CN111447089A

CN111447089A - Terminal asset identification method and apparatus, and computer-readable storage medium

Info

Publication number: CN111447089A
Application number: CN202010211056.7A
Authority: CN
Inventors: 冯钱勇; 张兴彦
Original assignee: Sangfor Technologies Co Ltd
Current assignee: Sangfor Technologies Co Ltd
Priority date: 2020-03-24
Filing date: 2020-03-24
Publication date: 2020-07-24
Anticipated expiration: 2040-03-24
Also published as: CN111447089B

Abstract

The embodiment of the invention discloses a terminal asset identification method and a device thereof, and a computer readable storage medium, wherein the terminal asset identification method comprises the following steps: detecting all online terminals in the target network segment; generating a detection data packet based on a preset protocol list, and sending the detection data packet to all online terminals; and receiving the equipment information returned by all the online terminals in response to the detection data packet, and identifying the target terminal in all the online terminals according to the equipment information.

Description

Terminal asset identification method and apparatus, and computer-readable storage medium

Technical Field

The present invention relates to the field of network technologies, and in particular, to a method and an apparatus for identifying a terminal asset, and a computer-readable storage medium.

Background

With the continuous upgrading of network technology and the continuous improvement of network bandwidth, network video devices such as network cameras and the like gradually become indispensable tools in human life. Generally, in a video network, thousands of network video devices are distributed in different areas, and how to manage the network video devices becomes an important problem. Several management methods for network video devices at present are generally as follows: through manpower management, when the system is installed, the records are counted and reported layer by layer; or the video equipment manufacturers respectively manage the video equipment of the own brands, and the multi-platform management is realized.

However, since the video network includes a large number of network video devices, which are usually produced by different manufacturers and support multiple different protocols, the accuracy of the device information in the entire video network is difficult to be ensured by the existing terminal asset identification method, and thus the device information cannot be updated immediately, which makes the management difficult and the management flow complicated.

Disclosure of Invention

In order to solve the above technical problems, embodiments of the present invention are expected to provide a method and an apparatus for identifying a terminal asset, and a computer-readable storage medium, which can improve accuracy and precision of device information, and implement instant update of the device information, thereby reducing management difficulty and simplifying management procedures.

In order to achieve the above purpose, the technical solution of the embodiment of the present invention is realized as follows:

in a first aspect, an embodiment of the present invention provides a terminal asset identification method, where the method includes:

detecting all online terminals in the target network segment;

generating a detection data packet based on a preset protocol list, and sending the detection data packet to the online terminal;

and receiving the equipment information returned by the online terminal in response to the detection data packet, and identifying a target terminal in all online terminals according to the equipment information.

In a second aspect, an embodiment of the present invention provides a terminal asset identification apparatus, where the terminal asset identification apparatus includes: a detection unit, a generation unit, a sending unit, a receiving unit and an identification unit,

the detection unit is used for detecting all online terminals in the target network segment;

the generating unit is used for generating a detection data packet based on a preset protocol list;

the sending unit is used for sending the detection data packet to all the online terminals;

the receiving unit is configured to receive device information returned by all the online terminals in response to the probe packet;

and the identification unit is used for identifying a target terminal from all the online terminals according to the equipment information.

In a third aspect, the present invention provides a terminal asset identification device, which includes a processor, a memory storing executable instructions of the processor, a communication interface, and a bus for connecting the processor, the memory, and the communication interface, wherein when the instructions are executed by the processor, the terminal asset identification device implements the terminal asset identification method as described above.

In a fourth aspect, an embodiment of the present invention provides a computer-readable storage medium, on which a program is stored, and the program is applied to a terminal asset identification device, and when the program is executed by a processor, the program implements the terminal asset identification method as described above.

The terminal asset identification device detects all online terminals in a target network segment; generating a detection data packet based on a preset protocol list, and sending the detection data packet to all online terminals; and receiving the equipment information returned by all the online terminals in response to the detection data packet, and identifying the target terminal in all the online terminals according to the equipment information. Therefore, in the embodiment of the application, the terminal asset identification device can determine all online terminals in the video network in the target network segment range, then generate and send the detection data packet based on the preset protocol list so as to obtain the device data of the online terminals, and finally determine the target terminal based on the device information so as to manage the target terminal. It can be understood that, in the present application, the detection data packet for obtaining the device data is generated based on the preset protocol list formed by multiple protocols, so that accurate management of multiple terminals supporting different protocols and from different manufacturers can be realized, and further, accuracy and correctness of the device information can be improved, and immediate update of the device information is realized, thereby reducing the management difficulty and simplifying the management process.

Drawings

FIG. 1 is a schematic diagram of a video network;

FIG. 2 is a first flowchart illustrating an implementation of a method for identifying a terminal asset;

FIG. 3 is a schematic diagram of a second implementation flow of the terminal asset identification method;

FIG. 4 is a third schematic flow chart of the implementation of the terminal asset identification method;

FIG. 5 is a fourth schematic flow chart illustrating an implementation of the terminal asset identification method;

FIG. 6 is a schematic diagram of a system for terminal management by a terminal asset identification device;

FIG. 7 is a schematic diagram of a first structural component of the terminal asset identification device;

fig. 8 is a schematic diagram of a composition structure of the terminal asset identification device.

Detailed Description

The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application. It is to be understood that the specific embodiments described herein are merely illustrative of the relevant application and are not limiting of the application. It should be noted that, for the convenience of description, only the parts related to the related applications are shown in the drawings.

With the continuous upgrade of network technology and the continuous increase of network bandwidth, the internet protocol CAMERA (IP CAMERA, IPC) is also becoming an indispensable tool in human life. The network camera is a new generation camera which combines the traditional camera and the network technology, is provided with a network output interface and is generated by accessing a local area network. That is, the webcam can transmit the image to the other end of the earth through the network, and the remote browser (such as Microsoft IE or Netscape) can monitor the image without any special software.

The network camera is a digitalized device based on network transmission, is generally formed by combining a network coding module and an analog camera, and specifically comprises a lens, an image sensor, a sound sensor, an A/D converter, an image controller, a sound controller, a network server, an external alarm, a control interface and the like.

The network coding module of the network camera codes and compresses the analog video signal collected by the analog camera into a digital signal, so that the network camera can be directly accessed to network switching and routing equipment. The network camera is internally provided with an embedded chip and adopts an embedded real-time operating system.

Just because the network camera is a digital video device integrating the functions of a video server and the camera, the network camera can be directly connected with the Ethernet (wired or wireless) through the digital camera and the recording device with built-in Web service, so that a user can watch and listen to videos and sounds transmitted by the network camera through a standard Web browser. The network camera is widely applied to the fields of public security systems, traffic systems, industrial control and the like.

A Network Video Recorder (NVR) is a store-and-forward part of a Network Video monitoring system, and the NVR cooperates with a Video encoder or a Network camera to complete Video recording, storing and forwarding functions of videos. Specifically, with the development of network technology, the demand for storing Video data through a network is increasing, and a monitoring system with a Digital Video Recorder (DVR) as a core is further developed into an NVR system with a network function. The core function of NVR is the storage and forwarding of video streams. Compared with the DVR, the NVR has single function, does not have analog-to-digital conversion and coding functions and cannot work independently, and usually cooperates with the IPC to complete the video recording, storing and forwarding functions of the video.

Generally, in an internal network of a video network formed by a network camera IPC and a network video recorder NVR, thousands of network video devices are often distributed in different areas, fig. 1 is a schematic diagram of the video network, as shown in fig. 1, in one video network, a plurality of sub-video networks are often arranged below a data center, and specifically, the data center manages and controls a plurality of network video devices, such as IPC1, IPC2 and NVR, through a core switch and a convergence switch. It is because network video devices are distributed in different areas, and thus there is a great difficulty in managing, controlling and maintaining the video network. In particular, the difficulty of maintenance is mainly concentrated on the following aspects:

1. how to quickly discover thousands of IPCs throughout a video network;

2. how to ensure that information is updated in time after a certain IPC is damaged and updated;

3. how to ensure the correctness of IPC fingerprint information;

4. how to quickly know the real-time state of a certain IPC;

5. how to report an alarm in time after the IPC is illegally replaced.

Several management methods for video devices at present stage generally have the following modes: through manpower management, when the system is installed, the records are counted and reported layer by layer; or, IPC manufacturers respectively manage own brand IPC and manage multiple platforms.

However, since the video network includes a large number of network video devices, which are usually manufactured by different manufacturers and support multiple different protocols, it is difficult for the existing management method of the network video devices to ensure the correctness of the device information in the entire video network; and the damage of the equipment is difficult to find and update information in time; when the video network has abnormality, the response is slow, so that the network video equipment is easy to be invaded; the reason is that the video network has network video devices of a plurality of manufacturers and does not have a uniform management platform, so that the management is extremely complicated.

In order to overcome the above defects, in the embodiment of the present application, the terminal asset identification device may determine all online terminals in the video network in the target network segment range, then generate and send a probe packet based on a preset protocol list to obtain device data of the online terminals, and finally determine the target terminal based on the device information to manage the target terminal. It can be understood that, in the present application, the detection data packet for obtaining the device data is generated based on the preset protocol list formed by multiple protocols, so that accurate management of multiple terminals supporting different protocols and from different manufacturers can be realized, and further, accuracy and correctness of the device information can be improved, and immediate update of the device information is realized, thereby reducing the management difficulty and simplifying the management process.

The technical solution in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention.

Example one

An embodiment of the present invention provides a method for identifying a terminal asset, fig. 2 is a schematic diagram illustrating an implementation flow of the method for identifying a terminal asset, and as shown in fig. 2, in the embodiment of the present invention, a method for identifying a terminal asset by a terminal asset identification device may include the following steps:

step 101, detecting all online terminals in a target network segment.

In the embodiment of the application, the terminal asset identification device performs detection processing first, so that all online terminals in a target network segment can be determined.

Specifically, in the present application, the terminal asset identifying device may first obtain a target network segment in the video network, and then may perform parallel probing processing according to the target network segment, so as to determine an online terminal in the target network segment of the video network.

It should be noted that, in the embodiment of the present application, a plurality of terminals may be disposed in the video network, and accordingly, each terminal corresponds to an address, so that all network addresses corresponding to all terminals in the video network may form a network address range corresponding to the video network.

It is understood that in the embodiments of the present application, the terminal in the video network may include a network video device and/or a network video recorder. That is, the terminal may be a network video device, and the terminal may also be a network video recorder.

Further, in the embodiment of the present application, the target network segment belongs to a network address range corresponding to the video network. Specifically, the target network segment may be a network address in a range of network addresses corresponding to the video network, or may be a network address range corresponding to the entire video network.

It should be noted that, in the embodiments of the present application, the target network segment may be expressed in various forms. In particular, the target network segment may be expressed in a range format, such as "10.154.184.0-10.154.184.255"; it may also be expressed in the form of a subnet, such as 10.154.184.0/255.255.255.0.

It should be noted that, in the embodiment of the present application, when the terminal asset identification device acquires all online terminals in the target network segment, it may use nmap (network mapper) to perform Internet Protocol (IP) survival detection of the terminal.

The Nmap is a network connection end scanning software used for scanning the open network connection end of the online computer. Determines which services are running on which connections and infers which operating system the computer is running (this is also known as finger printing). It is one of the necessary software for network administrators and to evaluate network system security.

As most tools used for network security, Nmap is also a popular tool for hackers and hackers (also called script kiddies). The system administrator may use Nmap to probe unauthorized servers in the work environment, but hackers may use Nmap to gather network settings of the target computer and plan the method of attack.

Nmap usually employs a secret approach to avoid monitoring of intrusion detection systems and does not affect the daily operation of target systems as much as possible.

The basic functions of Nmap are three, that is, detecting whether a group of hosts is online, scanning host ports, sniffing network services provided, and inferring operating systems used by the hosts, Nmap can be used to scan L AN with only two nodes, up to networks with more than 500 nodes, Nmap also allows users to customize scanning skills.

In the embodiment of the present application, when the terminal asset identification device acquires all online terminals, the detection processing may be performed in a parallel manner in order to increase the scanning speed. Illustratively, the terminal asset identification device can select maximum 4096 IPs each time and simultaneously transmit data packets for detecting the survival of the host, thereby greatly improving the discovery speed of all online terminals of a multi-terminal video network.

And 102, generating a detection data packet based on a preset protocol list, and sending the detection data packet to all online terminals.

In the embodiment of the application, after the terminal asset identification device performs parallel detection processing according to a target network segment and determines all online terminals in the target network segment, a detection data packet can be generated based on a preset protocol list, and then the detection data packet can be sent to each online terminal in parallel.

Further, in the embodiment of the present application, after determining all online terminals in the target network segment in the video network, the terminal asset identification device may further send the probe packet to all online terminals, so that the protocol type of each online terminal may be further determined.

It is understood that, in the embodiment of the present application, the preset protocol list may include at least one probing protocol, and further, the terminal asset identification device may update the preset protocol list in real time. Specifically, the terminal asset identification device may receive a new probing protocol and update the preset protocol list in real time according to the new probing protocol.

It should be noted that, in the embodiment of the present application, after all online terminals are obtained, the terminal asset identification apparatus may continue to use the Nse engine system of Nmap to send probe packets to the live IPs of the online terminals in parallel. In particular, although the Nmap embedded service is powerful enough for version detection, in some cases, many ethical interactions are required to detect the information of the server, and at this time, Nse plug-ins are written to implement this function. Nse plug-in can accomplish functions such as network discovery, complex version detection, vulnerability detection, simple vulnerability exploitation, etc., Nse script puts some necessary detection flows into the Nmap scanning task by using the scanning parameter "- - -script" of Nmap, thus realizing the simplification of the scanning task.

Further, in the embodiment of the present application, the probe packet sent by the terminal asset identification device to the online terminal is generated based on a preset protocol list. At least one protocol can be stored in the preset protocol list, for example, due to the diversity of the IPC protocol, the terminal asset identification device can use the protocols such as the ovif and the web server to detect based on the preset protocol list.

The ONVIF specification aims to realize a network video framework protocol, so that network video products (including video recording front ends, video recording equipment and the like) produced by different manufacturers are completely communicated, interfaces defined by a device management and control part in the ONVIF specification are provided in the form of Web Services, equipment serves as a service provider and serves as a server, the ONVIF specification covers complete definitions of XM L and WSD L, each terminal equipment supporting the ONVIF specification needs to provide Web service corresponding to RTSP functions, the data interaction between the server and a client side adopts a SOAP protocol, and other parts in the ONVIF, such as audio and video streams, are performed through RTP/RTP.

Web Service is a Service based on XM L and HTTPS, and the communication protocol is mainly based on SOAP, a Service end and a client to transmit SOAP messages conforming to XM L to realize the request and response of the Service.

It can be understood that, in the embodiment of the present application, the terminal asset identification device may send the packet by using a multi-protocol program to the live IP of each online terminal based on the detection data packet generated by the preset protocol list, so as to ensure that the speed of detecting each IP is as fast as possible.

Further, in the embodiment of the present application, the terminal asset identification device may update the preset protocol list in real time before generating the probe packet based on the preset protocol list. That is to say, the preset protocol list can be extensible and updated, once a new IPC protocol appears, the terminal asset identification device can add the new IPC protocol into the preset protocol list at any time, so that the discovery capability of the IPC can be improved.

And 103, receiving the equipment information returned by all the online terminals in response to the detection data packet, and identifying the target terminal in all the online terminals according to the equipment information.

In the embodiment of the application, after the terminal asset identification device generates the probe data packet based on the preset protocol list and sends the probe data packet to all the online terminals in parallel, the terminal asset identification device may receive the device information, which is returned by each online terminal and is used for responding to the probe data packet, so as to identify the target terminal according to the device information, where the target terminal may be at least one terminal among all the online terminals.

It is understood that, in the embodiment of the present application, the device information received by the terminal asset identification device corresponds to an online terminal, and specifically, one online terminal may correspond to one set of device information.

Further, in the embodiment of the present application, one online terminal may support multiple protocols, so that the device information returned by the online terminal for responding to the probe packet may include multiple information corresponding to different protocols. For example, the device information may be different IPC information discovered by different IPC protocols.

It should be noted that, in the embodiment of the present application, at least one probe protocol in the preset protocol list corresponds to at least one protocol priority, that is, each probe protocol in the preset protocol list corresponds to a corresponding priority.

Further, in the embodiment of the present application, after the device information received by the terminal asset identification apparatus, when identifying a target terminal among all online terminals according to the device information, for each group of device information, the protocol information in the device information may be identified first, and then whether a protocol priority corresponding to the protocol information meets a preset priority is determined; if so, the terminal asset identification device can judge the online terminal corresponding to the equipment information as a target terminal; on the contrary, if not, the terminal asset identifying device may determine that the online terminal corresponding to the device information is not the target terminal.

That is to say, in the embodiment of the present application, the device information returned by all online terminals received by the terminal asset identification apparatus may include different IPC information discovered by different IPC protocols, and in order to ensure the correctness of data, the terminal asset identification apparatus may select correct and valid IPC information from the different IPC information by using the priority of the IPC protocol corresponding to the IPC protocol information, so as to determine the target terminal from all online terminals.

Specifically, the terminal asset identification device may determine, first, an IPC protocol corresponding to the IPC information in the device information returned by each online terminal, then determine, respectively, a protocol priority of each IPC protocol, compare, respectively, each protocol priority with a preset priority to obtain a comparison result, and finally determine, based on the comparison result, whether the online terminal corresponding to the protocol priority is the target terminal. For example, if the protocol priority of the IPC protocol corresponding to the IPC information in the device information returned by one online terminal is less than the preset priority, the terminal asset identification device may consider that the online terminal is not the target terminal; if the protocol priority of the IPC protocol corresponding to the IPC information in the equipment information returned by the online terminal is greater than or equal to the preset priority, the terminal asset identification device can consider the online terminal as a target terminal.

In the terminal asset identification method provided by the embodiment of the application, a terminal asset identification device detects all online terminals in a target network segment; generating a detection data packet based on a preset protocol list, and sending the detection data packet to all online terminals; and receiving the equipment information returned by all the online terminals in response to the detection data packet, and identifying the target terminal in all the online terminals according to the equipment information. Therefore, in the embodiment of the application, the terminal asset identification device can determine all online terminals in the video network in the target network segment range, then generate and send the detection data packet based on the preset protocol list so as to obtain the device data of the online terminals, and finally determine the target terminal based on the device information so as to manage the target terminal. It can be understood that, in the present application, the detection data packet for obtaining the device data is generated based on the preset protocol list formed by multiple protocols, so that accurate management of multiple terminals supporting different protocols and from different manufacturers can be realized, and further, accuracy and correctness of the device information can be improved, and immediate update of the device information is realized, thereby reducing the management difficulty and simplifying the management process.

Example two

It can be understood that, in the embodiment of the present application, when the terminal asset identification device acquires the target network segment in the video network, the management instruction corresponding to the terminal asset may be received on the management interface, and then the target network segment may be acquired through the management instruction. Specifically, the management instruction may carry a target network segment required for probing.

For example, in an embodiment of the present application, the management interface may be a web interface, and through an input operation or a selection operation of a user on the web interface, the terminal asset identification device may obtain a management instruction corresponding to the terminal asset, so as to obtain the target network segment according to the management instruction.

Further, in the embodiment of the application, after the terminal asset identification device acquires the target network segment in the video network, the terminal in the video network can be subjected to parallel detection processing according to the target network segment, so that all online terminals in the target network segment can be determined.

Further, in an embodiment of the present application, fig. 3 is a schematic diagram illustrating an implementation flow of a terminal asset identification method, where as shown in fig. 3, the method for determining all online terminals in a target network segment by a terminal asset identification device performing parallel probing processing according to the target network segment may include the following steps:

step 201, scanning the relative position of the server and the target network segment to obtain a scanning result.

And step 202, if the scanning result is the local area network, adopting ARP-Ping to perform detection processing to obtain all online terminals.

And 203, if the scanning result is a non-local area network, detecting by using the custom Ping to obtain all online terminals.

In the embodiment of the application, after the terminal asset identification device acquires the target network segment, the terminal asset identification device may scan the relative position between the server and the target network segment by using the target network segment, so as to obtain a scanning result, and then further select different detection modes for detection processing according to the scanning result.

Further, in the embodiment of the present application, if the number of network layers of the video network in the target network segment is 2, that is, the scanning result is a local area network, the terminal asset identification apparatus may directly use an Address Resolution Protocol (ARP) Protocol to perform exploration processing, so that all online terminals may be obtained.

It is understood that in the embodiment of the present application, in the lan, what is actually transmitted in the network is a "frame" in which a Media Access Control Address (MAC) Address of a target host is located. In ethernet, a host needs to communicate directly with another host, and must know the MAC address of the target host, which is obtained by ARP. ARP is the process by which a host translates a target IP address into a target MAC address before sending a frame. The basic function of ARP is to query the MAC address of the target device via the IP address of the target device to ensure smooth communication.

Further, in the embodiment of the present application, if the number of network layers of the video network in the target network segment is 3, that is, the scanning result is a non-local area network, the terminal asset identification apparatus may use the multiprogramming customization Ping to perform exploration processing, so that all online terminals may be obtained.

It is understood that in the present application, Ping is an internet Packet explorer (Packet internet groper) program for testing the amount of network connections. Ping is a service command working in the application layer of the TCP/IP network architecture, and mainly sends an ICMP request message to a specific destination host to test whether the destination can reach and know its related status. Furthermore, Ping may be configured to determine whether the local host can successfully exchange (send and receive) a packet with another host, and then, according to the returned information, may infer whether the TCP/IP parameters are set correctly, whether the operation is normal, whether the network is unobstructed, and the like.

The Ping command may do the following:

1. the connection to one or more remote computers is verified by sending ICMP echo packets to the computers and listening for echo reply packets.

2. Each transmitted packet waits for a maximum of one second.

3. The number of transmitted and received data packets is printed.

It should be noted that the success of Ping does not necessarily mean that the TCP/IP configuration is correct, and it is possible to perform a large number of packet exchanges between the local host and the remote host to ensure the correctness of the TCP/IP configuration. If the Ping is successfully executed and the network is still unavailable, the problem is likely to occur in terms of software configuration of the network system, and the successful Ping only ensures that a connected physical path exists between the current host and the destination host.

In the embodiment of the present application, further, after the terminal asset identification device identifies the target terminal among all the online terminals according to the device information, that is, after step 103, the method for the terminal asset identification device to identify the terminal asset may include the following steps:

and step 104, if the target equipment information of the target terminal does not exist in the pre-stored equipment list, storing the target equipment information to a list to be checked.

In the embodiment of the application, after receiving the device information returned by the online terminal and used for responding to the detection data packet and identifying the target terminal in all the online terminals according to the device information, the terminal asset identification device may determine whether the target device information corresponding to the target terminal exists in the pre-stored device list, and if the target device information of the target terminal does not exist in the pre-stored device list, the terminal asset identification device may store the target device information in the list to be audited.

It can be understood that, in the embodiment of the present application, after the terminal asset identifying apparatus identifies the target terminal in all the online terminals according to the device information, the target device information of the target terminal may be stored in the cache region first, and then the target device information may be read from the cache region according to a preset time interval, and whether the target device information exists in the pre-stored device list is determined.

It should be noted that, in the embodiment of the present application, after the terminal asset identification apparatus determines whether the target device information exists in the pre-stored device list, if the target device information exists in the pre-stored device list, the terminal asset identification apparatus may continue to determine whether the target device information exists in the to-be-audited list.

Further, in the embodiment of the present application, after the terminal asset identification device determines whether the target device information exists in the to-be-checked list, if the target device information exists in the to-be-checked list, the terminal asset identification device may continue to determine whether the target device information changes.

Further, in the application, if the target device information changes, the terminal asset identification device may update the list to be audited according to the changed device information. That is, if the target device information of the target terminal is changed, the update process of the to-be-audited list is required.

It can be understood that, in the embodiment of the present application, after the terminal asset identifying apparatus determines whether the target device information exists in the pre-stored device list, if the target device information exists in the pre-stored device list, the terminal asset identifying apparatus needs to further determine whether the target device information exists in the checked list. Specifically, if the target device information does not exist in the checked list, the terminal asset identification device may store the target device information in the list to be checked; if the target device information exists in the checked list, the terminal asset identification device may continue to determine whether the target device information has a change, and further, if the target device information has a change, the terminal asset identification device needs to prompt the change, so the terminal asset identification device may send a prompt message containing the change of the target device information.

It can be understood that, in the embodiment of the present application, after the terminal asset identification apparatus determines whether the target device information exists in the to-be-audited list, if the target device information does not exist in the to-be-audited list, the terminal asset identification apparatus needs to further determine whether the target device information exists in the audited list. Specifically, if the target device information does not exist in the checked list, the terminal asset identification device may store the target device information in the list to be checked; if the target device information exists in the checked list, the terminal asset identification device may continue to determine whether the target device information has a change, and further, if the target device information has a change, the terminal asset identification device needs to prompt the change, so the terminal asset identification device may send a prompt message containing the change of the target device information.

Further, in an embodiment of the present application, the terminal asset identification apparatus may perform display processing on one or more of target device information, prompt information, a pre-stored device list, an approved list, and a to-be-approved list of the target terminal. That is, in the present application, the terminal asset identification apparatus may visually display target device information, and/or prompt information, and/or a pre-stored device list, and/or an approved list, and/or a to-be-approved list.

According to the terminal asset identification method provided by the embodiment of the application, the terminal asset identification device can determine all online terminals in a video network in a target network segment range, then generate and send a detection data packet based on a preset protocol list so as to obtain equipment data of the online terminals, and finally determine the target terminal based on equipment information so as to manage the target terminal. It can be understood that, in the present application, the detection data packet for obtaining the device data is generated based on the preset protocol list formed by multiple protocols, so that accurate management of multiple terminals supporting different protocols and from different manufacturers can be realized, and further, accuracy and correctness of the device information can be improved, and immediate update of the device information is realized, thereby reducing the management difficulty and simplifying the management process.

EXAMPLE III

In the embodiment of the application, further, after receiving all the device information returned by all the online terminals, the terminal asset identification apparatus may further select each set of device information, so that each piece of device data corresponding to each online terminal may be generated.

It can be understood that, in the embodiment of the present application, just as one online terminal may support multiple protocols, for multiple information in the returned device information, the terminal asset identification apparatus needs to select and confirm valid information therein, so as to obtain corresponding device data.

Further, in the embodiment of the present application, when the terminal asset identification apparatus generates device data corresponding to the online terminal according to the device information, the device information may be selected and processed by using a preset priority list, so that the corresponding device data may be obtained.

It should be noted that, in the embodiment of the present application, before the terminal asset identification apparatus generates the device data corresponding to the online terminal according to the device information, a priority list corresponding to the preset protocol list may be established first. That is, in the embodiment of the present application, the priority list is established based on the preset protocol list, and further, the priority list is used to determine the priority of all protocols in the preset protocol list.

It can be understood that, in the embodiment of the present application, based on the priority list, the terminal asset identification apparatus may determine which information of each set of device information corresponding to each online terminal is valid and correct data, so that corresponding device data may be obtained. For example, the terminal asset identification apparatus receives the device information 1 returned by the IPC1, where the device information 1 includes IPC information corresponding to different IPC protocols, and then the terminal asset identification apparatus may perform priority ranking on all protocols supported by the IPC1 based on the priority list, so as to select valid and correct data from the device information 1 according to the priority order of the protocols, that is, obtain the device data 1 corresponding to the IPC 1.

Further, in the embodiment of the present application, after the terminal asset identification apparatus generates the device data corresponding to the online terminal according to the device information, the pre-stored database may be updated by using the device data.

In the embodiment of the present application, different device data corresponding to different video devices are stored in the pre-stored database, for example, device data 1 corresponding to IPC1, device data 2 corresponding to NVR2, device data 3 corresponding to IPC3, device data 4 corresponding to IPC4, and device data 5 corresponding to NVR5 are stored in the pre-stored database.

In the embodiment of the present application, further, after receiving the device information returned by all online terminals in response to the probe packet, the terminal asset identification apparatus may further determine how to manage the online video by using the pre-stored device list, that is, determine the corresponding management mode of the online terminal.

Further, in the embodiment of the present application, after the terminal asset identification apparatus acquires all the online terminals and determines the device data corresponding to the online terminals, it may determine whether the online terminals belong to the preset device list by using a preset device list stored in advance, so as to further determine how to manage and control the online terminals.

It should be noted that, in an embodiment of the present application, fig. 4 is a schematic view of an implementation flow of a terminal asset identification method, and as shown in fig. 4, a method for determining a management mode corresponding to an online terminal according to a pre-stored device list and device data by a terminal asset identification device may include the following steps:

step 301, if no online terminal exists in the pre-stored device list, determining that the management mode is an adding process.

Step 302, if the online terminal exists in the pre-stored device list, determining a management mode according to the device data.

In the embodiment of the application, the terminal asset identification device may load the pre-stored device list, traverse the pre-stored device list, determine whether the pre-stored device list has the online terminal, and then further determine the corresponding management mode.

Further, in the embodiment of the present application, after traversing the pre-stored device list, if the terminal asset identifying apparatus does not include the online terminal, that is, the online terminal does not exist in the pre-stored device list, the terminal asset identifying apparatus may determine that the management mode corresponding to the online terminal is the adding process.

It should be noted that, in the embodiment of the present application, after traversing the pre-stored device list, if the terminal asset identification apparatus includes an online terminal, that is, the online terminal exists in the pre-stored device list, the terminal asset identification apparatus may further determine the management mode according to the device data corresponding to the online terminal.

It can be understood that, in the embodiment of the present application, when the terminal asset identification apparatus determines the management mode, the terminal asset identification apparatus may aggregate the raw data and the audit state corresponding to the online terminal to further determine how to manage the online terminal.

That is to say, in the embodiment of the present application, before determining the management mode according to the device data, the terminal asset identification apparatus may first obtain the original data and the audit state corresponding to the online terminal.

It is understood that, in the embodiment of the present application, the raw data of the online terminal may be initial data of the online terminal stored in a pre-stored database, that is, data that is not updated by the device data.

It should be noted that, in the embodiment of the present application, the audit state of the online terminal may be an audit completion process and an audit incompletion process. That is, in the present application, the audit state may represent whether the online terminal is audited by a manager.

Further, in an embodiment of the present application, fig. 5 is a schematic diagram illustrating an implementation flow of a terminal asset identification method in a fourth embodiment, and as shown in fig. 5, a method for determining a management mode by a terminal asset identification device according to device data may include the following steps:

step 302a, if the audit state is that the audit processing is not completed and the device data is different from the original data, determining that the management mode is the update processing.

And step 302b, if the audit state is that the audit processing is finished and the equipment data is different from the original data, determining that the management mode is alarm processing.

In the embodiment of the application, after the terminal asset identification device obtains the initial data and the audit state corresponding to the online terminal, the audit state can be used to determine whether the available video has been audited or not, and then the original data and the device data can be compared, so that the management mode of the online terminal is further determined according to the audit state and the comparison result.

It should be noted that, in the embodiment of the present application, if the online terminal is not checked, that is, the checking state is an incomplete checking process, and the data of the online terminal changes, that is, the device data is different from the original data, the terminal asset identification apparatus may determine that the corresponding management mode is an update process.

Further, in the embodiment of the present application, if the online terminal has been audited, that is, the audit state is that the audit process is completed, and the data of the online terminal changes, that is, the device data is different from the original data, the terminal asset identification apparatus may determine that the corresponding management mode is the alarm process.

Therefore, in the embodiment of the application, the terminal asset identification device may load the stored pre-stored device list, then traverse each online terminal based on the pre-stored device list, and if the pre-stored device list does not include an online terminal, it may be determined that the online terminal needs to be added to the pre-stored device list, so that it is determined that the control mode corresponding to the online terminal is the adding process. Further, if the pre-stored device list includes a certain online terminal, it may be determined whether the online terminal is in an un-verified group, that is, it is determined whether the online terminal has completed the verification processing, if the verification processing is not completed, it may be determined whether the data has changed, that is, the original data of the online terminal and the device data are compared, if the data has changed, it may be determined that the terminal asset identification device needs to update the online terminal, and thus it is determined that the management mode of the online terminal is the update processing; if the auditing process is finished, judging whether the data changes or not, namely comparing the original data of the online terminal with the equipment data, if so, determining that the online terminal sounds illegal change, and the terminal asset identification device needs to give an alarm, thereby determining that the management mode of the online terminal is alarm processing.

In the embodiment of the application, after the terminal asset identification device determines the management mode corresponding to the online terminal according to the pre-stored device list and the device data, the online terminal in the video network can be managed according to the management mode.

Further, in the embodiment of the present application, the management modes implemented by the terminal asset recognition device are different for different management modes.

It can be understood that, in the embodiment of the present application, when the management mode is the adding process, the terminal asset identification apparatus may add the online terminal to the pre-stored device list when managing the online terminal according to the management mode, and then set the audit state corresponding to the online terminal as the incomplete audit process. For example, the terminal asset identification device may add the online terminal to an unchecked group in the list of pre-stored devices, and wait for the administrator to check.

It is to be understood that, in the embodiment of the present application, when the management mode is the update process, the terminal asset recognition apparatus may update the original data with the device data when managing the online terminal according to the management mode. That is, if the terminal asset identifying apparatus determines that the online terminal is already in the non-audit group in the pre-stored device list, it may be further determined whether there is a change in the data of the online terminal, and if so, the data of the online terminal is updated.

It can be understood that, in the embodiment of the present application, when the management mode is alarm processing, the terminal asset identification device may generate and display alarm information corresponding to the online terminal when managing the online terminal according to the management mode. That is, if the terminal asset identification apparatus determines that the online terminal is already in the checked group in the pre-stored device list, it may be further determined whether the data of the online terminal changes, and if so, an alarm message may be generated to remind the administrator to deal with the risk.

In the embodiment of the present application, further, when the terminal asset identification device manages the terminal, the discovery process of the terminal may be separated from the loading process of the terminal, specifically, the method proposed in the above steps 101 to 103 is the discovery process of the terminal, and after the terminal asset identification device completes the discovery process of the video device, the terminal asset identification device may wait for the discovery task of the next period; accordingly, the method provided in this embodiment is a loading process of the terminal.

It should be noted that, in the embodiment of the present application, the loading process of the terminal is run in a timing manner, and the start timing and the end timing of the loading process of the terminal may be preset.

It is understood that, in the embodiment of the present application, the terminal asset identification device may wait for the next wake-up after ending the loading process of the terminal.

In the embodiment of the application, further, different protocol types are stored in the preset protocol list, so that the terminal asset identification device can unify the discovery methods of different manufacturer terminals, and the preset protocol list can be expanded, so that the addition of a new protocol is very convenient; the terminal asset identification device performs parallel detection processing according to the target network segment, so that asset scanning can be rapidly performed on the appointed IP range of the video network; the terminal asset identification device establishes the priority list corresponding to the preset protocol list and obtains the equipment data based on the priority list, so that the fingerprint information of the terminal can be identified more accurately. Furthermore, the network video identification management method can quickly generate abnormal change alarm of the equipment, greatly lightens the work flow of an administrator, and very conveniently determines the real-time state of any terminal in the video network.

Example four

Based on the first embodiment, in another embodiment of the present application, fig. 6 is a schematic diagram of a system for performing terminal management by a terminal asset identification device, and as shown in fig. 6, when the terminal asset identification device manages a terminal, the system may mainly include a discovery process of the terminal and a loading process of the terminal.

Further, in the embodiment of the present application, the discovery process of the terminal mainly includes the following steps:

step 401, a target network segment is obtained.

The terminal asset identification device extracts a target network segment of a video network which a user needs to process asset discovery from a management interface, and the expression of the target network segment has various forms, such as a range representation method: 10.154.184.0-10.154.184.255, or, a sub-net list representation: 10.154.184.0/255.255.255.0, etc.

Step 402, Nmap scanning.

Step 403, judging whether the local area network is the local area network, if so, executing step 404, otherwise, executing step 405.

And step 404, performing exploration processing by using ARP-Ping to determine all online terminals.

Step 405, adopting custom Ping to explore and determine all online terminals.

The terminal asset identification device uses Nmap to detect IP survival, in order to accelerate scanning speed, a parallel mode is adopted for detection, if the network layer number of the video network in a target network segment is 2, namely a local area network, the terminal asset identification device can directly adopt ARP to perform exploration processing, if the network layer number of the video network in the target network segment is 3, namely a non-local area network, the terminal asset identification device can use multi-protocol self-defined Ping to perform exploration processing, and the discovery speed of all online terminals in the multi-device video network is greatly improved.

And 406, generating a detection data packet based on the preset protocol list.

Step 407, sending a probe packet.

The terminal asset identification device may generate the probe packet based on a preset protocol list after obtaining all online terminals. Specifically, the terminal asset identification means may send probe packets in parallel to the surviving IP using the Nmap's Nse engine system. The method mainly uses protocols such as Onvif and web server to detect, and each surviving IP adopts multi-protocol to send packets due to the diversity of the protocols, so that the detection speed of each IP is guaranteed to be as fast as possible.

Furthermore, as the preset protocol list is expandable, if a new protocol is discovered in the later period, the new protocol can be conveniently put into the preset protocol list so as to improve the discovery capability of the video equipment.

And step 408, receiving the equipment information and determining the target terminal.

The terminal asset identification device obtains the device information discovered by different protocols after receiving the device information which is returned by all the online terminals and used for responding to the detection data packet, and in order to ensure the correctness of the data, a priority mode can be adopted to ensure that effective device information is selected from which protocol. Specifically, a priority list corresponding to a preset protocol list may be established first, that is, a priority level is defined for each protocol, and then a target terminal is determined from all online terminals based on the priority list.

And step 409, caching the target equipment data of the target terminal.

The terminal asset identification device can perform caching processing on target device data of the target terminal, and after the caching of the target device data is finished, a discovery process of the target terminal is finished, and the terminal asset identification device can wait for the next discovery process.

Further, in an embodiment of the present application, a loading process of a target terminal mainly includes the following steps:

and step 4010, loading a pre-stored device list.

Step 4011, traversing the target terminal, and determining whether the target terminal exists in the pre-stored device list, if not, executing step 4012, otherwise, executing step 4013.

And 4012, executing addition processing, and storing the target equipment information to a list to be checked.

Step 4013, judging whether the target equipment information exists in the list to be audited, if yes, executing step 4014, otherwise, executing step 4015.

And 4014, if the target equipment information changes, executing an updating process, and updating the list to be checked according to the changed equipment information.

Step 4015, judge whether there is target device information in the checked list, if yes, execute step 4016, otherwise execute step 4017.

Step 4016, if the target device information changes, sending a prompt message containing the change of the target device information.

And 4017, storing the target equipment information to a list to be audited.

In the loading process of the terminal, the terminal asset identification apparatus may load the pre-stored device list that already exists, and then traverse the target terminal obtained in the discovery process.

If the target device information of the target terminal does not exist in the pre-stored device list, the terminal asset identification device can store the target device information to the list to be audited.

If the target device information exists in the pre-stored device list, the terminal asset identification device can continuously judge whether the target device information exists in the list to be audited.

If the target equipment information exists in the list to be audited, the terminal asset identification device can continuously judge whether the target equipment information changes. If the target equipment information changes, the terminal asset identification device can update the list to be audited according to the changed equipment information.

If the target device information exists in the pre-stored device list, the terminal asset identification device needs to further judge whether the target device information exists in the checked list. If the target equipment information does not exist in the checked list, the terminal asset identification device can store the target equipment information to a list to be checked; if the target equipment information exists in the checked list, the terminal asset identification device can continuously judge whether the target equipment information changes, and further, if the target equipment information changes, the terminal asset identification device needs to prompt the change to remind an administrator to deal with risks.

If the target device information does not exist in the list to be audited, the terminal asset identification device needs to further judge whether the target device information exists in the audited list. Specifically, if the target device information does not exist in the checked list, the terminal asset identification device may store the target device information in the list to be checked; if the target equipment information exists in the checked list, the terminal asset identification device can continuously judge whether the target equipment information changes, and further, if the target equipment information changes, the terminal asset identification device needs to prompt the change, so that the terminal asset identification device can send out prompt information containing the change of the target equipment information to remind an administrator of dealing with risks.

And after the loading process of the target terminal finishes working, the terminal asset identification device waits for awakening next time.

It can be understood that, by the terminal asset identification method proposed in the above steps 401 to 4017, the terminal asset identification apparatus can unify the discovery methods of different video equipment manufacturers, and can discover assets of one video network process more quickly; meanwhile, a protocol module can be dynamically discovered, and an unknown protocol can be conveniently filled, so that the asset identification rate is improved; according to the priority of the protocol, the most correct equipment data can be accurately selected from multiple protocol results; furthermore, through updating, the video equipment which is already checked by the administrator can dynamically generate an equipment change alarm to remind the administrator of dealing with risks in time.

That is, in the present application, the terminal asset identification apparatus can unify asset discovery methods of different manufacturers, so that terminals of all manufacturers are managed using one platform; the asset discovery speed can be increased, and the rapid statistics of the assets of the whole video network can be realized; the online and offline of the equipment can be automatically detected; and generating an alarm and automatically reporting to an administrator when the assets change.

EXAMPLE five

Based on the first to fourth embodiments, in a further embodiment of the present application, fig. 7 is a schematic diagram illustrating a composition structure of a terminal asset identification apparatus, as shown in fig. 7, in an embodiment of the present invention, a terminal asset identification apparatus 10 includes a detecting unit 11, a generating unit 12, a transmitting unit 13, a receiving unit 14, an identifying unit 15, an updating unit 16, a storing unit 17, a determining unit 18, and a displaying unit 19.

The detection unit 11 is configured to detect all online terminals in the target network segment;

the generating unit 12 is configured to generate a probe packet based on a preset protocol list;

the sending unit 13 is configured to send the probe packet to all online terminals;

the receiving unit 14 is configured to receive device information returned by all online terminals in response to the probe packet;

the identifying unit 15 is configured to identify a target terminal among all the online terminals according to the device information.

Further, in the embodiment of the present application, the receiving unit 14 is specifically configured to receive, in a management interface, a management instruction corresponding to a terminal asset before detecting all online terminals in the target network segment; and the management instruction carries the target network segment required by detection.

Further, in an embodiment of the present application, the detecting unit 11 is specifically configured to perform parallel detection processing according to the target network segment, and determine all online terminals in the target network segment.

Further, in the embodiment of the present application, the detecting unit 11 is further specifically configured to scan the relative position between the server and the target network segment to obtain a scanning result; if the scanning result is a local area network, ARP-Ping is adopted to carry out detection processing, and all the online terminals are obtained; and if the scanning result is a non-local area network, detecting by using the custom Ping to obtain all the online terminals.

Further, in an embodiment of the present application, the preset protocol list includes at least one probe protocol, and the receiving unit 14 is further configured to receive a new probe protocol;

the updating unit 16 is configured to update the preset protocol list in real time according to the new probe protocol.

Further, in an embodiment of the present application, the at least one detection protocol in the preset protocol list corresponds to at least one protocol priority, and the identifying unit 15 is specifically configured to identify protocol information in the device information, and determine whether the protocol priority corresponding to the protocol information meets a preset priority; if so, judging that the online terminal corresponding to the equipment information is the target terminal; and if not, judging that the online terminal corresponding to the equipment information is not the target terminal.

Further, in an embodiment of the present application, the storage unit 17 is configured to, after identifying a target terminal in all online terminals according to the device information, store the target device information to a to-be-audited list if the target device information of the target terminal does not exist in a pre-stored device list.

Further, in an embodiment of the present application, the storage unit 17 is further configured to store the target device information to a cache area before storing the target device information to a list to be checked if the target device information of the target terminal does not exist in a pre-stored device list;

the judging unit 18 is configured to read the target device information from the cache region according to a preset time interval, and judge whether the target device information exists in the pre-stored device list.

Further, in an embodiment of the present application, the determining unit 18 is further configured to determine whether the target device information exists in the to-be-audited list if the target device information exists in the pre-stored device list; if the target equipment information exists in the list to be audited, judging whether the target equipment information changes;

further, in an embodiment of the present application, the updating unit 16 is further configured to update the to-be-audited list according to changed device information if the target device information changes.

Further, in an embodiment of the present application, the determining unit 18 is further configured to determine whether the target device information exists in an already checked list if the target device information exists in the pre-stored device list or if the target device information does not exist in the to-be-checked list;

the storage unit 17 is further configured to store the target device information in a list to be checked if the target device information does not exist in the checked list;

the determining unit 18 is further configured to determine whether the target device information changes if the target device information exists in the checked list;

the sending unit 13 is further configured to send a prompt message including the change of the target device information if the change of the target device information exists.

Further, in an embodiment of the present application, the display unit 19 is configured to visually display the target device information and/or the prompt information and/or the pre-stored device list and/or the checked list and/or the to-be-checked list.

Fig. 8 is a schematic diagram of a component structure of a terminal asset identification device, as shown in fig. 8, the terminal asset identification device 10 according to the embodiment of the present application may further include a processor 110, a memory 111 storing executable instructions of the processor 110, and further, the terminal asset identification device 10 may further include a communication interface 112, and a bus 113 for connecting the processor 110, the memory 111, and the communication interface 112.

In embodiments of the present application, Processor 110 may be at least one of an Application Specific Integrated Circuit (ASIC), a Digital Signal Processor (DSP), a Digital Signal Processing management Device (DSPD), a ProgRAMmable logic management Device (P L D), a Field ProgRAMmable Gate Array (FPGA), a Central Processing Unit (CPU), a controller, a microcontroller, and a microprocessor, it being understood that electronics for implementing Processor functions may be other than the Processor, and that embodiments of the present application are not particularly limited, terminal asset identification Device 10 may further include a memory 111, memory 111 may be coupled to Processor 110, wherein memory 111 is configured to store executable program code, the program code including computer operating instructions, memory 111 may include high speed memory, and non-volatile memory, such as at least two disk memories.

In the embodiment of the present application, the bus 113 is used to connect the communication interface 112, the processor 110, and the memory 111 and the intercommunication among these devices.

In an embodiment of the present application, the memory 111 is used for storing instructions and data.

Further, in an embodiment of the present application, the processor 110 is configured to detect all online terminals in the target network segment; generating a detection data packet based on a preset protocol list, and sending the detection data packet to all the online terminals; and receiving the equipment information returned by all the online terminals in response to the detection data packet, and identifying a target terminal in all the online terminals according to the equipment information.

In practical applications, the Memory 111 may be a volatile Memory (volatile Memory), such as a Random-Access Memory (RAM); or a non-volatile Memory (non-volatile Memory), such as a Read-Only Memory (ROM), a flash Memory (flash Memory), a Hard disk (Hard disk Drive, HDD) or a Solid-State Drive (SSD); or a combination of the above types of memories and provides instructions and data to the processor 110.

In addition, each functional module in this embodiment may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware or a form of a software functional module.

Based on the understanding that the technical solution of the present embodiment essentially or a part contributing to the prior art, or all or part of the technical solution, may be embodied in the form of a software product stored in a storage medium, and include several instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) or a processor (processor) to execute all or part of the steps of the method of the present embodiment. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.

The terminal asset identification device provided by the embodiment of the application detects all online terminals in a target network segment; generating a detection data packet based on a preset protocol list, and sending the detection data packet to all online terminals; and receiving the equipment information returned by all the online terminals in response to the detection data packet, and identifying the target terminal in all the online terminals according to the equipment information. Therefore, in the embodiment of the application, the terminal asset identification device can determine all online terminals in the video network in the target network segment range, then generate and send the detection data packet based on the preset protocol list so as to obtain the device data of the online terminals, and finally determine the target terminal based on the device information so as to manage the target terminal. It can be understood that, in the present application, the detection data packet for obtaining the device data is generated based on the preset protocol list formed by multiple protocols, so that accurate management of multiple terminals supporting different protocols and from different manufacturers can be realized, and further, accuracy and correctness of the device information can be improved, and immediate update of the device information is realized, thereby reducing the management difficulty and simplifying the management process.

An embodiment of the present application provides a computer-readable storage medium, on which a program is stored, which when executed by a processor implements the terminal asset identification method as described above.

Specifically, the program instructions corresponding to a terminal asset identification method in the present embodiment may be stored on a storage medium such as an optical disc, a hard disc, a usb disk, or the like, and when the program instructions corresponding to a terminal asset identification method in the storage medium are read or executed by an electronic device, the method includes the following steps:

detecting all online terminals in the target network segment;

generating a detection data packet based on a preset protocol list, and sending the detection data packet to all the online terminals;

and receiving the equipment information returned by all the online terminals in response to the detection data packet, and identifying a target terminal in all the online terminals according to the equipment information.

It will be apparent to those skilled in the art that embodiments of the present application may be provided as a method, display, or computer program product. Accordingly, the present application may take the form of a hardware embodiment, a software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, optical storage, and the like) having computer-usable program code embodied therein.

The present application is described with reference to flowchart illustrations and/or block diagrams of implementations of methods, apparatus (systems) and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart block or blocks and/or flowchart block or blocks.

These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction management means which implement the function specified in the flowchart block or blocks.

These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart block or blocks in the flowchart and/or block diagram block or blocks.

The above description is only a preferred embodiment of the present application, and is not intended to limit the scope of the present application.

Claims

1. A terminal asset identification method, characterized in that the method comprises:

detecting all online terminals in the target network segment;

2. The method of claim 1, wherein before probing all online terminals in the target network segment, the method further comprises:

receiving a management instruction corresponding to the terminal asset on a management interface; and the management instruction carries the target network segment required by detection.

3. The method of claim 1, wherein probing all online terminals in a target network segment comprises:

and performing parallel detection processing according to the target network segment, and determining all online terminals in the target network segment.

4. The method of claim 1, wherein the performing parallel probing according to the target network segment to determine all online terminals in the target network segment comprises:

scanning the relative position of the server and the target network segment to obtain a scanning result;

if the scanning result is a local area network, ARP-Ping is adopted to carry out detection processing, and all the online terminals are obtained;

and if the scanning result is a non-local area network, detecting by using the custom Ping to obtain all the online terminals.

5. The method of claim 1, wherein the predetermined protocol list includes at least one probing protocol, and wherein the method further comprises:

and receiving a new detection protocol, and updating the preset protocol list in real time according to the new detection protocol.

6. The method according to claim 5, wherein the at least one probing protocol in the preset protocol list corresponds to at least one protocol priority, and the identifying a target terminal among the all online terminals according to the device information comprises:

identifying protocol information in the equipment information, and judging whether the protocol priority corresponding to the protocol information meets a preset priority or not;

if so, judging that the online terminal corresponding to the equipment information is the target terminal;

and if not, judging that the online terminal corresponding to the equipment information is not the target terminal.

7. The method according to claim 1, wherein after identifying a target terminal among the all online terminals according to the device information, the method further comprises:

and if the target equipment information of the target terminal does not exist in the pre-stored equipment list, storing the target equipment information to a list to be checked.

8. The method according to claim 7, wherein if the target device information of the target terminal does not exist in the pre-stored device list, before storing the target device information in a list to be checked, the method further comprises:

storing the target equipment information to a cache region;

and reading the target equipment information from the cache region according to a preset time interval, and judging whether the target equipment information exists in the pre-stored equipment list or not.

9. The method according to claim 7 or 8, characterized in that the method further comprises:

if the target equipment information exists in the pre-stored equipment list, judging whether the target equipment information exists in the list to be checked;

if the target equipment information exists in the list to be audited, judging whether the target equipment information changes;

and if the target equipment information changes, updating the list to be checked according to the changed equipment information.

10. The method according to any one of claims 7 to 9, further comprising:

if the target equipment information exists in the pre-stored equipment list, or if the target equipment information does not exist in the list to be audited, judging whether the target equipment information exists in the audited list or not;

if the target equipment information does not exist in the checked list, storing the target equipment information to a list to be checked;

if the target equipment information exists in the checked list, judging whether the target equipment information changes;

and if the target equipment information changes, sending out prompt information containing the change of the target equipment information.

11. The method according to claim 10, characterized in that the target device information and/or the prompt information and/or the pre-stored device list and/or the reviewed list and/or the to-be-reviewed list are visually displayed.

12. A terminal asset identification device, characterized in that the terminal asset identification device comprises: a detection unit, a generation unit, a sending unit, a receiving unit and an identification unit,

13. A terminal asset identification device comprising a processor, a memory storing instructions executable by said processor, a communication interface, and a bus connecting said processor, said memory and said communication interface, said instructions when executed by said processor implementing the method according to any of claims 1-11.

14. A computer-readable storage medium, on which a program is stored, for use in a terminal asset identification device, characterized in that the program, when executed by a processor, implements the method according to any one of claims 1-11.