[go: up one dir, main page]

TWM644484U - Deployment system of information security equipment - Google Patents

Deployment system of information security equipment Download PDF

Info

Publication number
TWM644484U
TWM644484U TW112202602U TW112202602U TWM644484U TW M644484 U TWM644484 U TW M644484U TW 112202602 U TW112202602 U TW 112202602U TW 112202602 U TW112202602 U TW 112202602U TW M644484 U TWM644484 U TW M644484U
Authority
TW
Taiwan
Prior art keywords
service provider
setting
electronic device
information
deployment
Prior art date
Application number
TW112202602U
Other languages
Chinese (zh)
Inventor
陳柏全
徐水春
余承澧
Original Assignee
保華資安股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 保華資安股份有限公司 filed Critical 保華資安股份有限公司
Priority to TW112202602U priority Critical patent/TWM644484U/en
Publication of TWM644484U publication Critical patent/TWM644484U/en

Links

Images

Landscapes

  • Alarm Systems (AREA)

Abstract

一種資安設備的部署系統,其係包括服務供應端、待設定設備與電子裝置;服務供應端儲存多個部署策略,部署策略具有多個設定指引資訊,設定指引資訊配置的辨識字串組;待設定設備具有識別資訊與多個設定分頁,設定分頁匹配於辨識字串組;電子裝置獲取識別資訊並封裝為供裝要求,電子裝置傳送供裝要求至服務供應端,服務供應端根據識別資訊選擇部署策略並傳送部署策略至電子裝置,電子裝置接收分頁選擇要求並從設定分頁中選擇其一,電子裝置查找相應的設定指引資訊,查找出的設定指引資訊為當前指引資訊,電子裝置根據當前指引資訊獲取設定輸入。A deployment system for information security equipment, which includes a service provider, equipment to be set, and electronic devices; the service provider stores multiple deployment strategies, the deployment strategy has multiple setting guide information, and sets the identification string group of guide information configuration; The device to be set has identification information and multiple setting pages, and the setting pages match the identification string group; the electronic device obtains the identification information and packages it as a supply and packaging request, and the electronic device sends the supply and installation request to the service provider, and the service provider uses the identification information Select the deployment strategy and send the deployment strategy to the electronic device. The electronic device receives the page selection request and selects one of the setting pages. The electronic device searches for the corresponding setting guide information. The found setting guide information is the current guide information. Guidance information acquisition setting input.

Description

資安設備的部署系統Deployment system of information security equipment

關於一種電子設備的安裝部署系統,特別有關一種資安設備的部署系統。The invention relates to an installation and deployment system of electronic equipment, in particular to a deployment system of information security equipment.

在網際網路上雖然提供各種便捷的線上服務,但網路中也存在著惡意程式或駭客。若網路設備受到攻擊時,輕則網路服務停擺,更甚者會影響使用者的自身權益。為能抵禦網路攻擊,因此許多使用者都會選擇加裝實體資安設備或防毒軟體。Although various convenient online services are provided on the Internet, malicious programs or hackers also exist in the Internet. If the network equipment is attacked, the network service will stop at least, and even the user's own rights and interests will be affected. In order to resist cyber attacks, many users will choose to install physical information security devices or anti-virus software.

由於資安設備(或防毒軟體)的設置項目與參數過於複雜,所以需要由有經驗的從業人員進行設定。對於一般使用者而言,使用者並不清楚資安設備的每一設定參數與其作用。再者,資安設備偵測遭受攻擊或是發生異常事件時,使用者也不一定有能力解決相應的問題。此外,由於資安設備的品牌、機器型號或搭載軟體的組合種類繁多。除了一般使用者無法得知各家設備的設定時的差異外,這也會阻礙了新手從業人員對於裝設的學習曲線。Since the setting items and parameters of the information security equipment (or anti-virus software) are too complicated, it needs to be set by experienced practitioners. For general users, users do not know each setting parameter and function of information security equipment. Furthermore, when the information security equipment detects an attack or an abnormal event occurs, the user may not be able to solve the corresponding problem. In addition, due to the wide variety of brands, machine models, or combinations of installed software of information security equipment. In addition to the fact that ordinary users cannot know the differences in the settings of various devices, this will also hinder the learning curve for novice practitioners for installation.

有鑑於此,在一些實施例中,資安設備的部署系統可以提供設定資訊或軟體安裝時的導引提示,以供施工人員在安裝過程中可以按照導引提示對資安設備的硬體或軟體進行設定。當施工人員完成安裝後,後端的伺服器也可以檢測資安設備是否正常連線或運作。In view of this, in some embodiments, the deployment system of information security equipment can provide setting information or guidance prompts during software installation, so that construction personnel can follow the guidance prompts during the installation process to update the hardware or software of information security equipment. software to set. After the construction personnel complete the installation, the back-end server can also check whether the information security equipment is connected or operating normally.

在一些實施例中,一種資安設備的部署系統,用以設定待設定設備的多個設定分頁,資安設備的部署系統包括服務供應端與電子裝置。服務供應端儲存多個部署策略,每一部署策略具有多個設定指引資訊,每一設定指引資訊配置的辨識字串組,且每一設定分頁匹配於辨識字串組;辨識字串組電子裝置網路連接於服務供應端與待設定設備,電子裝置獲取識別資訊,並將識別資訊封裝為供裝要求,電子裝置傳送供裝要求至服務供應端,服務供應端根據識別資訊選擇相應的部署策略並傳送部署策略至電子裝置,電子裝置接收分頁選擇要求並從設定分頁中選擇其一,電子裝置根據所選出的設定分頁查找相應的設定指引資訊,查找出的設定指引資訊為當前指引資訊,電子裝置獲取與當前指引資訊相對應的設定輸入值,將設定輸入值填入對應的設定分頁,使待設定設備儲存設定分頁與所屬的設定輸入值。In some embodiments, an information security equipment deployment system is used for setting multiple configuration pages of the equipment to be configured. The information security equipment deployment system includes a service provider and an electronic device. The service provider stores a plurality of deployment strategies, each deployment strategy has a plurality of setting guide information, each setting guide information configuration identification string group, and each setting page matches the identification string group; the identification string group electronic device The network is connected to the service provider and the device to be configured. The electronic device obtains the identification information and packages the identification information into a supply and installation request. The electronic device sends the supply and installation request to the service provider. The service provider selects a corresponding deployment strategy based on the identification information And send the deployment strategy to the electronic device. The electronic device receives the page selection request and selects one of the setting pages. The electronic device searches for the corresponding setting guide information according to the selected setting page. The found setting guide information is the current guide information. The device obtains the setting input value corresponding to the current guidance information, and fills the setting input value into the corresponding setting page, so that the device to be set stores the setting page and the corresponding setting input value.

在一實施例中,電子裝置完成所有設定分頁與設定輸入值的輸入後,服務供應端記錄待設定設備至已納管清單。In one embodiment, after the electronic device finishes inputting all setting pages and setting input values, the service provider records the equipment to be set into the managed list.

在一實施例中,服務供應端根據已納管清單定時向待設定設備獲取紀錄檔(log),紀錄檔記錄待設定設備的運作狀態。In one embodiment, the service provider regularly obtains a log from the device to be configured according to the managed list, and the log file records the operation status of the device to be configured.

在一實施例中,服務供應端根據運作狀態判斷待設定設備是否發生異常,若待設定設備發生異常時,服務供應端產生異常警示通報,服務供應端傳送異常警示通報至客戶端。In one embodiment, the service provider judges whether the device to be configured is abnormal according to the operating status. If the device to be configured is abnormal, the service provider generates an abnormality warning notification, and the service provider sends the abnormality warning notification to the client.

在一實施例中,服務供應端根據多個運作狀態產生統計報表,客戶端根據異常警示通報向服務供應端獲取統計報表。In one embodiment, the service provider generates a statistical report according to a plurality of operating states, and the client obtains the statistical report from the service provider according to the abnormal warning notification.

在一些實施例中,服務供應端獲取組態更新通知,服務供應端轉發組態更新通知至待設定設備,使待設定設備連接至組態伺服器並獲取更新套件,待設定設備以更新套件進行更新。In some embodiments, the service provider obtains the configuration update notification, and the service provider forwards the configuration update notification to the device to be configured, so that the device to be configured is connected to the configuration server and obtains an update package, and the device to be configured uses the update package to perform renew.

所述的資安設備的部署系統提供即時的軟、硬體的裝設資訊,以供施工人員可以在安裝資安設備或軟體的過程中可以直接參照提示資訊進行裝設。當施工人員完成待設定設備的裝設後,服務供應端可以即時納管待設定設備。服務供應端除了可以即時驗證待設定設備的裝設完整性外,也可以提供相應的網路防護服務給待設定設備。若服務供應端偵測待設定設備發生異常或事件時,服務供應端可以發送相應的訊息給客戶端或者所指定的對象。The information security equipment deployment system provides real-time software and hardware installation information, so that construction personnel can directly refer to the prompt information during the installation of information security equipment or software. After the construction personnel complete the installation of the equipment to be set, the service provider can immediately manage the equipment to be set. In addition to instantly verifying the installation integrity of the device to be configured, the service provider can also provide corresponding network protection services to the device to be configured. If the service provider detects that an abnormality or event occurs in the device to be set, the service provider can send a corresponding message to the client or the specified object.

請參考圖1與圖2所示,分別為此一些實施例的系統架構與元件示意圖。資安設備的部署系統(以下簡稱部署系統100)包括電子裝置110與服務供應端130。電子裝置110包括輸入單元111、顯示單元112、第一網路單元113、第一儲存單元114與第一處理單元115。第一處理單元115電性連接於顯示單元112、輸入單元111、第一網路單元113與第一儲存單元114。為能方便說明,因此將待設定設備120繪製於圖1中,以便後文說明電子裝置110與服務供應端130對待設定設備120的相關處理。Please refer to FIG. 1 and FIG. 2 , which are schematic diagrams of the system architecture and components of some embodiments, respectively. The deployment system of information security equipment (hereinafter referred to as the deployment system 100 ) includes an electronic device 110 and a service provider 130 . The electronic device 110 includes an input unit 111 , a display unit 112 , a first network unit 113 , a first storage unit 114 and a first processing unit 115 . The first processing unit 115 is electrically connected to the display unit 112 , the input unit 111 , the first network unit 113 and the first storage unit 114 . For the convenience of description, the device 120 to be configured is drawn in FIG. 1 , so that the related processing of the electronic device 110 and the service provider 130 on the device 120 to be configured will be described later.

顯示單元112除了播放電子裝置110的作業系統的畫面外,也可以播放裝設程式116的操作介面與設定指引資訊135。輸入單元111用以輸入分頁選擇要求、識別資訊121、設定的數值或參數等。輸入單元111可以是影像擷取元件(例如:互補式金屬氧化物半導體(Complementary Metal Oxide Semiconductor,CMOS),以影像擷取獲取識別資訊121。此外,輸入單元111也可以是實體鍵盤或虛擬按鍵的組合等。第一網路單元113網路連接於待設定設備120與服務供應端130。第一網路單元113傳送供裝要求211至服務供應端130,或接收服務供應端130的設定指引資訊135。電子裝置110可以是但不限定為行動電話(mobile phone)、平板電腦(tablet)、筆記型電腦(notebook)、穿戴式裝置或個人電腦等。In addition to playing the screen of the operating system of the electronic device 110 , the display unit 112 can also play the operation interface and setting guide information 135 of the installation program 116 . The input unit 111 is used for inputting a page selection request, identification information 121 , set values or parameters, and the like. The input unit 111 can be an image capture device (for example: complementary metal oxide semiconductor (Complementary Metal Oxide Semiconductor, CMOS), to obtain the identification information 121 by image capture. In addition, the input unit 111 can also be a physical keyboard or a virtual key. Combination, etc. The first network unit 113 is connected to the device 120 to be set and the service provider 130. The first network unit 113 sends the supply and installation request 211 to the service provider 130, or receives the setting guide information of the service provider 130 135. The electronic device 110 may be, but not limited to, a mobile phone, a tablet, a notebook, a wearable device, or a personal computer.

第一處理單元115執行第一儲存單元114所儲存的裝設程式116。當裝設程式116執行時,第一處理單元115驅動顯示單元112播放裝設程式116的使用者介面或設定指引資訊135的畫面。裝設程式116也會提示使用者以輸入單元111獲取待設定設備120的識別資訊121。第一處理單元115將識別資訊121封裝供裝要求211,並且第一處理單元115驅動第一網路單元113發送供裝要求211至服務供應端130。第一網路單元113可以採用IEEE802.X系列的乙太網路(Ethernet)或無線網路的通訊協議,並網路連接於待設定設備120或服務供應端130。裝設程式116可以是獨立的應用程式,也可以通過瀏覽器與外掛(plug-in)的方式所執行。電子裝置110向待設定設備120進行參數設定。The first processing unit 115 executes the installation program 116 stored in the first storage unit 114 . When the installation program 116 is executed, the first processing unit 115 drives the display unit 112 to play the user interface of the installation program 116 or the screen of setting guide information 135 . The installation program 116 also prompts the user to obtain the identification information 121 of the device 120 to be configured through the input unit 111 . The first processing unit 115 encapsulates the identification information 121 into a supply request 211 , and the first processing unit 115 drives the first network unit 113 to send the supply request 211 to the service provider 130 . The first network unit 113 can adopt IEEE802.X series Ethernet or wireless network communication protocols, and is connected to the device 120 to be configured or the service provider 130 through the network. The installation program 116 can be an independent application program, or can be executed through a browser or plug-in. The electronic device 110 performs parameter setting to the device to be set 120 .

待設定設備120包括識別資訊121、第二網路單元122、第二儲存單元123與第二處理單元124。待設定設備120的種類可以是路由器(router)、閘道器(gateway)、交換器(switch)、無線存取點(wireless access point)、個人電腦、筆記型電腦、平板電腦或物聯網設備(Internet of Things,IoT)。第二處理單元124電性連接於第二網路單元122與第二儲存單元123。第二網路單元122網路連接於電子裝置110與服務供應端130。第二處理單元124載入第二儲存單元123的多個設定分頁125。每一設定分頁125對應待設定設備120的不同方面的設定內容,且設定分頁125中各自具有數量不同的輸入欄位(無標號)。輸入欄位可以填入或選擇相應的設定輸入值212。設定分頁125可以是以網頁方式實現,也可以是獨立的應用程式。The device to be configured 120 includes identification information 121 , a second network unit 122 , a second storage unit 123 and a second processing unit 124 . The type of the device 120 to be set can be a router, a gateway, a switch, a wireless access point, a personal computer, a notebook computer, a tablet computer or an Internet of Things device ( Internet of Things, IoT). The second processing unit 124 is electrically connected to the second network unit 122 and the second storage unit 123 . The second network unit 122 is network-connected to the electronic device 110 and the service provider 130 . The second processing unit 124 loads a plurality of setting pages 125 of the second storage unit 123 . Each setting page 125 corresponds to setting content of different aspects of the device 120 to be set, and each setting page 125 has a different number of input fields (no labels). The input field can be filled in or selected to set the corresponding input value 212 . The setting page 125 can be implemented as a webpage, or as an independent application program.

此外,不同的設定分頁125各自匹配一辨識字串組,每一個辨識字串組是唯一數值、文字、數字、雜湊碼或其組合。舉例來說,辨識字串組可以是待設定設備120的設備編號與數值(或文字編碼)的組合。辨識字串組是根據部署策略134及/或設定指引資訊135所決定,將於後文另述。第二處理單元124根據辨識字串組的排序依序載入設定分頁125,以供電子裝置110對相應的設定分頁125進行設定。第二網路單元122接收電子裝置110的設定輸入值212。識別資訊121包括媒體存取控制碼(Media Access Control,MAC)、客戶身份證號、客戶編號、設備識別碼、通用唯一辨識碼(Universally Unique Identifier)、韌體版本號碼、軟體名稱、軟體版本號碼。識別資訊121可以二維條碼或文字等方式記錄於實體貼紙中,也可以將識別資訊121儲存於第二儲存單元123。In addition, different setting pages 125 each match an identification string group, and each identification string group is a unique value, character, number, hash code or a combination thereof. For example, the identification string group may be a combination of a device number and a value (or character code) of the device 120 to be configured. The identification string group is determined according to the deployment strategy 134 and/or the setting guide information 135, which will be described later. The second processing unit 124 sequentially loads the setting page 125 according to the sequence of the identification string group, so that the electronic device 110 can set the corresponding setting page 125 . The second network unit 122 receives the set input value 212 of the electronic device 110 . Identification information 121 includes media access control code (Media Access Control, MAC), customer ID number, customer number, device identification code, universally unique identifier (Universally Unique Identifier), firmware version number, software name, software version number . The identification information 121 can be recorded on the physical sticker in the form of a two-dimensional barcode or text, or the identification information 121 can be stored in the second storage unit 123 .

服務供應端130具有第三網路單元131、第三儲存單元132與第三處理單元133。第三處理單元133電性連接於第三網路單元131與第三儲存單元132。第三網路單元131網路連接於電子裝置110與待設定設備120。第三網路單元131傳送設定指引資訊135至電子裝置110,接收電子裝置110的供裝要求211或待設定設備120的確認通知。The service provider 130 has a third network unit 131 , a third storage unit 132 and a third processing unit 133 . The third processing unit 133 is electrically connected to the third network unit 131 and the third storage unit 132 . The third network unit 131 is network-connected to the electronic device 110 and the device 120 to be configured. The third network unit 131 transmits the configuration guide information 135 to the electronic device 110 , and receives the supply and installation request 211 of the electronic device 110 or the confirmation notification of the device 120 to be configured.

第三儲存單元132儲存多組部署策略134,每一部署策略134更包括至少一設定指引資訊135。每一設定指引資訊135設置對應的一辨識字串組,而各辨識字串組都是唯一值且不重複。對於同一待設定設備120的多個設定分頁125會分別匹配不同的設定指引資訊135的辨識字串組。第三處理單元133根據供裝要求211選擇相應的部署策略134,並驅動第三網路單元131傳送部署策略134與其設定指引資訊135至電子裝置110。設定指引資訊135的內容是匹配於待設定設備120與相關的設定分頁125。由於部署策略134是對應待設定設備120。所以每一個部署策略134可以對應不同廠商的待設定設備120與其軟體。The third storage unit 132 stores multiple sets of deployment strategies 134 , and each deployment strategy 134 further includes at least one setting guide information 135 . Each setting guide information 135 sets a corresponding identification string group, and each identification string group is unique and not repeated. For multiple setting pages 125 of the same device 120 to be set, different identification string groups of setting guidance information 135 will be matched respectively. The third processing unit 133 selects the corresponding deployment strategy 134 according to the provisioning requirement 211 , and drives the third network unit 131 to transmit the deployment strategy 134 and its setting guide information 135 to the electronic device 110 . The content of the setting guidance information 135 is matched with the device 120 to be set and the related setting page 125 . Since the deployment policy 134 corresponds to the device 120 to be configured. Therefore, each deployment strategy 134 can correspond to the device 120 to be configured and its software from different manufacturers.

為進一步說明部署系統100的運作過程,還請配合參考圖3。圖3係為部署系統100的運作流程示意圖。部署系統100的運作流程包括以下步驟: 步驟S310:將電子裝置網路連接服務供應端與待設定設備,待設定設備具有識別資訊與多個設定分頁; 步驟S320:電子裝置獲取待設定設備的識別資訊,並產生相應識別資訊的供裝要求; 步驟S330:電子裝置傳送供裝要求至服務供應端,使服務供應端提供相應的部署策略; 步驟S340:電子裝置接收分頁選擇要求,電子裝置從設定分頁中選擇其一,並電子裝置根據受選的設定分頁查找相應的設定指引資訊,查找出的設定指引資訊為當前指引資訊; 步驟S350:電子裝置將接收的設定輸入值填入相應的設定分頁中;以及 步驟S360:待設定設備儲存設定分頁與所屬的設定輸入值。 In order to further describe the operation process of the deployment system 100 , please also refer to FIG. 3 . FIG. 3 is a schematic diagram of the operation flow of the deployment system 100 . The operation process of the deployment system 100 includes the following steps: Step S310: Connect the electronic device to the service provider and the device to be configured. The device to be configured has identification information and multiple configuration pages; Step S320: The electronic device acquires identification information of the device to be configured, and generates a supply and installation request for the corresponding identification information; Step S330: The electronic device sends a supply and installation request to the service provider, so that the service provider provides a corresponding deployment strategy; Step S340: The electronic device receives a page selection request, the electronic device selects one of the setting pages, and the electronic device searches for corresponding setting guide information according to the selected setting page, and the found setting guide information is the current guide information; Step S350: the electronic device fills the received setting input value into the corresponding setting page; and Step S360: The device to be set stores the setting page and the associated setting input value.

在電子裝置110連線於服務供應端130前,服務供應端130儲存多組的部署策略134。不同的部署策略134各自對應待設定設備120。而不同的待設定設備120可以分別對應不同廠商。電子裝置110致能裝設程式116,使裝設程式116連接於服務供應端130。電子裝置110可以通過無線網路或有線網路連接至服務供應端130(對應步驟S310)。裝設程式116可以內建預設的統一資源定位符(Uniform Resource Locator,URL或稱網址)或網路位址(Internet Protocol Address,簡稱IP),或者由使用者自行鍵入服務供應端130的網址(或IP位址)。裝設程式116連接至服務供應端130後,裝設程式116傳送供識別資訊121至服務供應端130。Before the electronic device 110 is connected to the service provider 130 , the service provider 130 stores multiple sets of deployment strategies 134 . Different deployment strategies 134 correspond to the devices 120 to be configured. And different devices 120 to be configured may respectively correspond to different manufacturers. The electronic device 110 enables the installation program 116 to connect the installation program 116 to the service provider 130 . The electronic device 110 can be connected to the service provider 130 through a wireless network or a wired network (corresponding to step S310). The installation program 116 can have a built-in default uniform resource locator (Uniform Resource Locator, URL or website address) or network address (Internet Protocol Address, referred to as IP), or the website address of the service provider 130 can be entered by the user (or IP address). After the installer 116 is connected to the service provider 130 , the installer 116 sends the identification information 121 to the service provider 130 .

接著,電子裝置110網路連接至待設定設備120(對應步驟S310)。電子裝置110可以透過拍攝取得識別資訊121或以鍵盤輸入識別資訊121,使裝設程式116根據識別資訊121產生供裝要求211(對應步驟S320)。在電子裝置110獲取待設定設備120的識別資訊121後,裝設程式116傳輸供裝要求211至服務供應端130。服務供應端130可以根據識別資訊121獲得相應的部署策略134(對應步驟S330)。服務供應端130傳送部署策略134至電子裝置110與裝設程式116。電子裝置110接獲部署策略134後,裝設程式116驅動顯示單元112並準備播放部署策略134。Next, the electronic device 110 is connected to the device 120 to be configured via a network (corresponding to step S310). The electronic device 110 can obtain the identification information 121 by taking a picture or input the identification information 121 with a keyboard, so that the installation program 116 can generate the supply and installation request 211 according to the identification information 121 (corresponding to step S320). After the electronic device 110 acquires the identification information 121 of the device 120 to be configured, the installation program 116 transmits a supply and installation request 211 to the service provider 130 . The service provider 130 can obtain the corresponding deployment strategy 134 according to the identification information 121 (corresponding to step S330). The service provider 130 transmits the deployment policy 134 to the electronic device 110 and the installation program 116 . After the electronic device 110 receives the deployment strategy 134 , the installation program 116 drives the display unit 112 and prepares to play the deployment strategy 134 .

電子裝置110接收分頁選擇要求。使用者可以通過輸入單元111與操作選擇設定分頁125。裝設程式116將受選的設定分頁125顯示於顯示單元112上。裝設程式116根據當前所載入的設定分頁125與所匹配的辨識字串組選擇相應的設定指引資訊135(對應步驟S340)。而受選的設定指引資訊135將其稱為當前指引資訊。裝設程式116在顯示單元112同時播放設定分頁125與當前指引資訊。裝設程式116可以是以切割畫面或子視窗的方式呈現設定分頁125與設定指引資訊135,或者以彈出視窗(pop-up)的方式顯示設定指引資訊135。使用者可以從顯示單元112所觀看到設定指引資訊135。使用者再根據設定指引資訊135所提示的內容,將當前指引資訊的數值輸入至設定分頁125的對應欄位中,而所輸入的數值即為設定輸入值212(對應步驟S350)。The electronic device 110 receives a page selection request. The user can select the setting page 125 through the input unit 111 and operation. The installation program 116 displays the selected setting page 125 on the display unit 112 . The installation program 116 selects the corresponding setting guide information 135 according to the currently loaded setting page 125 and the matching identification string group (corresponding to step S340 ). The selected setting guide information 135 is called current guide information. The installation program 116 simultaneously plays the setting page 125 and the current guidance information on the display unit 112 . The installation program 116 can present the setting page 125 and the setting guidance information 135 in a split screen or sub-window, or display the setting guidance information 135 in a pop-up window. The user can view the setting guide information 135 from the display unit 112 . The user then inputs the value of the current guidance information into the corresponding field of the setting page 125 according to the content prompted by the setting guidance information 135, and the input value is the setting input value 212 (corresponding to step S350).

請參考圖4、圖5、圖6,其係分別為裝設程式116的三組不同的設定分頁125與相應的設定指引資訊135的示意圖。圖4、圖5、圖6中的裝設程式116具有n個設定分頁125,為能方便說明在圖4、圖5、圖6中的電子裝置110的上方中將各設定分頁125的頁面標籤(tab pages)同時列出。但實際上可以不必然同時出現所有的頁面標籤,也可以在顯示單元112中每次顯示一個設定分頁125。並且裝設程式116中係以黑色粗線框作為作用中的設定分頁125。並在裝設程式116的顯示介面中切分為上、下兩畫面,分別顯示設定指引資訊135(即為當前指引資訊)與設定分頁125的內容。Please refer to FIG. 4 , FIG. 5 , and FIG. 6 , which are schematic diagrams of three different setting pages 125 and corresponding setting guide information 135 of the installation program 116 . The installation program 116 in Fig. 4, Fig. 5, and Fig. 6 has n setting pages 125, and for convenience, the page label of each setting page 125 is set above the electronic device 110 in Fig. 4, Fig. 5, and Fig. 6 (tab pages) are also listed. But in fact, not all page tabs may necessarily appear at the same time, and one setting page 125 may be displayed on the display unit 112 at a time. And in the installation program 116, the black thick line frame is used as the active setting page 125 . And the display interface of the installation program 116 is divided into upper and lower two screens, displaying the setting guide information 135 (that is, the current guide information) and the content of the setting page 125 respectively.

以選擇「分頁1」的頁面標籤為例,裝設程式116根據設定分頁125(對應於分頁1)的辨識字串組加載設定指引資訊135。並假設「分頁1」為待設定設備120的系統登入頁面。在圖4中的設定指引資訊135的上方子畫面中顯示設備型號、使用者預設帳號與預設密碼,而在下方子畫面的設定分頁125中顯示使用者的登入帳號與密碼。若待設定設備120初次設定,使用者可以通過設定指引資訊135的預設帳號、密碼輸入至設定分頁125與相應欄位中。裝設程式116根據前述各欄位獲取一設定輸入值212,並且發送設定輸入值212至待設定設備120。在圖4的例子中,裝設程式116發送設定輸入值212至待設定設備120後,裝設程式116可以登入待設定設備120的系統設定頁面。Taking the page label of "page 1" as an example, the installation program 116 loads the setting guide information 135 according to the identification string group of the setting page 125 (corresponding to page 1). And assume that "page 1" is the system login page of the device 120 to be configured. The upper sub-screen of the setting guide information 135 in FIG. 4 displays the device model, user default account and default password, and the lower sub-screen of the setting page 125 displays the user's login account and password. If the device 120 to be set is set for the first time, the user can enter the default account and password into the setting page 125 and corresponding fields through the setting guide information 135 . The installation program 116 acquires a setting input value 212 according to the aforementioned fields, and sends the setting input value 212 to the device 120 to be set. In the example of FIG. 4 , after the installation program 116 sends the setting input value 212 to the device 120 to be configured, the installation program 116 can log in the system setting page of the device 120 to be configured.

在登入設定頁面後,裝設程式116另載入「分頁2」的設定分頁125。於此同時,裝設程式116根據「分頁2」的辨識字串組加載相應的設定指引資訊135,如圖5所示。假設「分頁2」係為待設定設備120的網路位址設定頁面。在圖5的設定指引資訊135中顯示「網路位址」、「DNS位址」與「MAC位址」的相關內容。使用者可以根據設定指引資訊135對設定分頁125的對應欄位輸入相應的設定輸入值212。裝設程式116再將所輸入的設定輸入值212(意即前述的網路位址)發送至待設定設備120,藉以完成待設定設備120的網路設定(對應步驟S360)。After logging into the setting page, the installation program 116 further loads the setting page 125 of "page 2". At the same time, the installation program 116 loads the corresponding setting guide information 135 according to the identification string group of "page 2", as shown in FIG. 5 . Assume that "page 2" is a page for setting the network address of the device 120 to be set. The related content of "network address", "DNS address" and "MAC address" is displayed in the setting guide information 135 in FIG. 5 . The user can input the corresponding setting input value 212 to the corresponding field of the setting page 125 according to the setting guide information 135 . The installation program 116 then sends the input setting input value 212 (that is, the aforementioned network address) to the device 120 to be configured, so as to complete the network configuration of the device 120 to be configured (corresponding to step S360).

在「分頁3」的設定分頁125係為防火牆的各項通行(或禁行)規則。裝設程式116根據「分頁3」的設定分頁125獲取相應的設定指引資訊135。使用者可以根據設定指引資訊135的內容對設定分頁125的對應欄位設定輸入值21。裝設程式116將獲取的設定輸入值21發送至待設定設備120,以完成對防火牆規則的設定分頁125。The setting page 125 in "page 3" is the various pass (or prohibition) rules of the firewall. The installation program 116 obtains the corresponding setting guide information 135 according to the setting page 125 of "page 3". The user can set the input value 21 for the corresponding field of the setting page 125 according to the content of the setting guide information 135 . The installation program 116 sends the obtained setting input value 21 to the device to be set 120 to complete the setting page 125 of the firewall rule.

除了前述的對於待設定設備120的硬體環境的設定外,也可以應用在待設定設備120的軟體的設定。第二處理單元124執行儲存於第二儲存單元123的應用程式,並使應用程式產生識別資訊121。第二處理單元124可以透過顯示裝置播放識別資訊121,或者裝設程式116透過網路向待設定設備120獲取識別資訊121。In addition to the aforementioned setting of the hardware environment of the device to be set 120 , it can also be applied to the setting of the software of the device to be set 120 . The second processing unit 124 executes the application program stored in the second storage unit 123 and makes the application program generate identification information 121 . The second processing unit 124 can play the identification information 121 through the display device, or the installation program 116 obtains the identification information 121 from the device 120 to be configured through the network.

舉例來說,第二處理單元124可以將識別資訊121轉換為二維條碼(QR code),並顯示於待設定設備120的顯示裝置上,以供電子裝置110獲取識別資訊121。又或者,第二處理單元124可以驅動第二網路單元122以網路廣播的方式搜尋網路中具有裝設程式116的電子裝置110。電子裝置110接獲通知後,裝設程式116可以根據前述方式對待設定設備120的軟體進行相應的設定操作。For example, the second processing unit 124 can convert the identification information 121 into a two-dimensional barcode (QR code), and display it on the display device of the device 120 to be configured, so that the electronic device 110 can obtain the identification information 121 . Alternatively, the second processing unit 124 may drive the second network unit 122 to search for electronic devices 110 with the installed program 116 in the network in the form of network broadcast. After the electronic device 110 receives the notification, the installation program 116 can perform corresponding setting operations on the software of the device 120 to be set according to the aforementioned method.

在一些實施例中,電子裝置110完成所有設定分頁125與設定輸入值212的操作後,電子裝置110向服務供應端130發送一操作完成通知。服務供應端130根據操作完成通知將相應的待設定設備120記錄至已納管清單中。操作完成通知包括識別資訊121與該些設定輸入值212,藉以供服務供應端130記錄待設定設備120的操作歷程。In some embodiments, after the electronic device 110 completes all the operations of setting the page 125 and setting the input value 212 , the electronic device 110 sends an operation completion notification to the service provider 130 . The service provider 130 records the corresponding to-be-configured device 120 into the managed list according to the operation completion notification. The operation completion notification includes the identification information 121 and the setting input values 212 for the service provider 130 to record the operation history of the device 120 to be set.

在一些實施例中,服務供應端130根據已納管清單向已登載的待設定設備120獲取紀錄檔712(log)。服務供應端130可以以固定週期的方式定時向待設定設備120獲取紀錄檔712。紀錄檔712記錄待設定設備120的運作狀態。舉例來說,服務供應端130可以每經過24小時後,向待設定設備120索取紀錄檔712。服務供應端130根據時間前後依序產生紀錄檔712。In some embodiments, the service provider 130 obtains the log file 712 (log) from the registered device 120 to be configured according to the managed list. The service provider 130 can regularly obtain the record file 712 from the device 120 to be configured in a fixed period. The record file 712 records the operation state of the device 120 to be configured. For example, the service provider 130 may request the record file 712 from the device 120 to be configured every 24 hours. The service provider 130 generates the record files 712 sequentially according to time.

在一些實施例中,服務供應端130根據運作狀態判斷待設定設備120是否發生異常。服務供應端130可以將單位時間內所獲取的紀錄檔712進行異常的分析處理。若待設定設備120發生異常時,服務供應端130產生異常警示通報713。服務供應端130傳送異常警示通報713至客戶端711,請參考圖7。舉例來說,服務供應端130可以根據12小時內的每一小時的紀錄檔712的網路流量作為是否遭遇阻斷服務的攻擊。服務供應端130將遭受網路攻擊的異常警示通報713發送至指定的客戶端711。In some embodiments, the service provider 130 determines whether the to-be-configured device 120 is abnormal according to the operating status. The service provider 130 can analyze and process the abnormality of the record file 712 obtained per unit time. If the device 120 to be configured is abnormal, the service provider 130 generates an abnormality warning notification 713 . The service provider 130 sends an abnormal warning notification 713 to the client 711 , please refer to FIG. 7 . For example, the service provider 130 can use the network traffic of the record file 712 for each hour within 12 hours as whether it has encountered a denial of service attack. The service provider 130 sends an abnormal warning notification 713 of a network attack to a designated client 711 .

在一些實施例中,服務供應端130根據運作狀態產生相應的統計報表714。如前例所述,服務供應端130可以根據網路流量、會談 (session) 的封包數量及Byte數、會談的起始時戳和結束時戳、來源IP和目的IP、來源和目的TCP(Transmission Control Protocol)、UDP(User Datagram Protocol) 連接埠或ICMP種類和代號、處理器過載(loading)或記憶體過載等運作狀態,獲取指定時間長度的統計報表714。客戶端711接獲異常警示通報713後,客戶端711可以向服務供應端130發出報表索取要求,藉以獲取所指定運作狀態與時間的統計報表714。In some embodiments, the service provider 130 generates a corresponding statistical report 714 according to the operation status. As mentioned in the previous example, the service provider 130 can be based on the network traffic, the number of packets and bytes of the session (session), the start timestamp and end timestamp of the session, the source IP and the destination IP, the source and the destination TCP (Transmission Control Protocol), UDP (User Datagram Protocol) connection port or ICMP type and code, processor overload (loading) or memory overload and other operating states, obtain the statistical report 714 of the specified time length. After the client 711 receives the abnormal warning notification 713 , the client 711 can send a report request request to the service provider 130 to obtain the statistical report 714 of the specified operation status and time.

在一些實施例中,服務供應端130獲取組態更新通知715。服務供應端130根據組態更新通知715對相應的部署策略134與設定指引資訊135的內容進行更新。組態更新通知715可以是待設定設備120的生產廠商或軟體供應商所提供。組態更新的內容可以是但不限定為設備韌體或軟體更新。服務供應端130接獲組態更新通知715後,服務供應端130可以根據已納管清單將組態更新通知715轉發至對應的待設定設備120,藉以提示使用者對待設定設備120進行組態更新。In some embodiments, the service provider 130 obtains the configuration update notification 715 . The service provider 130 updates the content of the corresponding deployment strategy 134 and configuration guide information 135 according to the configuration update notification 715 . The configuration update notification 715 may be provided by the manufacturer or software provider of the device 120 to be configured. The content of configuration update can be but not limited to device firmware or software update. After the service provider 130 receives the configuration update notification 715, the service provider 130 can forward the configuration update notification 715 to the corresponding device 120 to be configured according to the managed list, so as to prompt the user to update the configuration of the device 120 to be configured .

在一些實施例中,電子裝置110與待設定設備120可以屬於同一區域網路之中。在同一區域網路中,電子裝置110可以通過區域網路的無線存取點、集線器(hub)、交換器連接至待設定設備120。In some embodiments, the electronic device 110 and the device 120 to be configured may belong to the same local area network. In the same local area network, the electronic device 110 can be connected to the device 120 to be configured through a wireless access point, a hub, or a switch of the local area network.

在一些實施例中,對於步驟S330的電子裝置110傳送該供裝要求211至服務供應端130的步驟中更包括以下步驟,並請參考圖8所示: 步驟S331:服務供應端根據識別資訊查找完整設備清單; 步驟S332:服務供應端判斷待設定設備是否記錄於完整設備清單中; 步驟S333:若完整設備清單存在待設定設備,服務供應端提供相應的部署策略至電子裝置;以及 步驟S334:若完整設備清單不存在待設定設備,服務供應端產生警示通知至電子裝置。 In some embodiments, the step of the electronic device 110 transmitting the supply request 211 to the service provider 130 in step S330 further includes the following steps, and please refer to FIG. 8 : Step S331: The service provider searches for a complete device list according to the identification information; Step S332: the service provider determines whether the device to be set is recorded in the complete device list; Step S333: If there is a device to be configured in the complete device list, the service provider provides a corresponding deployment strategy to the electronic device; and Step S334: If there is no device to be configured in the complete device list, the service provider generates a warning notification to the electronic device.

當電子裝置110發送供裝要求211至服務供應端130後,服務供應端130提供一完整設備清單給電子裝置110。完整設備清單記錄該區域中已裝設完成或未裝設的待設定設備120。服務供應端130判斷當前的待設定設備120是否屬於完整設備清單中的待設定設備120。若是完整設備清單中存在所述的待設定設備120,服務供應端130向電子裝置110發送確認通知,並且服務供應端130提供相應的部署策略134至電子裝置110(接續步驟S340)。反之,服務供應端130向電子裝置110發送警示通知,藉以提示電子裝置110獲取錯誤的待設定設備120。After the electronic device 110 sends the supply and installation request 211 to the service provider 130 , the service provider 130 provides a complete equipment list to the electronic device 110 . The complete equipment list records the installed or uninstalled equipment 120 to be set in the area. The service provider 130 determines whether the current device 120 to be configured belongs to the device 120 to be configured in the complete device list. If the device 120 to be configured exists in the complete device list, the service provider 130 sends a confirmation notification to the electronic device 110, and the service provider 130 provides the corresponding deployment policy 134 to the electronic device 110 (continuing to step S340). On the contrary, the service provider 130 sends a warning notification to the electronic device 110 to prompt the electronic device 110 to acquire the wrong device 120 to be configured.

所述的資安設備的部署系統100提供即時的軟、硬體的裝設資訊,以供施工人員可以在安裝資安設備或軟體的過程中可以直接參照提示資訊進行裝設。而且裝設的過程中,電子裝置110可以通過裝設程式116獲取各廠牌的待設定設備120與所屬的部署策略134。施工人員不需要逐一到各原廠平台去下載相應的軟體,或逐一執行所述軟體對待設定設備120進行設定。當施工人員完成待設定設備120的裝設後,服務供應端130可以即時納管待設定設備120。服務供應端130除了可以即時驗證待設定設備120的裝設完整性外,也可以提供相應的網路防護服務給待設定設備120。若服務供應端130偵測待設定設備120發生異常或事件時,服務供應端130可以發送相應的訊息給客戶端711或者所指定的對象。The information security equipment deployment system 100 provides real-time software and hardware installation information, so that construction personnel can directly refer to the prompt information during installation of information security equipment or software. Moreover, during the installation process, the electronic device 110 can obtain the devices 120 to be configured and the deployment strategies 134 of each brand through the installation program 116 . The construction personnel do not need to go to each original factory platform one by one to download the corresponding software, or execute the software one by one to set the device 120 to be set. After the construction personnel complete the installation of the equipment 120 to be configured, the service provider 130 can take over the equipment 120 to be configured immediately. The service provider 130 can not only immediately verify the installation integrity of the device to be configured 120 , but also provide corresponding network protection services to the device to be configured 120 . If the service provider 130 detects that an abnormality or event occurs in the device 120 to be configured, the service provider 130 can send a corresponding message to the client 711 or the specified object.

100:部署系統 110:電子裝置 111:輸入單元 112:顯示單元 113:第一網路單元 114:第一儲存單元 115:第一處理單元 116:裝設程式 120:待設定設備 121:識別資訊 122:第二網路單元 123:第二儲存單元 124:第二處理單元 125:設定分頁 130:服務供應端 131:第三網路單元 132:第三儲存單元 133:第三處理單元 134:部署策略 135:設定指引資訊 211:供裝要求 212:設定輸入值 711:客戶端 712:紀錄檔 713:異常警示通報 714:統計報表 715:組態更新通知 S310~S360,S331~S334:步驟100:Deploy the system 110: Electronic device 111: input unit 112: display unit 113: The first network unit 114: the first storage unit 115: The first processing unit 116: Install program 120: Equipment to be set 121: Identification information 122: Second network unit 123: Second storage unit 124: Second processing unit 125: Set pagination 130: service provider 131: The third network unit 132: The third storage unit 133: The third processing unit 134: Deployment strategy 135: Set guide information 211: Supply and installation requirements 212: set input value 711: client 712: Record file 713: Abnormal warning notification 714: Statistical report 715: Configuration update notification S310~S360, S331~S334: steps

圖1為此一些實施例的系統架構示意圖。 圖2為此一些實施例的元件示意圖。 圖3為此一些實施例的部署系統的運作流程示意圖。 圖4為此一些實施例的設定分頁與設定指引資訊的示意圖。 圖5為此一些實施例的另一種設定分頁與設定指引資訊的示意圖。 圖6為此一些實施例的在一種設定分頁與設定指引資訊的示意圖。 圖7為此一些實施例的異常警示通報的示意圖。 圖8為此一些實施例對步驟S330的運作流程示意圖。 Fig. 1 is a schematic diagram of the system architecture of some embodiments. FIG. 2 is a schematic diagram of elements of some embodiments. FIG. 3 is a schematic diagram of the operation flow of the deployment system of some embodiments. FIG. 4 is a schematic diagram of setting pages and setting guide information in some embodiments. FIG. 5 is a schematic diagram of another setting page and setting guide information of some embodiments. FIG. 6 is a schematic diagram of setting page and setting guide information in some embodiments. FIG. 7 is a schematic diagram of abnormal warning notification in some embodiments. FIG. 8 is a schematic diagram of the operation flow of step S330 in some embodiments.

100:部署系統 100:Deploy the system

110:電子裝置 110: Electronic device

116:裝設程式 116: Install program

120:待設定設備 120: Equipment to be set

121:識別資訊 121: Identification information

125:設定分頁 125: Set pagination

130:服務供應端 130: service provider

134:部署策略 134: Deployment strategy

135:設定指引資訊 135: Set guide information

211:供裝要求 211: Supply and installation requirements

Claims (8)

一種資安設備的部署系統,用以設定一待設定設備的多個設定分頁,該資安設備的部署系統包括: 一服務供應端,儲存多個部署策略,每一該部署策略具有多個設定指引資訊,每一該設定指引資訊配置的一辨識字串組,且每一該設定分頁匹配於該辨識字串組;以及 一電子裝置,該電子裝置網路連接於該服務供應端與該待設定設備,該電子裝置獲取一識別資訊,並將該識別資訊封裝為一供裝要求,該電子裝置傳送該供裝要求至該服務供應端,該服務供應端根據該識別資訊選擇相應的該部署策略並傳送該部署策略至該電子裝置,該電子裝置接收一分頁選擇要求並從該些設定分頁中選擇其一,該電子裝置根據所選出的該設定分頁查找相應的該設定指引資訊,查找出的該設定指引資訊為一當前指引資訊,該電子裝置獲取與該當前指引資訊相對應的一設定輸入值,將該設定輸入值填入對應的該設定分頁,使該待設定設備儲存該設定分頁與所屬的該設定輸入值。 A deployment system for information security equipment is used to set multiple setting pages of a device to be set. The deployment system for information security equipment includes: A service provider, storing multiple deployment strategies, each deployment strategy has multiple setting guide information, each setting guide information configures an identification string group, and each setting page matches the identification string group ;as well as An electronic device, the electronic device is connected to the service provider and the device to be configured, the electronic device obtains identification information, and packages the identification information into a supply and installation request, and the electronic device sends the supply and installation request to The service provider, the service provider selects the corresponding deployment strategy according to the identification information and sends the deployment strategy to the electronic device, the electronic device receives a page selection request and selects one of the setting pages, the electronic device The device searches for the corresponding setting guidance information according to the selected setting page, the found setting guidance information is current guidance information, the electronic device obtains a setting input value corresponding to the current guidance information, and inputs the setting The value is filled in the corresponding setting page, so that the device to be set stores the setting page and the associated setting input value. 如請求項1所述的資安設備的部署系統,其中該待設定設備為路由器、閘道器、交換器、無線網路基地台、個人電腦、筆記型電腦或平板電腦。The deployment system of information security equipment according to claim 1, wherein the equipment to be configured is a router, a gateway, a switch, a wireless network base station, a personal computer, a notebook computer or a tablet computer. 如請求項1所述的資安設備的部署系統,其中該識別資訊包括媒體存取控制碼、客戶身份證號、客戶編號、設備識別碼、通用唯一辨識碼、韌體版本號碼、軟體名稱或軟體版本號碼。The deployment system of information security equipment as described in Claim 1, wherein the identification information includes media access control code, customer ID number, customer number, equipment identification code, universally unique identification code, firmware version number, software name or Software version number. 如請求項1所述的資安設備的部署系統,其中該電子裝置完成所有該些設定分頁與該些設定輸入值的輸入後,該服務供應端記錄該待設定設備至一已納管清單。The deployment system of information security equipment as described in Claim 1, wherein after the electronic device completes the input of all the setting pages and the setting input values, the service provider records the equipment to be set into a managed list. 如請求項4所述的資安設備的部署系統,其中該服務供應端根據該已納管清單定時向該待設定設備獲取一紀錄檔,該紀錄檔記錄該待設定設備的一運作狀態。The deployment system for information security equipment as described in Claim 4, wherein the service provider regularly obtains a record file from the device to be configured according to the managed list, and the log file records an operation status of the device to be configured. 如請求項5所述的資安設備的部署系統,其中該服務供應端根據該些運作狀態判斷該待設定設備是否發生異常,若該待設定設備發生異常時,該服務供應端產生一異常警示通報,該服務供應端傳送該異常警示通報至一客戶端。The deployment system for information security equipment as described in claim 5, wherein the service provider judges whether the device to be configured is abnormal according to the operating status, and if the device to be configured is abnormal, the service provider generates an abnormality warning notification, the service provider sends the abnormal warning notification to a client. 如請求項6所述的資安設備的部署系統,其中該服務供應端根據多個該運作狀態產生一統計報表,該客戶端根據該異常警示通報向該服務供應端獲取該統計報表。The deployment system of information security equipment as described in claim 6, wherein the service provider generates a statistical report according to a plurality of the operating states, and the client obtains the statistical report from the service provider according to the abnormal warning notification. 如請求項1所述的資安設備的部署系統,其中該服務供應端獲取一組態更新通知,該服務供應端轉發該組態更新通知至該待設定設備,使該待設定設備連接至一組態伺服器並獲取一更新套件,該待設定設備以該更新套件進行更新。The deployment system for information security equipment as described in claim 1, wherein the service provider obtains a configuration update notification, and the service provider forwards the configuration update notification to the device to be configured, so that the device to be configured is connected to a The configuration server obtains an update package, and the device to be configured is updated with the update package.
TW112202602U 2023-03-22 2023-03-22 Deployment system of information security equipment TWM644484U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW112202602U TWM644484U (en) 2023-03-22 2023-03-22 Deployment system of information security equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW112202602U TWM644484U (en) 2023-03-22 2023-03-22 Deployment system of information security equipment

Publications (1)

Publication Number Publication Date
TWM644484U true TWM644484U (en) 2023-08-01

Family

ID=88559494

Family Applications (1)

Application Number Title Priority Date Filing Date
TW112202602U TWM644484U (en) 2023-03-22 2023-03-22 Deployment system of information security equipment

Country Status (1)

Country Link
TW (1) TWM644484U (en)

Similar Documents

Publication Publication Date Title
US9369357B2 (en) Method, system, and computer readable medium for remote device management
US20100299430A1 (en) Automated acquisition of volatile forensic evidence from network devices
US11722458B2 (en) Method and system for restricting transmission of data traffic for devices with networking capabilities
CN112221121B (en) Application software networking acceleration method, device and storage medium
WO2004075006A9 (en) Network audit policy assurance system
CN114257413B (en) Counter-blocking method, device and computer equipment based on application container engine
CN111447089A (en) Terminal asset identification method and apparatus, and computer-readable storage medium
US20250147689A1 (en) Data erasure of network devices
EP2890087A1 (en) Method and system for notifying subscriber devices in ISP networks
TWM644484U (en) Deployment system of information security equipment
US20120124198A1 (en) Method and management apparatus for detecting communication apparatus coupled to communication network
TW202439176A (en) System and method for deploying a cybersecurity device
WO2012052053A1 (en) Quality of service monitoring device and method of monitoring quality of service
CN105519069A (en) Data processing system, center apparatus and program
Garbelini et al. 5Ghoul: Unleashing Chaos on 5 G Edge Devices Via Stateful Multi-Layer Fuzzing
CN114629683A (en) Access method, device, equipment and storage medium of management server
JP4888588B2 (en) COMMUNICATION SYSTEM, NETWORK DEVICE, COMMUNICATION DEVICE, AND NETWORK CONNECTION METHOD USED FOR THEM
Mathas et al. Reconnaissance
CN107870950A (en) A method and device for filtering malicious websites
TWI619085B (en) Support to customer platform system, method, and server
US20250150488A1 (en) Identifying network-based attacks on physical operational technology (ot) devices with decoy ot devices
JP5456636B2 (en) File collection monitoring method, file collection monitoring apparatus, and file collection monitoring program
Frank et al. Securing smart homes with openflow
Hubballi et al. Event Log Analysis and Correlation: A Digital Forensic Perspective
Mulcahy et al. Developing a Framework for Hardware Security