CN-121997383-A - Operation and maintenance auditing method and system for computing power server based on blockchain and Internet of things

Abstract

The invention provides a computing power server operation and maintenance auditing method and system based on a blockchain and the Internet of things, wherein the method comprises the following steps: by uniformly collecting physical and logical operation and maintenance behaviors, a structured event chain is constructed, behavior weights are calculated by combining time, identity and semantics, and server state differential analysis is carried out by taking the event as an anchor point, so that attribution credibility is quantified. And finally, a structured audit record containing identity, time, state abstract and credible score is generated, and the structured audit record is orderly subjected to uplink evidence storage after digital signature, so that a tamper-proof and verifiable responsible evidence chain is formed, and the problem that the behavior and the result are disjointed and the evidence chain is incomplete in operation and maintenance audit is effectively solved. The invention realizes cross-layer association of physical and logical behaviors, accurate attribution of operation and maintenance results and long-term trusted memory evidence of audit evidence, and is suitable for a computing infrastructure scene with high safety compliance requirements.

Inventors

• HUANG RONG
• Zhou Kengran

Assignees

• 尚阳科技股份有限公司

Dates

Publication Date

20260508

Application Date

20260113

Claims (10)

1. 1. The operation and maintenance auditing method of the computing power server based on the blockchain and the Internet of things is characterized by comprising the following steps: The method comprises the steps of collecting physical behavior data and logic operation data generated in the operation and maintenance process of a computing power server, wherein the physical behavior data is derived from sensing equipment of the Internet of things, and the logic operation data is derived from a server log interface; performing ascending sorting on all behavior records based on the behavior time stamps, constructing a time-ordered behavior event chain, and calculating behavior consistency weights according to time intervals, identity consistency and behavior semantic relevance of adjacent events, wherein the behavior semantic relevance is determined based on behavior content keywords or operation type matching degree; Taking each event as a time anchor point, acquiring front and back state snapshots of a server in a symmetrical time window, comparing the front and back state snapshots with a preset limited key state index which is strongly related to computing power operation and maintenance to generate a state differential set, and calculating differential attribution credibility by combining the behavior consistency weight, the state item importance and the differential amplitude; Based on the differential attribution credibility, the state differential set, the behavior feature vector, the operator identity and the behavior time, a structured auditing unit is constructed, after digital signature is carried out on the structured auditing unit, the digital signature is written into a blockchain according to time sequence, and a tamper-proof and verifiable responsible evidence chain is formed.
2. 2. The operation and maintenance auditing method of the computing power server based on the blockchain and the Internet of things according to claim 1, wherein the physical behavior data comprise an access record provided by access control equipment, face identification identity information output by a camera identification module and a pass record provided by a fingerprint verification module, and the logic operation data comprise account login and operation command logs in a local log of the server and key system management events output by a remote management controller.
3. 3. The blockchain and internet of things-based computing power server operation and maintenance auditing method according to claim 1, in which the structured operation and maintenance behavior records are quintuple, including personnel identity, behavior time stamp, behavior type, source equipment identity and behavior content.
4. 4. The blockchain and internet of things-based computing power server operation and maintenance auditing method according to claim 3, wherein the behavior type is defined as physical or logical, wherein the physical corresponds to the behavior collected by the internet of things sensing device, and the logical corresponds to the operation behavior collected by the server-side log interface.
5. 5. The blockchain and internet of things-based computing power server operation and maintenance auditing method according to claim 3, wherein the regularized encoding comprises mapping personnel identities to numbers, normalizing behavior time to relative time based on daily start time, converting behavior types to 0/1 encoding, converting source device identifications to fixed integer encoding, keyword extraction of behavior content and mapping to numbers.
6. 6. The blockchain and internet of things-based computing power server operation and maintenance auditing method according to claim 1, in which the key state metrics include at least one of GPU utilization and power consumption, key service survival status, master profile digest, controlled account collection, sensitive directory change digest, management port open and close status, and out-of-band controller key event markers.
7. 7. The blockchain and internet of things-based algorithm operation and maintenance auditing method according to claim 1, wherein when the state difference diversity is generated, direct numerical comparison is adopted for numerical state items, and rule comparison or digest hash comparison is adopted for boolean, enumeration or structural state items.
8. 8. The blockchain and internet of things-based computing power server operation and maintenance auditing method according to claim 1, wherein the structured auditing unit comprises an operator identity, behavior time, attribution credibility, a state difference ordered digest, a behavior semantic compression digest and a digital signature, wherein the state difference ordered digest is generated by ordering state item names, then performing fixed-length normalized encoding and hashing.
9. 9. The operation and maintenance auditing method of the computing power server based on the blockchain and the Internet of things according to claim 1 is characterized in that the digital signature adopts an elliptic curve signature algorithm SECP256K1 or a national secret SM2 algorithm, signature objects are the rest fields except signature fields in a structured auditing unit, the length of a signature result is fixed, the blockchain writing is executed through an intelligent contract, and the intelligent contract performs field integrity check, time incremental verification and signature verification operation on written data.
10. 10. The utility model provides a power calculation server fortune dimension audit system based on blockchain and thing networking, its characterized in that, the system includes: The system comprises a data acquisition module, a behavior feature vector generation module, a data processing module and a data processing module, wherein the data acquisition module is used for acquiring physical behavior data and logic operation data generated in the operation and maintenance process of a computing power server, the physical behavior data is derived from sensing equipment of the Internet of things, and the logic operation data is derived from a server log interface; The event chain construction module is used for carrying out ascending order on all the behavior records based on the behavior time stamps, constructing a time ordered behavior event chain, calculating behavior consistency weights according to the time intervals, identity consistency and behavior semantic relevance of adjacent events, wherein the behavior semantic relevance is determined based on the behavior content keywords or the operation type matching degree; the differential attribution analysis module is used for taking each event as a time anchor point, acquiring front and back state snapshots of the server in a symmetrical time window, comparing the front and back state snapshots with a preset limited key state index which is strongly related to the operation and maintenance of computing power, generating a state differential set, and calculating differential attribution credibility by combining the behavior consistency weight, the state item importance and the differential amplitude; the evidence chain generation module is used for constructing a structured audit unit based on the differential attribution credibility, the state differential set, the behavior feature vector, the operator identity and the behavior time, and writing the digital signature to the structured audit unit into a block chain according to time sequence to form a tamper-proof and verifiable responsible evidence chain.

Description

Operation and maintenance auditing method and system for computing power server based on blockchain and Internet of things Technical Field The invention belongs to the field of data processing, and particularly relates to an operation and maintenance auditing method and system of a computing power server based on a blockchain and the Internet of things. Background With the continuous expansion of computing infrastructure in cloud computing, artificial intelligence and high-performance computing scenarios, large-scale computing servers in data centers and edge nodes need to frequently perform operation and maintenance activities on software and hardware levels, including firmware upgrade, drive and kernel update, network and security policy adjustment, hardware replacement, out-of-band management, on-site obstacle removal and the like. These activities often span both physical access and remote operation levels, involve both highly sensitive rights and critical configurations, and any loss of records, broken chains of responsibility or evidence tampered with directly affect compliance auditing and postmortem responsibility. The existing method generally records machine room access, personnel identification and local environmental events by Internet of things equipment, then assisted by server side login and instruction logs, and partial abstract uplink certification is carried out to improve non-tamper-resistance, but the method has the defects that firstly, physical behavior and logic operation lack of a structured time correlation mechanism, whether an entering person in the same period is an actual responsible person for executing remote or local operation or not cannot be clear, identity and behavior are difficult to close, secondly, log emphasis process records and non-result characterization are difficult to accurately express on operation and maintenance granularity, the fact that a certain operation causes a system to change is easy to generate misjudgment under natural fluctuation and batch task interference, thirdly, uplink data are scattered log fragments or simple hashes, unified structure and stable abstract rules facing audit are lacked, a calculable mapping relation between the on-chain non-tamper and under-chain verifiable is lacked, and automatic verification, sequence playback and responsibility review are difficult to support. With the higher verifiability, interpretability and long-term traceability requirements of the key infrastructure by supervision, the engineering floor of the complete chain of 'operators-operation events-system influence-verifiable evidence' is difficult to meet by simple multi-source log superposition and general evidence storage. Disclosure of Invention The invention aims to design an operation and maintenance auditing method and system of a computational power server based on a blockchain and the Internet of things, which can give consideration to cross-layer association, result attribution, abstract stabilization and on-chain verification, and solve the problems of physical and logical disjoint, indeterminate result and fragile uplink structure in the existing scheme. In order to achieve the above object, in a first aspect of the present invention, there is provided an operation and maintenance auditing method for a computing power server based on a blockchain and the internet of things, the method comprising: The method comprises the steps of collecting physical behavior data and logic operation data generated in the operation and maintenance process of a computing power server, wherein the physical behavior data is derived from sensing equipment of the Internet of things, and the logic operation data is derived from a server log interface; performing ascending sorting on all behavior records based on the behavior time stamps, constructing a time-ordered behavior event chain, and calculating behavior consistency weights according to time intervals, identity consistency and behavior semantic relevance of adjacent events, wherein the behavior semantic relevance is determined based on behavior content keywords or operation type matching degree; Taking each event as a time anchor point, acquiring front and back state snapshots of a server in a symmetrical time window, comparing the front and back state snapshots with a preset limited key state index which is strongly related to computing power operation and maintenance to generate a state differential set, and calculating differential attribution credibility by combining the behavior consistency weight, the state item importance and the differential amplitude; Based on the differential attribution credibility, the state differential set, the behavior feature vector, the operator identity and the behavior time, a structured auditing unit is constructed, after digital signature is carried out on the structured auditing unit, the digital signature is written into a blockchain according to time sequence, and a tamper-p