CN115643070A - Improved system and method for logging into VDI and IDV cloud desktops based on biometric features - Google Patents
Improved system and method for logging into VDI and IDV cloud desktops based on biometric features Download PDFInfo
- Publication number
- CN115643070A CN115643070A CN202211256714.XA CN202211256714A CN115643070A CN 115643070 A CN115643070 A CN 115643070A CN 202211256714 A CN202211256714 A CN 202211256714A CN 115643070 A CN115643070 A CN 115643070A
- Authority
- CN
- China
- Prior art keywords
- module
- data
- information
- user
- login
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
Description
技术领域technical field
本发明属于云桌面技术领域,具体涉及基于生物特征登录VDI、IDV云桌面改进系统及方法。The invention belongs to the technical field of cloud desktops, and in particular relates to an improved system and method for logging into VDI and IDV cloud desktops based on biometric features.
背景技术Background technique
随着科技的发展,使用生物特征登录机器已变得越来越普遍,尤其在pc端,表现的尤为突出。VDI中文为虚拟桌面架构,IDV中文为智能桌面虚拟化,但VDI/IDV云桌面的使用上还是比较保守的,传统的VDI/IDV云桌面生物特征登录,对生物特征进行集中采集,录入数据库,当用户登录终端时,收集到此刻的生物特征,将收集到的数据打包发送到服务端,在服务端进行数据对比,根据对比结果,返回对应的参数或者对应的桌面。这种生物特征登陆方式,存在以下问题:With the development of technology, it has become more and more common to use biometrics to log in to machines, especially on the PC side. VDI Chinese refers to virtual desktop architecture, and IDV Chinese refers to intelligent desktop virtualization. However, the use of VDI/IDV cloud desktops is relatively conservative. Traditional VDI/IDV cloud desktop biometric logins collect biometrics centrally and enter them into the database. When the user logs in to the terminal, the biometrics at the moment are collected, the collected data is packaged and sent to the server, the data is compared on the server, and the corresponding parameters or the corresponding desktop are returned according to the comparison results. This biometric login method has the following problems:
1)在服务器网络受限的情况下,终端用户无法快速安全的登录;1) When the server network is limited, end users cannot log in quickly and safely;
2)如果终端被破解,会导致所有用户登录信息泄露。2) If the terminal is cracked, all user login information will be leaked.
发明内容Contents of the invention
为克服上述现有技术的不足,本发明的目的是提供基于生物特征登录VDI、IDV云桌面改进系统及方法,具有更安全,防破解,和更快速登陆的特点。In order to overcome the deficiencies of the above-mentioned prior art, the object of the present invention is to provide an improved system and method for logging into VDI and IDV cloud desktops based on biometric features, which has the characteristics of safer, anti-cracking, and faster login.
为实现上述目的,本发明采用的技术方案是:基于生物特征登录VDI、IDV云桌面改进系统,包括有生物特征响应模块,用户模块,离线登录模块,随机算法模块,桌面启动模块,业务模块,监控模块;In order to achieve the above object, the technical solution adopted by the present invention is: based on the biometric feature login VDI, IDV cloud desktop improvement system, including a biometric response module, a user module, an offline login module, a random algorithm module, a desktop startup module, a business module, monitoring module;
所述的生物特征响应模块,用于唤醒休眠电脑;The biometric response module is used to wake up a dormant computer;
所述的用户模块,用于存储用户信息,将用户信息计算并储存在数据库里;The user module is used to store user information, calculate and store user information in a database;
所述的离线登录模块,用于携带数据块的终端离线时,终端可以正常运行桌面;The offline login module is used to enable the terminal to run the desktop normally when the terminal carrying the data block is offline;
所述的随机算法模块,用于计算用户被随机分成的数据块并将数据块随机分发给各个终端;The random algorithm module is used to calculate the data blocks that the user is randomly divided into and randomly distribute the data blocks to each terminal;
所述的桌面启动模块,用于将桌面下发到终端上,并使windows桌面运行起来;The desktop startup module is used to send the desktop to the terminal and make the windows desktop run;
所述的业务模块,用于采集用户信息,将采集到的数据进行处理达到期望数据并下发到终端;The business module is used to collect user information, process the collected data to achieve desired data and send it to the terminal;
所述的监控模块,用于监控用户登录信息的变化。The monitoring module is used to monitor changes in user login information.
基于生物特征登录VDI、IDV云桌面改进方法,包括以下步骤:The improved method for logging in to VDI and IDV cloud desktops based on biometric features includes the following steps:
步骤1,生物特征响应模块安装在运行的终端内,通过红外探测器识别到有生物特征靠近终端时,自动开启生物特征识别功能,采集生物特征数据;Step 1, the biometric response module is installed in the running terminal, and when the infrared detector recognizes that there is a biometric approaching the terminal, the biometric recognition function is automatically turned on to collect biometric data;
步骤2,业务模块对所有的用户进行数据采集,通过算法对数据库的信息建立对照模型存储到数据库;Step 2, the business module collects data from all users, and establishes a comparison model for the information in the database through an algorithm and stores it in the database;
步骤3,用户模块第一次终端登录时,采集到该用户的生物特征,将该生物特征与登录信息打包发送到服务端,业务模块通过算法对打包上来的数据信息建立对照模型,与数据库存储的数据比对,检索到对应的用户信息,用户信息匹配后,则登陆成功,启动桌面启动模块,选择要进入的桌面;Step 3: When the user module logs in to the terminal for the first time, it collects the user's biometrics, packages the biometrics and login information and sends them to the server. The data is compared, and the corresponding user information is retrieved. After the user information matches, the login is successful, the desktop startup module is started, and the desktop to be entered is selected;
步骤4,登陆成功后,使用随机算法模块将用户信息随机分成n份,并在每个数据块的名称上加上编号,在数据库随机获取到n个终端,将这n份数据块随机发送到n个终端;Step 4. After successful login, use the random algorithm module to randomly divide the user information into n parts, add a number to the name of each data block, obtain n terminals randomly in the database, and randomly send the n data blocks to n terminals;
步骤5,在用户下次登陆时,启动离线登录模块,将n个终端的分片数据按顺序组合拼接,与终端采集到的生物特征信息对比,如果匹配成功,则登陆成功,将该用户的信息发送到服务端,与服务器建立长链接,如果匹配失败或者带有存储数据的n个终端有部分终端不在线,导致数据块不完整,无法在本地进行识别对比,则终端继续与服务器通信,继续第四步的操作,也可以直接使用账密登录;Step 5: When the user logs in next time, start the offline login module, combine and splicing the fragmented data of n terminals in order, and compare them with the biometric information collected by the terminal. If the matching is successful, the login is successful, and the user's The information is sent to the server, and a long link is established with the server. If the matching fails or some of the n terminals with stored data are offline, resulting in incomplete data blocks that cannot be identified and compared locally, the terminal will continue to communicate with the server. Continue to the fourth step, or you can log in directly with the account password;
步骤6,如果数据库里客户的个人生物特征信息发生变化或者数据更新,监控模块获取到数据发生变化后,同步在这n个终端上存储的数据,并更新终端上存储的数据。Step 6, if the customer's personal biometric information in the database changes or the data is updated, after the monitoring module obtains the data change, it synchronizes the data stored on the n terminals and updates the data stored on the terminals.
本发明的有益效果是:The beneficial effects of the present invention are:
1)在网络受限的情况下依然支持终端登录,尤其在voi和idv云桌面领域;1) It still supports terminal login when the network is limited, especially in the fields of voi and idv cloud desktops;
2)增加安全性,即使该终端被人破解,也无法拿到登录的所有数据,无法登录。2) To increase security, even if the terminal is cracked, all the logged-in data cannot be obtained and cannot be logged in.
在生物特征登录机器的基础上,优化改进,增加随机算法,利用本地交叉存储,将每个用户的个人信息随机分成n个数据块,并分散到n个终端上,用户登录时,先将各个终端上的数据块按顺序组合,然后与收集到的用户信息做比较,释放了服务器,在网络受限的情况下也可以正常登录。On the basis of the biometric login machine, optimize and improve, add a random algorithm, and use local cross-storage to randomly divide each user's personal information into n data blocks and distribute them to n terminals. The data blocks on the terminal are combined in sequence, and then compared with the collected user information, which frees up the server and enables normal login even when the network is limited.
附图说明Description of drawings
图1为本发明系统的原理框图。Fig. 1 is a functional block diagram of the system of the present invention.
图2为本发明方法的流程图。Fig. 2 is a flow chart of the method of the present invention.
具体实施方式Detailed ways
下面结合附图和实施例对本发明作进一步详细说明。The present invention will be described in further detail below in conjunction with the accompanying drawings and embodiments.
参见图1,基于生物特征登录VDI、IDV云桌面改进系统,包括有生物特征响应模块,用户模块,离线登录模块,随机算法模块,桌面启动模块,业务模块,监控模块;Referring to Figure 1, the biometric-based login VDI and IDV cloud desktop improvement system includes a biometric response module, a user module, an offline login module, a random algorithm module, a desktop startup module, a business module, and a monitoring module;
所述的生物特征响应模块,用于唤醒休眠电脑;The biometric response module is used to wake up a dormant computer;
所述的用户模块,用于存储用户信息,将用户信息计算并储存在数据库里;The user module is used to store user information, calculate and store user information in a database;
所述的离线登录模块,用于携带数据块的终端离线时,终端可以正常运行桌面;The offline login module is used to enable the terminal to run the desktop normally when the terminal carrying the data block is offline;
所述的随机算法模块,用于计算用户被随机分成的数据块并将数据块随机分发给各个终端;The random algorithm module is used to calculate the data blocks that the user is randomly divided into and randomly distribute the data blocks to each terminal;
所述的桌面启动模块,用于将桌面下发到终端上,并使windows桌面运行起来;The desktop startup module is used to send the desktop to the terminal and make the windows desktop run;
所述的业务模块,用于采集用户信息,将采集到的数据进行处理达到期望数据并下发到终端;The business module is used to collect user information, process the collected data to achieve desired data and send it to the terminal;
所述的监控模块,用于监控用户登录信息的变化。The monitoring module is used to monitor changes in user login information.
参见图2,基于生物特征登录VDI、IDV云桌面改进方法,包括以下步骤:Referring to Figure 2, the improved method for logging into VDI and IDV cloud desktop based on biometric features includes the following steps:
步骤1,生物特征响应模块安装在运行的终端内,通过红外探测器识别到有生物特征靠近终端时,自动开启生物特征识别功能,采集生物特征数据;Step 1, the biometric response module is installed in the running terminal, and when the infrared detector recognizes that there is a biometric approaching the terminal, the biometric recognition function is automatically turned on to collect biometric data;
步骤2,业务模块对所有的用户进行数据采集,通过算法对数据库的信息建立对照模型存储到数据库;Step 2, the business module collects data from all users, and establishes a comparison model for the information in the database through an algorithm and stores it in the database;
步骤3,用户模块第一次终端登录时,采集到该用户的生物特征,将该生物特征与登录信息打包发送到服务端,业务模块通过算法对打包上来的数据信息建立对照模型,与数据库存储的数据比对,检索到对应的用户信息,用户信息匹配后,则登陆成功,启动桌面启动模块,选择要进入的桌面;Step 3: When the user module logs in to the terminal for the first time, it collects the user's biometrics, packages the biometrics and login information and sends them to the server. The data is compared, and the corresponding user information is retrieved. After the user information matches, the login is successful, the desktop startup module is started, and the desktop to be entered is selected;
步骤4,登陆成功后,使用随机算法模块将用户信息随机分成n份,并在每个数据块的名称上加上编号,在数据库随机获取到n个终端,将这n份数据块随机发送到n个终端;Step 4. After successful login, use the random algorithm module to randomly divide the user information into n parts, add a number to the name of each data block, obtain n terminals randomly in the database, and randomly send the n data blocks to n terminals;
步骤5,在用户下次登陆时,启动离线登录模块,将n个终端的分片数据按顺序组合拼接,与终端采集到的生物特征信息对比,如果匹配成功,则登陆成功,将该用户的信息发送到服务端,与服务器建立长链接,如果匹配失败或者带有存储数据的n个终端有部分终端不在线,导致数据块不完整,无法在本地进行识别对比,则终端继续与服务器通信,继续第四步的操作,也可以直接使用账密登录;Step 5: When the user logs in next time, start the offline login module, combine and splicing the fragmented data of n terminals in order, and compare them with the biometric information collected by the terminal. If the matching is successful, the login is successful, and the user's The information is sent to the server, and a long link is established with the server. If the matching fails or some of the n terminals with stored data are offline, resulting in incomplete data blocks that cannot be identified and compared locally, the terminal will continue to communicate with the server. Continue to the fourth step, or you can log in directly with the account password;
步骤6,如果数据库里客户的个人生物特征信息发生变化或者数据更新,监控模块获取到数据发生变化后,同步在这n个终端上存储的数据,并更新终端上存储的数据。Step 6, if the customer's personal biometric information in the database changes or the data is updated, after the monitoring module obtains the data change, it synchronizes the data stored on the n terminals and updates the data stored on the terminals.
术语解释,对说明书中出现的英文缩写进行中文全称解释Explanation of terms, full Chinese explanation of the English abbreviations appearing in the manual
终端:是与计算机系统相连的一种输入输出设备,通常离计算机较远。Terminal: It is an input and output device connected to a computer system, usually far away from the computer.
云桌面:又称桌面虚拟化、云电脑,是替代传统电脑的一种新模式。Cloud desktop: Also known as desktop virtualization and cloud computer, it is a new model that replaces traditional computers.
服务端:为客户端服务的,服务的内容诸如向客户端提供资源,保存客户端数据。Server: Serves the client, such as providing resources to the client and saving client data.
VDI(Virtual Desktop Infrastructure虚拟桌面基础架构)。VDI为集中存储、集中运算的虚拟桌面基础架构,属于云桌面技术。该架构是把所有的用户桌面的数据运算都集中在服务器端,用户桌面接收的只是操作系统环境。VDI在桌面移动性、服务器架构设计、集中管理控制、数据安全性方面都具有很大优势。VDI (Virtual Desktop Infrastructure virtual desktop infrastructure). VDI is a virtual desktop infrastructure with centralized storage and centralized computing, which belongs to cloud desktop technology. This architecture is to concentrate all the data operations of the user's desktop on the server side, and the user's desktop receives only the operating system environment. VDI has great advantages in desktop mobility, server architecture design, centralized management control, and data security.
IDV(Intelligent Desktop Virtualization基于服务器的计算模型)。它是一种基于服务器的计算模型,并且借用了传统的瘦客户端模型,让管理员与用户能够同时获得两种方式的优点:将所有桌面虚拟机在数据中心进行托管并统一管理;同时用户能够获得完整PC机的使用体验,即用户可以通过瘦客户端,或者类似的设备在局域网或者远程访问获得与传统PC机一致的用户体验。IDV (Intelligent Desktop Virtualization server-based computing model). It is a server-based computing model, and borrows the traditional thin client model, so that administrators and users can obtain the advantages of two methods at the same time: all desktop virtual machines are hosted in the data center and managed in a unified manner; at the same time, users A complete PC experience can be obtained, that is, users can obtain the same user experience as a traditional PC through a thin client or similar device in a local area network or remote access.
VOI(Virtual Operatingsystem Infrastructure虚拟操作系统基础架构)。VOI无任何硬件虚拟化层,其本身是无盘工作站模式,VOI为集中存储、分布运算的构架。该模式是在服务器端存储系统数据,在客户机上运行桌面。客户机只需在启动时从服务器端将操作系统和应用加载到本地缓存即可使本地计算机能正常使用。该模式支持离线运行、支持桌面系统集中安全管理,而且桌面性能完全保持传统PC的体验,不存在兼容性问题,同时支持本地机器无硬盘启动。对数据的安全性、硬件的精简做了进一步改善。VOI (Virtual Operatingsystem Infrastructure virtual operating system infrastructure). VOI does not have any hardware virtualization layer. It is a diskless workstation model. VOI is a framework for centralized storage and distributed computing. This mode is to store system data on the server side and run the desktop on the client machine. The client only needs to load the operating system and applications from the server to the local cache when it starts up, so that the local computer can be used normally. This mode supports offline operation and centralized security management of the desktop system, and the desktop performance fully maintains the experience of a traditional PC, there is no compatibility problem, and it supports local machine startup without a hard disk. Further improvements have been made to data security and hardware simplification.
Claims (2)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211256714.XA CN115643070A (en) | 2022-10-14 | 2022-10-14 | Improved system and method for logging into VDI and IDV cloud desktops based on biometric features |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211256714.XA CN115643070A (en) | 2022-10-14 | 2022-10-14 | Improved system and method for logging into VDI and IDV cloud desktops based on biometric features |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115643070A true CN115643070A (en) | 2023-01-24 |
Family
ID=84945338
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211256714.XA Pending CN115643070A (en) | 2022-10-14 | 2022-10-14 | Improved system and method for logging into VDI and IDV cloud desktops based on biometric features |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115643070A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101478541A (en) * | 2008-10-21 | 2009-07-08 | 刘洪利 | Living creature characteristic authentication method, living creature characteristic authentication system |
| CN109359455A (en) * | 2018-09-19 | 2019-02-19 | 广州杰赛科技股份有限公司 | Cloud desktop login method, device and computer-readable storage medium |
| CN111031001A (en) * | 2019-11-20 | 2020-04-17 | 西安雷风电子科技有限公司 | IDV cloud terminal offline authorization management system and method |
| CN111966982A (en) * | 2020-07-23 | 2020-11-20 | 西安雷风电子科技有限公司 | Cloud desktop registration and login method and system based on biological characteristic authentication |
-
2022
- 2022-10-14 CN CN202211256714.XA patent/CN115643070A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101478541A (en) * | 2008-10-21 | 2009-07-08 | 刘洪利 | Living creature characteristic authentication method, living creature characteristic authentication system |
| CN109359455A (en) * | 2018-09-19 | 2019-02-19 | 广州杰赛科技股份有限公司 | Cloud desktop login method, device and computer-readable storage medium |
| CN111031001A (en) * | 2019-11-20 | 2020-04-17 | 西安雷风电子科技有限公司 | IDV cloud terminal offline authorization management system and method |
| CN111966982A (en) * | 2020-07-23 | 2020-11-20 | 西安雷风电子科技有限公司 | Cloud desktop registration and login method and system based on biological characteristic authentication |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN114667513B (en) | Multi-tenant provider network database connection management and administration | |
| US11121982B2 (en) | Virtual computing services deployment network | |
| US11336749B2 (en) | Systems, methods, and computer program products to implement changes in a converged infrastructure system | |
| CA3120996C (en) | Synchronization of data between local and remote computing environment buffers | |
| CN101657804B (en) | Extensible and programmable multi-tenant service architecture | |
| TW201007574A (en) | Internet server system and method of constructing and starting a virtual machine | |
| US9197644B1 (en) | System and method for multitenant management of domains | |
| WO2022121221A1 (en) | Token-based application access method and apparatus, computer device, and medium | |
| CN106375323A (en) | Kerberos identity authentication method in multi-tenant mode | |
| CN103607435A (en) | Medical image storage system based on cloud computing and method thereof | |
| CN101656718A (en) | Network server system and method for establishing and starting virtual machine thereof | |
| EP3300336B1 (en) | Method and device for merging multiple virtual desktop architectures | |
| CN103546544A (en) | Data management system on basis of cloud computing | |
| WO2025011228A1 (en) | Authority control method, authority control apparatus, electronic device, and storage medium | |
| CN114793244A (en) | Resource processing method, device, equipment and medium for block chain | |
| US11803524B1 (en) | Streamlined database migration with stored procedure extraction into on-demand execution environments | |
| US8762507B1 (en) | Method and system for managing an information technology system | |
| US20240248735A1 (en) | Multi-user virtual machine platform | |
| US20220050932A1 (en) | Authentication Using Pairwise Secrets Constructed from Partial Secrets | |
| US20240028418A1 (en) | Cross-cloud resource mobility optimization | |
| CN114936246B (en) | A Redis data management method, device, equipment, storage medium and product | |
| CN115643070A (en) | Improved system and method for logging into VDI and IDV cloud desktops based on biometric features | |
| CN113934581B (en) | Methods, devices, electronic equipment, and media for obtaining disk failure information in storage systems | |
| CN106210134B (en) | Enterprise cloud service system based on virtual desktop | |
| US10686736B1 (en) | Techniques for data storage system management |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |