Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Directional operation and maintenance auditing method and system based on firewall

A firewall, operation and maintenance technology, applied in the transmission system, digital transmission system, electrical components, etc., can solve the problems of difficult deployment and high deployment cost, and achieve the effect of convenient deployment, good economy, and improved economy

Pending Publication Date: 2022-04-12
CHENGDU DBAPP SECURITY
View PDF1 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Aiming at the disadvantages of high deployment cost and difficulty in purchasing separate operation and maintenance auditing equipment in the prior art, the present invention provides a firewall-based directional operation and maintenance auditing method and system, deploying an operation and maintenance auditing system in the firewall, from the data The operation and maintenance data is identified in the message for directional operation and maintenance audit agency, which is economical, convenient to deploy, and user experience is good

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Directional operation and maintenance auditing method and system based on firewall
  • Directional operation and maintenance auditing method and system based on firewall
  • Directional operation and maintenance auditing method and system based on firewall

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0046] A firewall-based directional operation and maintenance audit method, which adds an operation and maintenance protocol identification function to the firewall, and configures the operation and maintenance audit rules in advance, and then uses the original data control capabilities of the firewall to identify the operation and maintenance protocol from the data packets flowing into the firewall. Data, redirect the identified operation and maintenance data to the operation and maintenance audit proxy engine, use the proxy mode to conduct fine-grained active audit of the data, and record the audit log at the same time.

[0047] Specifically, a firewall-based directional operation and maintenance audit method, such as figure 1 As shown, it specifically includes step S1-step S9 performed in sequence.

[0048] Step S1: Deploy a directional operation and maintenance audit system in the firewall, that is, deploy four modules in the firewall: an operation and maintenance data pro...

Embodiment 2

[0072] Such as figure 2 As shown, this embodiment provides a firewall-based directional operation and maintenance audit system, which is used to implement the directional operation and maintenance audit method described in Embodiment 1.

[0073] The directional operation and maintenance audit system includes an operation and maintenance data protocol identification module, a data flow controller, an operation and maintenance audit proxy engine, and an operation and maintenance audit log engine connected in sequence, and the operation and maintenance data protocol identification module, data flow controller, operation and maintenance The audit proxy engine and operation and maintenance audit log engine are deployed in the firewall.

[0074] The operation and maintenance data protocol identification module is used to identify the operation and maintenance data from the data message, such as SSH, RDP, VNC and other operation and maintenance protocols, and the source address, des...

Embodiment 3

[0085] Compared with Embodiment 1, in this embodiment, the sequence of steps of setting operation and maintenance protocol rules, starting to receive data packets by the firewall, and starting each module in the directional operation and maintenance audit system can be adjusted.

[0086] A firewall-based directional operation and maintenance audit method provided in this embodiment specifically includes the following steps:

[0087] Step T1: Deploy the four modules of operation and maintenance data protocol identification module, data flow controller, operation and maintenance audit agent engine and operation and maintenance audit log engine in the firewall;

[0088] Step T2: The firewall begins to receive data packets normally;

[0089] Step T3: the administrator configures the operation and maintenance audit rules in the firewall; the operation and maintenance audit rules include the operation and maintenance protocols and target servers to be audited;

[0090] Step T4: The...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the technical field of operation and maintenance auditing, and discloses a firewall-based directional operation and maintenance auditing method and system, and the method comprises the steps: adding a protocol recognition function in a firewall, configuring an operation and maintenance auditing rule in advance, and carrying out the operation and maintenance auditing through employing the original data control capability of the firewall. And identifying the operation and maintenance data from the data message flowing into the firewall, actively auditing the operation and maintenance data flowing through the firewall, and recording an auditing log at the same time. According to the method, the operation and maintenance auditing system is deployed in the firewall, the operation and maintenance data are screened from the data message for directional operation and maintenance auditing agent, the economical efficiency is good, deployment is convenient, and the user experience is good.

Description

technical field [0001] The invention relates to the technical field of operation and maintenance auditing, in particular to a firewall-based directional operation and maintenance auditing method and system. Background technique [0002] O&M security is one of the major security issues facing enterprises. Common O&M protocols include SSH, RDP, and VNC. [0003] From the perspective of operation and maintenance security, these operation and maintenance operations usually need to be audited. In order to reduce operation and maintenance risks, enterprises often conduct management audits by purchasing separate operation and maintenance audit equipment. However, the existing method has three disadvantages: 1. High cost: additional procurement cost and maintenance cost; 2. Complicated deployment: the device needs to be deployed separately, and involves modifying the network configuration of the device being operated and maintained; 3. Poor user experience: not enough Humanized, u...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L9/40H04L41/069
Inventor 何恐郑学新范渊吴永越兰星
Owner CHENGDU DBAPP SECURITY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com