CN108900558B - Access request processing method and system - Google Patents

Access request processing method and system Download PDF

Info

Publication number
CN108900558B
CN108900558B CN201811106556.3A CN201811106556A CN108900558B CN 108900558 B CN108900558 B CN 108900558B CN 201811106556 A CN201811106556 A CN 201811106556A CN 108900558 B CN108900558 B CN 108900558B
Authority
CN
China
Prior art keywords
access request
website server
resource
request
distribution
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201811106556.3A
Other languages
Chinese (zh)
Other versions
CN108900558A (en
Inventor
韩首魁
刘浩
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zhengzhou Angshi Information Technology Co ltd
Original Assignee
Zhengzhou Angshi Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zhengzhou Angshi Information Technology Co ltd filed Critical Zhengzhou Angshi Information Technology Co ltd
Priority to CN201811106556.3A priority Critical patent/CN108900558B/en
Publication of CN108900558A publication Critical patent/CN108900558A/en
Application granted granted Critical
Publication of CN108900558B publication Critical patent/CN108900558B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention provides an access request processing method and system, for an access request sent by a user, the access request is not directly sent to any or all website servers, but the request type of the access request is identified firstly, the distribution decision of the current access request is determined, and the current access request is distributed to the corresponding website server for processing according to the distribution decision. Therefore, for different types of access requests, different website servers process the access requests, independent processing of dynamic resource requests possibly containing pathogens is achieved, static resources on the website servers for processing other types of access requests are prevented from being affected, safety of the static resources on the website servers is improved, malicious attacks on user websites are effectively resisted, and influences of dark chains on user access are avoided to a certain extent.

Description

Access request processing method and system
Technical Field
The present invention relates to the field of network security access, and more particularly, to a method and system for processing an access request.
Background
In the current network environment, the Web service system serves as a platform for bearing and providing important services, becomes a virtual representative of governments, enterprises and individuals on the internet, and collects massive data resources such as user information, enterprise data, financial, commercial confidentiality, intellectual property, customer order information and the like, so that the Web server becomes a main attack object of a network hacker.
The inventor finds that when a user accesses a Web server to request a dynamic resource, the dynamic resource may contain a malicious hidden link, an illegal user often uses the malicious hidden link to transmit bad information to the access user, and even maliciously attacks a user website, which not only affects the access result of the dynamic resource, but also may threaten the security of a static resource of the Web server.
Therefore, how to improve the security of the Web server access becomes one of the research focuses of those skilled in the art.
Disclosure of Invention
In view of this, the present invention provides an access request processing method and system, which perform individual processing on a dynamic resource request by setting an independent website server, so as to avoid a malicious hidden link that may be carried by the dynamic resource request, and thus, to prevent the security of a static resource from being threatened.
In order to solve the technical problems, the invention provides the following technical scheme:
the embodiment of the invention provides an access request processing method, which is characterized by comprising the following steps:
acquiring a current access request, and identifying the request type of the current access request;
determining a distribution decision of the current access request based on the request type;
and sending the current access request and the determined distribution decision to a service platform, and distributing the current access request to at least one website server for processing by the service platform according to the distribution decision.
Optionally, the method further includes:
receiving at least one piece of response information fed back by the service platform for the current access request;
and arbitrating the at least one piece of response information.
Optionally, if the current access request is a static resource request, the arbitrating the at least one piece of response information includes:
judging first response information obtained by the first website server and second response information obtained by the second website server;
and if the judgment results of the first response information and the second response information are not consistent, determining that the first response information is target response information, and sending a resource cleaning instruction aiming at the second website server to a service platform.
Optionally, the method further includes:
outputting a safety protection interface comprising a plurality of resource protection modes;
responding to a selection instruction aiming at the plurality of resource protection modes, and generating a current distribution arbitration rule;
the determining a distribution decision of the current access request based on the request type includes:
and obtaining a distribution decision corresponding to the request type of the current access request from the current distribution arbitration rule.
The embodiment of the invention also provides another access request processing method, which comprises the following steps:
receiving a current access request sent by a client and a corresponding distribution decision;
according to the distribution decision, distributing the current access request to at least one website server for processing;
and feeding back response information obtained by processing of the at least one website server to the client.
Optionally, the service platform is deployed with a first website server and a second website server, and the distributing the current access request to at least one website server for processing according to the distribution decision includes:
if the distribution decision is a distribution decision corresponding to a static resource request or an exceptional same resource locator URL request, respectively distributing the current access request to a first website server and a second website server for processing;
and if the distribution decision is a distribution decision corresponding to the dynamic resource request, distributing the current access request to the second website server for processing.
Optionally, if the distribution decision is a distribution decision corresponding to a static resource request, the method further includes:
receiving a resource cleaning instruction aiming at the second website server and sent by a client;
responding to the resource cleaning instruction, and deleting the resources of the second website server;
and synchronizing the static resources and the dynamic resources in the first website server to the second website server.
Optionally, the method further includes:
detecting an update event for the first web server;
performing mimicry processing on the dynamic resources in the first website server;
and synchronizing the static resources in the first website server and the processed dynamic resources to the second website server so as to update the corresponding resources in the second website server.
The embodiment of the invention also provides an access request processing system, which comprises a client and a service platform:
wherein the client comprises:
the access request identification module is used for acquiring a current access request and identifying the request type of the current access request;
the distribution decision module is used for determining a distribution decision of the current access request based on the request type and sending the distribution decision to the service platform;
the access request identification module is also used for sending the current access request to the service platform;
the service platform comprises:
the website servers are used for processing the received current access request to obtain corresponding response information;
and the distribution and output control module is used for receiving the current access request and a distribution decision corresponding to the current access request, distributing the current access request to at least one website server in the plurality of website servers according to the distribution decision, and feeding back response information obtained by processing of the at least one website server to the client.
Optionally, the client further includes a protection mode selection module and a resolver:
the protection mode selection module is used for outputting a safety protection interface containing a plurality of resource protection modes, responding to selection instructions aiming at the plurality of resource protection modes and generating a current distribution arbitration rule;
the distribution decision module is specifically configured to obtain a distribution decision corresponding to the request type of the current access request from the current distribution arbitration rule;
the arbitrator is used for arbitrating at least one piece of response information fed back by the distribution and output control module;
the service platform further comprises a resource processing module, the resource processing module comprises:
the dynamic resource scheduling system comprises a simulation processing unit, a dynamic resource scheduling unit and a dynamic resource scheduling unit, wherein the simulation processing unit is used for performing simulation processing on dynamic resources in a first website server, the first website server is used for processing static resource requests, and a website server which is used for independently processing the dynamic resource requests in a plurality of website servers is called a second website server;
and the synchronization unit is used for synchronizing the dynamic resources and the static resources in the first website server to the second website server so as to update the corresponding resources in the second website server.
Therefore, compared with the prior art, the access request processing method and the access request processing system provided by the invention have the advantages that the access request sent by the user is not directly sent to any or all website servers, but the request type of the access request is identified firstly, the distribution decision of the current access request is determined, and the current access request is distributed to the corresponding website server for processing according to the distribution decision. It can be seen that, in the embodiment, for different types of access requests, different website servers process the access requests, so that independent processing of dynamic resource requests possibly having "pathogens" is realized, static resources on the website servers which process other types of access requests are prevented from being affected, the security of the static resources on the website servers is improved, malicious attacks on user websites are effectively resisted, and the influence of a dark chain on user access is prevented to a certain extent.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the provided drawings without creative efforts.
Fig. 1 is a schematic structural diagram illustrating an access request processing system according to an embodiment of the present invention;
fig. 2 is a flowchart illustrating an access request processing method according to an embodiment of the present invention;
fig. 3 is a signaling flow diagram illustrating a static resource access request processing method according to an embodiment of the present invention;
fig. 4 is a signaling flow diagram illustrating a dynamic resource access request processing method according to an embodiment of the present invention;
fig. 5a is a schematic flowchart illustrating a static resource access request processing method according to an embodiment of the present invention;
FIG. 5b is a flowchart illustrating a dynamic resource access request processing method according to an embodiment of the present invention;
fig. 5c is a schematic flowchart illustrating an exceptional URL access request processing method according to an embodiment of the present invention;
fig. 6 is a flowchart illustrating another access request processing method according to an embodiment of the present invention;
fig. 7 is a flowchart illustrating a further method for processing an access request according to an embodiment of the present invention;
fig. 8 is a flowchart illustrating a further method for processing an access request according to an embodiment of the present invention;
fig. 9 is a schematic diagram illustrating a hardware structure of an access request processing system according to an embodiment of the present invention;
fig. 10 is a schematic diagram illustrating a hardware structure of a computer device according to an embodiment of the present invention.
Detailed Description
The inventor of the present invention finds that, in the prior art, the Web server does not perform any distinction processing on the access request initiated by the user, and directly feeds back the dynamic resource or the static resource requested by the Web server to the user client, so that the Web server and the user client are attacked by the hidden chain in the dynamic resource access.
Based on the above, the inventor proposes that the access requests initiated by the user can be classified, and for different types of access requests, the access requests are processed and responded according to corresponding processing rules. That is to say, the access to the dynamic resource which may have a security problem is isolated, so that the access process of the user to the static resource cannot be affected, and the security of the static resource of the Web server is greatly improved.
And the inventor also proposes to perform the simulation processing on the dynamic resources to ensure that the access of the dynamic resources is not influenced and the user can normally enjoy the Web service in all directions.
In order to make the above objects, features and advantages of the present invention more comprehensible, embodiments of the present invention are described in detail below with reference to the accompanying drawings, wherein the description is for illustrative purposes only, and not for all purposes. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1, a schematic diagram of a system architecture for implementing the access request processing method provided by the embodiment of the present invention is shown, where the system may include two parts, namely a client 10 and a service platform 20, where:
the client 10 serves as a front end of the system, and is directly oriented to a user, and can display various interfaces such as browsing and operating interfaces, and the types and contents of the front-end display interfaces are often different for different websites, which is not limited in this embodiment.
In this embodiment, the functional modules included in the client 10 for implementing access request processing may include: a protection mode selection module 11, an access request identification module 12, a distribution decision module 13, a resolver 14 and the like.
In practical application, the protection selection module 11 is mainly used to support a client to output a security protection interface including a plurality of resource protection modes, so that a user can select which resource protection mode is currently adopted, and after the protection mode selected by the user is determined, a corresponding distribution arbitration rule is automatically generated. At this time, the distribution arbitration rule may contain a distribution decision corresponding to each type of access request.
The access request identifying module 12 may be configured to identify a request type of a current access request initiated by a user, and send an identification result to the distribution decision module 13, where the distribution decision module 13 obtains a distribution decision of the current access request according to a distribution decision rule determined by the protection mode selecting module.
The arbitrator 14 is used for arbitrating the response information fed back by the web server, and the specific arbitration implementation process is not limited.
The service platform 20 may include a distribution and output control module 21, at least two web servers 22, and a resource processing module 23, and the resource processing module 23 may include a synchronization unit 231 and a mimicry processing unit 232.
In this embodiment, the distribution decision obtained by the distribution decision module 13 may be in the form of an instruction, and sent to the distribution and output control module 21, and the distribution and output control module 21 responds to the received distribution instruction to distribute the current access request to the corresponding website server, where the specifically distributed website server is determined based on the distribution decision content included in the distribution instruction.
The website server 22 may be a Web server, and is configured to process the received access request to obtain response information of the access request, that is, the requested resource, and this embodiment does not limit a specific implementation process of the website server responding to the access request.
The synchronization unit 231 is used to synchronize all resources (including static resources and dynamic resources) of a first website server to a second website server, wherein the first website server may be a website server designated to process static resource requests, and may also be used to process other types of access requests; and the second web server is used for designating the web server for processing the dynamic resource request, and the second web server is not used for processing the static resource request based on the static resource isolation idea provided by the invention. So to speak, when a dynamic resource request is received, it is only distributed to the second web server; for static resource requests or exceptional URL requests, it may be distributed to both web servers simultaneously.
It should be noted that, in this embodiment, only two website servers, namely, the first website server and the second website server, are deployed by the service platform as an example, according to needs, more website servers may be deployed, and a plurality of website servers are designated to process a static resource request or a dynamic resource request, and the implementation process is not limited to the above-mentioned implementation process.
The mimicry processing unit 232 is configured to perform mimicry processing on the dynamic resource in the first web server, such as diversification processing of sentences such as php (Hypertext Preprocessor), sql (Structured Query Language), and the like, to form variant sentences with unchanged original functions and different structures, so that an attacker attacks the sentences such as the original php and sql, and the like, and is ineffective on the variant sentences, thereby increasing the security defense capability of the dynamic resource access of the user, and ensuring the security and reliability of the resource access process of the whole web server.
In practical application, when a user selects a comprehensive resource protection mode and detects that the first website server is updated, the simulation processing unit and the synchronization unit can be triggered to execute the functions, namely, the simulation processing and the unidirectional synchronization processing of the resources are performed at the same time.
Referring to the system architecture diagram shown in fig. 1, a flowchart of an access request processing method according to an embodiment of the present invention is shown in fig. 2, where the method is described from the perspective of a website client on a terminal, that is, from the perspective of a website front end, and the method may include, but is not limited to, the following steps:
step S11, acquiring the current access request;
in practical application, after a user logs in a website, the user may initiate an access request to the Web server through the Web client to request various dynamic resources and/or static resources of the Web server.
In general, the current access request generally includes identification information of the Web client, so that the Web server can reliably feed back the obtained response information to the correct Web client according to the identification information when receiving multiple access requests initiated by different users.
The embodiment can acquire the access request sent by the Web client to the Web server, that is, the access request sent by the Web client is not directly sent to the Web server, but is processed by the computer device provided by the invention. The embodiment does not limit the specific implementation manner of step S11, and the access request may be intercepted by using a hook function, or a communication link between the Web client and the Web server may be modified, so that the access request sent by the Web client can be transmitted to a computer device or the like.
Step S12, identifying the request type of the current access request;
in this embodiment, the access request may be divided into three types of requests, namely, a static resource request, a dynamic resource request, and an exceptional same resource locator URL request, because request contents of different types of access requests are different, the present embodiment may determine the request type of the current access request based on the specific request content of the current access request, and the implementation process of step S12 in this embodiment is not described in detail.
Step S13, based on the request type, determining the distribution decision of the current access request;
optionally, in practical application of this embodiment, before initiating the access request, it may be determined that the system performs a resource protection mode, such as a static resource protection mode and a comprehensive resource protection mode, where the distribution arbitration rules corresponding to different protection modes are different, and then the distribution decisions of different distribution arbitration rules for each type of access request may be different or the same, and the content of the distribution decisions corresponding to different types of access requests included in different distribution arbitration rules is not limited in this embodiment.
As an optional example, the present invention may output, at a website client, a security protection interface including a plurality of resource protection modes, so that a user selects which resource protection mode is currently adopted, and after a selection operation of the user is detected, a corresponding selection instruction is generated, and a distribution arbitration rule corresponding to the selected resource protection mode is obtained in response to the selection instruction.
In the distribution arbitration rule, corresponding distribution decisions may be preset for different types of access requests, and the content of the distribution decisions corresponding to each type of access request is not limited in this embodiment, and may be determined based on the number of Web servers (i.e., Web servers) responding to the access request and the application function of each Web server.
Therefore, after the access type of the current access request is identified, the present embodiment may determine the distribution decision corresponding to the current access request according to the generated distribution arbitration rule. In practical applications, the distribution decision content is different for different types of access requests, and reference may be specifically made to the description of the corresponding embodiments below.
It should be understood that, since the access request for the dynamic resource may hide a malicious hidden link, when determining the distribution arbitration rule, the embodiment generally designates one or more web servers that process the dynamic resource request, and designates another one or more web servers that process the static resource request, and the web servers that process the static resource request cannot be used to process the dynamic resource request, thereby ensuring the isolation of the dynamic resource.
Step S14, sending the current access request and the determined distribution decision to a service platform, and distributing the current access request to a corresponding website server for processing by the service platform according to the distribution decision;
in this embodiment, for different types of current access requests, the determined distribution decision content is different, that is, the website servers to which the current access requests are distributed may be different, so that, after the distribution decision of the current access request is determined, the current access request may be distributed to the website servers according to the content of the current access request, and the specific distribution process may refer to the description of the corresponding embodiment below.
In addition, the present embodiment does not limit the distribution implementation manner of the current access request, the transmission manner of the current access request, and the like.
As an optional example of the present invention, referring to the system architecture diagram shown in fig. 1, after obtaining a distribution decision of a current access request, a distribution decision module of a front-end (i.e., a client of a website) portion may send the distribution decision to a distribution and output control module of a service platform in an instruction form, and the distribution and output control module responds to the distribution instruction, that is, executes the distribution decision, and distributes the current access request to a corresponding website server. Therefore, the front end can realize the distribution of the access request to the website server through the distribution and output control module of the service platform.
And step S15, receiving at least one piece of response information fed back by the service platform, and arbitrating the at least one piece of response information.
As described in the above paragraphs, after the website server processes the received current access request to obtain the response information, the website server may still feed back the response information to the front-end arbitrator through the distribution and output control module on the service platform, and therefore step S15 may specifically be that the arbitrator receives at least one piece of response information fed back by the service platform.
In this embodiment, for different types of access requests, different web servers that feed back response information are used, the arbitration of the arbitrator for the response information is different, and the operation performed based on the arbitration result is also different.
For example, for two types of access requests, namely a static resource request and an exceptional URL request, response information obtained by each website server processing the type of access request can be sent to the resolver for resolution, and when the resolution results are inconsistent, the first website server is taken as the reference, and the resource with errors in the second website server is cleaned; for the dynamic resource request, only the response information of the second website server needs to be fed back to the arbitrator for arbitration.
In this embodiment, the distribution arbitration rule generated based on the security protection mode selected by the user can implement arbitration of the response information. As can be seen, the distribution arbitration rule not only includes the distribution decision of each type of access request, but also includes a resolution rule, and the content of the resolution rule is not limited in this embodiment. Based on this, step S15 may be to arbitrate the received at least one piece of response information according to the distribution arbitration rule.
In summary, in this embodiment, for an access request sent by a user client, the access request is not directly sent to any or all of the website servers, but the request type to which the access request belongs is identified first, and a distribution decision of the current access request is determined, and then the current access request is distributed to the corresponding website server according to the distribution decision. That is to say, for different types of access requests, different website servers process the access requests, so that independent processing of access requests with "pathogens" is realized, static resources on the website servers that process other types of access requests are prevented from being affected, the security of the static resources on the website servers is improved, a user website is effectively prevented from being maliciously attacked, and the influence of a dark chain on user access is avoided to a certain extent.
The present invention provides an optional embodiment, and with reference to a signaling flow diagram of an access request processing method provided in this embodiment shown in fig. 3, the method may be applied to a system architecture shown in fig. 1, in order to describe the access request processing method more clearly, this embodiment describes a main body for executing steps of the method, and in combination with the system architecture shown in fig. 1, it needs to be described that steps executed by several functional modules, namely, an access request identification module, a distribution decision module, and a resolver, are actually executed by a client, and a distribution and output control module, a plurality of website servers, a resource processing module, and the like are deployed on a service platform, and this embodiment performs specific description in order to specify the functional modules executed by the steps more clearly, but an entity for implementing the corresponding method steps is still a terminal device with a corresponding client. As shown in fig. 3, the method may include, but is not limited to, the following steps:
step S21, the access request identification module obtains the current access request and identifies the current access request as a static resource request;
in practical application of this embodiment, the request type may be determined by identifying the request content of the current access request, or the request type may be determined by the identification information included in the request, and the implementation method for identifying the request type of the current access request by the access request identification module is not limited in this embodiment.
Step S22, the access request identification module sends the identification result to the distribution decision module;
optionally, in this embodiment, corresponding classification information may be set for different types of access requests, so that after the access request identification module identifies the request type of the current access request, the classification information corresponding to the request type may be sent to the distribution decision module, so that the distribution decision module knows the request type of the current access request, but is not limited thereto.
Step S23, the distribution decision module obtains the distribution decision of the static resource request and generates a first distribution instruction;
optionally, in practical application of this embodiment, in combination with the system architecture diagram shown in fig. 1, before initiating the access request, the user may determine a protection mode of the security protection mechanism performed by the computer device, and the protection mode selection module automatically generates a distribution arbitration rule corresponding to the protection mode selected by the user, and the generated distribution arbitration rule is sent to the distribution decision module, so that after the distribution decision module knows the request type of the current access request, the distribution decision of the current access request can be quickly and accurately obtained, and a corresponding distribution instruction is generated.
In this embodiment, it is recognized that the current access request is a static resource request, and a distribution instruction for the static resource request may be recorded as a first distribution instruction. It can be seen that the first distribution instruction contains the content of the distribution decision of the static resource request, as if the first distribution instruction is distributed to each website server in the system at a time.
Step S24, the distribution decision module sends the first distribution instruction and the current access request to the distribution and output control module;
the present embodiment may implement transmission of distribution decision content in the form of instructions, but is not limited to the implementation described in the present embodiment.
Step S25, the distribution and output control module responds to the first distribution instruction and distributes the current access request to the first website server and the second website server respectively for processing;
as described in the foregoing embodiment with respect to the content of the distribution arbitration rule, if the received current access request is a static resource request or an exceptional URL request, the current access request may be distributed to both the first website server and the second website server. Therefore, as an executor of the distribution decision, after receiving the first distribution instruction and the current access request (i.e., the static resource request), the distribution and output control module implements the distribution of the static resource request to the web server according to the determined distribution decision of the static resource request.
It should be noted that, in this embodiment, only two website servers are deployed by the service platform as an example, and it is specified that the first website server is in the static resource request, but in order to improve the processing reliability of the access request, the present invention may also specify a plurality of website servers in advance to process the static resource request, so that the distribution and output control module may distribute the current access request to the plurality of website servers, and is not limited to the distribution to the first website server and the second website server described in this embodiment.
Step S26, the distribution and output control module receives the first response information fed back by the first website server and the second response information fed back by the second website server;
in this embodiment, details of the processing procedure after the first website server and the second website server receive the static resource request are not described, that is, details of the implementation method of how the static resource request accesses the website server are not described.
Step S27, the distribution and output control module sends the first response information and the second response information to the resolver;
the distribution and output control module of this embodiment may be used as a communication hub between a front end and a back end service platform of the system, data fed back to the front end by the service platform may be transmitted to a corresponding function module of the front end through the distribution and output control module, and likewise, an instruction or a request sent by the front end to the service platform may be responded to or transmitted through the distribution and output control module.
Step S28, the arbitrator arbitrates the first response information and the second response information, determines the first response information as target response information when the arbitration result is not consistent, and sends a resource cleaning instruction aiming at the second website server to the distribution and output control module;
the arbitration operation performed by the arbitrator in this embodiment may be a comparison and judgment of a plurality of response results fed back by the service platform, where the inconsistency of the arbitration results refers to inconsistency of the first response information and the second response information. For example, if a user accesses a dynamic web page and initiates a dynamic resource request, and if the dynamic resource request sent to a certain website server is attacked, the response information fed back by the website server obtained at the front end is actually information desired by the attacker, rather than information required by the user, in this case, the arbitration result obtained by the arbitrator is inconsistent.
It should be understood that, if the arbitration result is consistent, that is, the first response message and the second response message are the same, any response message may be used as the target response message, so that the client outputs the response message.
Step S29, the distribution and output control module sends the resource cleaning instruction to the resource processing module;
step S210, the resource processing module responds to the resource cleaning instruction and deletes the resource of the second website server;
in step S211, the resource processing module synchronizes the resource on the first website server to the second website server.
The arbitrator at the front end of this embodiment arbitrates each received response message to obtain a corresponding arbitration result, if two arbitration results are obtained for the same access request, the arbitrator can compare the two arbitration results, and if the two arbitration results are not consistent, it indicates that the second website server is in error, at this time, the response message of the first website server (i.e., the website server designated to process the static resource request) is used as a standard, and meanwhile, the resource that is in error in the second website server designated to process the dynamic resource request is cleaned, a synchronization unit in the resource processing module is called, all resources in the first website server are synchronized to the second website server in a one-way manner, and the subsequent reliable operation of the second website server is ensured.
As another embodiment provided by the present invention, different from the description of the static resource request processing procedure in the embodiment corresponding to fig. 3, this embodiment mainly describes a processing procedure in a case where the current access request is a dynamic resource request, and as shown in fig. 4, the method may include:
step S31, the access request identification module obtains the current access request and identifies the current access request as the dynamic resource request;
regarding the identification of the current access request by the access request identification module, reference may be made to the description of the corresponding part of step S21 above.
Step S32, the access request identification module sends the identification result to the distribution decision module;
step S33, the distribution decision module obtains the distribution decision of the dynamic resource request and generates a second distribution instruction;
regarding the obtaining process of the distribution decision of the dynamic resource request, the process is similar to the process of obtaining the distribution decision of the static resource request described in the corresponding part of step S23, and the details of this embodiment are not repeated here.
Step S34, the distribution decision module sends the second distribution instruction and the current access request to the distribution and output control module;
step S35, the distribution and output control module responds to the second distribution instruction and distributes the current access request to the second website server for processing;
in combination with the description of the above embodiment, based on the virus isolation idea provided by the present invention, the dynamic resource access request with a risk possibly existing in the user access request is separately performed on the second website server, so as to ensure that the security risk does not affect the static resource on the first website server, and ensure the security of the static resource.
Therefore, in this embodiment, a second website server for processing the dynamic resource request is preset, and a decision for distributing the dynamic resource request is set to distribute the dynamic resource request to the second website server separately.
As discussed above, in the system architecture shown in fig. 1, the service platform deploys the first web server and the second web server, where the second web server can be used to process the static resource request and the dynamic resource request, but the first web server is used to process the static resource request and is not used to process the dynamic resource request.
Step S36, the distribution and output control module feeds back the response information fed back by the second website server to the arbitrator;
in step S37, the arbitrator arbitrates the received response message.
The arbitrator of this embodiment may determine whether the web server is attacked by arbitrating the response information, and if the arbitrating result indicates that the web server is not attacked, that is, the dynamic resource request does not include the attack information, the client may directly output the received response information, so that the user may view the response result of the initiated dynamic resource request, such as outputting a dynamic web page.
In summary, referring to the flowchart of the access request processing method shown in fig. 5a, when it is determined that the current access request is a static resource request, the distribution and output control module will distribute the static resource request to the first website server and the second website server at the same time, and send the response information obtained by the first website server and the second website server to the resolver for resolution; for the dynamic resource request, as shown in the flowchart of fig. 5b, the distribution and output control module only sends the dynamic resource request to the second website server for processing, and the arbitrator only arbitrates the response information obtained by the second website server, so that the dynamic resource request with a possible security risk is isolated, the threat to the security of the static resource of the first website server is avoided, and the security of the static resource is ensured.
In addition, for an access request initiated by a user, in addition to the static resource request and the dynamic resource request, there may be an exception to the same resource locator URL request, that is, while the user accesses the static resource of the web server, some specific dynamic resource requests, such as an update page request (php), need to be executed, and such specific dynamic resource requests are theoretically "harmless", so this embodiment may not set an independent web server to separately process the exception URL request.
Referring to the flowchart shown in fig. 5c, the processing procedure of the exception URL request is similar to the processing procedure of the static resource request, and after the current access request is identified as the exception URL request, the distribution and output control module may also distribute the exception URL request to the first website server and the second website server at the same time, and send the response information obtained by each of the two website servers to the resolver for resolution. The specific implementation steps may specifically refer to the steps described in the embodiment corresponding to fig. 3, and the present invention is not described in detail herein.
As another optional embodiment of the present invention, on the basis of the foregoing embodiments, as described in the above system embodiment for the function description of the protection mode selection module, before the user initiates an access request, the protection mode of the security protection system of the current website may be configured, for example, a protection mode configuration option is selected in a setup cascade menu of the website, so that the client outputs a security protection interface, and at this time, a plurality of resource protection modes for the user to select, such as a static resource protection mode, a comprehensive resource protection mode, and the like, may be displayed in the security protection interface. After the user selects the currently adopted resource protection mode, the corresponding distribution judgment rule can be automatically generated and sent to the distribution decision module, so that the distribution decision module determines the distribution decision of the current access request.
Based on this, referring to the flowchart of the access request processing method provided by yet another alternative embodiment shown in fig. 6, before the method steps described in the foregoing embodiments, the following steps may also be included:
step 41, outputting a safety protection interface containing a plurality of resource protection modes;
the static resource protection mode generally only protects static resources in the website server, and does not consider the security of dynamic resource access. The overall resource protection mode is to perform security protection on various types of resources. It can be seen that the difference between the two resource protection modes is whether to consider the security of the dynamic resource access, and regarding the security of the action resource access, the dynamic resource may be processed in a mimicry defense manner, which may be specifically described below.
Step 42, generating a selection instruction based on the selection operation of the user on the output multiple resource protection modes;
step 43, responding to the selection instruction, generating the current distribution arbitration rule.
As analyzed above, the distribution arbitration rules of the present embodiment may include distribution decisions corresponding to different types of access requests, and arbitration rules for at least one response message of an access request, and specific contents may refer to the descriptions of the corresponding embodiments above.
Based on this embodiment, it should be understood that, after the distribution decision module in each of the above embodiments obtains the classification information of the current access request, the distribution decision corresponding to the current access request is determined from the received current distribution arbitration rule.
In practical application, if the protection mode selected by the user is a comprehensive resource protection mode, the determined distribution decision of the current access request includes, in addition to which one or more website servers the current access request is distributed to, a step of notifying the resource processing module to perform mimicry processing on the action resource of the first website server, and unidirectionally synchronizing the static resource and the processed dynamic resource in the first website server to the second website server. If the protection mode selected by the user is a static resource protection mode, the resource processing module does not need to perform mimicry processing and resource one-way synchronous processing.
Based on this, referring to the flow diagrams shown in fig. 7 and fig. 8, the present invention further provides another embodiment of an access request processing method, and on the basis of the method steps of the foregoing embodiments, the method may further include:
step S51, detecting an update event for the first web server;
wherein the first web server is a web server designated to handle static resource requests and not available to handle dynamic resource requests; and the content of the update event is not limited in this embodiment.
Step S52, performing mimicry processing on the dynamic resources in the first website server;
step S53, the static resource and the processed dynamic resource in the first web server are synchronized to the second web server to update the corresponding resource in the second web server.
Therefore, the embodiment realizes the real-time resource updating of the website server appointed to independently process the dynamic resource request, and improves the safety.
Optionally, the resource processing module may trigger the synchronization unit and the mimicry processing unit to implement the above operation when it is determined that the second web server is faulty or the first web server is updated. The updating of the first website server may include updating of a user website, and the like, which may be determined according to a requirement of an actual scene, and this embodiment does not limit this.
In combination with the schematic structure of the access request processing system shown in fig. 1 and with reference to the schematic hardware structure of the system shown in fig. 9, an access request processing system provided by an embodiment of the present invention may include a client 10 and a service platform 20;
the client 10 may include a protection mode selection module 11, an access request identification module 12, a distribution decision module 13, and a resolver 14; the service platform 20 may include a distribution and output control module 21, a plurality of website servers 22 (fig. 1 only illustrates two website servers as an example, and they are referred to as a first website server and a second website server), and a resource processing module 23, where the resource processing module 23 may include a synchronization unit 231 and a mimicry processing unit 232.
A protection mode selection module 11, configured to output a security protection interface including multiple resource protection modes, and generate a current distribution arbitration rule in response to a selection instruction for the multiple resource protection modes;
an access request identification module 12, configured to obtain a current access request and identify a request type of the current access request;
in this embodiment, the access request identification module 12 may be further configured to send the current access request to the distribution and output control module 21 of the service platform.
A distribution decision module 13, configured to determine a distribution decision of the current access request based on the request type, and send the distribution decision to a distribution and output control module 21 of the service platform;
in practical application of this embodiment, the distribution decision module 13 may be specifically configured to obtain, from the current distribution arbitration rule, a distribution decision corresponding to the request type of the current access request.
For the content of the distribution decision of each type of access request, reference may be made to the description of the corresponding part of the above method embodiment.
A arbitrator 14 for arbitrating at least one piece of response information fed back by the distribution and output control module 21;
in practical application, if the service platform deploys the first website server and the second website server and specifies that the second website server independently processes the dynamic resource request, the decider 14 is specifically configured to determine that the first response information to the first website server is not consistent with a result of deciding the second response information to the second website server, and the first response information is the target response information, and send a resource cleaning instruction for the second website server to the service platform.
The functional implementation of each functional module in the service platform is described as follows:
a plurality of website servers 22, configured to process the received current access request to obtain corresponding response information;
a distribution and output control module 21, configured to receive the current access request and a distribution decision corresponding to the current access request, distribute the current access request to at least one website server of the multiple website servers according to the distribution decision, and feed back response information processed by the at least one website server to the client;
a simulation processing unit 232, configured to perform simulation processing on a dynamic resource in a first website server, where the first website server is a website server for processing a static resource request, and a website server for independently processing a dynamic resource request in the multiple website servers is referred to as a second website server;
a synchronizing unit 231, configured to synchronize the dynamic resource and the static resource in the first website server to the second website server so as to update the corresponding resource in the second website server.
In addition, after receiving the resource cleaning instruction sent by the arbitrator, the distribution and output control module 21 may respond to the resource cleaning instruction, delete the resource of the second website server, and trigger the synchronization unit to synchronize the static resource and the dynamic resource in the first website server to the second website server.
Optionally, the mimicry processing unit may specifically perform the mimicry processing on the dynamic resource in the first website server after detecting the update event for the first website server, where the content of the update event is not limited in this embodiment, such as a page update event.
In summary, in this embodiment, based on the idea of virus isolation, a dynamic resource access request that may have a security risk is separately sent to a designated second website server for processing, so that the security risk cannot affect the static resource in the first website server, the security of the static resource is ensured, and when it is determined by arbitration that the resource of the second website server is wrong, the resource in the second website server is timely cleared, all the resources in the first website server are synchronized to the second website server, so that the real-time update of the resource of the second website server is realized, and the threat of the dynamic resource in the second website server is further reduced.
In addition, the embodiment can also flexibly select the adopted security protection mode by the user before initiating the access request, and in addition to the security protection mechanism, the embodiment also performs mimicry processing on the dynamic resource in the first website server by using the mimicry defense idea under the condition of determining the comprehensive resource protection mode, so that the security defense capability of the dynamic resource access of the user is increased, and the security and the credibility of the dynamic resource access process of the whole website server are ensured.
An embodiment of the present invention further provides a computer device, and referring to a hardware structure diagram shown in fig. 10, the computer device may include: a communication interface 101, a memory 102, and a processor 103, wherein:
the communication interface 101 may be a wired or wireless communication interface, such as a WIFI interface, a GPRS communication interface, and the like, and the present embodiment does not limit the type and structure of the communication interface.
The memory 102 may be used to store a program for implementing the access request processing method provided by each of the above embodiments.
It should be noted that, for different sides of the application, such as the terminal side or the service side, the memory stores the program of the access request processing method implemented by the corresponding side.
Each module or unit described in the above system embodiment may be stored in the corresponding memory as a program unit, and the processor executes the program unit stored in the memory to implement the corresponding function.
The memory may include volatile memory in a computer readable medium, Random Access Memory (RAM) and/or nonvolatile memory such as Read Only Memory (ROM) or flash memory (flash RAM), and the memory includes at least one memory chip.
The processor 103 is configured to load and execute the program stored in the memory to implement the steps of the access request processing method, and the specific implementation steps may refer to the descriptions of the corresponding parts of the above method embodiments.
In practical applications, the computer device may be a terminal device or a server, and when the computer device is a product on different sides, the memory stores a program of an access request processing method implemented by the product.
Finally, it should be noted that, in the embodiments, relational terms such as first, second and the like are used solely to distinguish one operation or unit from another operation or unit, and do not necessarily require or imply any actual relationship or order between the units or operations.
The embodiments in the present description are described in a progressive manner, each embodiment focuses on differences from other embodiments, and the same and similar parts among the embodiments are referred to each other. For the system disclosed by the embodiment, the description is relatively simple because the system corresponds to the method disclosed by the embodiment, and the relevant points can be referred to the method part for description.
Those of skill would further appreciate that the various illustrative elements and algorithm steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, computer software, or combinations of both, and that the various illustrative components and steps have been described above generally in terms of their functionality in order to clearly illustrate this interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
The steps of a method or algorithm described in connection with the embodiments disclosed herein may be embodied directly in hardware, in a software module executed by a processor, or in a combination of the two. A software module may reside in Random Access Memory (RAM), memory, Read Only Memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present invention. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the invention. Thus, the present invention is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (9)

1. An access request processing method, the method comprising:
acquiring a current access request, and identifying the request type of the current access request;
determining a distribution decision of the current access request based on the request type;
sending the current access request and the determined distribution decision to a service platform, and distributing the current access request to at least one website server for processing by the service platform according to the distribution decision;
wherein distributing, by the service platform according to the distribution decision, the current access request to at least one website server for processing comprises: if the distribution decision is a distribution decision corresponding to a static resource request or an exceptional same resource locator URL request, respectively distributing the current access request to a first website server and a second website server for processing;
and if the distribution decision is a distribution decision corresponding to the dynamic resource request, distributing the current access request to the second website server for processing.
2. The method of claim 1, further comprising:
receiving at least one piece of response information fed back by the service platform for the current access request;
and arbitrating the at least one piece of response information.
3. The method of claim 2, wherein said arbitrating the at least one response message if the current access request is a static resource request comprises:
judging first response information obtained by the first website server and second response information obtained by the second website server;
and if the judgment results of the first response information and the second response information are not consistent, determining that the first response information is target response information, and sending a resource cleaning instruction aiming at the second website server to a service platform.
4. The method according to any one of claims 1 to 3, further comprising:
outputting a safety protection interface comprising a plurality of resource protection modes;
responding to a selection instruction aiming at the plurality of resource protection modes, and generating a current distribution arbitration rule;
the determining a distribution decision of the current access request based on the request type includes:
and obtaining a distribution decision corresponding to the request type of the current access request from the current distribution arbitration rule.
5. An access request processing method, the method comprising:
receiving a current access request sent by a client and a corresponding distribution decision;
according to the distribution decision, distributing the current access request to at least one website server for processing;
feeding back response information obtained by processing of the at least one website server to the client;
the service platform is deployed with a first website server and a second website server, and the distributing the current access request to at least one website server for processing according to the distribution decision comprises the following steps:
if the distribution decision is a distribution decision corresponding to a static resource request or an exceptional same resource locator URL request, respectively distributing the current access request to a first website server and a second website server for processing;
and if the distribution decision is a distribution decision corresponding to the dynamic resource request, distributing the current access request to the second website server for processing.
6. The method of claim 5, wherein if the distribution decision is a distribution decision corresponding to a static resource request, the method further comprises:
receiving a resource cleaning instruction aiming at the second website server and sent by a client;
responding to the resource cleaning instruction, and deleting the resources of the second website server;
and synchronizing the static resources and the dynamic resources in the first website server to the second website server.
7. The method of claim 5 or 6, further comprising:
detecting an update event for the first web server;
performing mimicry processing on the dynamic resources in the first website server;
and synchronizing the static resources in the first website server and the processed dynamic resources to the second website server so as to update the corresponding resources in the second website server.
8. An access request processing system, the system comprising a client and a service platform:
wherein the client comprises:
the access request identification module is used for acquiring a current access request and identifying the request type of the current access request;
the distribution decision module is used for determining a distribution decision of the current access request based on the request type and sending the distribution decision to the service platform;
the access request identification module is also used for sending the current access request to the service platform;
the service platform comprises:
the website servers are used for processing the received current access request to obtain corresponding response information;
the distribution and output control module is used for receiving the current access request and a distribution decision corresponding to the current access request, distributing the current access request to at least one website server in the plurality of website servers according to the distribution decision, and feeding back response information processed by the at least one website server to the client;
wherein the server platform includes a first website server and a second website server, and the distribution and output control module distributes the current access request to at least one of the plurality of website servers for processing according to the distribution decision, including:
if the distribution decision is a distribution decision corresponding to a static resource request or an exceptional same resource locator URL request, respectively distributing the current access request to a first website server and a second website server for processing;
and if the distribution decision is a distribution decision corresponding to the dynamic resource request, distributing the current access request to the second website server for processing.
9. The system of claim 8, wherein the client further comprises a guarded mode selection module and a resolver:
the protection mode selection module is used for outputting a safety protection interface containing a plurality of resource protection modes, responding to selection instructions aiming at the plurality of resource protection modes and generating a current distribution arbitration rule;
the distribution decision module is specifically configured to obtain a distribution decision corresponding to the request type of the current access request from the current distribution arbitration rule;
the arbitrator is used for arbitrating at least one piece of response information fed back by the distribution and output control module;
the distribution and output control module is further configured to receive a resource cleaning instruction, which is sent by the resolver and is directed to the second website server, respond to the resource cleaning instruction, delete the resource of the second website server, and trigger the synchronization unit;
the service platform further comprises a resource processing module, the resource processing module comprises:
the dynamic resource scheduling system comprises a simulation processing unit, a dynamic resource scheduling unit and a dynamic resource scheduling unit, wherein the simulation processing unit is used for performing simulation processing on dynamic resources in a first website server, the first website server is used for processing static resource requests, and a website server which is used for independently processing the dynamic resource requests in a plurality of website servers is called a second website server;
and the synchronization unit is used for synchronizing the dynamic resources and the static resources in the first website server to the second website server so as to update the corresponding resources in the second website server.
CN201811106556.3A 2018-09-21 2018-09-21 Access request processing method and system Active CN108900558B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811106556.3A CN108900558B (en) 2018-09-21 2018-09-21 Access request processing method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811106556.3A CN108900558B (en) 2018-09-21 2018-09-21 Access request processing method and system

Publications (2)

Publication Number Publication Date
CN108900558A CN108900558A (en) 2018-11-27
CN108900558B true CN108900558B (en) 2021-03-23

Family

ID=64359504

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811106556.3A Active CN108900558B (en) 2018-09-21 2018-09-21 Access request processing method and system

Country Status (1)

Country Link
CN (1) CN108900558B (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111083113A (en) * 2019-11-15 2020-04-28 华东计算技术研究所(中国电子科技集团公司第三十二研究所) Mimicry distribution system, method and medium
CN111027945A (en) * 2019-12-27 2020-04-17 四川亨通网智科技有限公司 Scenic spot official website system
CN111935103B (en) * 2020-07-22 2023-04-07 河南信大网御科技有限公司 System and method for recursive simulation of executive service function
CN112261090B (en) * 2020-09-28 2022-06-17 成都长虹网络科技有限责任公司 Web data processing method and device, computer equipment and readable storage medium
CN112182018B (en) * 2020-10-16 2023-04-21 华东计算技术研究所(中国电子科技集团公司第三十二研究所) Web application-oriented mimicry construction database access system and method
CN112000496B (en) * 2020-10-27 2021-02-09 苏州思必驰信息科技有限公司 Access method and device of third-party information source API and implementation method thereof
CN112887410B (en) * 2021-01-28 2022-12-20 郑州市景安网络科技股份有限公司 Running method, device, equipment and storage medium of web service program
CN116015978B (en) * 2023-02-13 2023-12-05 中国南方电网有限责任公司 Heterogeneous redundant flow detection system based on mimicry safety technology

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103347089A (en) * 2013-07-16 2013-10-09 星云融创(北京)信息技术有限公司 Method and device for separating and accelerating dynamic resources and static resources of website
CN103905472A (en) * 2012-12-25 2014-07-02 中国移动通信集团江苏有限公司 Cloud storage method and system for access through webpage mode
CN106202547A (en) * 2016-07-26 2016-12-07 努比亚技术有限公司 A kind of station field signal method, device and a kind of web station system
CN106874755A (en) * 2017-01-22 2017-06-20 中国人民解放军信息工程大学 The consistent escape error processing apparatus of majority and its method based on mimicry Prevention-Security zero-day attacks
CN107454082A (en) * 2017-08-07 2017-12-08 中国人民解放军信息工程大学 Secure cloud service construction method and device based on mimicry defence
CN107707574A (en) * 2017-11-23 2018-02-16 四川长虹电器股份有限公司 A kind of anti-reptile method based on the behavior of access

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2084881B1 (en) * 2006-09-28 2012-03-28 Rayv Inc. System and methods for Peer-to-Peer Media Streaming

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103905472A (en) * 2012-12-25 2014-07-02 中国移动通信集团江苏有限公司 Cloud storage method and system for access through webpage mode
CN103347089A (en) * 2013-07-16 2013-10-09 星云融创(北京)信息技术有限公司 Method and device for separating and accelerating dynamic resources and static resources of website
CN106202547A (en) * 2016-07-26 2016-12-07 努比亚技术有限公司 A kind of station field signal method, device and a kind of web station system
CN106874755A (en) * 2017-01-22 2017-06-20 中国人民解放军信息工程大学 The consistent escape error processing apparatus of majority and its method based on mimicry Prevention-Security zero-day attacks
CN107454082A (en) * 2017-08-07 2017-12-08 中国人民解放军信息工程大学 Secure cloud service construction method and device based on mimicry defence
CN107707574A (en) * 2017-11-23 2018-02-16 四川长虹电器股份有限公司 A kind of anti-reptile method based on the behavior of access

Also Published As

Publication number Publication date
CN108900558A (en) 2018-11-27

Similar Documents

Publication Publication Date Title
CN108900558B (en) Access request processing method and system
US20200177552A1 (en) Methods and apparatus for malware threat research
US11122067B2 (en) Methods for detecting and mitigating malicious network behavior and devices thereof
CN109067815B (en) Attack event tracing analysis method, system, user equipment and storage medium
CN112910857B (en) Method for verifying security
US9450977B2 (en) Systems and methods for updating content detection devices and systems
US11290468B2 (en) Content delivery network (CDN) bot detection using primitive and compound feature sets
US8739287B1 (en) Determining a security status of potentially malicious files
US8677493B2 (en) Dynamic cleaning for malware using cloud technology
US20200106790A1 (en) Intelligent system for mitigating cybersecurity risk by analyzing domain name system traffic
CN110166435B (en) Mimicry Web gateway system and method for dynamic scheduling by adopting load balancing
CN107896219B (en) Method, system and related device for detecting website vulnerability
US8250138B2 (en) File transfer security system and method
US20170034091A1 (en) Dynamic attachment delivery in emails for advanced malicious content filtering
US20200106791A1 (en) Intelligent system for mitigating cybersecurity risk by analyzing domain name system traffic metrics
CN111083113A (en) Mimicry distribution system, method and medium
WO2020257428A1 (en) Dynamically controlling access to linked content in electronic communications
CN110084041A (en) Querying method, device, client, management end and the storage medium of virus document
US20230224314A1 (en) Session based anomaly dectection
US11636198B1 (en) System and method for cybersecurity analyzer update and concurrent management system
US20240039912A1 (en) Security monitoring utilizing device signature detection
US20230069731A1 (en) Automatic network signature generation
CN117729009A (en) Asset protection method, device, electronic equipment and computer readable storage medium
CN112395604A (en) System monitoring login protection method, client, server and storage medium
CN115130116A (en) Business resource access method, device, equipment, readable storage medium and system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
CB03 Change of inventor or designer information

Inventor after: Han Shoukui

Inventor after: Liu Hao

Inventor before: Zhang Zheng

Inventor before: Wu Jiangxing

Inventor before: Liu Hao

CB03 Change of inventor or designer information
GR01 Patent grant
GR01 Patent grant