the scope of patent protection of the present invention.

Claims (16)

  1. 一种远程访问服务的数据交互方法,其特征在于,所述方法包括以下步骤: A data interaction method for a remote access service, characterized in that the method comprises the following steps:
    虚拟数据服务器在接收到客户端的数据访问请求时,向数据服务器发送数据图形获取请求;The virtual data server sends a data graphic acquisition request to the data server when receiving the data access request of the client;
    数据服务器根据接收到的数据图形获取请求,将数据内容生成数据图形后通过加密协议传输至虚拟数据服务器供客户端访问;The data server acquires the request according to the received data graph, generates the data graph of the data content, and transmits the data graph to the virtual data server for access by the client through the encryption protocol;
    所述虚拟数据服务器获取客户端对数据图形的操作内容,传输至数据服务器;The virtual data server acquires an operation content of the client on the data graphic, and transmits the content to the data server;
    所述数据服务器根据接收到的所述数据图形的操作内容操作对应数据,并将已更改的数据内容重新生成数据图形传输至虚拟数据服务器用以替换所述数据图形的原有数据图形。The data server operates the corresponding data according to the received operation content of the data graphic, and transmits the changed data content regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
  2. 如权利要求1所述的远程访问服务的数据交互方法,其特征在于,所述将数据内容生成数据图形的步骤之前,还包括:The data interaction method of the remote access service according to claim 1, wherein before the step of generating the data graphic of the data content, the method further comprises:
    获取所述数据服务器中生成数据图形的预设格式,以此将所述数据服务器中的数据内容生成与所述预设格式对应的数据图形。Obtaining a preset format for generating a data graphic in the data server, so that the data content in the data server generates a data graphic corresponding to the preset format.
  3. 如权利要求1所述的远程访问服务的数据交互方法,其特征在于,所述虚拟数据服务器获取客户端对数据图形的操作内容,传输至数据服务器的步骤包括:The data interaction method of the remote access service according to claim 1, wherein the virtual data server acquires the operation content of the data graphic by the client, and the step of transmitting to the data server comprises:
    虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容,所述数据图形的操作内容包括键盘输入值和/或鼠标轨迹值。The virtual data server captures the operation content of the client access virtual data server data graphic, and the operation content of the data graphic includes keyboard input values and/or mouse track values.
  4. 如权利要求3所述的远程访问服务的数据交互方法,其特征在于,所述虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容的步骤之后,还包括:The data interaction method of the remote access service according to claim 3, wherein the step of capturing the operation content of the virtual data server data graphic by the virtual data server further comprises:
    通过预设加密格式对操作内容进行加密,并将加密后的操作内容传输至数据服务器;Encrypting the operation content by a preset encryption format, and transmitting the encrypted operation content to the data server;
    所述数据服务器根据预设解密格式将所述加密后的操作内容解密还原,并根据解密还原后的操作内容操作数据服务器对应数据。The data server decrypts and restores the encrypted operation content according to a preset decryption format, and operates the data server corresponding data according to the decrypted restored operation content.
  5. 如权利要求3所述的远程访问服务的数据交互方法,其特征在于,所述虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容的步骤之前,还包括:The data interaction method of the remote access service according to claim 3, wherein the step of capturing, by the virtual data server, the operation content of the virtual data server data pattern of the client, the method further comprises:
    虚拟数据服务器根据接收到的所述客户端的访问请求,提取所述客户端的终端标识,以所述终端标识为条件读取所述客户端的访问权限,并为所述客户端显示与所述访问权限对应的数据图形。The virtual data server extracts the terminal identifier of the client according to the received access request of the client, reads the access authority of the client on the condition of the terminal identifier, and displays the access right for the client. Corresponding data graphics.
  6. 如权利要求1述的远程访问服务的数据交互方法,其特征在于,所述数据服务器根据接收到的所述数据图形的操作内容操作对应数据的步骤,包括:The data interaction method of the remote access service according to claim 1, wherein the step of the data server operating the corresponding data according to the received operation content of the data graphic comprises:
    若所述操作内容无法操作数据服务器的对应数据内容,则确认所述键盘输入值和/或鼠标轨迹值为无效数据操作。If the operation content cannot operate the corresponding data content of the data server, confirm that the keyboard input value and/or the mouse track value are invalid data operations.
  7. 如权利要求6所述的远程访问服务的数据交互方法,其特征在于,所述确认所述键盘输入值和/或鼠标轨迹值为无效数据操作的步骤之后,还包括:The data interaction method of the remote access service according to claim 6, wherein after the step of confirming that the keyboard input value and/or the mouse track value are invalid data operations, the method further includes:
    将无效数据操作内容生成操作提示传输至虚拟数据服务器,提示客户端当前操作内容为无效数据操作。The invalid data operation content generation operation prompt is transmitted to the virtual data server, prompting the client that the current operation content is an invalid data operation.
  8. 如权利要求1所述的远程访问服务的数据交互方法,其特征在于,所述方法还包括:The data interaction method of the remote access service according to claim 1, wherein the method further comprises:
    虚拟数据服务器接收到客户端退出数据访问的信息后,删除所有数据图形。After the virtual data server receives the information of the client exiting the data access, all data graphics are deleted.
  9. 一种远程访问服务的数据交互系统,其特征在于,包括:A data interaction system for a remote access service, comprising:
    发送模块,用于虚拟数据服务器在接收到客户端的数据访问请求时,向数据服务器发送数据图形获取请求;a sending module, configured to send, by the virtual data server, a data graphics acquisition request to the data server when receiving the data access request of the client;
    生成模块,用于数据服务器根据接收到的数据图形获取请求,将数据内容生成数据图形;a generating module, configured to: the data server acquires a request according to the received data graphic, and generates a data graphic by using the data content;
    传输模块,用于将生成的数据图形通过加密协议传输至虚拟数据服务器供客户端访问;a transmission module, configured to transmit the generated data graphic to the virtual data server for access by the client through an encryption protocol;
    获取模块,用于虚拟数据服务器获取客户端对数据图形的操作内容;Obtaining a module, configured to acquire, by the virtual data server, an operation content of the client on the data graphic;
    所述传输模块,用于将获取到的操作内容,传输至数据服务器;The transmission module is configured to transmit the obtained operation content to a data server;
    操作模块,用于数据服务器根据接收到的所述数据图形的操作内容操作对应数据;An operation module, configured to: the data server operates the corresponding data according to the received operation content of the data graphic;
    所述生成模块,还用于将已更改的数据内容重新生成数据图形;The generating module is further configured to regenerate the data graphic of the changed data content;
    所述传输模块,还用于将重新生成的数据图形传输至虚拟数据服务器用以替换所述数据图形的原有数据图形。The transmission module is further configured to transmit the regenerated data graphic to the virtual data server to replace the original data graphic of the data graphic.
  10. 如权利要求9所述的远程访问服务的数据交互系统,其特征在于,所述获取模块,还用于获取所述数据服务器中生成数据图形的预设格式;The data interaction system of the remote access service according to claim 9, wherein the obtaining module is further configured to acquire a preset format for generating a data graphic in the data server;
    所述生成模块,还用于将所述数据服务器中的数据内容生成与所述预设格式对应的数据图形。The generating module is further configured to generate data graphics corresponding to the preset format by using data content in the data server.
  11. 如权利要求9所述的远程访问服务的数据交互系统,其特征在于,所述系统还包括:The data interaction system of the remote access service of claim 9, wherein the system further comprises:
    捕获模块,用于虚拟数据服务器捕获客户端访问虚拟数据服务器数据图形的操作内容,所述数据图形的操作内容包括键盘输入值和/或鼠标轨迹值。The capture module is configured to capture, by the virtual data server, operation content of the client access virtual data server data graphic, and the operation content of the data graphic includes a keyboard input value and/or a mouse track value.
  12. 如权利要求11所述的远程访问服务的数据交互系统,其特征在于,所述系统还包括:The data interaction system of the remote access service of claim 11, wherein the system further comprises:
    加密模块,用于通过预设加密格式对操作内容进行加密;An encryption module, configured to encrypt the operation content by using a preset encryption format;
    所述传输模块,还用于将加密后的操作内容传输至数据服务器;The transmission module is further configured to transmit the encrypted operation content to the data server;
    解密模块,用于数据服务器接收加密后的操作内容,并根据预设解密格式将所述加密后的操作内容解密还原;a decryption module, configured to receive, by the data server, the encrypted operation content, and decrypt and restore the encrypted operation content according to a preset decryption format;
    所述操作模块,还用于根据解密还原后的操作内容操作数据服务器对应数据。The operation module is further configured to operate the data server corresponding data according to the decrypted restored operation content.
  13. 如权利要求11所述的远程访问服务的数据交互系统,其特征在于,所述操作模块,还用于虚拟数据服务器根据接收到的所述客户端的访问请求,提取所述客户端的终端标识,以所述终端标识为条件读取所述客户端的访问权限,并为所述客户端显示与所述访问权限对应的数据图形。The data interaction system of the remote access service according to claim 11, wherein the operation module is further configured to: the virtual data server extracts the terminal identifier of the client according to the received access request of the client, The terminal identifier reads the access authority of the client as a condition, and displays a data graphic corresponding to the access right for the client.
  14. 如权利要求9所述的远程访问服务的数据交互系统,其特征在于,所述系统还包括:The data interaction system of the remote access service of claim 9, wherein the system further comprises:
    确认模块,用于若所述操作内容无法操作数据服务器的对应数据内容,则确认所述键盘输入值和/或鼠标轨迹值为无效数据操作。The confirmation module is configured to confirm that the keyboard input value and/or the mouse track value are invalid data operations if the operation content cannot operate the corresponding data content of the data server.
  15. 如权利要求14所述的远程访问服务的数据交互系统,其特征在于,所述传输模块,还用于将无效数据操作内容生成操作提示传输至虚拟数据服务器,提示客户端当前操作内容为无效数据操作。The data interaction system of the remote access service according to claim 14, wherein the transmission module is further configured to transmit the invalid data operation content generation operation prompt to the virtual data server, and prompt the client that the current operation content is invalid data. operating.
  16. 如权利要求9所述的远程访问服务的数据交互系统,其特征在于,所述系统,还包括:The data interaction system of the remote access service of claim 9, wherein the system further comprises:
    删除模块,用于虚拟数据服务器接收到客户端退出数据访问的信息后,删除所有数据图形。 The delete module is used to delete all data graphics after the virtual data server receives the information of the client exiting the data access.
PCT/CN2017/094340 2017-03-31 2017-07-25 Data interaction method and system for remote access service WO2018176700A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201710211588.9 2017-03-31
CN201710211588.9A CN106936844B (en) 2017-03-31 2017-03-31 Data interaction method and system for remote access service

Publications (1)

Publication Number Publication Date
WO2018176700A1 true WO2018176700A1 (en) 2018-10-04

Family

ID=59426151

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/094340 WO2018176700A1 (en) 2017-03-31 2017-07-25 Data interaction method and system for remote access service

Country Status (2)

Country Link
CN (1) CN106936844B (en)
WO (1) WO2018176700A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106936844B (en) * 2017-03-31 2020-12-18 深圳市科迈爱康科技有限公司 Data interaction method and system for remote access service
CN110351262B (en) * 2019-06-28 2021-12-14 北京你财富计算机科技有限公司 Data interaction method and device and electronic equipment

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1588846A (en) * 2004-09-08 2005-03-02 中国工商银行 Dynamic encrypting device in network and its password identification method
US6895502B1 (en) * 2000-06-08 2005-05-17 Curriculum Corporation Method and system for securely displaying and confirming request to perform operation on host computer
CN101309147A (en) * 2008-06-13 2008-11-19 兰州大学 Identity authentication method based on image password
CN103684766A (en) * 2012-08-30 2014-03-26 卓望数码技术(深圳)有限公司 Private key protection method and system for terminal user
CN104486321A (en) * 2014-12-11 2015-04-01 上海斐讯数据通信技术有限公司 Web data interaction method and system and corresponding Web server
CN106936844A (en) * 2017-03-31 2017-07-07 深圳市科迈爱康科技有限公司 The data interactive method and system of remote access service

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030229667A1 (en) * 2002-06-10 2003-12-11 Nils-Johan Pedersen System, computer product and method for delivering pictures electronically
US9025767B2 (en) * 2010-03-24 2015-05-05 Nokia Corporation Method and apparatus for querying content protected by identity-based encryption
CN103581265B (en) * 2012-08-07 2017-08-29 深圳市傲冠软件股份有限公司 remote access method and system
CN102882857B (en) * 2012-09-10 2015-07-15 福建伊时代信息科技股份有限公司 Client side device, encryption storage device, and remote access method and system
US9407725B2 (en) * 2013-06-14 2016-08-02 Dell Products L.P. Generic transcoding service for client-server communication
CN105610791A (en) * 2015-01-06 2016-05-25 北京志翔科技股份有限公司 Network access method and device
CN105376216B (en) * 2015-10-12 2019-04-26 华为技术有限公司 A kind of remote access method, proxy server and client

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6895502B1 (en) * 2000-06-08 2005-05-17 Curriculum Corporation Method and system for securely displaying and confirming request to perform operation on host computer
CN1588846A (en) * 2004-09-08 2005-03-02 中国工商银行 Dynamic encrypting device in network and its password identification method
CN101309147A (en) * 2008-06-13 2008-11-19 兰州大学 Identity authentication method based on image password
CN103684766A (en) * 2012-08-30 2014-03-26 卓望数码技术(深圳)有限公司 Private key protection method and system for terminal user
CN104486321A (en) * 2014-12-11 2015-04-01 上海斐讯数据通信技术有限公司 Web data interaction method and system and corresponding Web server
CN106936844A (en) * 2017-03-31 2017-07-07 深圳市科迈爱康科技有限公司 The data interactive method and system of remote access service

Also Published As

Publication number Publication date
CN106936844B (en) 2020-12-18
CN106936844A (en) 2017-07-07

Similar Documents

Publication Publication Date Title
WO2014063455A1 (en) Instant messaging method and system
WO2020147383A1 (en) Process examination and approval method, device and system employing blockchain system, and non-volatile storage medium
WO2021095998A1 (en) A trusted computing method and system
WO2019024126A1 (en) Blockchain-based knowledge management method, and terminal and server
WO2011153714A1 (en) Method, device and system for supporting multiple international mobile subscriber identities (imsis)
WO2020029585A1 (en) Neural network federation modeling method and device employing transfer learning, and storage medium
WO2013170653A1 (en) Unlocking system and method for screen lock
WO2020062642A1 (en) Blockchain-based method, device, and equipment for electronic contract signing, and storage medium
WO2019132272A1 (en) Id as blockchain based service
WO2018072261A1 (en) Information encryption method and device, information decryption method and device, and terminal
WO2014175538A1 (en) Apparatus for providing puf-based hardware otp and method for authenticating 2-factor using same
WO2018151390A1 (en) Internet of things device
WO2009107994A2 (en) Method and system of providing personal information control service for mobile communication terminal
WO2020186775A1 (en) Service data providing method, apparatus and device, and computer-readable storage medium
WO2018233352A1 (en) Data transmission method, device, terminal and computer-readable storage medium
WO2016206530A1 (en) Highly secure mobile payment method, apparatus, and system
WO2015072788A1 (en) Method and apparatus for managing security key in a near fieldd2d communication system
WO2020062661A1 (en) Method, device and apparatus for verifying consistency of contract data and storage medium
WO2023120906A1 (en) Method for receiving firmware and method for transmitting firmware
WO2018176700A1 (en) Data interaction method and system for remote access service
WO2017096934A1 (en) Health data authorization method based on mobile terminal, and server
WO2020062658A1 (en) Contract generation method and apparatus, and device and storage medium
WO2014071703A1 (en) Communication information transmission method and system
WO2017016272A1 (en) Method, apparatus and system for processing virtual resource data
WO2020122368A1 (en) System and method for securing and managing data in storage device by using secure terminal

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17902981

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 17902981

Country of ref document: EP

Kind code of ref document: A1