Data security access method based on service side
By setting up a sandbox and a mirror server between the public network server and the message queue module to perform double compliance inspection and information replication, the problems of poor security and high resource consumption in the existing technology are solved, and higher security is achieved. performance and resource efficiency.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Applications(China)
- Current Assignee / Owner
- GUIZHOU POWER GRID CO LTD
- Filing Date
- 2021-11-23
- Publication Date
- 2022-04-01
- Estimated Expiration
- Not applicable · inactive patent
AI Technical Summary
Existing data security access methods based on the service side have shortcomings in terms of security and resource consumption. The security is poor and the resource consumption is large. Virus requests may escape the inspection of the public network server and enter the intranet, and the public network and intranet The server needs to constantly scan the message queue.
The client sends a first-level access request to the public network server. The public network server generates a second-level access request and sends it to the message queue module for compliance verification. After passing the compliance, the sandbox module sends it to the mirror server, and the mirror server generates a feedback response. , a firewall is set up between the message queue module and the public network server, and the mirror server only replicates information in designated areas of the intranet to avoid direct exposure of the intranet server and reduce resource consumption.
It effectively improves the security of intranet servers, reduces server resource consumption, ensures the isolation of access requests and feedback responses, avoids virus requests from sneaking into the intranet, and reduces the scanning frequency of public and intranet servers.