41results about How to "Prevent illegal access" patented technology

A method for enrolling a user terminal in a network includes an access point for the user terminal, the access point performing the following steps: detecting the performance of a first pressure of a registration button on the access point; detecting the reception of a request for enrollment from the user terminal; detecting the performance of a second pressure of the registration button on the access point; and enrolling the user terminal in the network only if a single request for enrollment is received between the detections of the first and second pressures.

A method and apparatus for recognizing a protrusion on a face is proposed. The apparatus forms two images, wherein one is formed in a condition in which a target is lighted and another is formed in a condition in which the target is non-lighted. Face regions are detected from the images respectively and then are compared each other. Then, analyzing change in intensity for indicating change in contrast of the compared regions is performed. Based on the result of the analyzing, it is determined whether there is a protrusion in a face presented in the images.

The invention discloses a public and private isolation method and device. The method includes monitoring system events on a mobile terminal, judging whether the system events accord with a preset working area rule, executing operation corresponding to the system events in the working area space on yes judgment and encrypting and storing data corresponding to the operation in a database of the working area space. According to the public and private isolation method and device, a safe independent working area is built on the mobile terminal, all working data are stored in a protected safe area, personal applications cannot visit enterprise data, the enterprise data are prevented from being stored illegally by the personal applications, IT departments can well protect enterprise applications and the enterprise data, indistinctive personal application experience is provided for workers, and the dual purpose effect is achieved.

The invention discloses a method for realizing secure access of data in a hard disk. The method is realized by the following steps: establishing a secure space on the hard disk and monitoring the secure space; automatically encrypting the data written in the secure space; associating the secure space with a USBKEY; and setting protection passwords required for opening the secure space. When the data in the secure space is accessed, USBKEY authentication and passwords authentication are carried out in sequence, the secure space can be opened only after the double authentication; and when the situation that the data in the secure space is accessed but the secure space is not opened is monitored, whether the USBKEY authentication passes or not is checked, if not, the accessing is blocked, and a preset ISMG (internet short message gateway) or/and an instant communication port is/are used for sending an alarm information to a user. In the invention, by virtue of the double authentication and the monitoring on the secure space, the secret-divulging risk is reduced, the effects of safety, rapidness and easiness in use are achieved, and the active defense and active alarming are also realized, therefore, the safety is improved to the maximum extent.

The invention discloses a software hardening method and system. The method comprises the steps of analyzing a software development kit (SDK), and determining a display port; hiding other ports, except the display port, in the SDK, and hiding the port content in the display port; saving the port content in the display port in another place so as to acquire the corresponding port content from the another place when the display port is called; repackaging the corrected SDK to generate a hardened SDK. By the adoption of the method and system, software protection is achieved, software safety is improved, and the rights of developers and users are protected.

The invention discloses a network-resource-access control method based on identity authentication and a data-packet filtering technology. A network access request is filtered at a network-resource-access requesting client and a server side and a network request initiated by a user is intercepted at the client and the user is required to complete identity authentication; after the authentication succeeds, the client forwards user identify information and the access request to the server side; and the server side intercepts the network request and verifies whether the request passes the identify authentication and if so, the user is allowed to access specified network resources. Through SPI programming interfaces provided by Windows Sockets, one layer is inserted into Socket to filter network data packets so that an objective of filtering network connection requests is realized; a third-party identity authentication system is used in combination to realize functions such as identity authentication and the like through interfaces provided by the third-party identity authentication system. The network-resource-access control method based on the identity authentication and the data-packet filtering technology combines the network-resource-access request with user identity authentication so that fine-grit network-resource access can be realized.

The invention relates to a black list and white list control method, and particularly relates to a method for implementing AC black list and white list control based on a portal protocol. By performing black list and white list grouping on terminal users to obtain a black list and white list management system, judging whether the current terminal user is within the black list, the current terminaluser can be automatically presented from accessing a server system, the system can effectively prevent illegal access, malicious destruction and access of the terminal user with intentional script injection to the system, the system can effectively and intelligently filter and intercept the terminal users, and provide guarantee for urban security. The method plays an important role in the construction of the entire wireless local area network, and can effectively and intelligently filter and intercept the terminal users, and provide guarantee for urban security. The system automatically monitors the basic information of on-line terminal users, effectively controls the online behaviors of the terminal users for a long time, lays the foundation for the construction of smart cities, and greatly improves the construction of urban wireless local area networks.

The invention relates to an access control identification system information node interconnection method based on a blockchain architecture. Compared with the prior art, the method irons out the defect that numerous child nodes in an access control management system are difficult to connect by utilizing a blockchain technology. The method comprises the following steps: defining information nodes in a blockchain architecture alliance; performing authority distribution of nodes in the alliance; enabling the alliance to deploy a system channel; and performing the interconnection of nodes in the alliance. According to the invention, the member and channel management of the blockchain alliance is realized by using the digital certificate; the data separation and limitation of members to data channel access are adopted to achieve data mutual access of alliance members, it is guaranteed that the alliance members cannot obtain excessive information except service correlation, and the establishment of information node data circulation channels under data isolation and data access channel mutual isolation is guaranteed.

The invention discloses a temporary passenger access control self-service registration device and a control system thereof. The temporary passenger access control self-service registration device comprises a pedestrian area and a driving area, the pedestrian area comprises two electric blocking doors and three first stand columns, and one side of the first stand column located at one edge position is fixedly provided with an in-entrance registration plate; one side of the first stand column located at the other edge position is fixedly provided with a going-out identification mechanism, the vehicle running area comprises two vehicle handrails and four second stand columns, one side of each vehicle handrail is provided with a rising and falling adjusting mechanism, and the opposite sides of the two second stand columns located at the middle position are each fixedly provided with an identification camera. According to the temporary guest access control self-registration device and the control system thereof, the identification module can complete information self-registration of temporary guests, so that the situation that manual intervention is needed to complete entry of the temporary guests is avoided, the practicability of the access control system is improved, meanwhile, follow-up screening work on personnel circulation is facilitated, and the safety and practicability of the access control system are improved.

The invention discloses a multi-host shared storage system and a data integrity protection method. The fingerprint for the data is calculated according to the feature information of the data owner system, the address information needing to be stored and the like, and the fingerprint and the data are written into the storage medium together. Therefore, in the data access process, whether the fingerprint information corresponds to the original fingerprint information or not can be judged on the basis of the system identity of the system corresponding to the visitor, the provided address and other information, and therefore the integrity of data is protected between different systems. Particularly, since in the data access process, fingerprint matching needs to be carried out on the system requested to be accessed in advance, illegal access can be prevented and the system sending the abnormal data access request can be reported in time when fingerprint mismatching is judged, traceabilityis achieved, illegal reading and tampering of data can be detected and prevented, integrity of data between different systems is protected, and data safety is greatly enhanced.

A pole-mounted circuit breaker switch structure is disclosed in the invention, and comprises a connecting sleeve and a connecting column, a first binding post and a second binding post are arranged on the connecting sleeve and the connecting column respectively, the connecting column is connected into the connecting sleeve in a sliding mode and is in clearance fit with the connecting sleeve, the connecting sleeve is a cylinder with one end open, an isolation spring is arranged at the bottom of the connecting sleeve, one end of the connecting column is extruded to the isolation spring, the other end of the connecting column extends out of the connecting sleeve, and the second binding post can extrude the isolation spring along with the connecting column to be communicated with the first binding post; a second positioning hole is formed in one side of the connecting column, and a release is inserted into the second positioning hole to position the connecting column; and at least the connecting column is made of a ceramic material. According to the device, the generation space of the arc can be greatly reduced, the generation time of the arc is greatly shortened, and the arc extinguishing effect and reliability are improved.

Provided is a card reader with which the illegitimate acquisition of magnetic information by a criminal can be prevented even when it is possible to determine whether magnetic data has been recorded on the magnetic stripe on a card that has been inserted from a card insertion port, and with which the cost can be reduced, and a method for controlling the card reader. This card reader is equipped with a magnetic sensor (8) for detecting whether magnetic data has been recorded on the magnetic stripe of a card, and a control unit (14) that supplies power to the magnetic sensor (8) and receives an input of an output signal from the magnetic sensor (8). The magnetic sensor (8) outputs an output signal when power is supplied from the control unit (14). When the card transit time is defined as the time from when a recording region for magnetic data recorded on the magnetic stripe on a card inserted into the card insertion port begins to pass by the magnetic sensor (8) until the time when the recording region finishes passing by, the control unit (14) supplies power to the magnetic sensor (8) for a first supply time that is shorter than the card transit time.

The invention discloses a DLNA (digital living network alliance) packaging and transmitting method and system. The method is suitable for transmitting to a remote network, and comprises the following steps that: the connection between a first electronic device of an area network and a second electronic device of a remote network is completed through a server; a first analog device and a second analog device are respectively established in the first electronic device and the second electronic device; the first analog device monitors a package sent by the first electronic device, and when the first analog device monitors that the package sent by the first electronic device is a DLNA packet package, the DLNA package is transmitted to the second analog device through a connecting wire; and the second electronic device obtains the DLNA package through the second analog device. According to the invention, users can access data of home networks in an external network at any time; networks are integrated by using a point-to-point architecture, so that gateways do not become a bottleneck of the scale growth of home networks; and through network authentication, a situation that unauthorized devices illegally access data of home networks can be avoided.

The invention belongs to the technology of the wireless network communication, and discloses a network management and communication technology suitable for an indoor high-density wireless environment. A cross-segment multimode network management device of an ancient books protection case system comprises N multifunctional instruments, M wireless repeater equipment, a switch, a controller, a router and a server, wherein the switch is in wired connection with controller and the router respectively; the router and the server are in wired connection; each wireless repeater equipment and the multiple multifunctional instruments are in wireless bidirectional communication; the wireless repeater equipment is in wired connection with the switch; the controller is responsible for the access and the control of the whole wireless network, the forwarding and statistic of the data, the monitoring and configuration of the wireless repeater equipment, the roaming management and the network security control; the router is responsible for the routing selection of the wireless network, the wireless channel balancing, the intranet interconnection and the extranet connection; the wireless repeater equipment is responsible for the encryption and decryption of a wireless message, the wireless physical layer function and the acceptance of the management of the controller.