CN102739794B - Based on the Desktop Monitoring system of multi-layer framework - Google Patents
Based on the Desktop Monitoring system of multi-layer framework Download PDFInfo
- Publication number
- CN102739794B CN102739794B CN201210228946.4A CN201210228946A CN102739794B CN 102739794 B CN102739794 B CN 102739794B CN 201210228946 A CN201210228946 A CN 201210228946A CN 102739794 B CN102739794 B CN 102739794B
- Authority
- CN
- China
- Prior art keywords
- management
- data
- module
- gateway
- monitoring system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Computer And Data Communications (AREA)
Abstract
The invention provides a kind of Desktop Monitoring system based on multi-layer framework, comprising: client, gateway, service end and management end; Client is installed on controlled users terminal, for providing monitor data; Gateway is used for the data syn-chronization between client and service end; Service end is for storing monitor data; Management end is used for configuration-system and operation supervise and control data.Control and monitoring are refined as session level operation, not only can record the operation screen of desktop in control desk session by the Desktop Monitoring system based on multi-layer framework provided by the invention, also can record the operation screen of desktop in the non-console session of long-distance user's login.Use local storage, user operation can be recorded by off-line, once user's line, the operation video in system automatic upload user Offtime section.Thus operation supervise and control problem under solving user's Telnet and off-line state.<!--1-->
Description
Technical field
The present invention relates to desktop audit technique field, particularly relate to a kind of Desktop Monitoring system based on multi-layer framework.
Background technology
Video audit makes IT can monitor and analysis of user activities, realizes internal control, guarantees compliance and the security audit being successfully completed various application; In addition, can also identification problem solving a problem promptly more quickly, thus improving environment Service supportive.
But existing video auditing system is all generally the user operation behavior that supervisory control comuter control desk logs in, and can not monitor the user operation behavior being remotely logged into computer.And when recording user operation, subscriber computer must be online.
Summary of the invention
The object of the present invention is to provide a kind of Desktop Monitoring system based on multi-layer framework, to solve the operation supervise and control problem of Telnet clients.
Another object of the present invention is to provide a kind of Desktop Monitoring system based on multi-layer framework, to solve the operation supervise and control problem of user under off-line state.
The object of the invention is to be achieved through the following technical solutions.
Based on a Desktop Monitoring system for multi-layer framework, comprising: client, gateway, service end and management end;
Client is installed on controlled users terminal, for providing monitor data;
Gateway is used for the data syn-chronization between client and service end;
Service end is for storing monitor data;
Management end is used for configuration-system and operation supervise and control data.
Preferably, described client is made up of conversation dispatching service module, data capture program module and local data library module;
Conversation dispatching service module, for enumerating the session of all login users in computer, then discharges seizure program in session;
Data capture program module is used for real-time Transmission user operation video, and is recorded in local data library module according to catching collocation strategy simultaneously;
Conversation dispatching service module according to transmission configuration strategy by data syn-chronization to gateway or be directly synchronized to service end.
Preferably, the process of described data capture program module also for opening with text mode real time record user.
Preferably, described gateway is made up of gateway service module and gateway data library module;
Gateway service module is used for the data syn-chronization between gateway data library module and management data library module;
The monitor data that gateway data library module is sent for storing client.
Preferably, described service end comprises management data library module, for storing the service data of whole system.
Preferably, described management end is made up of manager module and monitor module;
Management program module is used for carrying out integrated management;
Monitoring program module is used for monitoring in real time, supports with the screen multiple session of monitoring in real time.
Preferably, described integrated management comprises: secure context, business aspect and system management aspect;
Described secure context comprises: rights management, Role Management, user management;
Business aspect comprises: terminal management, record management, violation management;
System management aspect comprises: parameterized template management, time parameter method Template Manager, tag control violating the regulations.
Preferably, described session is for operation computing environment that is legal login user, complete, isolation in operating system.
The present invention compared with prior art, Desktop Monitoring system based on multi-layer framework provided by the invention, control and monitoring are refined as session level operation, not only can record the operation screen of desktop in control desk session, also can record the operation screen of desktop in the non-console session of long-distance user's login.Use local storage, user operation can be recorded by off-line, once user's line, the operation video in system automatic upload user Offtime section.Thus operation supervise and control problem under solving user's Telnet and off-line state.
Accompanying drawing explanation
Fig. 1 is the Desktop Monitoring system principle diagram that the present invention is based on multi-layer framework.
Fig. 2 is the Desktop Monitoring method flow diagram that the present invention is based on multi-layer framework.
Embodiment
In order to make object of the present invention, technical scheme and advantage clearly understand, below in conjunction with drawings and Examples, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
Refer to the Desktop Monitoring system of multi-layer framework of the present invention shown in Fig. 1: be made up of client (Client), gateway (Gateway), service end (Server) and management end (Manager).
Client is installed on controlled users terminal, for providing monitor data.
Client is made up of conversation dispatching service module (DADirector), data capture program module (DAActor) and local data library module (LocalDB).
Conversation dispatching service module, for enumerating the session (comprising control desk session) of all login users in computer, then discharges DAActor in session.
Data capture program module is used for real-time Transmission user operation video, and is recorded in local data library module according to catching collocation strategy simultaneously, also with the process that text mode real time record user opens.
Conversation dispatching service module according to transmission configuration strategy by data syn-chronization to gateway or be directly synchronized to service end.
Gateway is used for the data syn-chronization between client and service end.
Gateway is made up of gateway service module (DAGateway) and gateway data library module (GatewayDB).Gateway is used for synchronous gateway database module and management data library module (ManagerDB).Described gateway, when disposing, can have 0 to any example.
Gateway service module is used for the data syn-chronization between gateway data library module and management data library module.
The monitor data that gateway data library module is sent for storing client.
Service end is for storing monitor data.
Service end comprises management data library module (ManagerDB), for storing the service data of whole system.Described service end, when disposing, has and can only have an example.
Management end is used for configuration-system and operation supervise and control data.
Management end is made up of manager module (DAManager) and monitor module (DAMonitor).Any network site for access services end starts management function, and needs to carry out authentication.
Management program module is used for carrying out integrated management, comprise: secure context is as rights management, Role Management, user management, business aspect is as terminal management, record management, violation management, and system management aspect is as parameterized template management, time parameter method Template Manager, tag control violating the regulations.
Monitoring program module is used for monitoring in real time, supports with the screen multiple session of monitoring in real time.
Described session is for operation computing environment that is legal login user, complete, isolation in operating system.
Fig. 2 is the Desktop Monitoring method that the present invention is based on multi-layer framework, comprising:
Step 1: keeper is logged in by manager, confirms identity and authority.
Step 2: administrator configurations system parameters, is stored in management database.
Step 3: gateway service gets parms from management database, and be stored in gateway data storehouse.
Step 4: conversation dispatching service gets parms from gateway data storehouse, and is stored in local data base.
Step 5: data capture program gets parms from local data base, performs data capture task.
Step 6: data capture program by supervising data storage in local data base.
Step 7: conversation dispatching service obtains monitor data from local data base, and be stored in gateway data storehouse.
Step 8: gateway service obtains monitor data from gateway data storehouse, and is stored in management database.
Step 9: manager obtains monitor data from management database and operates.
Control and monitoring are refined as session level operation, not only can record the operation screen of desktop in control desk session by the Desktop Monitoring system based on multi-layer framework provided by the invention, also can record the operation screen of desktop in the non-console session of long-distance user's login.Use local storage, user operation can be recorded by off-line, once user's line, the operation video in system automatic upload user Offtime section.Thus operation supervise and control problem under solving user's Telnet and off-line state.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, all any amendments done within the spirit and principles in the present invention, equivalent replacement and improvement etc., all should be included within protection scope of the present invention.
Claims (7)
1. based on a Desktop Monitoring system for multi-layer framework, comprising: client, gateway, service end and manager;
Client is installed on controlled users terminal, for providing monitor data;
Gateway is used for the data syn-chronization between client and service end;
Service end is for storing monitor data;
Management end is used for configuration-system and operation supervise and control data;
It is characterized in that, described client is made up of conversation dispatching service module, data capture program module and local data library module, described conversation dispatching service module is for enumerating the session of all login users in computer, then in session, seizure program is discharged, described data capture program module is used for real-time Transmission user operation video, and be simultaneously recorded in local data library module according to catching collocation strategy, described conversation dispatching service module according to transmission configuration strategy by data syn-chronization to gateway or be directly synchronized to service end.
2. the Desktop Monitoring system based on multi-layer framework according to claim 1, is characterized in that, the process of described data capture program module also for opening with text mode real time record user.
3. the Desktop Monitoring system based on multi-layer framework according to claim 1, is characterized in that, described gateway is made up of gateway service module and gateway data library module;
Gateway service module is used for the data syn-chronization between gateway data library module and management data library module;
The monitor data that gateway data library module is sent for storing client.
4. the Desktop Monitoring system based on multi-layer framework according to claim 1, it is characterized in that, described service end comprises management data library module, for storing the service data of whole system.
5. the Desktop Monitoring system based on multi-layer framework according to claim 1, it is characterized in that, described management end is made up of manager module and monitor module;
Manager module is used for carrying out integrated management;
Monitor module is used for monitoring in real time, supports with the screen multiple session of monitoring in real time.
6. the Desktop Monitoring system based on multi-layer framework according to claim 5, it is characterized in that, described integrated management comprises: secure context, business aspect and system management aspect;
Described secure context comprises: rights management, Role Management, user management;
Business aspect comprises: terminal management, record management, violation management;
System management aspect comprises: parameterized template management, time parameter method Template Manager, tag control violating the regulations.
7. the Desktop Monitoring system based on multi-layer framework according to claim arbitrary in claim 1-6, is characterized in that, described session is for operation computing environment that is legal login user, complete, isolation in operating system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210228946.4A CN102739794B (en) | 2012-07-04 | 2012-07-04 | Based on the Desktop Monitoring system of multi-layer framework |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210228946.4A CN102739794B (en) | 2012-07-04 | 2012-07-04 | Based on the Desktop Monitoring system of multi-layer framework |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102739794A CN102739794A (en) | 2012-10-17 |
| CN102739794B true CN102739794B (en) | 2016-03-30 |
Family
ID=46994565
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210228946.4A Active CN102739794B (en) | 2012-07-04 | 2012-07-04 | Based on the Desktop Monitoring system of multi-layer framework |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102739794B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104125304B (en) * | 2014-08-13 | 2017-09-19 | 北京华夏威科软件技术有限公司 | A kind of session level application auditing method and system |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1561037A (en) * | 2004-02-23 | 2005-01-05 | 南京金鹰国际集团软件系统有限公司 | Desk monitoring audit system based on structure |
| CN101194523A (en) * | 2005-03-28 | 2008-06-04 | 泰克莱克公司 | Methods, systems, and computer program products for surveillance of messaging service messages in a communications network |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP3351318B2 (en) * | 1997-11-07 | 2002-11-25 | 株式会社日立製作所 | Computer system monitoring method |
-
2012
- 2012-07-04 CN CN201210228946.4A patent/CN102739794B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1561037A (en) * | 2004-02-23 | 2005-01-05 | 南京金鹰国际集团软件系统有限公司 | Desk monitoring audit system based on structure |
| CN101194523A (en) * | 2005-03-28 | 2008-06-04 | 泰克莱克公司 | Methods, systems, and computer program products for surveillance of messaging service messages in a communications network |
Non-Patent Citations (1)
| Title |
|---|
| "工作环境监视"面面观;袁永康;《国外科技动态》;20011031(第10期);第17-19页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102739794A (en) | 2012-10-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104063473B (en) | A kind of database audit monitoring system and its method | |
| US10250539B2 (en) | Methods and apparatus to manage message delivery in enterprise network environments | |
| US20170041435A1 (en) | Methods and apparatus to generate virtual war rooms via social media in enterprise network environments | |
| CN109819053B (en) | Springboard machine system applied to mixed cloud environment and control method thereof | |
| CN104700024B (en) | A kind of method and system of Unix classes host subscriber operational order audit | |
| CN102594884B (en) | Method and system for automatically distributing and synchronizing multi-stage data constructed based on browser/server (B/S) | |
| CN103441864A (en) | Method for monitoring illegal external connection of terminal equipment | |
| CN108270716A (en) | A kind of audit of information security method based on cloud computing | |
| CN100466563C (en) | Centralized monitoring method for data service system without network management interface | |
| CN103780700A (en) | Application system and method for achieving compatibility and sharing among multi-source heterogeneous systems | |
| CN104573611A (en) | Distributed face recognition trunking system | |
| CN106598813B (en) | A work monitoring keyboard and mouse device and a method for monitoring the process of using a computer | |
| CN102497427A (en) | Method and device for realizing data acquisition services of renewable energy source monitoring system | |
| CN101753989A (en) | Method and device for collocating information in lot in video monitoring system | |
| CN107786551B (en) | Method for accessing intranet server and device for controlling access to intranet server | |
| CN104333556A (en) | Distributed configuration management method of safety certificate gateways based on resource service management systems | |
| CN105049245B (en) | The Element management system of EPON | |
| CN105812432B (en) | Cloud document processing method and device | |
| CN107231245B (en) | Method and device for reporting monitoring log, and method and device for processing monitoring log | |
| CN105245336B (en) | A kind of file encryption management system | |
| CN102739794B (en) | Based on the Desktop Monitoring system of multi-layer framework | |
| CN114760083B (en) | Method, device and storage medium for issuing attack detection file | |
| CN109600395A (en) | A kind of device and implementation method of terminal network access control system | |
| CN102624541A (en) | Whole network managing and monitoring system based on virtual private network (VPN) technology | |
| CN111209171B (en) | Closed loop handling method and device for security risk and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20220208 Address after: 510000 room b1309, No. 161, Linhe West Road, Tianhe District, Guangzhou City, Guangdong Province Patentee after: Guangzhou Fengyun Information Technology Co.,Ltd. Address before: 518000 room 425, floor 4, building 4, Zhongxing Industrial City, Chuangye Road, Nanshan District, Shenzhen, Guangdong Province Patentee before: Shenzhen Jinghua Kexun Technology Co.,Ltd. |