Method and system for managing user-defined script type baseline items

A management system and management method technology, applied to the management method and system of custom script type baseline projects, security baseline usage scenarios and its implementation fields, can solve the lack of flexibility, cannot meet the needs of advanced users, and cannot meet the inspection height Customized configuration needs and other issues to achieve the effect of strong flexibility and strong customization

Inactive Publication Date: 2016-12-07
LANGCHAO ELECTRONIC INFORMATION IND CO LTD
View PDF3 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

One of its disadvantages is the lack of flexibility, which often cannot meet the needs of advanced users; the second disadvantage is that the default baseline project is for the general configuration of the computer system, which cannot meet the needs of checking highly customized configurations

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for managing user-defined script type baseline items

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0027] A management method of a custom script type baseline project. The method is based on the security baseline function of Inspur's SSR host security hardening system. On the basis of providing an official knowledge base package, it provides users with the function of configuring a custom security baseline project , the user adds a custom script-type baseline item on the page of the centralized management platform, and the baseline item is sent to the client together with the baseline item provided by the manufacturer, and the client feedbacks the inspection result after execution.

Embodiment 2

[0029] On the basis of embodiment 1, the method described in this embodiment includes the following processes:

[0030] The user enters the baseline item of script type through a special page account, and the input content includes information such as inspection script, repair script, target value, etc. After the user adds the above information, the system saves the baseline item to the database;

[0031] Before saving to the database, the system invokes the dangerous command recognition module to analyze the scanning script and repair script input by the user, and judge whether the script input by the user contains offensive or destructive sentences, and prompt the user if it exists , and further confirm to the user whether to add; the security risk instruction identification module contains a series of patterns of dangerous instructions, and judges whether each line of the scan script and repair script is dangerous and destructive in the form of a regular expression;

[0032...

Embodiment 3

[0035] Such as figure 1 As shown, a management system of a custom script type baseline project, the system uses a front-end page, a centralized management platform, and a client, wherein:

[0036] The front-end pages include: add / edit / delete pages of script-type baseline items, log viewing pages, and display client inspection results in table form;

[0037] The centralized management platform includes: dangerous instruction identification module, database operation module (save baseline items in the database or read relevant data from the database), knowledge base file generation module, and script type knowledge base delivery mechanism;

[0038] The client includes: a script execution module (the client executes the script in the knowledge base after receiving and updating the knowledge base), a result comparison module, and a log generation module.

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and a system for managing user-defined script type baseline items. The method comprises the following steps: supplying a function of configuring user-defined safe baseline items to a user on the basis of supplying official knowledge base packet and on the basis of a safe baseline function of a safe reinforcing system of a tide SSR host computer; adding the user-defined script type baseline items on the page of a central management platform by the user; sending the baseline items and the baseline items supplied by the manufacturer to a client terminal; feeding back a check result by the client terminal after completing operation. The method and the system have the characteristics of being strong in flexibility and strong in customization as a supplement of a safe baseline knowledge base management system in current tide SSR host computer safe reinforcing system.

Description

technical field [0001] The invention relates to the technical field of information security, in particular to a management method and system for a custom script type baseline project, a more flexible security baseline usage scenario and an implementation method thereof. Background technique [0002] In recent years, information security incidents have occurred frequently, and information security has attracted more and more attention. Security baseline is a concept in the field of information security. It refers to the minimum level of security-related configurations in computer systems and software, including system security configurations, system component configurations, permissions, and user configurations. The security baseline project is the smallest unit in security baseline management, which refers to a rule that directly corresponds to a specific security configuration. [0003] Because the security baseline is closely related to the system configuration, and the m...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F17/30G06F9/44
CPCG06F8/71G06F16/21
Inventor 徐冠群
Owner LANGCHAO ELECTRONIC INFORMATION IND CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap