An integrated network security and intelligent operation and maintenance management system

The integrated network security and intelligent operation and maintenance management system solves the problems of fragmentation, reliance on manual labor, lack of intelligent decision-making, and difficulty in regulatory compliance in network security and operation and maintenance management. It achieves efficient and intelligent operation and maintenance management and anti-fraud publicity, and improves network security stability and compliance.

CN122293389APending Publication Date: 2026-06-26GUIZHOU TIANYI ELEVATOR COMPLETE SET EQUIP

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
GUIZHOU TIANYI ELEVATOR COMPLETE SET EQUIP
Filing Date
2026-03-30
Publication Date
2026-06-26

AI Technical Summary

Technical Problem

Existing technologies for network security and operations management suffer from fragmented management, high reliance on manual intervention, lack of intelligent decision-making, difficulty in achieving a closed-loop regulatory compliance system, and insufficient targeted anti-fraud publicity.

Method used

An integrated network security and intelligent operation and maintenance management system was designed, including a data acquisition layer, a core processing layer, a business application layer, and a data storage layer. It adopts multi-source data fusion, intelligent analysis, automatic policy generation, and full-process scheduling to achieve data interoperability, intelligent decision-making, and a closed loop of regulatory compliance.

Benefits of technology

It improved management efficiency, reduced the risk of human error, enhanced network security stability and anti-fraud publicity effectiveness, ensured closed-loop management of the entire regulatory process, optimized asset allocation, and reduced management costs.

✦ Generated by Eureka AI based on patent content.
Patent Text Reader

Abstract

This solution discloses an integrated network security and intelligent operation and maintenance management system in the field of network security and information technology operation and maintenance. It includes a data acquisition layer, a core processing layer, a business application layer, an interactive display layer, and a data storage layer, all connected in sequence. This patent achieves integrated intelligent management of the entire process of network operation and maintenance, security protection, asset management, anti-fraud collaboration, and regulatory compliance. It significantly improves operation and maintenance efficiency and network security, reduces labor costs, ensures the implementation of a closed-loop regulatory compliance system, and enhances the accuracy of anti-fraud publicity and training as well as the rationality of asset allocation.
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] This invention relates to the field of network security and information technology operation and maintenance, and in particular to an integrated network security and intelligent operation and maintenance management system. Background Technology

[0002] The network environment of enterprises and institutions is becoming increasingly complex. They need to cover communication, security products and low-voltage integration projects in multiple areas such as central computer rooms, floors and factory areas. At the same time, they need to connect with multiple regulatory and collaborative units and undertake multiple tasks such as network security protection, anti-fraud publicity and training, asset management, and server operation and maintenance.

[0003] In existing technologies, related work largely relies on independent management tools or manual operation, which has many drawbacks: 1. Fragmented management and low collaboration efficiency: Each operation and maintenance and security management module is independent of each other, and data cannot be shared. Managers need to switch between multiple systems, which can easily lead to management blind spots.

[0004] 2. High reliance on manual labor and high risk of error: Tasks such as asset statistics, IP address allocation, backup strategy execution, and anti-fraud publicity rely on manual labor, which consumes human resources and is prone to data errors and policy omissions due to human negligence.

[0005] 3. Lack of intelligent decision support: Network performance monitoring, fault diagnosis, cloud planning and other tasks rely on human experience, which cannot achieve accurate early warning and intelligent optimization, and is difficult to cope with the dynamic operation and maintenance needs of complex network environments.

[0006] 4. Lack of closed-loop implementation of regulatory requirements: The existing management methods cannot achieve a closed loop for the entire process of task reception, implementation, tracking and result reporting in response to the requirements of various regulatory units, which is prone to compliance risks such as task omissions and untimely reporting.

[0007] 5. Insufficient targeting in anti-fraud publicity and training: The anti-fraud work adopts a uniform publicity and training model, which makes it impossible to accurately push content and customize plans according to the risk level of employees' positions, resulting in poor publicity and training effects.

[0008] Therefore, there is an urgent need for an integrated management system to solve the problems existing in the above-mentioned technologies. Summary of the Invention

[0009] The present invention aims to provide an integrated network security and intelligent operation and maintenance management system to solve the problems of fragmentation, high reliance on manual labor, lack of intelligent decision-making, difficulty in regulatory compliance closure, and weak targeting of anti-fraud publicity in traditional network operation and maintenance and security management.

[0010] This solution provides an integrated network security and intelligent operation and maintenance management system, which includes a data acquisition layer, a core processing layer, a business application layer, an interactive display layer, and a data storage layer that are connected in sequence. The data acquisition layer is used to collect device and system data, asset data, network traffic data, regulatory and collaborative data, and anti-fraud data from the entire enterprise network environment; The system collects operational status data, configuration data, and fault alarm data from communication equipment, security equipment, and servers in the central computer room, floors, and factory area via SNMP protocol, SSH protocol, and WMI interface; Asset data is collected through Agent proxies and API interfaces, including information on hardware and software assets, cloud-based planning data for network assets, and implementation data for the plan to replace hardware and software with secure alternatives. Network traffic data is collected from local area networks, wide area networks, and wireless networks through traffic mirroring and the NetFlow protocol; Regulatory and collaborative data are connected to regulatory platforms such as the Cyberspace Administration and Cybersecurity Bureau via API interfaces to collect data such as regulatory requirements and task notifications; Anti-fraud data collection includes employee job information, historical anti-fraud training records, risk level assessment data, and click and learning data of anti-fraud promotional materials. The core processing layer includes a data fusion module, an intelligent analysis module, a strategy engine module, and a process scheduling module, which are used to realize the fusion processing of multi-source data, intelligent analysis, automatic generation and dynamic updating of management strategies, and full-process scheduling and tracking of tasks. The data fusion module cleans, deduplicatizes, and standardizes the collected multi-source data to establish a unified data model and enable the interconnection and interoperability of various types of data. The policy engine module automatically generates and dynamically updates management policies based on regulatory requirements, network security standards, and business needs, covering server backup and recovery policies, firewall rules and IDS / IPS protection policies, IP address allocation policies, and secure alternative implementation policies. The process scheduling module constructs a closed-loop management mechanism for the entire process, which allocates, monitors progress, verifies results, and automatically reports tasks related to operation and maintenance, security, anti-fraud, and regulatory reporting, ensuring task implementation. The business application layer includes a daily affairs management module, a server and operating system management module, a network architecture design and deployment module, a network monitoring and optimization module, a policy management module, and an anti-fraud collaborative management module, which are used to realize full-process management of specific business scenarios; The daily affairs management module enables full-process management of procurement, operation and maintenance, and inspection of communication, security products, and low-voltage integration projects; automatically summarizes asset ledgers and supports reporting; and manages the process of implementing network security regulations with regulatory authorities. The server and operating system management module automatically completes server installation, configuration, maintenance, and optimization based on policies; monitors performance in real time and automatically triggers fault repair; and automatically performs data backup and verifies the backup validity. The network architecture design and deployment module provides network topology visualization design capabilities, automatically generates network architecture and IP address allocation schemes, and supports remote configuration and debugging of network devices. The network monitoring and optimization module monitors network performance and traffic in real time, locates faults and performance bottlenecks, and automatically generates optimization solutions; it also provides VPN remote access configuration and management. The policy management module supports the creation, revision, and version management of policies related to network security and system operation, and automatically pushes policy update notifications. The anti-fraud collaborative management module accurately pushes anti-fraud promotional materials based on employees' risk levels; supports online organization of anti-fraud training, learning tracking, and effectiveness evaluation; and connects with other units to generate anti-fraud ledgers and submit reports. The interactive display layer provides a visual interface to showcase key metrics, task progress, and asset information, supporting management personnel's operation and intervention; it includes a panoramic monitoring dashboard, a task management interface, an asset control interface, and an anti-fraud management interface. The panoramic monitoring dashboard displays key indicators such as network topology, device operating status, server performance, network traffic, and task progress in real time, with abnormal data highlighted and alerted. The task management interface supports task query, claiming, tracking and feedback, and displays the progress of the entire task process; The asset management interface visually displays the distribution, status, and progress of safe and reliable alternatives for software and hardware assets, and supports asset query and ledger export. The anti-fraud management interface displays the progress of anti-fraud publicity and training, employee learning status, and risk level distribution, and supports uploading publicity materials and developing training plans. The data storage layer adopts a distributed storage architecture to store various types of data and provide data backup and recovery functions. It includes real-time databases, relational databases, and non-relational databases, which respectively store real-time data such as device operating status, structured data such as asset information, and unstructured data such as anti-fraud propaganda materials. At the same time, it integrates data backup and recovery functions to regularly back up data and ensure data integrity.

[0011] Furthermore, the intelligent analysis module constructs four types of analysis models based on machine learning algorithms: a network fault early warning model for predicting network faults, an asset optimization model for generating the optimal cloud migration solution, a risk level assessment model for classifying employee anti-fraud risk levels, and a security vulnerability assessment model for evaluating security risks.

[0012] Furthermore, the network fault early warning model is used to analyze equipment operating status data and traffic data to predict problems such as network congestion, high latency, and server failures; the asset optimization model is used to generate a cloud migration planning scheme by combining network asset cloud adaptability parameters.

[0013] Furthermore, the policy engine module automatically generates and dynamically updates server backup and recovery policies, firewall rules and IDS / IPS protection policies, IP address allocation policies, and secure alternative implementation policies based on regulatory requirements, network security standards, and business needs.

[0014] Furthermore, the process scheduling module constructs a closed-loop management mechanism for the entire process, which performs task allocation, progress monitoring, result verification, and automatic reporting for operation and maintenance tasks, security tasks, anti-fraud tasks, and regulatory reporting tasks.

[0015] Furthermore, the anti-fraud collaborative management module can accurately push anti-fraud promotional materials based on employees' risk levels, and supports online organization, learning tracking, and effectiveness evaluation of anti-fraud training.

[0016] The working principle of this solution is: integrated collaborative management breaks down information barriers between modules such as operation and maintenance, security, assets, and anti-fraud, realizes multi-dimensional data fusion and full-process collaborative scheduling, and improves management efficiency; Intelligent decision-making and automated execution: Machine learning algorithms enable intelligent analysis such as fault warning and asset optimization, automatically generate and execute management strategies, and reduce reliance on manual labor and the risk of errors. The regulatory compliance closed-loop management establishes a closed-loop mechanism for the entire process of regulatory tasks from receipt to reporting, automatically generating compliance reports to meet the reporting requirements of higher-level units; Precision anti-fraud management enables targeted delivery of anti-fraud publicity and training based on employee risk levels, improving the effectiveness of publicity and training and strengthening the anti-fraud awareness of all employees; Visualization and ease of use are achieved through a panoramic monitoring dashboard and a modular interactive interface, which enables the visualization of network status, task progress, and other information, reducing the difficulty of operation and improving the user experience.

[0017] The beneficial effects of this solution are: improved operation and maintenance efficiency. Through integrated management and automated execution, manual operation is reduced, and operation and maintenance response time is shortened by more than 30%. Enhance network security stability by implementing intelligent fault warnings, dynamic security policy adjustments, and vulnerability protection to reduce the incidence of network attacks, data breaches, and server failures; To ensure compliance requirements are met, a closed-loop management and automatic reporting system for the entire regulatory process is implemented to avoid compliance risks. Optimize asset allocation and cloud planning by generating optimal asset allocation and cloud migration solutions through intelligent analysis, thereby reducing asset idle rate and cloud migration costs.

[0018] To improve the effectiveness of anti-fraud efforts, targeted publicity and training can enhance employees' awareness and prevention capabilities against fraud, thereby reducing the risk of being scammed.

[0019] Reduce management and labor costs, while optimizing network configuration, improving asset utilization, and reducing operation and maintenance and procurement costs. Detailed Implementation

[0020] The following detailed explanation illustrates the specific implementation methods: Example: Taking a network security inspection task as an example, the system operation process is as follows: The data acquisition layer collects network device operating status, configuration data, and security logs via the SNMP protocol, and collects inspection requirements from cyberspace administration departments via API interfaces.

[0021] The core processing layer's data fusion module cleans and standardizes the data, while the intelligent analysis module compares inspection requirements with the actual status of the equipment to identify non-compliant equipment and potential vulnerabilities.

[0022] The strategy engine module automatically generates remediation strategies for problems, such as firewall rule adjustment plans and vulnerability remediation steps.

[0023] The process scheduling module assigns rectification tasks to the daily affairs management module, and the system automatically sends configuration adjustment instructions or pushes rectification notices.

[0024] After rectification is completed, the data acquisition layer re-collects equipment data, and the core processing layer verifies the rectification effect; once qualified, an inspection report is automatically generated and submitted to the cyberspace administration department.

[0025] The progress of the entire inspection process, the rectification status, and the report content are displayed visually on the interactive display layer, allowing managers to track and supervise in real time.

[0026] The above descriptions are merely embodiments of the present invention, and common knowledge regarding specific structures and characteristics is not elaborated upon here. It should be noted that those skilled in the art can make various modifications and improvements without departing from the structure of the present invention, and these should also be considered within the scope of protection of the present invention. These modifications and improvements will not affect the effectiveness of the present invention or the practicality of the patent. The scope of protection claimed in this application should be determined by the content of its claims, and the specific embodiments described in the specification can be used to interpret the content of the claims.

Claims

1. An integrated network security and intelligent operation and maintenance management system, characterized in that: It includes a data acquisition layer, a core processing layer, a business application layer, an interactive display layer, and a data storage layer that are connected in sequence. The data acquisition layer is used to collect equipment and system data, asset data, network traffic data, regulatory and collaborative data, and anti-fraud data from the entire enterprise network environment. The core processing layer includes a data fusion module, an intelligent analysis module, a strategy engine module, and a process scheduling module, which are used to realize the fusion processing of multi-source data, intelligent analysis, automatic generation and dynamic updating of management strategies, and full-process scheduling and tracking of tasks. The business application layer includes a daily affairs management module, a server and operating system management module, a network architecture design and deployment module, a network monitoring and optimization module, a system management module, and an anti-fraud collaborative management module, which are used to realize full-process management of specific business scenarios; The interactive display layer is used to provide a visual interactive interface to display key indicators, task progress and asset information, and support the operation and intervention of management personnel. The data storage layer adopts a distributed storage architecture to store various types of data and provide data backup and recovery functions.

2. The integrated network security and intelligent operation and maintenance management system according to claim 1, characterized in that: The intelligent analysis module constructs network fault early warning models, asset optimization models, risk level assessment models, and security vulnerability assessment models based on machine learning algorithms. The network fault early warning model is used to analyze equipment operating status data and traffic data to predict problems such as network congestion, high latency, and server failures; the asset optimization model is used to generate cloud migration planning schemes by combining network asset cloud adaptability parameters.

3. The integrated network security and intelligent operation and maintenance management system according to claim 2, characterized in that: The policy engine module automatically generates and dynamically updates server backup and recovery policies, firewall rules and IDS / IPS protection policies, IP address allocation policies, and secure alternative implementation policies based on regulatory requirements, network security standards, and business needs.

4. The integrated network security and intelligent operation and maintenance management system according to claim 3, characterized in that: The process scheduling module constructs a closed-loop management mechanism for the entire process, which performs task allocation, progress monitoring, result verification, and automatic reporting for operation and maintenance tasks, security tasks, anti-fraud tasks, and regulatory reporting tasks.

5. The integrated network security and intelligent operation and maintenance management system according to claim 4, characterized in that: The anti-fraud collaborative management module can accurately push anti-fraud promotional materials based on employees' risk levels, and supports online organization, learning tracking, and effectiveness evaluation of anti-fraud training.