CN115659382A - Control method and device for printing operation and electronic equipment - Google Patents
Control method and device for printing operation and electronic equipment Download PDFInfo
- Publication number
- CN115659382A CN115659382A CN202211689227.2A CN202211689227A CN115659382A CN 115659382 A CN115659382 A CN 115659382A CN 202211689227 A CN202211689227 A CN 202211689227A CN 115659382 A CN115659382 A CN 115659382A
- Authority
- CN
- China
- Prior art keywords
- application program
- printing operation
- function
- application
- determining
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000007639 printing Methods 0.000 title claims abstract description 155
- 238000000034 method Methods 0.000 title claims abstract description 51
- 230000006870 function Effects 0.000 claims description 161
- 238000004891 communication Methods 0.000 claims description 39
- 238000012545 processing Methods 0.000 claims description 17
- 238000004590 computer program Methods 0.000 claims description 13
- 230000009191 jumping Effects 0.000 claims description 5
- 238000010586 diagram Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 238000012544 monitoring process Methods 0.000 description 3
- 230000006399 behavior Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 2
- 238000010276 construction Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 238000011161 development Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Landscapes
- Stored Programmes (AREA)
Abstract
The application provides a control method and device of printing operation and electronic equipment, and relates to the technical field of computers. The method comprises the following steps: determining an application program for calling the target function under the condition that the target function is monitored to be called, wherein the target function comprises a socket connection function or a socket connection check function; under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program; and controlling whether the application program is allowed to execute the printing operation according to the first judgment result. Therefore, the application programs needing to execute the printing operation are further screened through the white list, so that the application programs which are not allowed to execute the printing operation are intercepted, the application programs which are not trusted or malicious are prevented from acquiring confidential data through the printing operation, the application programs can be accurately controlled to execute the printing operation, and the data security is improved.
Description
Technical Field
The present application relates to the field of computer technologies, and in particular, to a method and an apparatus for controlling a printing operation, and an electronic device.
Background
With the development of the Linux system, data security under the Linux system becomes more important. The printing operation is used as a data copying operation, and data leakage under the Linux system is easily caused.
Currently, in the related printing control technology, a printer apparatus or a printing behavior is generally controlled. However, these control operations are not effective for preventing an untrusted or malicious application program from acquiring confidential data through a printing operation, thereby causing data leakage.
Therefore, how to accurately control the application program to perform the printing operation so as to improve the security of the data is a technical problem to be solved by those skilled in the art.
Disclosure of Invention
The application provides a method and a device for controlling printing operation and electronic equipment, which can accurately control an application program to execute the printing operation, thereby improving the data security.
In a first aspect, the present application provides a method for controlling a printing operation, which may include:
and under the condition that the object function is monitored to be called, determining an application program for calling the object function, wherein the object function comprises a socket connection function or a socket connection checking function.
And under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises the identification and/or the storage path of the application program.
And controlling whether the application program is allowed to execute the printing operation or not according to the first judgment result.
According to a control method of a printing operation provided by the present application, the controlling whether to allow the application program to execute the printing operation according to a first determination result includes:
and in the case that the first judgment result indicates that the white list comprises the identification and/or the storage path of the application program, allowing the application program to execute the printing operation.
And when the first judgment result indicates that the white list does not comprise the identification and/or the storage path of the application program, prohibiting the application program from executing the printing operation.
According to the control method of the printing operation provided by the application, when it is monitored that the target function is called, determining the application program calling the target function includes:
and searching the initial address of the target function through a kernel symbol table.
And executing a jump operation on the initial address, and jumping the target function into a hook function.
And determining the application program under the condition that the hook function monitors that the target function is called.
According to the control method of the printing operation, the determining that the application program is the printing application program comprises the following steps:
and determining the connection type corresponding to the objective function.
And under the condition that the communication type of the application program is determined to be local communication according to the connection type, judging whether the socket file in the target function is a preset socket file or not.
In a case where the second determination result indicates that the application is the print application, determining that the application is the print application.
According to the control method of the printing operation provided by the application, the determining the connection type corresponding to the objective function includes:
and analyzing the target function to obtain character information in the target function.
And determining the connection type corresponding to the target function according to the character information in the target function.
According to the control method of the printing operation provided by the application, the determining that the communication type of the application program is the local communication according to the connection type comprises the following steps:
and judging whether the connection type corresponding to the application program is a preset connection type.
And under the condition that the third judgment result indicates the preset connection type, determining the communication type of the application program as the local communication.
According to the control method of the printing operation provided by the application, in the case that the white list is a non-blank list, the method further comprises:
determining a plurality of preset applications which are allowed to execute the printing operation according to the data safety criterion;
and constructing the white list based on the respective identifications and/or storage paths of the plurality of preset applications.
In a second aspect, the present application also provides a control apparatus of a printing operation, which may include:
the first processing unit is used for determining an application program for calling the target function under the condition that the calling of the target function is monitored, wherein the target function comprises a socket connection function or a socket connection check function.
And the second processing unit is used for judging whether the preset white list comprises the identification and/or the storage path of the application program or not under the condition that the application program is determined to be the printing application program.
And the control unit is used for controlling whether the application program is allowed to execute the printing operation according to the first judgment result.
According to the control device of the printing operation provided by the application, the control unit is specifically configured to allow the application program to execute the printing operation when the first determination result indicates that the white list includes the identifier and/or the storage path of the application program; and when the first judgment result indicates that the white list does not comprise the identification and/or the storage path of the application program, prohibiting the application program from executing the printing operation.
According to the control device for printing operation provided by the application, the first processing unit is specifically configured to look up an initial address of the target function through a kernel symbol table; executing a jump operation on the initial address, and jumping the target function into a hook function; and determining the application program under the condition that the hook function monitors that the target function is called.
According to the control device for printing operation provided by the application, the first processing unit is specifically configured to determine a connection type corresponding to the objective function; under the condition that the communication type of the application program is determined to be local communication according to the connection type, judging whether a socket file in the target function is a preset socket file or not; in a case where the second determination result indicates that the application is the print application, determining that the application is the print application.
According to the control device for printing operation provided by the application, the first processing unit is specifically configured to analyze the objective function to obtain character information in the objective function; and determining the connection type corresponding to the target function according to the character information in the target function.
According to the control device for printing operation provided by the application, the first processing unit is specifically configured to determine whether a connection type corresponding to the application is a preset connection type; and determining the communication type of the application program to be the local communication under the condition that the third judgment result indicates that the third judgment result is the preset connection type.
According to the control device for printing operation provided by the application, in the case that the white list is a non-blank list, the device further comprises:
a construction unit for determining a plurality of preset applications that allow a printing operation to be performed according to a data security criterion; and constructing the white list based on the respective identifications and/or storage paths of the plurality of preset applications.
In a third aspect, the present application further provides an electronic device, comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor executes the program to implement the method for controlling a printing operation as described in any one of the above.
In a fourth aspect, the present application also provides a non-transitory computer readable storage medium having stored thereon a computer program which, when executed by a processor, implements a method of controlling a printing operation as described in any one of the above.
In a fifth aspect, the present application also provides a computer program product comprising a computer program which, when executed by a processor, implements a method of controlling a printing operation as described in any one of the above.
According to the control method and device for the printing operation and the electronic equipment, under the condition that the target function is monitored to be called, the application program for calling the target function is determined, wherein the target function comprises a socket connection function or a socket connection check function; under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program; and controlling whether the application program is allowed to execute the printing operation according to the first judgment result. Therefore, the application programs needing to execute the printing operation are further screened through the white list, so that the application programs which are not allowed to execute the printing operation are intercepted, the application programs which are not trusted or malicious are prevented from acquiring confidential data through the printing operation, the application programs can be accurately controlled to execute the printing operation, and the data security is improved.
Drawings
In order to more clearly illustrate the technical solutions in the present application or the prior art, the drawings needed for the description of the embodiments or the prior art will be briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present application, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
Fig. 1 is a schematic flowchart of a method for controlling a printing operation according to an embodiment of the present disclosure;
fig. 2 is a schematic structural diagram of a control device for printing operation according to an embodiment of the present disclosure;
fig. 3 is a schematic physical structure diagram of an electronic device according to an embodiment of the present disclosure.
Detailed Description
To make the objects, technical solutions and advantages of the present application clearer, the technical solutions of the present application will be described clearly and completely with reference to the accompanying drawings in the present application, and it is obvious that the described embodiments are some, but not all embodiments of the present application. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
In the embodiments of the present application, "at least one" means one or more, "a plurality" means two or more. "and/or" describes the association relationship of the associated objects, meaning that there may be three relationships, e.g., a and/or B, which may mean: a exists alone, A and B exist simultaneously, and B exists alone, wherein A and B can be singular or plural. In the description of the text of the present application, the character "/" generally indicates that the former and latter associated objects are in an "or" relationship.
The technical scheme provided by the embodiment of the application can be applied to a printing control scene. Taking Linux system as an example, at present, in the related printing control technology under Linux system, printer devices or printing behavior modes are generally controlled. However, these control operations are not effective in preventing an untrusted or malicious application program from acquiring confidential data through a printing operation, thereby causing data leakage.
Therefore, how to accurately control the application program to perform the printing operation so as to improve the data security is a technical problem to be solved by those skilled in the art.
In order to accurately control an application program to execute a printing operation to improve data security, an embodiment of the present application provides a method for controlling a printing operation, where an application program calling an objective function is determined when it is monitored that the objective function is called, where the objective function includes a socket connection function or a socket connection check function; under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program; and controlling whether the application program is allowed to execute the printing operation according to the first judgment result.
For example, the socket connection function may be a kernel key function sys _ connect, and the socket connection check function may be a kernel key function security _ socket _ connect, which may be specifically set according to actual needs. Here, the embodiment of the present application is described by taking the socket connection function as sys _ connect and the socket connection check function as security _ socket _ connect as examples, but the embodiment of the present application is not limited thereto.
The white list is a pre-constructed storage path for storing the identification of the application program and/or the application program allowing the printing operation to be executed. It is to be understood that when the white list is empty, which indicates that all applications are prohibited from performing the printing operation, in this case, the message of the connection failure may be directly fed back. When the white list stores the identifier of the application program and/or the storage path of the application program which allows the printing operation to be executed, whether the white list includes the identifier of the application program and/or the storage path of the application program which calls the target function or not can be judged, and whether the application program is allowed to execute the printing operation or not is controlled according to a first judgment result. Illustratively, the identification of the application may be an application name of the application.
In combination with the above, by monitoring whether the target function is called and determining whether the target function is called and the application program calling the target function is the printing application program, whether the preset white list includes the identifier and/or the storage path of the application program is judged, that is, the application program needing to perform the printing operation is further screened through the white list, so as to intercept the application program which is not allowed to perform the printing operation, and prevent the untrusted or malicious application program from acquiring the confidential data through the printing operation, so that the application program can be accurately controlled to perform the printing operation, and thus, the security of the data is improved.
In addition, the control method of the printing operation provided by the embodiment of the application is simple to implement, hardware in the control device of the printing operation is not required to be changed, the implementation cost is low, and the control method can be widely popularized in a printing control scene.
Hereinafter, a control method of a printing operation provided by the present application will be described in detail by several specific examples described below. It is to be understood that the following detailed description may be combined with the accompanying drawings, and that the same or similar concepts or processes may not be described in detail in connection with certain embodiments.
Example one
Fig. 1 is a flowchart illustrating a method for controlling a printing operation according to an embodiment of the present disclosure, where the method for controlling the printing operation may be executed by a software and/or hardware device. For example, referring to fig. 1, the method for controlling the printing operation may include:
s101, under the condition that the target function is monitored to be called, determining an application program for calling the target function, wherein the target function comprises a socket connection function or a socket connection check function.
For example, in the embodiment of the present application, when it is detected that the target function is called, when determining an application program that calls the target function, an initial address of the target function may be first searched through a kernel symbol table; executing a jump operation on an initial address of the target function, jumping the target function into the hook function to enable the hook function to take effect, monitoring whether the target function is called or not through the hook function after the hook function takes effect, and continuously executing the monitoring operation under the condition that the target function is determined not to be called; in the case where it is determined that the target function is called, an application program that calls the target function is further determined.
For example, the socket connection function may be a kernel key function sys _ connect, and the socket connection check function may be a kernel key function security _ socket _ connect, which may be specifically set according to actual needs. Here, the embodiment of the present application is described by taking the socket connection function as sys _ connect and the socket connection check function as security _ socket _ connect as examples, but the embodiment of the present application is not limited thereto.
With reference to the above description, after determining the application program for calling the target function, it needs to further determine whether the application program is a printing application program, and if the application program is not a printing application program, a message of successful call can be directly returned; if the application is a print application, the following S102 may be executed:
s102, under the condition that the application program is determined to be the printing application program, judging whether the preset white list comprises the identification and/or the storage path of the application program.
The white list is a pre-constructed storage path for storing the identification of the application program and/or the application program allowing the printing operation to be executed. It is to be understood that when the white list is empty, which indicates that all applications are prohibited from performing a printing operation, in this case, a message of connection failure may be fed back directly. When the white list stores the identifier of the application program and/or the storage path of the application program which allows the printing operation to be executed, whether the white list includes the identifier of the application program and/or the storage path of the application program which calls the target function or not can be judged, and whether the application program is allowed to execute the printing operation or not is controlled according to a first judgment result. Illustratively, the identification of the application may be an application name of the application.
For example, in the case that the white list is a non-blank list, when the white list is constructed in advance, a plurality of preset applications that allow the printing operation to be performed may be determined according to the data security criteria; and constructing a white list based on respective identifiers and/or storage paths of a plurality of preset applications, thereby obtaining the pre-constructed white list.
For example, when determining whether the application program is printed, the connection type corresponding to the target function may be determined first, and when determining that the communication type of the application program is local communication according to the connection type, whether the socket file in the target function is a preset socket file is determined; under the condition that the second judgment result indicates that the file is not the preset socket file, the application program is not the printing application program, and a message of successful calling can be directly fed back; in contrast, in the case where the second determination result indicates that the socket file is a preset socket file, it may be determined that the application is a print application.
The preset socket file may be, for example, a socket file cups of a Linux system, and may be specifically set according to actual needs. Wherein, the socket file and the address family (address family) type are only the attributes of the socket.
For example, when the connection type corresponding to the objective function is determined, it is considered that part of the characters in the objective function are used for embodying the connection type, so that the objective function may be analyzed first to obtain character information in the objective function; and determining the connection type corresponding to the target function according to the character information in the target function.
After the connection type corresponding to the target function is determined, the communication type of the application program can be further determined to be local communication according to the connection type; under the condition that the communication type is determined to be non-local communication, if the application program is not the printing application program, a message of successful connection can be directly returned; in the case that the communication type is determined to be local communication, whether the preset white list includes the identifier and/or the storage path of the application program may be further determined, that is, the application program that needs to perform the printing operation may be further screened through the white list.
For example, when determining whether the communication type of the application is LOCAL communication according to the connection type, it may be determined whether the connection type corresponding to the application is a preset connection type, for example, an AF _ UNIX connection type or an AF _ LOCAL connection type, and in a case that the third determination result indicates that the connection type is not the preset connection type, the application is not a print application, and a message of successful connection may be directly returned; in a case that the third determination result indicates the preset connection type, it may be determined that the communication type of the application is local communication.
In the above case where the application program is determined to be a printing application program, it may be further determined whether the preset white list includes the identifier and/or the storage path of the application program, and whether the application program is allowed to perform the printing operation is controlled according to the first determination result, that is, the following S103 is performed:
s103, controlling whether the application program is allowed to execute the printing operation according to the first judgment result.
Illustratively, when whether the application program is allowed to execute the printing operation is controlled according to the first judgment result, if the first judgment result indicates that the white list comprises the identification and/or the storage path of the application program, the application program is described as the application program which is allowed to execute the printing operation, and the application program is allowed to execute the printing operation; and in the case that the first judgment result indicates that the white list does not include the identifier and/or the storage path of the application program, the application program is not the application program which is allowed to execute the printing operation, and the application program is prohibited from executing the printing operation.
It can be seen that, in the embodiment of the present application, when it is monitored that the target function is called, an application program for calling the target function is determined, where the target function includes a socket connection function or a socket connection check function; under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program; and controlling whether the application program is allowed to execute the printing operation according to the first judgment result. Therefore, the application programs needing to execute the printing operation are further screened through the white list, so that the application programs which are not allowed to execute the printing operation are intercepted, the application programs which are not trusted or malicious are prevented from acquiring confidential data through the printing operation, the application programs can be accurately controlled to execute the printing operation, and the safety of the data is improved.
Taking control over printing operation under a Linux system as an example, whether a kernel key function sys _ connect or a kernel key function security _ socket _ connect of the Linux system is called can be monitored through a hook function, when the kernel key function sys _ connect or the kernel key function security _ socket _ connect is monitored to be called, the kernel key function sys _ connect or the kernel key function security _ socket _ connect is obtained, and an application name and/or a storage path of an application program calling the kernel key function sys _ connect or the kernel key function security _ socket _ connect are further determined; further determining whether the connection type corresponding to the application program is an AF _ UNIX connection type or an AF _ LOCAL connection type, and if the connection type is the AF _ UNIX connection type or the AF _ LOCAL connection type, determining that the communication type of the application program is LOCAL communication; determining whether a socket file in the kernel key function sys _ connect or the kernel key function security _ socket _ connect is a cups socket file, and determining that the application program is a printing application program under the condition of the cups socket file; whether the white list comprises the identifier and/or the storage path of the application program is further judged, and if the identifier and/or the storage path of the application program are included, the application program is indicated to be the application program which is allowed to execute the printing operation, the application program is allowed to execute the printing operation; and if the white list does not include the identification and/or the storage path of the application program, which indicates that the application program is not the application program allowed to execute the printing operation, the application program is prohibited from executing the printing operation. Therefore, the application programs needing to execute the printing operation are further screened through the white list, so that the application programs which are not allowed to execute the printing operation are intercepted, the application programs which are not trusted or malicious are prevented from acquiring confidential data through the printing operation, the application programs can be accurately controlled to execute the printing operation, and the data security is improved.
The following describes a control apparatus of a printing operation provided in the present application, and the control apparatus of a printing operation described below and the control method of a printing operation described above may be referred to in correspondence with each other.
Fig. 2 is a schematic structural diagram of a control apparatus for printing operation according to an embodiment of the present application, and for example, referring to fig. 2, the control apparatus 20 for printing operation may include:
the first processing unit 201 is configured to determine, when it is monitored that the target function is called, an application program that calls the target function, where the target function includes a socket connection function or a socket connection check function.
And the second processing unit 202 is configured to, in a case where the application is determined to be a printing application, determine whether the preset white list includes an identifier and/or a storage path of the application.
A control unit 203 for controlling whether to allow the application program to perform the printing operation according to the first judgment result.
Optionally, the control unit 203 is specifically configured to allow the application program to perform the printing operation when the first determination result indicates that the white list includes the identifier and/or the storage path of the application program; and in the case that the first judgment result indicates that the white list does not comprise the identification and/or the storage path of the application program, forbidding the application program to execute the printing operation.
Optionally, the first processing unit 201 is specifically configured to look up an initial address of the target function through a kernel symbol table; executing a jump operation on the initial address, and jumping the target function into the hook function; and determining the application program under the condition that the object function is monitored to be called through the hook function.
Optionally, the first processing unit 201 is specifically configured to determine a connection type corresponding to the objective function; under the condition that the communication type of the application program is determined to be local communication according to the connection type, judging whether a socket file in the target function is a preset socket file or not; in a case where the second determination result indicates that the socket file is a preset socket file, the application is determined to be a print application.
Optionally, the first processing unit 201 is specifically configured to analyze the objective function to obtain character information in the objective function; and determining the connection type corresponding to the target function according to the character information in the target function.
Optionally, the first processing unit 201 is specifically configured to determine whether a connection type corresponding to the application is a preset connection type; and under the condition that the third judgment result indicates the preset connection type, determining the communication type of the application program as local communication.
Optionally, in a case where the white list is a non-blank list, the control device 20 for the printing operation further includes:
a construction unit for determining a plurality of preset applications that allow a printing operation to be performed according to a data security criterion; and constructing a white list based on respective identifications and/or storage paths of a plurality of preset applications.
The control device 20 for printing operation provided in this embodiment of the present application can execute the technical solution of the control method for printing operation in any of the above embodiments, and its implementation principle and beneficial effect are similar to those of the control method for printing operation, and reference may be made to the implementation principle and beneficial effect of the control method for printing operation, which are not described herein again.
Fig. 3 is a schematic entity structure diagram of an electronic device according to an embodiment of the present application, and as shown in fig. 3, the electronic device may include: a processor (processor) 310, a communication Interface (communication Interface) 320, a memory (memory) 330 and a communication bus 340, wherein the processor 310, the communication Interface 320 and the memory 330 communicate with each other via the communication bus 340. The processor 310 may invoke logic instructions in the memory 330 to perform a method of controlling a printing operation, the method comprising: determining an application program for calling the target function under the condition that the target function is monitored to be called, wherein the target function comprises a socket connection function or a socket connection check function; under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program; whether the application is permitted to perform the printing operation is controlled according to the first judgment result.
In addition, the logic instructions in the memory 330 may be implemented in the form of software functional units and stored in a computer readable storage medium when the software functional units are sold or used as independent products. Based on such understanding, the technical solution of the present application or portions thereof that substantially contribute to the prior art may be embodied in the form of a software product stored in a storage medium and including instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present application. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
In another aspect, the present application also provides a computer program product, the computer program product comprising a computer program, the computer program being storable on a non-transitory computer readable storage medium, the computer program, when executed by a processor, being capable of executing a method for controlling a printing operation provided by the above methods, the method comprising: determining an application program for calling the target function under the condition that the target function is monitored to be called, wherein the target function comprises a socket connection function or a socket connection check function; under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program; whether the application is permitted to perform the printing operation is controlled according to the first judgment result.
In yet another aspect, the present application also provides a non-transitory computer-readable storage medium having stored thereon a computer program which, when executed by a processor, implements a control method to perform a printing operation provided by the above methods, the method comprising: determining an application program for calling the target function under the condition that the target function is monitored to be called, wherein the target function comprises a socket connection function or a socket connection check function; under the condition that the application program is determined to be the printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program; whether the application is permitted to perform the printing operation is controlled according to the first judgment result.
The above-described embodiments of the apparatus are merely illustrative, and the units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment. One of ordinary skill in the art can understand and implement it without inventive effort.
Through the above description of the embodiments, those skilled in the art will clearly understand that each embodiment can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware. With this understanding in mind, the above-described technical solutions may be embodied in the form of a software product, which can be stored in a computer-readable storage medium such as ROM/RAM, magnetic disk, optical disk, etc., and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute the methods described in the embodiments or some parts of the embodiments.
Finally, it should be noted that: the above embodiments are only used to illustrate the technical solutions of the present application, and not to limit the same; although the present application has been described in detail with reference to the foregoing embodiments, it should be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions in the embodiments of the present application.
Claims (10)
1. A method of controlling a printing operation, comprising:
under the condition that the object function is monitored to be called, determining an application program for calling the object function, wherein the object function comprises a socket connection function or a socket connection checking function;
under the condition that the application program is determined to be a printing application program, judging whether a preset white list comprises an identifier and/or a storage path of the application program;
and controlling whether the application program is allowed to execute the printing operation according to the first judgment result.
2. The method according to claim 1, wherein the controlling whether the application is permitted to perform the printing operation according to the first determination result includes:
allowing the application program to execute printing operation under the condition that the first judgment result indicates that the white list comprises the identifier and/or the storage path of the application program;
and when the first judgment result indicates that the white list does not comprise the identification and/or the storage path of the application program, prohibiting the application program from executing the printing operation.
3. The method for controlling printing operation according to claim 1 or 2, wherein the determining, in the case where it is monitored that the target function is called, the application program that calls the target function includes:
searching an initial address of the target function through a kernel symbol table;
executing a jump operation on the initial address, and jumping the target function into a hook function;
and determining the application program under the condition that the hook function monitors that the target function is called.
4. The method of controlling a printing operation according to claim 1 or 2, wherein the determining that the application is a printing application includes:
determining a connection type corresponding to the objective function;
under the condition that the communication type of the application program is determined to be local communication according to the connection type, judging whether a socket file in the target function is a preset socket file or not;
in a case where the second determination result indicates that the application is the print application, determining that the application is the print application.
5. The method of claim 4, wherein the determining the connection type corresponding to the objective function comprises:
analyzing the target function to obtain character information in the target function;
and determining the connection type corresponding to the target function according to the character information in the target function.
6. The method according to claim 4, wherein the determining that the communication type of the application program is local communication according to the connection type includes:
judging whether the connection type corresponding to the application program is a preset connection type;
and determining the communication type of the application program to be the local communication under the condition that the third judgment result indicates that the third judgment result is the preset connection type.
7. The method of controlling a printing operation according to claim 1 or 2, wherein in a case where the whitelist is a non-whitelist, the method further comprises:
determining a plurality of preset applications which are allowed to execute the printing operation according to the data safety criterion;
and constructing the white list based on the respective identifications and/or storage paths of the plurality of preset applications.
8. A control apparatus for a printing operation, comprising:
the system comprises a first processing unit, a second processing unit and a third processing unit, wherein the first processing unit is used for determining an application program for calling an objective function under the condition that the objective function is monitored to be called, and the objective function comprises a socket connection function or a socket connection check function;
the second processing unit is used for judging whether a preset white list comprises the identifier and/or the storage path of the application program or not under the condition that the application program is determined to be a printing application program;
and the control unit is used for controlling whether the application program is allowed to execute the printing operation according to the first judgment result.
9. An electronic device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements a method of controlling a printing operation according to any one of claims 1 to 7 when executing the program.
10. A non-transitory computer-readable storage medium on which a computer program is stored, the computer program implementing a method of controlling a printing operation according to any one of claims 1 to 7 when executed by a processor.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211689227.2A CN115659382A (en) | 2022-12-28 | 2022-12-28 | Control method and device for printing operation and electronic equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211689227.2A CN115659382A (en) | 2022-12-28 | 2022-12-28 | Control method and device for printing operation and electronic equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115659382A true CN115659382A (en) | 2023-01-31 |
Family
ID=85023180
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211689227.2A Pending CN115659382A (en) | 2022-12-28 | 2022-12-28 | Control method and device for printing operation and electronic equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115659382A (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020101600A1 (en) * | 2001-01-29 | 2002-08-01 | Xerox Corporation | Augmented operating system printing architecture |
| US20070143603A1 (en) * | 2005-12-15 | 2007-06-21 | Authentica, Inc. | Method and system for dynamically generating a watermarked document during a printing or display operation |
| JP2007293673A (en) * | 2006-04-26 | 2007-11-08 | Hitachi Ins Software Ltd | Print control method and program |
| JP2008134820A (en) * | 2006-11-28 | 2008-06-12 | Fuji Xerox Co Ltd | Print restriction processing program and information processor |
| WO2008071848A1 (en) * | 2006-12-13 | 2008-06-19 | Teliasonera Ab | Communication system |
| US20090083756A1 (en) * | 2007-09-20 | 2009-03-26 | Electronics And Telecommunications Research Institute | Apparatus and method for communication interface between application programs on virtual machines using shared memory |
| CN104361265A (en) * | 2014-10-28 | 2015-02-18 | 深圳市大成天下信息技术有限公司 | Document protection method, device and system |
-
2022
- 2022-12-28 CN CN202211689227.2A patent/CN115659382A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020101600A1 (en) * | 2001-01-29 | 2002-08-01 | Xerox Corporation | Augmented operating system printing architecture |
| US20070143603A1 (en) * | 2005-12-15 | 2007-06-21 | Authentica, Inc. | Method and system for dynamically generating a watermarked document during a printing or display operation |
| JP2007293673A (en) * | 2006-04-26 | 2007-11-08 | Hitachi Ins Software Ltd | Print control method and program |
| JP2008134820A (en) * | 2006-11-28 | 2008-06-12 | Fuji Xerox Co Ltd | Print restriction processing program and information processor |
| WO2008071848A1 (en) * | 2006-12-13 | 2008-06-19 | Teliasonera Ab | Communication system |
| US20090083756A1 (en) * | 2007-09-20 | 2009-03-26 | Electronics And Telecommunications Research Institute | Apparatus and method for communication interface between application programs on virtual machines using shared memory |
| CN104361265A (en) * | 2014-10-28 | 2015-02-18 | 深圳市大成天下信息技术有限公司 | Document protection method, device and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10621356B2 (en) | System and method of controlling file access of applications based on vulnerabilities of applications | |
| US10318730B2 (en) | Detection and prevention of malicious code execution using risk scoring | |
| US20190289027A1 (en) | Methods and Systems for Providing Security for Page Framing | |
| EP3396905B1 (en) | Method and device for securely sending a message | |
| CN110278192B (en) | Method and device for accessing intranet by extranet, computer equipment and readable storage medium | |
| US20050125694A1 (en) | Security policy update supporting at least one security service provider | |
| CA2485062A1 (en) | Security-related programming interface | |
| JP2005149243A (en) | Irregularity monitoring program, irregularity monitoring method and irregularity monitoring system | |
| CN113254892B (en) | Access processing method, device, storage medium and electronic equipment | |
| CN113360913A (en) | Malicious program detection method and device, electronic equipment and storage medium | |
| CN115659382A (en) | Control method and device for printing operation and electronic equipment | |
| CN113645060B (en) | Network card configuration method, data processing method and device | |
| CN116346728A (en) | Low code platform current limiting method and device | |
| CN107818260B (en) | Method and device for guaranteeing system safety | |
| CN112417402B (en) | Authority control method, authority control device, authority control equipment and storage medium | |
| CN115292707A (en) | Credibility judgment method and device based on dynamic class calling sequence | |
| CN113836529A (en) | Process detection method, device, storage medium and computer equipment | |
| CN110990873B (en) | Monitoring method for illegal operation, computer equipment and storage medium | |
| CN113987435A (en) | Illegal copyright detection method and device, electronic equipment and storage medium | |
| JP2005322261A (en) | Irregularity monitoring program, irregularity monitoring method and irregularity monitoring system | |
| CN107678928B (en) | Application program processing method and server | |
| CN109088854B (en) | Access method and device of shared application and readable storage medium | |
| CN109784037A (en) | The safety protecting method and device of document files, storage medium, computer equipment | |
| CN117131515B (en) | Application request execution method and device, computer equipment and storage medium | |
| CN114722397A (en) | Process behavior identification method, process behavior identification device, electronic device, storage medium, and program |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20230131 |
|
| RJ01 | Rejection of invention patent application after publication |