Method for realizing decentralized distributed process guarding based on ad hoc network technology

Abstract

The invention relates to a method for realizing decentralized distributed process guarding based on ad hoc network technology, including generating supermanagement identity and authority and guarding policy files through the creation module, and safely storing them in each guarding node, system process, and a It is a perpetual guard that does not require external intervention. Second, the process needs to be iteratively updated / added nodes; the super administrator externally intervenes, redeploys, and after the deployment is complete, after the super administrator intervention mode exits, start the perpetual guard; start mutual monitoring, Basic services for failover and takeover, message broadcasting, and communication. The present invention utilizes the original self-organizing network technology to construct a credible decentralized distributed process guardian system, which is used to avoid the problem of system process guardian ability failure caused by the guardian's own single point of failure; at the same time, it can protect the scope of Expand from a single machine to all hosts in the whole domain, and at the same time, improve the anti-attack capability of the entire guard system to ensure the credibility of the guard system itself.

Description

technical field [0001] The invention relates to a method for realizing a decentralized distributed process guard based on an ad hoc network technology, and belongs to the technical field of network security. Background technique [0002] The guardian mechanism of the key process of the software system will play a better role in guaranteeing the robustness and availability of the system and services, and at the same time, it will play a better defense against illegal shutdown, illegal service intrusion, illegal service termination and other attacks. The traditional guardian mode is divided into the following two modes: [0003] One is to build a centralized central guardian system to conduct centralized polling, scanning, monitoring and guarding of the target system and key processes; the other is to develop and run a purely localized (same source with the target system) daemon process for the key processes of the system Perform localized polling scan monitoring and guarding...

AI Technical Summary

Problems solved by technology

[0004] The disadvantages of the centralized central monitoring guardian mode are: it is easy to cause the guardian service to be unable to use normally due to the failure of the central guardian node itself or being illegally attacked, and the single point of failure, so that the service process related to the target system loses the protection ability

[0005] The downside of the localized monitoring daemon model is: a more immediate single point of failure incident rate, i.e., if the daemon process itself is terminated unexpectedly, the daemonizing capability of the critical process disappears in an instant

Moreover, only a single system can be guarded, and key processes of other systems cannot be guarded, and the defense range is extremely small

Images