[go: up one dir, main page]

TWM627979U - User-side computer management and control system based on antivirus software update - Google Patents

User-side computer management and control system based on antivirus software update Download PDF

Info

Publication number
TWM627979U
TWM627979U TW111202586U TW111202586U TWM627979U TW M627979 U TWM627979 U TW M627979U TW 111202586 U TW111202586 U TW 111202586U TW 111202586 U TW111202586 U TW 111202586U TW M627979 U TWM627979 U TW M627979U
Authority
TW
Taiwan
Prior art keywords
client computer
antivirus
virus
management server
computer
Prior art date
Application number
TW111202586U
Other languages
Chinese (zh)
Inventor
任沐恩
Original Assignee
彰化商業銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 彰化商業銀行股份有限公司 filed Critical 彰化商業銀行股份有限公司
Priority to TW111202586U priority Critical patent/TWM627979U/en
Publication of TWM627979U publication Critical patent/TWM627979U/en

Links

Images

Landscapes

  • Stored Programmes (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

一種基於防毒軟體更新的使用者端電腦管控系統,由防毒監控伺服器監控使用者端電腦中的防毒軟體的病毒庫版本,當使用者端電腦中的防毒軟體的病毒庫版本未被更新時,生成並提供第一警示資訊至資料彙整平台,資料彙整平台依據第一警示資訊生成第一更新指令並提供至防毒監控伺服器,防毒監控伺服器依據第一更新指令以對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,且功能管理伺服器依據使用者端電腦中執行功能的禁能狀態,控制使用者端電腦中執行功能的禁能,藉此可以達成基於防毒軟體更新的使用者端電腦管控的技術功效。A user-side computer management and control system based on anti-virus software update, the anti-virus monitoring server monitors the virus database version of the anti-virus software in the user-side computer. Generate and provide the first warning information to the data integration platform, the data integration platform generates a first update command according to the first warning information and provides it to the antivirus monitoring server, and the antivirus monitoring server sends the information to the user terminal computer according to the first update command. The virus database version of the antivirus software is updated, and the function management server controls the prohibition of the execution function in the client computer according to the disabled state of the execution function in the client computer, so that the use of the antivirus software based on the update can be achieved. The technical effect of computer control on the client side.

Description

基於防毒軟體更新的使用者端電腦管控系統User-side computer management and control system based on antivirus software update

一種管控系統,尤其是指一種基於防毒軟體更新與否而管控使用者端電腦中執行功能禁能的使用者端電腦管控系統。A management and control system, in particular, refers to a user-side computer management and control system based on whether the anti-virus software is updated or not, and controls the execution function disablement in the user-side computer.

目前企業中的使用者端電腦會安裝有防毒軟體,透過防毒軟體以確保使用者端電腦的資訊安全,防毒軟體是透過病毒庫版本對電腦病毒進行識別,若是不定期對防毒軟體的病毒庫版本進行更新,則使用者端電腦的安全性將存在有風險。At present, the user-side computers in the enterprise will be installed with anti-virus software. The anti-virus software is used to ensure the information security of the user-side computers. The anti-virus software uses the virus database version to identify computer viruses. update, the security of the user's computer will be at risk.

然而現有使用者端電腦中防毒軟體的病毒庫版本更新一般是會設定定期更新,若是使用者端電腦中防毒軟體的病毒庫版本未設定定期更新時,則容易使得企業內部所使用的使用者端電腦的資訊安全性存在有風險,除此之外,使用者端電腦在使用者長期出差的情況,因使用者端電腦長時間未被開啟,這也會造成使用者端電腦中防毒軟體的病毒庫版本不會被更新,故而使得企業內部所使用的使用者端電腦的資訊安全性存在有風險。However, the version update of the virus database of the antivirus software in the existing client computer is generally set to be updated regularly. The information security of the computer is at risk. In addition, when the user is on a business trip for a long time, because the user computer is not turned on for a long time, it will also cause the virus of the antivirus software in the user computer. The library version will not be updated, so the information security of the client computers used in the enterprise is at risk.

綜上所述,可知先前技術中長期以來一直存在現有防毒軟體病毒庫版本的更新方式容易使得企業內部所使用的使用者端電腦的資訊安全性存在風險的問題,因此有必要提出改進的技術手段,來解決此一問題。To sum up, it can be seen that there has been a long-standing problem in the prior art that the update method of the existing anti-virus software virus database version is likely to cause risks to the information security of the user-end computers used in the enterprise. Therefore, it is necessary to propose improved technical means. , to solve this problem.

有鑒於先前技術存在現有防毒軟體病毒庫版本的更新方式容易使得企業內部所使用的使用者端電腦的資訊安全性存在風險的問題,本創作遂揭露一種基於防毒軟體更新的使用者端電腦管控系統,其中:In view of the problem in the prior art that the update method of the existing anti-virus software virus database version easily makes the information security of the user-end computer used in the enterprise at risk, the author discloses a user-end computer control system based on the update of the anti-virus software. ,in:

本創作所揭露的基於防毒軟體更新的使用者端電腦管控系統,其包含:多個使用者端電腦、防毒監控伺服器、功能管理伺服器、IP/MAC管理伺服器以及資料彙整平台。The client computer management and control system based on antivirus software update disclosed in this creation includes: multiple client computers, an antivirus monitoring server, a function management server, an IP/MAC management server, and a data collection platform.

防毒監控伺服器是監控使用者端電腦中的防毒軟體的病毒庫版本,當使用者端電腦中的防毒軟體的病毒庫版本未被更新時,生成並提供與該使用者端電腦對應的第一警示資訊,接收第一更新指令以對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,防毒監控伺服器於隔日對該使用者端電腦中的防毒軟體的病毒庫版本驗證是否完成更新,防毒監控伺服器將驗證結果提供至資料彙整平台。The antivirus monitoring server monitors the virus database version of the antivirus software in the client computer. When the virus database version of the antivirus software in the client computer has not been updated, it generates and provides the first corresponding to the client computer. Warning information, receive a first update instruction to update the virus database version of the antivirus software in the client computer, and the antivirus monitoring server verifies whether the update is completed on the next day for the virus database version of the antivirus software in the client computer , the antivirus monitoring server will provide the verification result to the data collection platform.

功能管理伺服器是當接收到的使用者端電腦中執行功能的禁能狀態時,控制使用者端電腦中執行功能的禁能。The function management server is to control the disabling of the execution function in the client computer when receiving the disabled state of the execution function in the client computer.

IP/MAC管理伺服器是當當使用者端電腦與IP/MAC管理伺服器建立連線時,提供使用者端電腦的網際協定(Internet Protocol,IP)地址或是媒體存取控制(Media Access Control,MAC)位址。The IP/MAC management server provides the Internet Protocol (IP) address of the client computer or the Media Access Control (Media Access Control, Media Access Control) address when the client computer establishes a connection with the IP/MAC management server. MAC) address.

資料彙整平台分別與防毒監控伺服器、功能管理伺服器以及IP/MAC管理伺服器建立連線,自防毒監控伺服器接收第一警示資訊,自防毒監控伺服器接收驗證結果,自IP/MAC管理伺服器接收使用者端電腦的IP地址或是MAC地址,依據第一警示資訊生成第一更新指令並提供至防毒監控伺服器,當驗證結果為病毒庫版本未被更新時,依據IP/MAC管理伺服器提供的IP地址或是MAC地址進行時間判斷,以將該使用者端電腦的執行功能設定為禁能狀態並提供至功能管理伺服器。The data collection platform establishes connections with the anti-virus monitoring server, the function management server and the IP/MAC management server respectively, receives the first warning information from the anti-virus monitoring server, receives the verification result from the anti-virus monitoring server, and manages the IP/MAC from the anti-virus monitoring server. The server receives the IP address or MAC address of the client computer, generates a first update instruction according to the first warning information, and provides it to the antivirus monitoring server. When the verification result is that the virus database version has not been updated, the IP/MAC management is performed. The IP address or MAC address provided by the server is used for time judgment, so as to set the execution function of the client computer to a disabled state and provide it to the function management server.

本創作所揭露的系統如上,與先前技術之間的差異在於由防毒監控伺服器監控使用者端電腦中的防毒軟體的病毒庫版本,當使用者端電腦中的防毒軟體的病毒庫版本未被更新時,生成並提供第一警示資訊至資料彙整平台,資料彙整平台依據第一警示資訊生成第一更新指令並提供至防毒監控伺服器,防毒監控伺服器依據第一更新指令以對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,且功能管理伺服器依據使用者端電腦中執行功能的禁能狀態,控制使用者端電腦中執行功能的禁能。The system disclosed in this creation is as above, and the difference between the system and the prior art is that the antivirus monitoring server monitors the virus database version of the antivirus software in the client computer. When the virus database version of the antivirus software in the client computer is not When updating, generate and provide first warning information to the data integration platform, the data integration platform generates a first update command according to the first warning information and provides it to the antivirus monitoring server, and the antivirus monitoring server sends the user to the user according to the first update command. The virus database version of the antivirus software in the client computer is updated, and the function management server controls the disablement of the execution function in the client computer according to the disabled state of the execution function in the client computer.

透過上述的技術手段,本創作可以達成基於防毒軟體更新的使用者端電腦管控的技術功效。Through the above-mentioned technical means, the present creation can achieve the technical effect of user-side computer management and control based on the update of antivirus software.

以下將配合圖式及實施例來詳細說明本創作的實施方式,藉此對本創作如何應用技術手段來解決技術問題並達成技術功效的實現過程能充分理解並據以實施。The following will describe the implementation of the present creation in detail with the drawings and examples, so as to fully understand and implement the implementation process of how the present creation applies technical means to solve technical problems and achieve technical effects.

以下首先要說明本創作所揭露的基於防毒軟體更新的使用者端電腦管控系統,並請參考「第1圖」所示,「第1圖」繪示為本創作基於防毒軟體更新的使用者端電腦管控系統的系統架構圖。The following first describes the user-side computer control system based on anti-virus software update disclosed in this creation, and please refer to "Figure 1". "Figure 1" shows the user-end based on anti-virus software update for this creation System architecture diagram of the computer control system.

本創作所揭露的基於防毒軟體更新的使用者端電腦管控系統,其包含:多個使用者端電腦10、防毒監控伺服器20、功能管理伺服器30、IP/MAC管理伺服器40以及資料彙整平台50。The client computer management and control system based on antivirus software update disclosed in this creation includes: a plurality of client computers 10, an antivirus monitoring server 20, a function management server 30, an IP/MAC management server 40, and a data collection Platform 50.

使用者端電腦10、防毒監控伺服器20、功能管理伺服器30、IP/MAC管理伺服器40以及資料彙整平台50皆為計算設備不同的呈現形式,防毒監控伺服器20、功能管理伺服器30、IP/MAC管理伺服器40以及資料彙整平台50偏向著重於計算設備的計算效能、資料分析、資料安全保護以及資料大量儲存…等的性能,使用者端電腦10偏向著重於計算設備的個人使用性,在此僅為舉例說明之,並不以此侷限本創作的應用範疇。The client computer 10 , the antivirus monitoring server 20 , the function management server 30 , the IP/MAC management server 40 , and the data collection platform 50 are all different presentation forms of computing devices. The antivirus monitoring server 20 , and the function management server 30 , the IP/MAC management server 40 and the data collection platform 50 tend to focus on the computing performance, data analysis, data security protection and data mass storage of the computing device, and the client computer 10 tends to focus on the personal use of the computing device This is only an example to illustrate, and does not limit the scope of application of this creation.

請參考「第2圖」所示,「第2圖」繪示為本創作所提之計算設備的元件示意圖。Please refer to "Fig. 2", which is a schematic diagram of the components of the computing device proposed in this creation.

本創作所提之計算設備包含但不限於一個或多個處理器601、一個或多個記憶體模組602、及匯流排603等硬體元件,其中,匯流排603可以連接不同的硬體元件。透過所包含之多個硬體元件,計算設備可以載入並執行作業系統,使作業系統在計算設備上運行,也可以執行軟體或程式。計算設備也包含一個外殼609,上述之各個硬體元件設置於外殼內。The computing device mentioned in this creation includes, but is not limited to, one or more processors 601 , one or more memory modules 602 , and hardware elements such as bus bars 603 , wherein the bus bars 603 can be connected to different hardware elements . Through the multiple hardware components included, the computing device can load and execute the operating system, so that the operating system runs on the computing device, and can also execute software or programs. The computing device also includes a housing 609 within which the various hardware components described above are disposed.

本創作所提之計算設備的匯流排603可以包含一種或多個類型,例如包含資料匯流排(data bus)、位址匯流排(address bus)、控制匯流排(control bus)、擴充功能匯流排(expansion bus)、及/或局域匯流排(local bus)等類型的匯流排。計算設備的匯流排包括但不限於並列的工業標準架構(ISA)匯流排、周邊元件互連(PCI)匯流排、視頻電子標準協會(VESA)局域匯流排、以及串列的通用序列匯流排(USB)、快速周邊元件互連(PCI-E)匯流排等。The bus 603 of the computing device proposed in the present invention may include one or more types, such as a data bus, an address bus, a control bus, and an extended function bus. (expansion bus), and/or local bus (local bus) and other types of bus. Buses for computing devices include, but are not limited to, Side-by-Side Industry Standard Architecture (ISA) buses, Peripheral Component Interconnect (PCI) buses, Video Electronics Standards Association (VESA) Local Buses, and Serial Generic Serial Buses (USB), Peripheral Component Interconnect Express (PCI-E) bus, etc.

本創作所提之計算設備的處理器601與匯流排603耦接。處理器601包含暫存器(Register)組或暫存器空間,暫存器組或暫存器空間可以完全的被設置在處理晶片上,或全部或部分被設置在處理晶片外並經由專用電氣連接及/或經由匯流排耦接至處理器。處理器601可為處理單元、微處理器或任何合適的處理元件。若計算設備為多處理器設備,也就是計算設備包含多個處理器,則計算設備所包含的處理器都相同或類似,且透過匯流排耦接與通訊。處理器601可以解釋一連串的多個指令以進行特定的運算或操作,例如,數學運算、邏輯運算、資料比對、複製/移動資料等,藉以運行作業系統或執行各種程式、模組、及/或元件。The processor 601 of the computing device proposed in the present work is coupled to the bus 603 . The processor 601 includes a register bank or register space, and the register bank or register space can be completely disposed on the processing wafer, or all or part of it can be disposed outside the processing wafer and via a dedicated electrical circuit. Connected and/or coupled to the processor via the bus. Processor 601 may be a processing unit, microprocessor, or any suitable processing element. If the computing device is a multi-processor device, that is, the computing device includes multiple processors, the processors included in the computing device are all the same or similar, and are coupled and communicated through a bus. The processor 601 can interpret a series of multiple instructions to perform specific operations or operations, such as mathematical operations, logical operations, data comparison, copy/move data, etc., to run the operating system or execute various programs, modules, and/or or element.

計算設備的處理器601可以與晶片組耦接或透過匯流排603與晶片組電性連接。晶片組是由一個或多個積體電路(IC)組成,包含記憶體控制器以及周邊輸出入(I/O)控制器,也就是說,記憶體控制器以及周邊輸出入控制器可以包含在一個積體電路內,也可以使用兩個或更多的積體電路實現。晶片組通常提供了輸出入和記憶體管理功能、以及提供多個通用及/或專用暫存器、計時器等,其中,上述之通用及/或專用暫存器與計時器可以讓耦接或電性連接至晶片組的一個或多個處理器存取或使用。The processor 601 of the computing device may be coupled to the chip set or electrically connected to the chip set through the bus bar 603 . Chipsets are composed of one or more integrated circuits (ICs), including memory controllers and peripheral I/O controllers, that is, memory controllers and peripheral I/O controllers can be included in Within one integrated circuit, it can also be implemented using two or more integrated circuits. Chip sets usually provide I/O and memory management functions, and provide a plurality of general-purpose and/or special-purpose registers, timers, etc., wherein the above-mentioned general-purpose and/or special-purpose registers and timers can be coupled or One or more processors electrically connected to the chipset are accessed or used.

計算設備的處理器601也可以透過記憶體控制器存取安裝於計算設備上的記憶體模組602和大容量儲存區中的資料。上述之記憶體模組602包含任何類型的揮發性記憶體(volatile memory)及/或非揮發性(non-volatile memory, NVRAM)記憶體,例如靜態隨機存取記憶體(SRAM)、動態隨機存取記憶體(DRAM)、快閃記憶體(Flash)、唯讀記憶體(ROM)等。上述之大容量儲存區可以包含任何類型的儲存裝置或儲存媒體,例如,硬碟機、光碟片、隨身碟(快閃記憶體)、記憶卡(memory card)、固態硬碟(Solid State Disk, SSD)、或任何其他儲存裝置等。也就是說,記憶體控制器可以存取靜態隨機存取記憶體、動態隨機存取記憶體、快閃記憶體、硬碟機、固態硬碟中的資料。The processor 601 of the computing device can also access data in the memory module 602 and the mass storage area installed on the computing device through the memory controller. The above-mentioned memory module 602 includes any type of volatile memory (volatile memory) and/or non-volatile memory (NVRAM), such as static random access memory (SRAM), dynamic random memory Take memory (DRAM), flash memory (Flash), read-only memory (ROM), etc. The above-mentioned large-capacity storage area can include any type of storage device or storage medium, such as a hard disk drive, an optical disc, a pen drive (flash memory), a memory card (memory card), a solid state hard disk (Solid State Disk, SSD), or any other storage device, etc. That is, the memory controller can access data in static random access memory, dynamic random access memory, flash memory, hard disk drive, and solid state hard disk.

計算設備的處理器601也可以透過周邊輸出入控制器經由匯流排603與周邊輸出裝置、周邊輸入裝置、通訊介面、以及GPS接收器等周邊裝置或介面連接並通訊。周邊輸入裝置可以是任何類型的輸入裝置,例如鍵盤、滑鼠、軌跡球、觸控板、搖桿等,周邊輸出裝置可以是任何類型的輸出裝置,例如顯示器、印表機等,周邊輸入裝置與周邊輸出裝置也可以是同一裝置,例如觸控螢幕等。通訊介面可以包含無線通訊介面及/或有線通訊介面,無線通訊介面可以包含支援Wi-Fi、Zigbee等無線區域網路、藍牙、紅外線、近場通訊(NFC)、3G/4G/5G等行動通訊網路或其他無線資料傳輸協定的介面,有線通訊介面可為乙太網路裝置、非同步傳輸模式(ATM)裝置、DSL數據機、纜線(Cable)數據機等。處理器601可以週期性地輪詢(polling)各種周邊裝置與介面,使得計算設備能夠透過各種周邊裝置與介面進行資料的輸入與輸出,也能夠與具有上面描述之元件的另一個計算設備進行通訊。The processor 601 of the computing device can also connect and communicate with peripheral devices or interfaces such as peripheral output devices, peripheral input devices, communication interfaces, and GPS receivers through the peripheral I/O controller via the bus bar 603 . The peripheral input device can be any type of input device, such as keyboard, mouse, trackball, touchpad, joystick, etc. The peripheral output device can be any type of output device, such as a monitor, printer, etc., the peripheral input device The peripheral output device can also be the same device, such as a touch screen. The communication interface may include a wireless communication interface and/or a wired communication interface, and the wireless communication interface may include a wireless local area network such as Wi-Fi, Zigbee, Bluetooth, infrared, near field communication (NFC), 3G/4G/5G and other mobile communication networks The interface of the wireless data transmission protocol or other wireless data transmission protocol, the wired communication interface can be an Ethernet network device, an asynchronous transfer mode (ATM) device, a DSL modem, a cable modem, etc. The processor 601 can periodically poll various peripheral devices and interfaces, so that the computing device can input and output data through various peripheral devices and interfaces, and can also communicate with another computing device having the components described above. .

使用者端電腦10、防毒監控伺服器20、功能管理伺服器30、IP/MAC管理伺服器40以及資料彙整平台50所提及的各執行功能通常是在各自計算設備中的處理器601執行被載入記憶體模組602之特定程式後產生,或是包含在處理器601中。The execution functions mentioned in the client computer 10 , the antivirus monitoring server 20 , the function management server 30 , the IP/MAC management server 40 and the data collection platform 50 are usually executed by the processor 601 in the respective computing device. Generated after loading a specific program of the memory module 602 , or included in the processor 601 .

防毒監控伺服器20是監控使用者端電腦10中的防毒軟體的病毒庫版本,當使用者端電腦10中的防毒軟體的病毒庫版本未被更新時,防毒監控伺服器20即會生成並提供與該使用者端電腦10對應的第一警示資訊。The antivirus monitoring server 20 monitors the virus database version of the antivirus software in the client computer 10. When the virus database version of the antivirus software in the client computer 10 is not updated, the antivirus monitoring server 20 will generate and provide The first warning information corresponding to the client computer 10 .

IP/MAC管理伺服器40是當使用者端電腦10與IP/MAC管理伺服器40建立連線時,提供使用者端電腦10的網際協定(Internet Protocol,IP)地址或是媒體存取控制(Media Access Control,MAC)位址至資料彙整平台50。The IP/MAC management server 40 provides an Internet Protocol (IP) address or a media access control (MAC) address of the client computer 10 when the client computer 10 establishes a connection with the IP/MAC management server 40 . Media Access Control, MAC) address to the data aggregation platform 50.

資料彙整平台50分別與防毒監控伺服器20、功能管理伺服器30以及IP/MAC管理伺服器40建立連線,值得注意的是,資料彙整平台50透過應用程式介面(Application Programming Interface,API)分別與防毒監控伺服器20、功能管理伺服器30以及IP/MAC管理伺服器40建立連線。The data collection platform 50 establishes connections with the antivirus monitoring server 20 , the function management server 30 and the IP/MAC management server 40 respectively. It is worth noting that the data collection platform 50 is respectively connected with the application programming interface (API) A connection is established with the antivirus monitoring server 20 , the function management server 30 and the IP/MAC management server 40 .

資料彙整平台50可分別自防毒監控伺服器20接收第一警示資訊,資料彙整平台50亦自IP/MAC管理伺服器接收使用者端電腦的IP地址或是MAC地址,當資料彙整平台50接收第一警示資訊時,資料彙整平台50可依據第一警示資訊生成第一更新指令,再將第一更新指令提供至防毒監控伺服器20。The data integration platform 50 can respectively receive the first warning information from the anti-virus monitoring server 20, and the data integration platform 50 also receives the IP address or MAC address of the client computer from the IP/MAC management server. When there is warning information, the data integration platform 50 can generate a first update command according to the first warning information, and then provide the first update command to the antivirus monitoring server 20 .

防毒監控伺服器20即可依據第一更新指令對該使用者端電腦10中的防毒軟體的病毒庫版本進行更新,防毒監控伺服器20於隔日對該使用者端電腦10中的防毒軟體的病毒庫版本驗證是否完成更新,防毒監控伺服器20將驗證結果提供至資料彙整平台50。The anti-virus monitoring server 20 can update the virus database version of the anti-virus software in the client computer 10 according to the first update instruction. The library version verifies whether the update is completed, and the antivirus monitoring server 20 provides the verification result to the data integration platform 50 .

當驗證結果為病毒庫版本未被更新時,資料彙整平台50依據IP/MAC管理伺服器40提供的IP地址或是MAC地址進行時間判斷,當該使用者端電腦10被判斷超過1個月未開機時,以將該使用者端電腦10的執行功能設定為禁能狀態並提供至功能管理伺服器30,功能管理伺服器30即可控制該使用者端電腦10中執行功能禁能,以及設定該使用者端電腦10的IP地址或是MAC地址為註停狀態並提供至IP/MAC管理伺服器40,IP/MAC管理伺服器40即將該使用者端電腦10的IP地址或是MAC地址註停,藉此以避免未更新防毒軟體病毒庫版本的使用者端電腦10在進行防毒軟體病毒庫版本更新前對其他的使用者端電腦10造成安全性的風險,前述的執行功能例如是:網路連線功能、資料存取功能、連線存取功能…等,在此僅為舉例說明之,並不以此侷限本創作的應用範疇。When the verification result is that the virus database version has not been updated, the data integration platform 50 determines the time according to the IP address or the MAC address provided by the IP/MAC management server 40 . When starting up, the execution function of the client computer 10 is set to a disabled state and provided to the function management server 30, and the function management server 30 can control the execution function of the client computer 10 to be disabled and set The IP address or MAC address of the client computer 10 is in the registered and disabled state and provided to the IP/MAC management server 40, and the IP/MAC management server 40 registers the IP address or MAC address of the client computer 10. stop, so as to avoid the security risk to other client computers 10 caused by the client computer 10 that has not updated the antivirus software virus database version before updating the antivirus software virus database version. The aforementioned execution functions are, for example: network The connection function, the data access function, the connection access function, etc., are described here only as examples, and are not intended to limit the scope of application of this creation.

當驗證結果為病毒庫版本未被更新時,資料彙整平台50依據IP/MAC管理伺服器40提供的IP地址或是MAC地址進行時間判斷,當該使用者端電腦10被判斷1個月內仍有開機時,生成重新安裝指令並提供至功能管理伺服器30,功能管理伺服器30依據重新安裝指令於該使用者端電腦10連線時控制該使用者端電腦10重新安裝防毒軟體,並於該使用者端電腦10重新安裝防毒軟體後,防毒監控伺服器20對該使用者端電腦10中的防毒軟體的病毒庫版本進行更新,並且對該使用者端電腦10中的防毒軟體的病毒庫版本驗證是否完成更新,防毒監控伺服器20將重新驗證結果提供至資料彙整平台50。When the verification result is that the virus database version has not been updated, the data integration platform 50 determines the time according to the IP address or MAC address provided by the IP/MAC management server 40. When there is a boot, a reinstallation command is generated and provided to the function management server 30. The function management server 30 controls the client computer 10 to reinstall the antivirus software when the client computer 10 is connected according to the reinstallation command, and installs the antivirus software on the client computer 10. After the antivirus software is reinstalled on the client computer 10 , the antivirus monitoring server 20 updates the virus database version of the antivirus software in the client computer 10 , and the virus database of the antivirus software in the client computer 10 is updated. When the version verification is completed, the antivirus monitoring server 20 provides the re-verification result to the data integration platform 50 .

當重新驗證結果為病毒庫版本未更新時,資料彙整平台50發送障礙維修電子郵件給管理人員裝置以進行後續處理,或是當重新驗證結果為病毒庫版本未更新時,資料彙整平台50透過API發送障礙維修訊息至管理人員裝置以進行後續處理,管理人員裝置可以是一般電腦、筆記型電腦、平板電腦、智慧型手機…等,在此僅為舉例說明之,並不以此侷限本創作的應用範疇。When the re-verification result is that the virus database version has not been updated, the data integration platform 50 sends an obstacle maintenance email to the administrator device for follow-up processing, or when the re-verification result is that the virus database version is not updated, the data integration platform 50 can use the API Send the obstacle repair message to the management personnel's device for subsequent processing. The management personnel's device can be a general computer, a notebook computer, a tablet computer, a smart phone, etc. This is only an example, and it is not limited to this creation. application area.

防毒監控伺服器20更包含當使用者端電腦10中的防毒軟體的病毒庫超過預設期間(例如:1周、1月…等,在此僅為舉例說明之,並不以此侷限本創作的應用範疇)未進行更新版本時,生成並提供與該使用者端電腦10對應的第二警示資訊。The anti-virus monitoring server 20 further includes that when the virus database of the anti-virus software in the client computer 10 exceeds a preset period (for example: 1 week, 1 month, etc.) When the updated version is not performed), the second warning information corresponding to the client computer 10 is generated and provided.

資料彙整平台50更包含自防毒監控伺服器20接收第二警示資訊,依據第二警示資訊生成第二更新指令並提供至防毒監控伺服器20,防毒監控伺服器20於隔日對該使用者端電腦10中的防毒軟體的病毒庫版本驗證是否完成更新,防毒監控伺服器20將驗證結果提供至資料彙整平台50。The data integration platform 50 further includes receiving the second warning information from the anti-virus monitoring server 20, generating a second update instruction according to the second warning information and providing it to the anti-virus monitoring server 20, and the anti-virus monitoring server 20 will update the user computer on the next day. The virus database version of the antivirus software in 10 verifies whether the update is completed, and the antivirus monitoring server 20 provides the verification result to the data collection platform 50 .

當驗證結果為病毒庫版本未被更新時,資料彙整平台50即可依據IP/MAC管理伺服器40提供的IP地址或是MAC地址進行時間判斷,當該使用者端電腦10被判斷超過1個月未開機時,以將該使用者端電腦10的執行功能設定為禁能狀態並提供至功能管理伺服器30,功能管理伺服器30即可控制使用者端電腦10中執行功能的禁能,以及設定該使用者端電腦10的IP地址或是MAC地址為註停狀態並提供至IP/MAC管理伺服器40,IP/MAC管理伺服器40即將該使用者端電腦10的IP地址或是MAC地址註停,藉此以避免未更新防毒軟體病毒庫版本的使用者端電腦10在進行防毒軟體病毒庫版本更新前對其他的使用者端電腦10造成安全性的風險。When the verification result is that the virus database version has not been updated, the data integration platform 50 can judge the time according to the IP address or the MAC address provided by the IP/MAC management server 40. When the client computer 10 is judged to have more than one When the computer is not turned on, the execution function of the client computer 10 is set to a disabled state and provided to the function management server 30, and the function management server 30 can control the disablement of the execution function in the client computer 10. and setting the IP address or MAC address of the client computer 10 to be in a stop state and provide it to the IP/MAC management server 40, and the IP/MAC management server 40 is the IP address or MAC address of the client computer 10 The address is stopped, so as to avoid security risks to other client computers 10 caused by the client computer 10 that has not updated the antivirus software virus database version before updating the antivirus software virus database version.

當驗證結果為病毒庫版本未被更新時,資料彙整平台50依據IP/MAC管理伺服器40提供的IP地址或是MAC地址進行時間判斷,當該使用者端電腦10被判斷1個月內仍有開機時,生成重新安裝指令並提供至功能管理伺服器30,功能管理伺服器30依據重新安裝指令於該使用者端電腦10連線時控制該使用者端電腦10重新安裝防毒軟體,並於該使用者端電腦10重新安裝防毒軟體後,防毒監控伺服器20對該使用者端電腦10中的防毒軟體的病毒庫版本進行更新,並且對該使用者端電腦10中的防毒軟體的病毒庫版本驗證是否完成更新,防毒監控伺服器20將重新驗證結果提供至資料彙整平台50。When the verification result is that the virus database version has not been updated, the data integration platform 50 determines the time according to the IP address or MAC address provided by the IP/MAC management server 40. When there is a boot, a reinstallation command is generated and provided to the function management server 30. The function management server 30 controls the client computer 10 to reinstall the antivirus software when the client computer 10 is connected according to the reinstallation command, and installs the antivirus software on the client computer 10. After the antivirus software is reinstalled on the client computer 10 , the antivirus monitoring server 20 updates the virus database version of the antivirus software in the client computer 10 , and the virus database of the antivirus software in the client computer 10 is updated. When the version verification is completed, the antivirus monitoring server 20 provides the re-verification result to the data integration platform 50 .

當重新驗證結果為病毒庫版本未更新時,資料彙整平台50發送障礙維修電子郵件給管理人員裝置以進行後續處理,或是當重新驗證結果為病毒庫版本未更新時,資料彙整平台50透過API發送障礙維修訊息至管理人員裝置以進行後續處理。When the re-verification result is that the virus database version has not been updated, the data integration platform 50 sends an obstacle maintenance email to the administrator's device for subsequent processing, or when the re-verification result is that the virus database version has not been updated, the data integration platform 50 uses the API Send the obstacle repair message to the management device for follow-up processing.

除此之外,防毒監控伺服器20更包含當使用者端電腦10中的防毒軟體的病毒庫版本與防毒監控伺服器20中的病毒庫版本的版本差距大於等於3時,生成並提供與該使用者端電腦10對應的第二警示資訊,具體而言,假設使用者端電腦10中的防毒軟體的病毒庫版本為1.1,而防毒監控伺服器20中的病毒庫版本為1.5,防毒監控伺服器20即可判斷出使用者端電腦10中的防毒軟體的病毒庫版本與防毒監控伺服器20中的病毒庫版本的版本差距大於等於3,並生成並提供與該使用者端電腦10對應的第二警示資訊。In addition, the anti-virus monitoring server 20 further includes generating and providing a version corresponding to the virus database version of the anti-virus software in the client computer 10 and the version of the virus database in the anti-virus monitoring server 20 when the version difference is greater than or equal to 3. The second warning information corresponding to the client computer 10, specifically, it is assumed that the virus database version of the antivirus software in the client computer 10 is 1.1, and the virus database version in the antivirus monitoring server 20 is 1.5, and the antivirus monitoring server The device 20 can determine that the difference between the version of the virus database of the anti-virus software in the client computer 10 and the version of the virus database in the anti-virus monitoring server 20 is greater than or equal to 3, and generate and provide the corresponding version of the client computer 10. Second warning information.

資料彙整平台50更包含自防毒監控伺服器20接收第二警示資訊,依據第二警示資訊生成第二更新指令並提供至防毒監控伺服器20,防毒監控伺服器20於隔日對該使用者端電腦10中的防毒軟體的病毒庫版本驗證是否完成更新,防毒監控伺服器20將驗證結果提供至資料彙整平台50。The data integration platform 50 further includes receiving the second warning information from the anti-virus monitoring server 20, generating a second update instruction according to the second warning information and providing it to the anti-virus monitoring server 20, and the anti-virus monitoring server 20 will update the user computer on the next day. The virus database version of the antivirus software in 10 verifies whether the update is completed, and the antivirus monitoring server 20 provides the verification result to the data collection platform 50 .

當驗證結果為病毒庫版本未被更新時,資料彙整平台50依據IP/MAC管理伺服器40提供的IP地址或是MAC地址進行時間判斷,當該使用者端電腦10被判斷超過1個月未開機時,以將該使用者端電腦10的執行功能設定為禁能狀態並提供至功能管理伺服器30,功能管理伺服器30即可控制該使用者端電腦10中執行功能禁能,以及設定該使用者端電腦10的IP地址或是MAC地址為註停狀態並提供至IP/MAC管理伺服器40,IP/MAC管理伺服器40即將該使用者端電腦10的IP地址或是MAC地址註停,藉此以避免未更新防毒軟體病毒庫版本的使用者端電腦10在進行防毒軟體病毒庫版本更新前對其他的使用者端電腦10造成安全性的風險。When the verification result is that the virus database version has not been updated, the data integration platform 50 determines the time according to the IP address or the MAC address provided by the IP/MAC management server 40 . When starting up, the execution function of the client computer 10 is set to a disabled state and provided to the function management server 30, and the function management server 30 can control the execution function of the client computer 10 to be disabled and set The IP address or MAC address of the client computer 10 is in the registered and disabled state and provided to the IP/MAC management server 40, and the IP/MAC management server 40 registers the IP address or MAC address of the client computer 10. stop, so as to avoid the security risk to other client computers 10 caused by the client computer 10 that has not updated the antivirus software virus database version before updating the antivirus software virus database version.

當驗證結果為病毒庫版本未被更新時,資料彙整平台50依據IP/MAC管理伺服器40提供的IP地址或是MAC地址進行時間判斷,當該使用者端電腦10被判斷1個月內仍有開機時,生成重新安裝指令並提供至功能管理伺服器30,功能管理伺服器30依據重新安裝指令於該使用者端電腦10連線時控制該使用者端電腦10重新安裝防毒軟體,並於該使用者端電腦10重新安裝防毒軟體後,防毒監控伺服器20對該使用者端電腦10中的防毒軟體的病毒庫版本進行更新,並且對該使用者端電腦10中的防毒軟體的病毒庫版本驗證是否完成更新,防毒監控伺服器20將重新驗證結果提供至資料彙整平台50。When the verification result is that the virus database version has not been updated, the data integration platform 50 determines the time according to the IP address or MAC address provided by the IP/MAC management server 40. When there is a boot, a reinstallation command is generated and provided to the function management server 30. The function management server 30 controls the client computer 10 to reinstall the antivirus software when the client computer 10 is connected according to the reinstallation command, and installs the antivirus software on the client computer 10. After the antivirus software is reinstalled on the client computer 10 , the antivirus monitoring server 20 updates the virus database version of the antivirus software in the client computer 10 , and the virus database of the antivirus software in the client computer 10 is updated. When the version verification is completed, the antivirus monitoring server 20 provides the re-verification result to the data integration platform 50 .

當重新驗證結果為病毒庫版本未更新時,資料彙整平台50發送障礙維修電子郵件給管理人員裝置以進行後續處理,或是當重新驗證結果為病毒庫版本未更新時,資料彙整平台50透過API發送障礙維修訊息至管理人員裝置以進行後續處理。When the re-verification result is that the virus database version has not been updated, the data integration platform 50 sends an obstacle maintenance email to the administrator device for follow-up processing, or when the re-verification result is that the virus database version is not updated, the data integration platform 50 can use the API Send the obstacle repair message to the management device for follow-up processing.

綜上所述,可知本創作與先前技術之間的差異在於由防毒監控伺服器監控使用者端電腦中的防毒軟體的病毒庫版本,當使用者端電腦中的防毒軟體的病毒庫版本未被更新時,生成並提供第一警示資訊至資料彙整平台,資料彙整平台依據第一警示資訊生成第一更新指令並提供至防毒監控伺服器,防毒監控伺服器依據第一更新指令以對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,且功能管理伺服器依據使用者端電腦中執行功能的禁能狀態,控制使用者端電腦中執行功能的禁能。To sum up, it can be seen that the difference between the present creation and the prior art is that the antivirus monitoring server monitors the virus database version of the antivirus software in the client computer. When updating, generate and provide first warning information to the data integration platform, the data integration platform generates a first update command according to the first warning information and provides it to the antivirus monitoring server, and the antivirus monitoring server sends the user to the user according to the first update command. The virus database version of the antivirus software in the client computer is updated, and the function management server controls the disablement of the execution function in the client computer according to the disabled state of the execution function in the client computer.

藉由此一技術手段可以來解決先前技術所存在現有防毒軟體病毒庫版本的更新方式容易使得企業內部所使用的使用者端電腦的資訊安全性存在風險的問題,進而達成基於防毒軟體更新的使用者端電腦管控的技術功效。This technical means can solve the problem that the update method of the existing anti-virus software virus database version existing in the prior art is likely to cause risks to the information security of the user-end computers used in the enterprise, so as to achieve the use of anti-virus software based updates. The technical effect of computer control on the client side.

雖然本創作所揭露的實施方式如上,惟所述的內容並非用以直接限定本創作的專利保護範圍。任何本創作所屬技術領域中具有通常知識者,在不脫離本創作所揭露的精神和範圍的前提下,可以在實施的形式上及細節上作些許的更動。本創作的專利保護範圍,仍須以所附的申請專利範圍所界定者為準。Although the embodiments disclosed in this creation are as above, the content described is not used to directly limit the scope of patent protection of this creation. Anyone with ordinary knowledge in the technical field to which this creation belongs can make some changes in the form and details of the implementation without departing from the spirit and scope disclosed by this creation. The scope of patent protection for this creation is still subject to the scope of the appended patent application.

10:使用者端電腦 20:防毒監控伺服器 30:功能管理伺服器 40:IP/MAC管理伺服器 50:資料彙整平台 601:處理器 602:記憶體模組 603:匯流排 609:外殼 10: User computer 20: Antivirus monitoring server 30: Function Management Server 40:IP/MAC management server 50:Data Aggregation Platform 601: Processor 602: Memory module 603: Busbar 609: Shell

第1圖繪示為本創作基於防毒軟體更新的使用者端電腦管控系統的系統架構圖。 第2圖繪示為本創作所提之計算設備的元件示意圖。 Figure 1 shows the system architecture diagram of the client computer management and control system based on the antivirus software update of the present creation. FIG. 2 is a schematic diagram of the components of the computing device proposed in this creation.

10:使用者端電腦 10: User computer

20:防毒監控伺服器 20: Antivirus monitoring server

30:功能管理伺服器 30: Function Management Server

40:IP/MAC管理伺服器 40:IP/MAC management server

50:資料彙整平台 50:Data Aggregation Platform

Claims (9)

一種基於防毒軟體更新的使用者端電腦管控系統,其包含: 多個使用者端電腦; 一防毒監控伺服器,監控所述使用者端電腦中的防毒軟體的病毒庫版本,當所述使用者端電腦中的防毒軟體的病毒庫版本未被更新時,生成並提供與該使用者端電腦對應的一第一警示資訊,接收一第一更新指令以對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,所述防毒監控伺服器於隔日對該使用者端電腦中的防毒軟體的病毒庫版本驗證是否完成更新,所述防毒監控伺服器將一驗證結果提供至所述資料彙整平台; 一功能管理伺服器,當接收到的所述使用者端電腦中執行功能的禁能狀態時,控制所述使用者端電腦中執行功能的禁能; 一IP/MAC管理伺服器,當所述使用者端電腦與所述IP/MAC管理伺服器建立連線時,提供所述使用者端電腦的網際協定(Internet Protocol,IP)地址或是媒體存取控制(Media Access Control,MAC)位址; 一資料彙整平台,分別與所述防毒監控伺服器、所述功能管理伺服器以及所述IP/MAC管理伺服器建立連線,自所述防毒監控伺服器接收所述第一警示資訊,自所述防毒監控伺服器接收所述驗證結果,自所述IP/MAC管理伺服器接收所述使用者端電腦的IP地址或是MAC地址,依據所述第一警示資訊生成所述第一更新指令並提供至所述防毒監控伺服器,當所述驗證結果為病毒庫版本未被更新時,依據所述IP/MAC管理伺服器提供的IP地址或是MAC地址進行時間判斷,以將該使用者端電腦的執行功能設定為禁能狀態並提供至所述功能管理伺服器。 A user-side computer management and control system based on antivirus software update, comprising: multiple client computers; An antivirus monitoring server, monitoring the virus database version of the antivirus software in the client computer, and generating and providing the virus database version to the client computer when the virus database version of the antivirus software in the client computer has not been updated A first warning message corresponding to the computer receives a first update instruction to update the virus database version of the antivirus software in the client computer, and the antivirus monitoring server updates the antivirus in the client computer on the next day Whether the virus database version of the software is verified to be updated, the anti-virus monitoring server provides a verification result to the data integration platform; a function management server, when receiving the disabled state of the execution function in the client computer, controlling the disablement of the execution function in the client computer; An IP/MAC management server, when the client computer establishes a connection with the IP/MAC management server, provides an Internet Protocol (IP) address or media storage of the client computer Get the control (Media Access Control, MAC) address; a data collection platform, respectively establishing connections with the antivirus monitoring server, the function management server, and the IP/MAC management server, receiving the first warning information from the antivirus monitoring server, and receiving the first warning information from the antivirus monitoring server. The antivirus monitoring server receives the verification result, receives the IP address or MAC address of the client computer from the IP/MAC management server, generates the first update instruction according to the first warning information, and Provided to the antivirus monitoring server, when the verification result is that the virus database version has not been updated, time judgment is performed according to the IP address or MAC address provided by the IP/MAC management server, so that the user terminal The execution function of the computer is set to a disabled state and provided to the function management server. 如請求項1所述的基於防毒軟體更新的使用者端電腦管控系統,其中所述資料彙整平台透過應用程式介面(Application Programming Interface,API)分別與所述防毒監控伺服器、所述功能管理伺服器以及所述IP/MAC管理伺服器建立連線。The user-side computer management and control system based on an antivirus software update as claimed in claim 1, wherein the data collection platform communicates with the antivirus monitoring server and the function management server respectively through an application programming interface (API). server and the IP/MAC management server to establish a connection. 如請求項1所述的基於防毒軟體更新的使用者端電腦管控系統,其中所述防毒監控伺服器更包含當所述使用者端電腦中的防毒軟體的病毒庫版本超過預設期間未被更新時,生成並提供與該使用者端電腦對應的所述第二警示資訊。The user-side computer management and control system based on anti-virus software update according to claim 1, wherein the anti-virus monitoring server further comprises that the virus database version of the anti-virus software in the user-side computer has not been updated for a preset period of time When , the second warning information corresponding to the client computer is generated and provided. 如請求項3所述的基於防毒軟體更新的使用者端電腦管控系統,其中所述資料彙整平台更包含自所述防毒監控伺服器接收所述第二警示資訊,依據所述第二警示資訊生成所述第二更新指令並提供至所述防毒監控伺服器,所述防毒監控伺服器於隔日對該使用者端電腦中的防毒軟體的病毒庫版本驗證是否完成更新,所述防毒監控伺服器將所述驗證結果提供至所述資料彙整平台,當所述驗證結果為病毒庫版本未被更新時,依據所述IP/MAC管理伺服器提供的IP地址或是MAC地址進行時間判斷:當該使用者端電腦被判斷超過1個月未開機時,以將該使用者端電腦的執行功能設定為禁能狀態並提供至所述功能管理伺服器以及設定該使用者端電腦的IP地址或是MAC地址為註停狀態並提供至所述IP/MAC管理伺服器,所述IP/MAC管理伺服器即將該使用者端電腦的IP地址或是MAC地址註停;及當該使用者端電腦被判斷1個月內仍有開機時,生成一重新安裝指令並提供至所述功能管理伺服器,所述功能管理伺服器依據所述重新安裝指令於該使用者端電腦連線時控制該使用者端電腦重新安裝防毒軟體,並於該使用者端電腦重新安裝防毒軟體後,所述防毒監控伺服器對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,並且對該使用者端電腦中的防毒軟體的病毒庫版本驗證是否完成更新,所述防毒監控伺服器將一重新驗證結果提供至所述資料彙整平台。The user-side computer management and control system based on antivirus software update according to claim 3, wherein the data collection platform further comprises receiving the second warning information from the antivirus monitoring server, and generating the second warning information according to the second warning information. The second update instruction is provided to the anti-virus monitoring server. The anti-virus monitoring server verifies whether the virus database version of the anti-virus software in the client computer is updated every other day. The verification result is provided to the data collection platform, and when the verification result is that the virus database version has not been updated, the time is judged according to the IP address or MAC address provided by the IP/MAC management server: when the When it is judged that the client computer has not been turned on for more than one month, the execution function of the client computer is set to a disabled state and provided to the function management server and the IP address or MAC address of the client computer is set. The address is in the registered state and provided to the IP/MAC management server, and the IP/MAC management server will register the IP address or MAC address of the client computer; and when the client computer is judged When the computer is still powered on within one month, a reinstallation command is generated and provided to the function management server, and the function management server controls the client computer when the client computer is connected according to the reinstallation command. The antivirus software is reinstalled on the computer, and after the antivirus software is reinstalled on the client computer, the antivirus monitoring server updates the virus database version of the antivirus software on the client computer, and updates the virus database version of the antivirus software on the client computer. The anti-virus software version of the virus database verifies whether the update is completed, and the anti-virus monitoring server provides a re-verification result to the data collection platform. 如請求項1所述的基於防毒軟體更新的使用者端電腦管控系統,其中所述防毒監控伺服器更包含當所述使用者端電腦中的防毒軟體的病毒庫版本與所述防毒監控伺服器中的病毒庫版本的版本差距大於等於3時,生成並提供與該使用者端電腦對應的所述第二警示資訊。The client computer management and control system based on antivirus software update according to claim 1, wherein the antivirus monitoring server further comprises a virus database version of the antivirus software in the client computer and the antivirus monitoring server When the version difference between the virus database versions in the TB is greater than or equal to 3, the second warning information corresponding to the client computer is generated and provided. 如請求項5所述的基於防毒軟體更新的使用者端電腦管控系統,其中所述資料彙整平台更包含自所述防毒監控伺服器接收所述第二警示資訊,依據所述第二警示資訊生成所述第二更新指令並提供至所述防毒監控伺服器,所述防毒監控伺服器於隔日對該使用者端電腦中的防毒軟體的病毒庫版本驗證是否完成更新,所述防毒監控伺服器將所述驗證結果提供至所述資料彙整平台,當所述驗證結果為病毒庫版本未被更新時,依據所述IP/MAC管理伺服器提供的IP地址或是MAC地址進行時間判斷:當該使用者端電腦被判斷超過1個月未開機時,以將該使用者端電腦的執行功能設定為禁能狀態並提供至所述功能管理伺服器以及設定該使用者端電腦的IP地址或是MAC地址為註停狀態並提供至所述IP/MAC管理伺服器,所述IP/MAC管理伺服器即將該使用者端電腦的IP地址或是MAC地址註停;及當該使用者端電腦被判斷1個月內仍有開機時,生成一重新安裝指令並提供至所述功能管理伺服器,所述功能管理伺服器依據所述重新安裝指令於該使用者端電腦連線時控制該使用者端電腦重新安裝防毒軟體,並於該使用者端電腦重新安裝防毒軟體後,所述防毒監控伺服器對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,並且對該使用者端電腦中的防毒軟體的病毒庫版本驗證是否完成更新,所述防毒監控伺服器將一重新驗證結果提供至所述資料彙整平台。The user-side computer management and control system based on an antivirus software update according to claim 5, wherein the data collection platform further comprises receiving the second warning information from the antivirus monitoring server, and generating the second warning information according to the second warning information. The second update instruction is provided to the anti-virus monitoring server. The anti-virus monitoring server verifies whether the virus database version of the anti-virus software in the client computer is updated every other day. The verification result is provided to the data collection platform, and when the verification result is that the virus database version has not been updated, the time is judged according to the IP address or MAC address provided by the IP/MAC management server: when the When it is judged that the client computer has not been turned on for more than one month, the execution function of the client computer is set to a disabled state and provided to the function management server and the IP address or MAC address of the client computer is set. The address is in the registered state and provided to the IP/MAC management server, and the IP/MAC management server will register the IP address or MAC address of the client computer; and when the client computer is judged When the computer is still powered on within one month, a reinstallation command is generated and provided to the function management server, and the function management server controls the client computer when the client computer is connected according to the reinstallation command. The antivirus software is reinstalled on the computer, and after the antivirus software is reinstalled on the client computer, the antivirus monitoring server updates the virus database version of the antivirus software on the client computer, and updates the virus database version of the antivirus software on the client computer. The anti-virus software version of the virus database verifies whether the update is completed, and the anti-virus monitoring server provides a re-verification result to the data collection platform. 如請求項1所述的基於防毒軟體更新的使用者端電腦管控系統,其中所述資料彙整平台更包含當所述驗證結果為病毒庫版本未更新時,所述資料彙整平台依據所述IP/MAC管理伺服器提供的IP地址或是MAC地址進行時間判斷:當該使用者端電腦被判斷超過1個月未開機時,以將該使用者端電腦的執行功能設定為禁能狀態並提供至所述功能管理伺服器以及設定該使用者端電腦的IP地址或是MAC地址為註停狀態並提供至所述IP/MAC管理伺服器,所述IP/MAC管理伺服器即將該使用者端電腦的IP地址或是MAC地址註停;及當該使用者端電腦被判斷1個月內仍有開機時,生成一重新安裝指令並提供至所述功能管理伺服器,所述功能管理伺服器依據所述重新安裝指令於該使用者端電腦連線時控制該使用者端電腦重新安裝防毒軟體,並於該使用者端電腦重新安裝防毒軟體後,所述防毒監控伺服器對該使用者端電腦中的防毒軟體的病毒庫版本進行更新,並且對該使用者端電腦中的防毒軟體的病毒庫版本驗證是否完成更新,所述防毒監控伺服器將一重新驗證結果提供至所述資料彙整平台。The user-side computer management and control system based on antivirus software update according to claim 1, wherein the data collection platform further comprises that when the verification result is that the virus database version has not been updated, the data collection platform is based on the IP/ The IP address or MAC address provided by the MAC management server is used to judge the time: when the client computer is judged to have not been turned on for more than one month, the execution function of the client computer is set to a disabled state and provided to the client computer. The function management server and the setting of the IP address or MAC address of the client computer are in a disabled state and provided to the IP/MAC management server, and the IP/MAC management server is the client computer. and when it is judged that the client computer is still powered on within 1 month, a reinstallation instruction is generated and provided to the function management server, and the function management server is based on the The reinstallation instruction controls the client computer to reinstall antivirus software when the client computer is connected, and after reinstalling the antivirus software on the client computer, the antivirus monitoring server controls the client computer The virus database version of the antivirus software in the computer is updated, and the virus database version of the antivirus software in the client computer is verified to be updated, and the antivirus monitoring server provides a re-verification result to the data integration platform. 如請求項7所述的基於防毒軟體更新的使用者端電腦管控系統,其中當所述重新驗證結果為病毒庫版本未更新時,所述資料彙整平台發送一障礙維修電子郵件給管理人員裝置以進行後續處理。The user-side computer management and control system based on antivirus software update according to claim 7, wherein when the re-verification result is that the virus database version has not been updated, the data collection platform sends an obstacle maintenance email to the administrator's device to for subsequent processing. 如請求項7所述的基於防毒軟體更新的使用者端電腦管控系統,其中當所述重新驗證結果為病毒庫版本未更新時,所述資料彙整平台透過API發送一障礙維修訊息至管理人員裝置以進行後續處理。The user-side computer management and control system based on antivirus software update according to claim 7, wherein when the re-verification result is that the virus database version has not been updated, the data collection platform sends an obstacle repair message to the administrator's device through the API for subsequent processing.
TW111202586U 2022-03-16 2022-03-16 User-side computer management and control system based on antivirus software update TWM627979U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW111202586U TWM627979U (en) 2022-03-16 2022-03-16 User-side computer management and control system based on antivirus software update

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW111202586U TWM627979U (en) 2022-03-16 2022-03-16 User-side computer management and control system based on antivirus software update

Publications (1)

Publication Number Publication Date
TWM627979U true TWM627979U (en) 2022-06-01

Family

ID=83063092

Family Applications (1)

Application Number Title Priority Date Filing Date
TW111202586U TWM627979U (en) 2022-03-16 2022-03-16 User-side computer management and control system based on antivirus software update

Country Status (1)

Country Link
TW (1) TWM627979U (en)

Similar Documents

Publication Publication Date Title
EP3255527B1 (en) Remote keyboard-video-mouse technologies
US8863109B2 (en) Updating secure pre-boot firmware in a computing system in real-time
EP2622533B1 (en) Demand based usb proxy for data stores in service processor complex
CN114911332B (en) Server fan control method, system, electronic device and storage medium
US11531760B1 (en) Baseboard management controller (BMC)-based security processor
US20030188207A1 (en) Method and apparatus for remotely placing a computing device into a low power state
US10936300B1 (en) Live system updates
TW202137034A (en) Method and system for automatic detection and alert of changes of computing device components
US12407721B2 (en) Workspace-based fixed pass-through monitoring system and method for hardware devices using a baseboard management controller (BMC)
US11593487B2 (en) Custom baseboard management controller (BMC) firmware stack monitoring system and method
CN109408281B (en) Techniques for headless server manageability and autonomous logging
US10853307B2 (en) System and method for a host application to access and verify contents within non-volatile storage of an information handling system
US20210342169A1 (en) Emulating physical security devices
WO2022143429A1 (en) Computer system, trusted functional assembly, and operation method
US8880747B2 (en) Endpoint device discovery system
US11226862B1 (en) System and method for baseboard management controller boot first resiliency
US20090320128A1 (en) System management interrupt (smi) security
US20060242453A1 (en) System and method for managing hung cluster nodes
CN105474228A (en) Automatic pairing of IO devices with hardware secure elements
TWM627979U (en) User-side computer management and control system based on antivirus software update
CN116158103A (en) Techniques for device-to-device authentication
CN116235175A (en) Static Configuration of Accelerator Card Security Mode
US11755786B2 (en) Command authority extension system and method for security protocol and data model (SPDM) secure communication channels
US12072966B2 (en) System and method for device authentication using a baseboard management controller (BMC)
US12086258B1 (en) Firmware attestation on system reset