Unlock instant, AI-driven research and patent intelligence for your innovation.

On-line audit method and device in distributed system

A distributed system and system resource technology, applied in the field of online auditing, can solve problems such as unreliability, incompleteness, hidden safety hazards, etc., and achieve the effect of ensuring system security and operating legally and effectively

Active Publication Date: 2014-08-13
上海东浦数据服务有限公司
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This leaves hidden dangers for the security of the entire system, provides opportunities for malicious attackers, and brings instability to the normal execution of the audit module
Especially for access to some important industrial data, when performing update, delete and copy operations, it is unreasonable, unreliable and incomplete to only implement "one-time verification and always valid" access control for the user

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • On-line audit method and device in distributed system
  • On-line audit method and device in distributed system
  • On-line audit method and device in distributed system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0048] In order to make the purpose, technical solution and advantages of the present invention clearer, the following will further describe the implementation of the present invention in detail in conjunction with the accompanying drawings.

[0049] The first embodiment of the present invention relates to an online audit method in a distributed system. In this embodiment, the controlled terminal in the distributed system must perform identity authentication and authority audit before each operation, that is, for each A user's data access, operation execution, and resource enjoyment all have auditing, identity authentication, access service and authority value auditing, and for the execution of operations with a high security level within the preset range, tracking records are also carried out to generate log information , so that the system can generate offline statistics and audit reports in the future.

[0050] In this embodiment, the user sends a login request to the distr...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an on-line audit method and a device in a distributed system. After a user in the distributed system finishes identity authentication by a client side and logs in the distributed system, the secret key and the digital certificate of the user are verified again when the user performs the operation; after the secret key and the digital certificate pass the verification, the operation information of the user is audited by referring to authority information corresponding to the current role of the user; if the authority information comprises the operation authority, the user is permitted to perform the operation, and otherwise, the user is forbidden to perform the operation; therefore, the operation after the user in the distributed system logs in the system is guaranteed to be legal and effective; the situation that the user identify is stolen to perform the illegal operation or perform the operation out of the authority can be avoided; the situations that other people steal the identity of an operator to operate if the operator temporarily leaves, or a lower-end user pretends to be a high-end user to perform the operation out of the authority range, and the like can be avoided; and the system safety is guaranteed to the maximum degree.

Description

technical field [0001] The invention relates to an online audit technology in a distributed system Background technique [0002] Distributed platform is a technology based on middleware. Middleware is an independent system software or service program. Distributed platform uses this technology to share resources among different servers and manage services and resources distributed on different servers in a unified manner. . When a user needs to use a service or resource, he or she sends a request for the required service / resource to the distributed platform through the client, and the distributed platform locates the service / resource requested by the user and finds the server where the service / resource is located. Send the request to the corresponding server for processing. After the server finishes processing, the processing result is still fed back to the client through the distributed platform. [0003] In a distributed system, in order to prevent security threats, secur...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/08H04L29/06
Inventor 钱靖梁俊蔡清
Owner 上海东浦数据服务有限公司