CN111212031A - Control method and device for interface access frequency, electronic equipment and storage medium - Google Patents
Control method and device for interface access frequency, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN111212031A CN111212031A CN201911271349.8A CN201911271349A CN111212031A CN 111212031 A CN111212031 A CN 111212031A CN 201911271349 A CN201911271349 A CN 201911271349A CN 111212031 A CN111212031 A CN 111212031A
- Authority
- CN
- China
- Prior art keywords
- access
- access frequency
- interface
- user
- control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/25—Integrating or interfacing systems involving database management systems
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/16—Threshold monitoring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1458—Denial of Service
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- Databases & Information Systems (AREA)
- Theoretical Computer Science (AREA)
- Data Mining & Analysis (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- User Interface Of Digital Computer (AREA)
Abstract
The invention provides a method and a device for controlling interface access frequency, electronic equipment and a storage medium. The method comprises the following steps: configuring an interface access frequency strategy database, wherein the interface access frequency strategy database is used for recording user characteristic information of a user and an access frequency control rule and/or parameter of the user; receiving an access request of a user to an interface, and performing access control on the interface access frequency of the interface, wherein the access control comprises the following steps: when the access request contains user characteristic information, searching an access frequency control rule and/or parameter of the user according to the user characteristic information; and when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter. The invention improves the anti-brushing function of the access interface and also improves the accuracy of controlling the access frequency.
Description
Technical Field
The present invention relates to the field of communications, and in particular, to a method and an apparatus for controlling an interface access frequency, an electronic device, and a storage medium.
Background
With the rapid development of the internet and finance, various trading platforms are more and more, and the online access amount of the interconnected trading platforms is more and more. Generally, a service server in a network faces massive clients, wherein large-scale access caused by malicious attack, traffic surge or activity and the like is not lacked, and if access frequency of a certain client is not effectively controlled, the whole cluster of the service server is easily crashed, so that normal access of other clients is influenced.
In the prior art, when access frequency needs to be controlled, a frequency control module is generally deployed on a single service server in a service server cluster, and access restriction is made on a certain Internet Protocol (IP) or a client with some characteristics and the like by the frequency control module; or, the frequency control module is separately deployed in the service server cluster, and the frequency control module uniformly limits the access of all the clients.
The control method only aims at the access frequency of a single service server or uniformly controls all the clients, and when the cluster load is uneven, the access frequency is easily controlled to be inaccurate, so that the service is threatened, namely the execution of the service is influenced; the frequency control module separately arranged in the service server cluster faces the impact of a query rate per Second (QPS) of a high frequency, and when the QPS is very high or the network is abnormal or the frequency control module is abnormal, there is a risk of the service server crashing, so that the service server cannot effectively control the access frequency.
In summary, it is necessary to provide a more efficient control method.
Disclosure of Invention
In order to solve the above problem, the present invention provides a method for controlling an interface access frequency, comprising: configuring an interface access frequency strategy database, wherein the interface access frequency strategy database is used for recording user characteristic information of a user and an access frequency control rule and/or parameter of the user; receiving an access request of a user to an interface, and performing access control on the interface access frequency of the interface, wherein the access control comprises the following steps: when the access request contains user characteristic information, searching an access frequency control rule and/or parameter of the user according to the user characteristic information; and when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter.
Preferably, the method further comprises the following steps: and when the access frequency control rule and/or parameter matched with the user characteristic information is not found, establishing the access frequency control rule and/or parameter in the access frequency policy database for the user according to a preset configuration rule.
Preferably, the method further comprises the following steps: configuring an interface access frequency control switch; and detecting the state of an interface access frequency control switch, and stopping the access control when the control switch is detected to be closed.
Preferably, the access frequency control rule includes: the number of user accesses to a particular interface is limited.
Preferably, the access frequency control rule further includes: when the number of accesses by a user to a particular interface within a particular time period is greater than a control threshold, access by the user to the interface is denied.
Preferably, the access frequency control rule further includes: and returning error information to the client corresponding to the user under the condition that the access times are greater than the control threshold value.
Preferably, the control parameters include at least one of: current number of accesses, current access frequency, recent access time interval, current access time, access number threshold, access frequency threshold, access interval time threshold, allowed access time period.
Preferably, the interface access frequency policy database records the current access state of the user, and updates the access frequency control parameter according to the current access state.
In addition, the present invention also provides a control device for interface access frequency, the control device comprising: the first configuration module is used for configuring an interface access frequency strategy database, and the interface access frequency strategy database is used for recording user characteristic information of a user and an access frequency control rule and/or parameter of the user; a control module, configured to receive an access request from a user to an interface, and perform access control on an interface access frequency of the interface, where the access control includes: when the access request contains user characteristic information, searching an access frequency control rule and/or parameter of the user according to the user characteristic information; and when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter.
Preferably, the control device includes an inquiry module, and when the access frequency control rule and/or parameter matching with the user feature information is not found, the inquiry module establishes the access frequency control rule and/or parameter in the access frequency policy database for the user according to a predetermined configuration rule.
Preferably, the control device includes: a second configuration module for configuring an interface access frequency control switch; and the monitoring module is used for detecting the state of an interface access frequency control switch, and stopping the access control when the control switch is detected to be closed.
Preferably, the access frequency control rule includes: the number of user accesses to a particular interface is limited.
Preferably, the access frequency control rule further includes: when the number of accesses by a user to a particular interface within a particular time period is greater than a control threshold, access by the user to the interface is denied.
Preferably, the access frequency control rule further includes: and returning error information to the client corresponding to the user under the condition that the access times are greater than the control threshold value.
Preferably, the control parameters include at least one of: current number of accesses, current access frequency, recent access time interval, current access time, access number threshold, access frequency threshold, access interval time threshold, allowed access time period.
Preferably, the control device further comprises a recording module, wherein the recording module records the current access state of the user, stores the current access state into the interface access frequency policy database, and updates the access frequency control parameter according to the current access state.
In addition, the present invention also provides an electronic device, wherein the electronic device includes: a processor; and a memory storing computer-executable instructions that, when executed, cause the processor to perform the data dissemination method of the present invention.
Furthermore, the present invention also provides a computer-readable storage medium, wherein the computer-readable storage medium stores one or more programs which, when executed by a processor, implement the data dissemination method of the present invention.
Advantageous effects
Compared with the prior art, the control method provided by the invention has the advantages that the target user is efficiently judged by configuring the interface access frequency control switch, the frequent access of the target user is effectively controlled, the anti-brushing function of the access interface is improved, and the accuracy of controlling the access frequency is also improved.
Drawings
In order to make the technical problems solved by the present invention, the technical means adopted and the technical effects obtained more clear, the following will describe in detail the embodiments of the present invention with reference to the accompanying drawings. It should be noted, however, that the drawings described below are only illustrations of exemplary embodiments of the invention, from which other embodiments can be derived by those skilled in the art without inventive faculty.
Fig. 1 is a flowchart of an example of a method of controlling an interface access frequency according to embodiment 1 of the present invention.
Fig. 2 is a diagram of another example of a control method of interface access frequency of embodiment 1 of the present invention.
Fig. 3 is a flowchart of still another example of the interface access frequency control method of embodiment 1 of the present invention.
Fig. 4 is a block diagram showing an example of a control device according to embodiment 2 of the present invention.
Fig. 5 is a block diagram showing another example of the control device according to embodiment 2 of the present invention.
FIG. 6 is a block diagram showing a configuration of still another example of a control device according to embodiment 2 of the present invention
Fig. 7 is a block diagram of an exemplary embodiment of an electronic device according to the present invention.
Fig. 8 is a block diagram of an exemplary embodiment of a computer-readable medium according to the present invention.
Detailed Description
Exemplary embodiments of the present invention will now be described more fully with reference to the accompanying drawings. The exemplary embodiments, however, may be embodied in many different forms and should not be construed as limited to the embodiments set forth herein. Rather, these exemplary embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the concept of the invention to those skilled in the art. The same reference numerals denote the same or similar elements, components, or parts in the drawings, and thus their repetitive description will be omitted.
Features, structures, characteristics or other details described in a particular embodiment do not preclude the fact that the features, structures, characteristics or other details may be combined in a suitable manner in one or more other embodiments in accordance with the technical idea of the invention.
In describing particular embodiments, the present invention has been described with reference to features, structures, characteristics or other details that are within the purview of one skilled in the art to provide a thorough understanding of the embodiments. One skilled in the relevant art will recognize, however, that the invention may be practiced without one or more of the specific features, structures, characteristics, or other details.
The flow charts shown in the drawings are merely illustrative and do not necessarily include all of the contents and operations/steps, nor do they necessarily have to be performed in the order described. For example, some operations/steps may be decomposed, and some operations/steps may be combined or partially combined, so that the actual execution sequence may be changed according to the actual situation.
The block diagrams shown in the figures are functional entities only and do not necessarily correspond to physically separate entities. I.e. these functional entities may be implemented in the form of software, or in one or more hardware modules or integrated circuits, or in different networks and/or processor means and/or microcontroller means.
It will be understood that, although the terms first, second, third, etc. may be used herein to describe various elements, components, or sections, these terms should not be construed as limiting. These phrases are used to distinguish one from another. For example, a first device may also be referred to as a second device without departing from the spirit of the present invention.
The term "and/or" and/or "includes any and all combinations of one or more of the associated listed items.
Example 1
Next, a control method of an interface access frequency of the present invention will be described with reference to fig. 1 to 3.
Fig. 1 is a flowchart of a method for controlling an interface access frequency according to the present invention. As shown in fig. 1, a method for controlling an access frequency of an interface includes the following steps.
Step S101, configuring an interface access frequency strategy database, wherein the interface access frequency strategy database is used for recording user characteristic information of a user and an access frequency control rule and/or parameter of the user.
Step S102, receiving an access request of a user to an interface, and performing access control on the interface access frequency of the interface, wherein the access control comprises the following steps:
when the access request contains user characteristic information, searching an access frequency control rule and/or parameter of the user according to the user characteristic information;
and when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter.
Specifically, in step S101, an interface access frequency policy database is configured, where the interface access frequency policy database is used to record user feature information of a user and an access frequency control rule and/or parameter of the user.
In this embodiment, the interface access frequency policy database is mainly set for the client accessing various access interfaces, and is used to query the access frequency control rule and/or parameter corresponding to the user access, so as to control the access of the access interface.
Specifically, for example, a switch control is defined in msf, the switch control is used for access control of the access interface, in the present invention, the control method further includes configuring an access frequency policy database, the access frequency policy database includes an access frequency policy for each access interface to be access-controlled, and the access frequency policy is to control the user access to the access interface through access frequency control rules and/or parameters.
Next, in step S102, a user access request to the interface is received.
Specifically, the client may be integrated on a terminal such as a mobile phone or a computer, and when a user needs to access, for example, a shopping APP at the client, the client sends an access request to the control device, where the access request may carry, for example, a client identifier or user feature information.
Further, the client identifier may be a client name, a client number, and the like, and may be composed of numbers, letters, and/or words, and the specific content is not limited herein. In other examples, the client may be the user's IP address (Internet Protocol) or the user number.
In this embodiment, the access request is, for example, an HTTP (Hyper Text Transfer Protocol) request. The access request packet body comprises request line data, request header data and request data. The request line data comprises a request method and a request protocol. The request header data of the access request packet body comprises an IP address of a user, an access request address and a bill. In other examples, the request header data may further include an encoding mode and a compression mode accepted by the terminal where the user is located. The request data is used to indicate the specific content of the access request, such as message push, message bulk, etc.
It should be noted that the type of the access request may be flexibly set according to actual needs, for example, the type of the access request may be an APP access request, a mail service access request, or a microblog service access request, and specific contents are not limited herein.
In the present invention, the access frequency refers to the number of times a user accesses an IP address or a user number of a user in a certain time.
In this example, the control method of the present invention further comprises configuring an interface access frequency control switch. And starting access control on each access interface in the state that the interface access frequency control switch is opened.
Specifically, the control method further includes a step S103 of determining whether to open the interface access frequency control switch.
For example, when a user is accessing the mosaic APP, it is determined that the interface accessed by the user is an access frequency controlled interface, and thus, if the interface access frequency control switch is in the on state (yes in step S103), the access frequency policy database is enabled, and it is checked whether the access frequency of the interface matches the access frequency recorded in the access frequency policy database, in other words, whether the access frequency of the interface is already recorded in the access frequency policy database. If the interface access frequency control switch is in the off state (no in step S103), access control is not performed.
Further, as shown in fig. 2, the control method further includes a searching step S201, in other words, the enabling access frequency policy database further includes searching for an access frequency control rule and/or parameter matching the user feature information. And when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter.
Further, a white list and a black list are recorded in the access frequency policy database based on the history data.
Specifically, as shown in fig. 3, the control method further includes a step S301, where the step S301 is a step of determining whether the visiting user is recorded in the visiting frequency policy database. In other words, whether the access frequency at the interface is recorded in the access frequency policy database, and more specifically, whether the accessing user is recorded in a white list or a black list of the access frequency policy database.
If the user identification information is recorded in the blacklist, searching an access frequency control rule and/or parameter matched with the user characteristic information, and controlling the access of the interface according to the corresponding access rule and/or parameter, wherein the access rule is, for example, a preset frequency (namely, a preset number of times of the user IP or the user number in a preset time). Further, the access frequency control rule includes: the number of user accesses to a particular interface is limited.
Further, the control parameter includes at least one of: current number of accesses, current access frequency, recent access time interval, current access time, access number threshold, access frequency threshold, access interval time threshold, allowed access time period.
Next, in step S202, it is determined whether the access frequency of the interface exceeds a predetermined frequency, and if the access frequency exceeds the predetermined frequency, an error message is returned to the client, and the access information and the access frequency of the user are recorded in a blacklist of the access frequency policy database. In the above case, the access frequency control rule further includes: when the number of accesses by a user to a particular interface within a particular time period is greater than a control threshold, access by the user to the interface is denied.
In the event that the predetermined frequency is not exceeded, the access information and access frequency for the user are recorded in a white list of an access frequency policy database.
Further, if it is recorded in the white list and it is judged that the user is a non-target user based on the user characteristic information, access control may not be performed.
In another example, when the access frequency control rule and/or parameter matching the user characteristic information is not found (or is not recorded in a white list or a black list), the access frequency control rule and/or parameter is established in the access frequency policy database for the user according to a predetermined configuration rule.
In addition, as shown in fig. 3, the control method further includes an updating step, in the updating step, the interface access frequency policy database records the current access state of the user, and updates the access frequency control parameter according to the current access state.
Preferably, the control method of the present invention further comprises detecting a state of the interface access frequency control switch. Stopping the access control when the control switch is detected to be closed. In other examples, the interface access frequency control switch may be turned off as needed, and access frequency control may not be used.
The foregoing is only a preferred embodiment and is not to be construed as limiting the invention. In other examples, step S102 may also be split into two or more steps, see in particular fig. 3.
Those skilled in the art will appreciate that all or part of the steps to implement the above-described embodiments are implemented as programs (computer programs) executed by a computer data processing apparatus. When the computer program is executed, the method provided by the invention can be realized. Furthermore, the computer program may be stored in a computer readable storage medium, which may be a readable storage medium such as a magnetic disk, an optical disk, a ROM, a RAM, or a storage array composed of a plurality of storage media, such as a magnetic disk or a magnetic tape storage array. The storage medium is not limited to centralized storage, but may be distributed storage, such as cloud storage based on cloud computing.
Compared with the prior art, the control method provided by the invention has the advantages that the target user is efficiently judged by configuring the interface access frequency control switch, the frequent access of the target user is effectively controlled, the anti-brushing function of the access interface is improved, and the accuracy of controlling the access frequency is also improved.
Example 2
Embodiments of the apparatus of the present invention are described below, which may be used to perform method embodiments of the present invention. The details described in the device embodiments of the invention should be regarded as complementary to the above-described method embodiments; reference is made to the above-described method embodiments for details not disclosed in the apparatus embodiments of the invention.
Referring to fig. 4, 5 and 6, the present invention also provides a control apparatus 400 for controlling an interface access frequency, the control apparatus 400 including: a first configuration module 401, configured to configure an interface access frequency policy database, where the interface access frequency policy database is used to record user feature information of a user and an access frequency control rule and/or parameter of the user; a control module 402, configured to receive an access request from a user for an interface, and perform access control on an interface access frequency of the interface, where the access control includes: when the access request contains user characteristic information, searching an access frequency control rule and/or parameter of the user according to the user characteristic information; and when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter.
Preferably, the control device 400 includes an inquiry module 403, and when the access frequency control rule and/or parameter matching with the user feature information is not found, the inquiry module 403 establishes the access frequency control rule and/or parameter in the access frequency policy database for the user according to a predetermined configuration rule.
Preferably, the control device 400 includes a second configuration module 404, where the second configuration module 404 is configured to configure an interface access frequency control switch.
Further, as shown in fig. 5, the control device 400 further includes a monitoring module 501, where the monitoring module is configured to detect a state of an interface access frequency control switch, and stop the access control when detecting that the control switch is turned off.
Preferably, the access frequency control rule includes: the number of user accesses to a particular interface is limited.
Preferably, the access frequency control rule further includes: when the number of accesses by a user to a particular interface within a particular time period is greater than a control threshold, access by the user to the interface is denied.
Preferably, the access frequency control rule further includes: and returning error information to the client corresponding to the user under the condition that the access times are greater than the control threshold value.
Preferably, the control parameters include at least one of: current number of accesses, current access frequency, recent access time interval, current access time, access number threshold, access frequency threshold, access interval time threshold, allowed access time period.
Preferably, as shown in fig. 6, the control device further includes a recording module 601, where the recording module records the current access state of the user, stores the current access state into the interface access frequency policy database, and updates the access frequency control parameter according to the current access state.
In embodiment 2, the same portions as those in embodiment 1 are not described.
Those skilled in the art will appreciate that the modules in the above-described embodiments of the apparatus may be distributed as described in the apparatus, and may be correspondingly modified and distributed in one or more apparatuses other than the above-described embodiments. The modules of the above embodiments may be combined into one module, or further split into multiple sub-modules.
Example 3
In the following, embodiments of the electronic device of the present invention are described, which may be regarded as specific physical implementations for the above-described embodiments of the method and apparatus of the present invention. Details described in the embodiments of the electronic device of the invention should be considered supplementary to the embodiments of the method or apparatus described above; for details which are not disclosed in embodiments of the electronic device of the invention, reference may be made to the above-described embodiments of the method or the apparatus.
Fig. 7 is a block diagram of an exemplary embodiment of an electronic device according to the present invention. An electronic apparatus 200 according to this embodiment of the present invention is described below with reference to fig. 7. The electronic device 200 shown in fig. 7 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiments of the present invention.
As shown in fig. 7, the electronic device 200 is embodied in the form of a general purpose computing device. The components of the electronic device 200 may include, but are not limited to: at least one processing unit 210, at least one memory unit 220, a bus 230 connecting different system components (including the memory unit 220 and the processing unit 210), a display unit 240, and the like.
Wherein the storage unit stores program code executable by the processing unit 210 to cause the processing unit 210 to perform the steps according to various exemplary embodiments of the present invention described in the above-mentioned electronic prescription flow processing method section of the present specification. For example, the processing unit 210 may perform the steps as shown in fig. 1.
The memory unit 220 may include readable media in the form of volatile memory units, such as a random access memory unit (RAM)2201 and/or a cache memory unit 2202, and may further include a read only memory unit (ROM) 2203.
The storage unit 220 may also include a program/utility 2204 having a set (at least one) of program modules 2205, such program modules 2205 including, but not limited to: an operating system, one or more application programs, other program modules, and program data, each of which, or some combination thereof, may comprise an implementation of a network environment.
The electronic device 200 may also communicate with one or more external devices 300 (e.g., keyboard, pointing device, bluetooth device, etc.), with one or more devices that enable a user to interact with the electronic device 200, and/or with any devices (e.g., router, modem, etc.) that enable the electronic device 200 to communicate with one or more other computing devices. Such communication may occur via an input/output (I/O) interface 250. Also, the electronic device 200 may communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network such as the Internet) via the network adapter 260. The network adapter 260 may communicate with other modules of the electronic device 200 via the bus 230. It should be appreciated that although not shown in the figures, other hardware and/or software modules may be used in conjunction with the electronic device 200, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.
Through the above description of the embodiments, those skilled in the art will readily understand that the exemplary embodiments of the present invention described herein may be implemented by software, or by software in combination with necessary hardware. Therefore, the technical solution according to the embodiment of the present invention can be embodied in the form of a software product, which can be stored in a computer-readable storage medium (which can be a CD-ROM, a usb disk, a removable hard disk, etc.) or on a network, and includes several instructions to make a computing device (which can be a personal computer, a server, or a network device, etc.) execute the above-mentioned method according to the present invention. The computer program, when executed by a data processing apparatus, enables the computer readable medium to implement the above-described method of the invention, namely: and training the created user risk control model by using APP download sequence vector data and overdue information of the historical user as training data, and calculating the financial risk prediction value of the target user by using the created user risk control model.
As shown in fig. 8, the computer program may be stored on one or more computer readable media. The computer readable medium may be a readable signal medium or a readable storage medium. A readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples (a non-exhaustive list) of the readable storage medium include: an electrical connection having one or more wires, a portable disk, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing.
The computer readable storage medium may include a propagated data signal with readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A readable storage medium may also be any readable medium that is not a readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code embodied on a readable storage medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
Program code for carrying out operations for aspects of the present invention may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, C + + or the like and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computing device, partly on the user's device, as a stand-alone software package, partly on the user's computing device and partly on a remote computing device, or entirely on the remote computing device or server. In the case of a remote computing device, the remote computing device may be connected to the user computing device through any kind of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or may be connected to an external computing device (e.g., through the internet using an internet service provider).
In summary, the invention may be implemented in hardware, or in software modules running on one or more processors, or in a combination thereof. Those skilled in the art will appreciate that some or all of the functionality of some or all of the components in embodiments in accordance with the invention may be implemented in practice using a general purpose data processing device such as a microprocessor or a Digital Signal Processor (DSP). The present invention may also be embodied as apparatus or device programs (e.g., computer programs and computer program products) for performing a portion or all of the methods described herein. Such programs implementing the present invention may be stored on computer-readable media or may be in the form of one or more signals. Such a signal may be downloaded from an internet website or provided on a carrier signal or in any other form.
While the foregoing embodiments have described the objects, aspects and advantages of the present invention in further detail, it should be understood that the present invention is not inherently related to any particular computer, virtual machine or electronic device, and various general-purpose machines may be used to implement the present invention. The invention is not to be considered as limited to the specific embodiments thereof, but is to be understood as being modified in all respects, all changes and equivalents that come within the spirit and scope of the invention.
Claims (10)
1. A method for controlling access frequency of an interface, comprising:
configuring an interface access frequency strategy database, wherein the interface access frequency strategy database is used for recording user characteristic information of a user and an access frequency control rule and/or parameter of the user;
receiving an access request of a user to an interface, and performing access control on the interface access frequency of the interface, wherein the access control comprises the following steps:
when the access request contains user characteristic information, searching an access frequency control rule and/or parameter of the user according to the user characteristic information;
and when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter.
2. The method for controlling access frequency of an interface according to claim 1, further comprising:
and when the access frequency control rule and/or parameter matched with the user characteristic information is not found, establishing the access frequency control rule and/or parameter in the access frequency policy database for the user according to a preset configuration rule.
3. The method for controlling access frequency of an interface according to claims 1-2, further comprising:
configuring an interface access frequency control switch;
and detecting the state of an interface access frequency control switch, and stopping the access control when the control switch is detected to be closed.
4. Method for controlling the access frequency of an interface according to claims 1-3, characterized in that said access frequency control rules comprise: the number of user accesses to a particular interface is limited.
5. The method for controlling interface access frequency according to claims 1-4, wherein the access frequency control rule further comprises:
when the number of accesses by a user to a particular interface within a particular time period is greater than a control threshold, access by the user to the interface is denied.
6. The method for controlling access frequency of interface according to claims 1-5, wherein said access frequency control rule further comprises:
and returning error information to the client corresponding to the user under the condition that the access times are greater than the control threshold value.
7. The control method according to claims 1-6, characterized in that the control parameter comprises at least one of the following: current number of accesses, current access frequency, recent access time interval, current access time, access number threshold, access frequency threshold, access interval time threshold, allowed access time period.
8. A control apparatus for controlling an interface access frequency, the control apparatus comprising:
the first configuration module is used for configuring an interface access frequency strategy database, and the interface access frequency strategy database is used for recording user characteristic information of a user and an access frequency control rule and/or parameter of the user;
a control module, configured to receive an access request from a user to an interface, and perform access control on an interface access frequency of the interface, where the access control includes:
when the access request contains user characteristic information, searching an access frequency control rule and/or parameter of the user according to the user characteristic information;
and when the access frequency control rule and/or the access frequency control parameter matched with the user characteristic information are/is searched, controlling the access of the user according to the searched access frequency control rule and/or the searched access frequency control parameter.
9. An electronic device, wherein the electronic device comprises:
a processor; and the number of the first and second groups,
a memory storing computer-executable instructions that, when executed, cause the processor to perform the control method of any one of claims 1-7.
10. A computer-readable storage medium, wherein the computer-readable storage medium stores one or more programs which, when executed by a processor, implement the control method of any one of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201911271349.8A CN111212031A (en) | 2019-12-12 | 2019-12-12 | Control method and device for interface access frequency, electronic equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201911271349.8A CN111212031A (en) | 2019-12-12 | 2019-12-12 | Control method and device for interface access frequency, electronic equipment and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111212031A true CN111212031A (en) | 2020-05-29 |
Family
ID=70788102
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201911271349.8A Pending CN111212031A (en) | 2019-12-12 | 2019-12-12 | Control method and device for interface access frequency, electronic equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111212031A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111898121A (en) * | 2020-07-09 | 2020-11-06 | 彩讯科技股份有限公司 | Frequency limiting method and device based on mailbox, computer equipment and storage medium |
| CN112035858A (en) * | 2020-08-28 | 2020-12-04 | 中国建设银行股份有限公司 | API access control method, device, equipment and medium |
| CN113904839A (en) * | 2021-09-30 | 2022-01-07 | 杭州数梦工场科技有限公司 | Access request management method and device |
| CN114691033A (en) * | 2022-02-17 | 2022-07-01 | 阿里巴巴(中国)有限公司 | Data copying method, data storage system control method, device, equipment and medium |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20140366097A1 (en) * | 2013-06-11 | 2014-12-11 | Gigamon Llc | Security access for a switch device |
| CN106375472A (en) * | 2016-09-29 | 2017-02-01 | 北京三快在线科技有限公司 | Access request processing method and apparatus, and server |
| CN107707488A (en) * | 2017-10-25 | 2018-02-16 | 北京数码视讯支付技术有限公司 | Pay on-line transaction flow control methods, current limliting service end and client |
| CN108683604A (en) * | 2018-04-03 | 2018-10-19 | 平安科技(深圳)有限公司 | concurrent access control method, terminal device and medium |
| CN109150878A (en) * | 2018-08-21 | 2019-01-04 | 郑州云海信息技术有限公司 | A kind of method and device of the access limitation of cloud platform |
| CN110381068A (en) * | 2019-07-23 | 2019-10-25 | 迈普通信技术股份有限公司 | Forced access control method, device, the network equipment and storage medium |
| CN110417671A (en) * | 2019-07-31 | 2019-11-05 | 中国工商银行股份有限公司 | The current-limiting method and server of data transmission |
| CN110535777A (en) * | 2019-08-12 | 2019-12-03 | 新华三大数据技术有限公司 | Access request control method, device, electronic equipment and readable storage medium storing program for executing |
-
2019
- 2019-12-12 CN CN201911271349.8A patent/CN111212031A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20140366097A1 (en) * | 2013-06-11 | 2014-12-11 | Gigamon Llc | Security access for a switch device |
| CN106375472A (en) * | 2016-09-29 | 2017-02-01 | 北京三快在线科技有限公司 | Access request processing method and apparatus, and server |
| CN107707488A (en) * | 2017-10-25 | 2018-02-16 | 北京数码视讯支付技术有限公司 | Pay on-line transaction flow control methods, current limliting service end and client |
| CN108683604A (en) * | 2018-04-03 | 2018-10-19 | 平安科技(深圳)有限公司 | concurrent access control method, terminal device and medium |
| CN109150878A (en) * | 2018-08-21 | 2019-01-04 | 郑州云海信息技术有限公司 | A kind of method and device of the access limitation of cloud platform |
| CN110381068A (en) * | 2019-07-23 | 2019-10-25 | 迈普通信技术股份有限公司 | Forced access control method, device, the network equipment and storage medium |
| CN110417671A (en) * | 2019-07-31 | 2019-11-05 | 中国工商银行股份有限公司 | The current-limiting method and server of data transmission |
| CN110535777A (en) * | 2019-08-12 | 2019-12-03 | 新华三大数据技术有限公司 | Access request control method, device, electronic equipment and readable storage medium storing program for executing |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111898121A (en) * | 2020-07-09 | 2020-11-06 | 彩讯科技股份有限公司 | Frequency limiting method and device based on mailbox, computer equipment and storage medium |
| CN111898121B (en) * | 2020-07-09 | 2024-02-02 | 彩讯科技股份有限公司 | Mailbox-based frequency limiting method and device, computer equipment and storage medium |
| CN112035858A (en) * | 2020-08-28 | 2020-12-04 | 中国建设银行股份有限公司 | API access control method, device, equipment and medium |
| CN112035858B (en) * | 2020-08-28 | 2023-06-20 | 建信金融科技有限责任公司 | API access control method, device, equipment and medium |
| CN113904839A (en) * | 2021-09-30 | 2022-01-07 | 杭州数梦工场科技有限公司 | Access request management method and device |
| CN114691033A (en) * | 2022-02-17 | 2022-07-01 | 阿里巴巴(中国)有限公司 | Data copying method, data storage system control method, device, equipment and medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111212031A (en) | Control method and device for interface access frequency, electronic equipment and storage medium | |
| US10341366B2 (en) | Managing security breaches in a networked computing environment | |
| US10048996B1 (en) | Predicting infrastructure failures in a data center for hosted service mitigation actions | |
| CN110798472B (en) | Data leakage detection method and device | |
| US20190230111A1 (en) | Modifying a user session lifecycle in a cloud broker environment | |
| CN102332072B (en) | System and method for detection of malware and management of malware-related information | |
| CN109885452B (en) | Performance monitoring method and device and terminal equipment | |
| CN103607385A (en) | Method and apparatus for security detection based on browser | |
| CN111177672A (en) | Page access control method and device and electronic equipment | |
| CN109995523B (en) | Activation code management method and device and activation code generation method and device | |
| CN112165445B (en) | Method, device, storage medium and computer equipment for detecting network attack | |
| CN111181770A (en) | Resource allocation method, system, electronic equipment and storage medium | |
| CN104281809A (en) | Method, device and system for searching and killing viruses | |
| CN111290696A (en) | Flow control method and device for application program assembly | |
| CN111740868A (en) | Alarm data processing method and device and storage medium | |
| CN113497723A (en) | Log processing method, log gateway and log processing system | |
| JP2020533704A (en) | ID authentication method, device, server and computer readable media | |
| US8364776B1 (en) | Method and system for employing user input for website classification | |
| CN107623693A (en) | Domain name mapping means of defence and device, system, computing device, storage medium | |
| CN116566739B (en) | Security detection system, electronic equipment and storage medium | |
| CN106651183B (en) | Communication data security audit method and device of industrial control system | |
| CN110460593B (en) | Network address identification method, device and medium for mobile traffic gateway | |
| CN110474899B (en) | Service data processing method, device, equipment and medium | |
| CN112766960A (en) | Information security protection method and system applied to block chain financial fusion and online payment | |
| CN110059480A (en) | Attack monitoring method, device, computer equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |