CN112231566B - Information pushing method, device, system and readable storage medium - Google Patents

Information pushing method, device, system and readable storage medium Download PDF

Info

Publication number
CN112231566B
CN112231566B CN202011113047.0A CN202011113047A CN112231566B CN 112231566 B CN112231566 B CN 112231566B CN 202011113047 A CN202011113047 A CN 202011113047A CN 112231566 B CN112231566 B CN 112231566B
Authority
CN
China
Prior art keywords
information
accessed
website
user side
pushed
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011113047.0A
Other languages
Chinese (zh)
Other versions
CN112231566A (en
Inventor
张博洋
邓金城
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Chengdu Knownsec Information Technology Co ltd
Original Assignee
Chengdu Knownsec Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chengdu Knownsec Information Technology Co ltd filed Critical Chengdu Knownsec Information Technology Co ltd
Priority to CN202011113047.0A priority Critical patent/CN112231566B/en
Publication of CN112231566A publication Critical patent/CN112231566A/en
Application granted granted Critical
Publication of CN112231566B publication Critical patent/CN112231566B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/953Querying, e.g. by the use of web search engines
    • G06F16/9535Search customisation based on user profiles and personalisation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/958Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking

Abstract

The embodiment of the invention provides an information pushing method, device and system and a readable storage medium, and relates to the technical field of Internet. According to the information pushing method, device and system and the readable storage medium, after an access request of a user side is received, whether the user side is in a dynamic interception state is judged according to the access request, if the user side is in the dynamic interception state, the access request of the user side is intercepted, information to be pushed is obtained according to parameter information of the user side and parameter information of a website to be accessed, an interception page comprising the information to be pushed is generated according to the information to be pushed, and the interception page is pushed to the user side, so that effective utilization of the interception page can be achieved, and reasonable utilization of flow resources is achieved.

Description

Information pushing method, device, system and readable storage medium
Technical Field
The present invention relates to the field of internet technologies, and in particular, to an information pushing method, an apparatus, a system, and a readable storage medium.
Background
Currently, the use of cloud Web application defense system (Web Application Firewall, WAF) architecture to defend various network attacks has been developed as a very mature technology, but the existing cloud WAF architecture generally only carries out a simple prompt after intercepting the attack behavior. And a large cloud WAF architecture is often connected with tens of thousands of client websites, the requests intercepted every day can reach hundreds of millions, and if only a simple prompt utterance is returned and the pages are not utilized, the large cloud WAF architecture is a waste of mass flow resources.
Disclosure of Invention
Based on the above study, the present invention provides an information push method, apparatus, system and readable storage medium to improve the above problems.
Embodiments of the invention may be implemented as follows:
in a first aspect, an embodiment of the present invention provides an information pushing method, applied to a WAF node, where the method includes:
receiving an access request of a user terminal, and judging whether the user terminal is in a dynamic interception state according to the access request;
if the user terminal is in a dynamic interception state, intercepting the access request of the user terminal, and acquiring information to be pushed according to the parameter information of the user terminal and the parameter information of the website to be accessed;
generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user side.
In an alternative embodiment, if not in a state of dynamic interception, the method further includes:
forwarding the access request of the user side to the website to be accessed, and receiving response information of the website to be accessed;
identifying the response information and judging whether the response information is a state code which cannot be accessed;
If the state code is the state code, acquiring the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed;
generating a prompt page comprising the information to be pushed and prompt contents corresponding to the status code according to the information to be pushed and the status code, and pushing the prompt page to the user side.
In an alternative embodiment, the step of identifying the response information and determining whether the response information is a status code that is inaccessible includes:
judging whether the website to be accessed starts prompt page information pushing configuration or not;
if the prompt page information pushing configuration is not started, pushing response information of the website to be accessed to the user side;
and if the prompt page information pushing configuration is started, identifying the response information, and judging whether the response information is a state code which cannot be accessed.
In an alternative embodiment, before forwarding the access request of the user terminal to the website to be accessed, the method further includes:
judging whether the access of the user terminal is attack access or not;
if the access request is non-attack access, forwarding the access request of the user side to the website to be accessed;
If the access request is attack access, intercepting the access request of the user side, acquiring the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed, generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user side.
In an optional embodiment, after determining that the access of the user terminal is an attack access, the method further includes:
judging whether the attack times of the user side in a preset time period reach a set interception threshold value or not;
if the interception threshold is reached, setting a dynamic interception mark for the user side;
and if the interception threshold is not reached, updating the attack times of the user side.
In an optional embodiment, the step of obtaining the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed includes:
the parameter information of the user side and the parameter information of the website to be accessed are sent to an information distribution platform, so that the information distribution platform obtains the information to be pushed according to the parameter information of the user side, the parameter information of the website to be accessed and the pre-stored pushing configuration parameters;
And receiving the information to be pushed, which is sent by the information distribution platform.
In an alternative embodiment, the method further comprises:
generating an access log according to each access request of each user side;
the access log is sent to the data processing platform, so that the data processing platform performs user portrait on an access user according to the access log to obtain a user portrait result;
the step of obtaining the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed comprises the following steps:
the parameter information of the user side and the parameter information of the website to be accessed are sent to an information distribution platform, so that the information distribution platform sends the parameter information of the user side, the parameter information of the website to be accessed and the pre-stored pushing configuration parameters to the data processing platform, and the data processing platform carries out information matching based on the result of the user portrait, the parameter information of the user side, the parameter information of the website to be accessed and the pushing configuration parameters to obtain an information matching result;
and receiving the information to be pushed, which is obtained by the information distribution platform according to the information matching result.
In a second aspect, an embodiment of the present invention provides an information pushing apparatus, which is applied to a WAF node, where the apparatus includes a request processing module, an information obtaining module, and an information pushing module;
the request processing module is used for receiving an access request of a user terminal and judging whether the user terminal is in a dynamic interception state according to the access request;
if the information is in a dynamic interception state, the information acquisition module is used for intercepting an access request of the user side and acquiring information to be pushed according to the parameter information of the user side and the parameter information of a website to be accessed;
the information pushing module is used for generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user side.
In a third aspect, an embodiment of the present invention provides an information pushing system, including an information distribution platform and a cloud WAF platform, where the cloud WAF platform includes at least one WAF node;
the WAF node is used for receiving an access request of a user terminal and judging whether the user terminal is in a dynamic interception state according to the access request; if the user terminal is in a dynamic interception state, intercepting the access request of the user terminal, sending the parameter information of the user terminal and the parameter information of the website to be accessed to the information distribution platform to obtain information to be pushed, generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user terminal.
In a fourth aspect, an embodiment of the present invention provides a readable storage medium having stored therein a computer program that, when executed, implements the information push method of any one of the foregoing embodiments.
According to the information pushing method, device and system and the readable storage medium, after an access request of a user side is received, whether the user side is in a dynamic interception state is judged according to the access request, if the user side is in the dynamic interception state, the access request of the user side is intercepted, information to be pushed is obtained according to parameter information of the user side and parameter information of a website to be accessed, an interception page comprising the information to be pushed is generated according to the information to be pushed, and the interception page is pushed to the user side, so that effective utilization of the interception page can be achieved, and reasonable utilization of flow resources is achieved.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings that are needed in the embodiments will be briefly described below, it being understood that the following drawings only illustrate some embodiments of the present invention and therefore should not be considered as limiting the scope, and other related drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 is a schematic diagram of a working principle of a cloud WAF platform according to an embodiment of the invention.
Fig. 2 is a schematic diagram of a prior art interception page.
FIG. 3 is a schematic diagram of a hint page according to the prior art.
Fig. 4 is a schematic diagram of an architecture of an information push system according to an embodiment of the present invention.
Fig. 5 is a block diagram of a WAF node according to an embodiment of the invention.
Fig. 6 is a flowchart of an information pushing method according to an embodiment of the present invention.
Fig. 7 is a schematic flow chart of another information pushing method according to an embodiment of the present invention.
Fig. 8 is a schematic flow chart of another information pushing method according to an embodiment of the present invention.
Fig. 9 is a schematic diagram of another architecture of an information push system according to an embodiment of the present invention.
Fig. 10 is a block diagram of an information pushing device according to an embodiment of the present invention.
Icon: 1-an information push system; 100-cloud WAF platform; a 10-WAF node; 11-an information push device; 111-a request processing module; 112-an information acquisition module; 113-an information pushing module; 12-memory; 13-a processor; 14-a communication unit; 200-an information distribution platform; 300-data processing platform.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the technical solutions of the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is apparent that the described embodiments are some embodiments of the present invention, but not all embodiments of the present invention. The components of the embodiments of the present invention generally described and illustrated in the figures herein may be arranged and designed in a wide variety of different configurations.
Thus, the following detailed description of the embodiments of the invention, as presented in the figures, is not intended to limit the scope of the invention, as claimed, but is merely representative of selected embodiments of the invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
It should be noted that: like reference numerals and letters denote like items in the following figures, and thus once an item is defined in one figure, no further definition or explanation thereof is necessary in the following figures.
In the description of the present invention, it should be noted that, if the terms "upper", "lower", "inner", "outer", and the like indicate an azimuth or a positional relationship based on the azimuth or the positional relationship shown in the drawings, or the azimuth or the positional relationship in which the inventive product is conventionally put in use, it is merely for convenience of describing the present invention and simplifying the description, and it is not indicated or implied that the apparatus or element referred to must have a specific azimuth, be configured and operated in a specific azimuth, and thus it should not be construed as limiting the present invention.
Furthermore, the terms "first," "second," and the like, if any, are used merely for distinguishing between descriptions and not for indicating or implying a relative importance.
It should be noted that the features of the embodiments of the present invention may be combined with each other without conflict.
The cloud WAF is a cloud Web application defense system based on a content delivery network (Content Delivery Network, CDN), and a user can easily realize the protection of a website by only changing the configuration of a domain name system (Domain Name System, DNS) of the website domain name without deploying additional software programs or hardware equipment.
As shown in fig. 1, a large cloud WAF architecture is made up of multiple WAF nodes. For normal access requests of users, the WAF node forwards the access requests to a website requested by the users, response data of a server of the website is returned to the users in a primary way, and for various identified attack requests, the WAF node directly intercepts and returns an interception page to the users.
Currently, the use of cloud Web application defense system (Web Application Firewall, WAF) architecture to defend various network attacks has been developed as a very mature technology, but the existing cloud WAF architecture generally only carries out a simple prompt after intercepting the attack behavior, as shown in fig. 2. On the other hand, for the prompting page such as 404 pages or 503 pages returned by the client website, the WAF node will also generally return directly to the requester, as shown in fig. 3.
A large cloud WAF architecture often has access to tens of thousands of customer sites, with hundreds of millions of pages 404, 503 intercepted and returned each day. If only a simple prompt utterance is returned and such pages are not utilized, the method is a waste of massive traffic resources.
Based on the above researches, the present embodiment provides an information pushing method, device, system and readable storage medium, which push information on a page returned to a user in a cloud WAF workflow, thereby realizing effective utilization of traffic resources.
Referring to fig. 4, fig. 4 is a schematic structural diagram of an information pushing system 1 according to the present embodiment. The information push system 1 provided in the present embodiment includes an information distribution platform 200 and a cloud WAF platform 100. The cloud WAF platform 100 is in communication connection with the information distribution platform 200 through a network, so as to realize data exchange.
In this embodiment, the cloud WAF platform 100 includes at least one WAF node 10, where each WAF node 10 is connected to at least one website, and is configured to receive an access request from a user terminal to the connected website, and identify the access request, so as to implement protection on the connected website.
Alternatively, in this embodiment, the WAF node 10 may be an electronic device having data processing capability, and the internal structure thereof may include an information pushing device 11, a memory 12, a processor 13, and a communication unit 14, as shown in fig. 5.
The memory 12, the processor 13 and the communication unit 14 are electrically connected directly or indirectly to each other to realize data transmission or interaction. For example, the components may be electrically connected to each other via one or more communication buses or signal lines. The memory 12 stores an information pushing device 11, the information pushing device 11 includes at least one software functional module that may be stored in the memory 12 in the form of software or firmware (firmware), and the processor 13 executes various functional applications and data processing by running software programs and modules stored in the memory 12, such as the information pushing device 11 in the embodiment of the present invention, that is, implements the information pushing method in the embodiment of the present invention.
The Memory 12 may be, but is not limited to, a random access Memory (Random Access Memory, RAM), a Read Only Memory (ROM), a programmable Read Only Memory (Programmable Read-Only Memory, PROM), an erasable Read Only Memory (Erasable Programmable Read-Only Memory, EPROM), an electrically erasable Read Only Memory (Electric Erasable Programmable Read-Only Memory, EEPROM), etc. The memory 12 is used for storing a program, and the processor 13 executes the program after receiving an execution instruction.
The processor 13 may be an integrated circuit chip with data processing capabilities. The processor 13 may be a general-purpose processor including a central processing unit (Central Processing Unit, CPU), a network processor (Network Processor, NP), and the like. The methods, steps and logic blocks disclosed in the embodiments of the present invention may be implemented or performed. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
The communication unit 14 is configured to establish a communication connection between the WAF node 10 and other devices (such as a website server, a user side, and the information distribution platform 200) through a network, so as to implement data transceiving operation. The network may include a wireless network or a wired network.
It is to be understood that the configuration shown in fig. 5 is merely illustrative and WAF node 10 may also include more or fewer components than shown in fig. 5 or have a different configuration than shown in fig. 5. The components shown in fig. 5 may be implemented in hardware, software, or a combination thereof.
In this embodiment, the information distribution platform 200 may be a single physical server or a server group formed by a plurality of physical servers for performing different data processing functions. The server group may be centralized or distributed. In some possible implementations, if information distribution platform 200 employs a single physical server, different logical server components may be assigned to the physical server based on different service functions.
Alternatively, in this embodiment, the information distribution platform 200 stores information that can be pushed, and the WAF node 10 may obtain information to be pushed from the information distribution platform 200.
Based on the implementation architectures of fig. 4 and fig. 5, please refer to fig. 6 in combination, fig. 6 is a flow chart of the information pushing method provided in the present embodiment. The method is performed by WAF node 10 shown in fig. 4 and is described in detail below with respect to the flowchart shown in fig. 6.
Step S10: and receiving an access request of the user terminal.
Step S20: and judging whether the user terminal is in a dynamic interception state according to the access request.
If the state is in the dynamic interception state, step S30 is performed.
Step S30: intercepting an access request of a user side, and acquiring information to be pushed according to parameter information of the user side and parameter information of a website to be accessed.
Step S40: according to the information to be pushed, generating an interception page comprising the information to be pushed, and pushing the interception page to the user side.
If a certain user terminal is in a dynamic interception state, the risk of the access request of the user terminal is indicated to be intercepted, so that after the user terminal is determined to be in the dynamic interception state, the embodiment intercepts the access request of the user terminal and returns an interception page to the user terminal.
In order to improve the utilization rate of the interception page, namely, the utilization rate of the traffic resource, in the embodiment, after intercepting the access request of the user side, the information to be pushed is obtained from the information distribution platform according to the parameter information of the user side and the parameter information of the website to be accessed. After the information to be pushed is obtained, generating an interception page comprising the information to be pushed according to the information to be pushed, namely configuring the information to be pushed on the interception page, and pushing the interception page to a user side.
By pushing the information on the interception page, the information pushing method provided by the embodiment can effectively utilize the traffic resources and avoid the waste of the traffic resources.
Optionally, in this embodiment, the access request of the user side includes an IP address of the user side and an IP address of a website to be accessed, and after receiving the access request of the user side, the WAF node may determine, according to the access request, whether the IP address of the user side is provided with a dynamic interception flag, and if the IP address of the user side is provided with the dynamic interception flag, determine that the user side is in a dynamic interception state. If the dynamic interception mark is not set, the access request of the user side can be forwarded to the website to be accessed.
Optionally, in order to improve the protection of the WAF node against website access, referring to fig. 7, in this embodiment, before forwarding the access request of the user side to the website to be accessed, the step of identifying the access of the user side may further include step S21.
Step S21: and judging whether the access of the user terminal is attack access or not.
If the access is a non-attack access, step S50 is performed. If the attack access is made, steps S30 to S40 are performed.
Step S50: and forwarding the access request of the user terminal to the website to be accessed.
And if so, judging that the access of the user is attack access, intercepting the access request of the user, and acquiring information to be pushed from an information distribution platform according to the parameter information of the user and the parameter information of a website to be accessed. After the information to be pushed is obtained, an interception page comprising the information to be pushed is generated according to the information to be pushed, and then the interception page is pushed to the user side, so that the effective utilization of the traffic resources is realized, and the waste of the traffic resources is avoided.
Optionally, in order to improve the processing efficiency of the WAF node, in this embodiment, after determining that the access of the user side is attack access, the method further includes:
judging whether the attack times of the user side in a preset time period reach a set interception threshold value.
If the interception threshold is reached, a dynamic interception mark is set for the user side. If the interception threshold is not reached, updating the attack times of the user.
After the access of the user terminal is judged to be attack access, judging whether the attack times of the user terminal in a preset time period reach a set interception threshold value, if so, setting a dynamic interception mark for the user terminal, namely setting the dynamic interception mark for the IP address of the user terminal, and if not, updating the attack times of the user terminal, namely adding 1 to the original attack access times of the user terminal.
It should be noted that after setting a dynamic interception flag for an IP address of a user terminal, that is, after opening dynamic interception for the IP address of the user terminal, an access request of the user terminal is intercepted in a set period of time, and each access of the user terminal is pushed with information in the set period of time, for example, the attack frequency of the user terminal in a preset period of time (for example, 5 minutes) reaches a set interception threshold, and all access requests of the user terminal are intercepted in a next set period of time (for example, 10 minutes). And after the set time period is exceeded, the access times (attack times) of the user terminal are cleared, and then the access request of the user terminal is identified again, so that the processing efficiency of the WAF node can be effectively improved.
It can be understood that if the access request does not have the characteristic information of attack access, the access of the user terminal is judged to be non-attack access, and then the access request of the user terminal is forwarded to the website to be accessed.
Because in practical applications, after forwarding the access request to the website to be accessed, the website server may not return the corresponding access content for some reasons, and only returns the page that cannot be accessed. Therefore, in order to further increase the utilization rate of the traffic resources, referring to fig. 8, in this embodiment, after forwarding the access request of the user terminal to the website to be accessed if the user terminal is not in the state of dynamic interception, the information pushing method provided in this embodiment further includes steps S60 to S90.
Step S60: and receiving response information of the website to be accessed.
Step S70: and identifying the response information, and judging whether the response information is a state code which cannot be accessed.
If the response information is not the inaccessible status code, step S90 is executed.
Step S80: according to the parameter information of the user side and the parameter information of the website to be accessed, obtaining information to be pushed, generating a prompt page comprising prompt contents corresponding to the information to be pushed and the status code according to the information to be pushed and the status code, and pushing the prompt page to the user side.
Step S90: and pushing the response information to the user side.
If the response information is a status code which cannot be accessed, the response information indicates that the access content corresponding to the access request cannot be obtained from the website server. If the response information is not the inaccessible status code, the content requested by the user side returned by the website server is indicated, so that the response information can be directly pushed to the user side.
Optionally, in this embodiment, the inaccessible status code includes a 404 status code and a 503 status code, and when the inaccessible status code is the 404 status code, it indicates that the resource requested by the ue does not exist, and the corresponding resource cannot be found. When the inaccessible status code is the 503 status code, it means that the request of the user side causes a service error to the website server, and the service cannot be provided normally.
In this embodiment, if it is determined that the response information is a status code that cannot be accessed, the information to be pushed is obtained from the information distribution platform according to the parameter information of the user side and the parameter information of the website to be accessed. After obtaining the information to be pushed, generating a prompt page comprising the information to be pushed and prompt contents corresponding to the status code according to the information to be pushed and the status code, namely configuring the information to be pushed and the prompt contents corresponding to the status code on the prompt page, and pushing the prompt page to a user side.
For example, when the response information is 404 status codes, the returned prompting page includes the information to be pushed and the prompting content corresponding to the 404 status codes, that is, the corresponding resource cannot be found. For another example, when the response information is 503 status code, the returned prompting page includes the information to be pushed and the prompting content corresponding to the 503 status code, that is, the service cannot be provided normally.
Since in actual use, some websites may not open the page information pushing configuration, in this embodiment, the step of identifying the response information and determining whether the response information is a status code that cannot be accessed may further include:
and judging whether the website to be accessed starts prompt page information pushing configuration.
And if the prompt page information pushing configuration is not started, pushing response information of the website to be accessed to the user side.
If the prompt page information pushing configuration is started, the response information is identified, and whether the response information is a state code which cannot be accessed is judged.
If the prompt page information pushing configuration is not started, the response information of the website to be accessed is directly pushed to the user side, and even if the response information is a state code which cannot be accessed, the information does not need to be pushed on a page which cannot be accessed and is returned to the user side. If the to-be-accessed website is opened with the prompt page information pushing configuration, the response information is identified, whether the response information is a state code which cannot be accessed is judged, when the response information is the state code which cannot be accessed, the to-be-pushed information is obtained according to the parameter information of the user side and the parameter information of the to-be-accessed website, a prompt page comprising the to-be-pushed information and prompt contents corresponding to the state code is generated according to the to-be-pushed information and the state code, and the prompt page is pushed to the user side.
Optionally, in this embodiment, the step of determining whether the website to be accessed opens the prompt page information push configuration may include:
and judging whether the website to be accessed opens 404 a page information pushing configuration and/or 503 a page information pushing configuration.
If the website to be accessed only opens 404 page information pushing configuration, the information to be pushed is obtained according to the parameter information of the user side and the parameter information of the website to be accessed only when the response information is 404 state codes, a prompt page comprising the information to be pushed and prompt content corresponding to the 404 state codes is generated according to the information to be pushed and the 404 state codes, and then the prompt page is pushed to the user side.
If the website to be accessed only opens 503 page information pushing configuration, the information to be pushed is obtained according to the parameter information of the user side and the parameter information of the website to be accessed only when the response information is 503 state code, a prompt page comprising prompt contents corresponding to the information to be pushed and the 503 state code is generated according to the information to be pushed and the 503 state code, and then the prompt page is pushed to the user side.
If the website to be accessed opens 404 the page information pushing configuration and the page information pushing configuration at the same time, when the response information is 404 the state code or 503 the state code, acquiring the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed, generating a prompt page comprising the information to be pushed and prompt content corresponding to the state code according to the information to be pushed and the state code, and pushing the prompt page to the user side.
Optionally, in this embodiment, after determining that the user side is in a dynamic interception state and intercepting an access request of the user side, the WAF node may also determine whether a website to be accessed opens an interception page information pushing configuration, if the website to be accessed does not open the interception page information pushing configuration, directly return an interception page only including interception information to the user side, if the interception page information pushing configuration is opened, acquire information to be pushed according to parameter information of the user side and parameter information of the website to be accessed, then generate an interception page including information to be pushed according to the information to be pushed, and push the interception page to the user side.
In this embodiment, when each website accesses the cloud WAF platform, whether to start the interception page information pushing configuration and the prompting page information pushing configuration may be selected independently. The access flow can be as follows:
after the website is accessed to the cloud WAF platform, whether the information pushing function is started or not can be selected, if the information pushing function is not started, the cloud WAF platform only opens the WAF defense function for the website, and if the information pushing function is started, the website can autonomously select whether to start the interception page information pushing configuration and the prompt page information pushing configuration. The prompting page information pushing configuration comprises 404 page information pushing configuration and 503 page information pushing configuration, and the website can autonomously select to start 404 page information pushing configuration and/or 503 page information pushing configuration.
After the website starts the interception page information pushing configuration, an access request of a user side can be intercepted, information to be pushed is obtained according to parameter information of the user side and parameter information of a website to be accessed, an interception page comprising the information to be pushed is generated according to the information to be pushed, and the interception page is pushed to the user side.
After the website starts the prompt page information pushing configuration, when the response information is a state code which cannot be accessed, acquiring information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed, generating a prompt page comprising the information to be pushed and prompt content corresponding to the state code according to the information to be pushed and the state code, and pushing the prompt page to the user side.
According to the information pushing method provided by the embodiment, the information to be pushed is configured on the interception page and/or the prompting page, so that the information is pushed, and the effective utilization of flow resources is realized.
Optionally, in this embodiment, the step of obtaining the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed includes:
the method comprises the steps of sending parameter information of a user side and parameter information of a website to be accessed to an information distribution platform, so that the information distribution platform obtains information to be pushed according to the parameter information of the user side, the parameter information of the website to be accessed and the pre-stored pushing configuration parameters.
And receiving the information to be pushed, which is sent by the information distribution platform.
The information distribution platform stores the information capable of being pushed and the pushing configuration parameters, and after the information distribution platform receives the parameter information of the user side and the parameter information of the website to be accessed, the information distribution platform can obtain the information to be pushed according to the parameter information of the user side, the parameter information of the website to be accessed and the pushing configuration parameters stored in advance.
Optionally, in this embodiment, the parameter information of the user side may include an IP address of the user side, a type of the user side, and the like. The types of the user side may include a mobile terminal, a personal computer (Personal Computer, PC), a wearable device, an in-vehicle device, an augmented reality (augmented reality, AR)/Virtual Reality (VR) device, and the like. The parameter information of the website to be accessed may include a type of the website to be accessed and an IP address, and the type of the website to be accessed may include a type of a video website, a social networking website, and the like.
Optionally, in this embodiment, the push configuration parameter may be, but is not limited to, the pushable information corresponding to each level of the user group, the pushable information corresponding to each website and each website, and the pushable information corresponding to each level of the priority of the website accessing the cloud WAF platform.
When the pushing configuration parameters are the information which can be pushed and corresponds to the grades of the user groups, after the information distribution platform receives the parameter information of the user side and the parameter information of the website to be accessed, the grade of the access user corresponding to the user side can be obtained according to the parameter information of the user side, and then the information to be pushed is obtained based on the grade of the access user and the information which can be pushed and corresponds to the grade.
For example, after the information distribution platform receives the parameter information of the user terminal, the access preference of the access user corresponding to the user terminal can be obtained according to the IP address of the user terminal, then the grade of the access user is obtained according to the access preference of the access user, and after the grade of the access user is obtained, the information adapting to the type of the user terminal, namely the information to be pushed, can be screened out from the grade. For example, if the access preference of the access user is music video, the level of the access user is music level, and the information adapting to the type of the user terminal can be screened out from the information which corresponds to the music level and can be pushed out, and the screened information is the information to be pushed out.
When the pushing configuration parameters are information which can be pushed by each website and each website, after the information distribution platform receives the parameter information of the user side and the parameter information of the website to be accessed, the information which can be pushed by the website to be accessed can be obtained according to the parameter information of the website to be accessed, and then the information to be pushed is obtained. For example, after receiving the parameter information of the user side and the parameter information of the website to be accessed, the information distribution platform can determine and obtain the information which can be pushed by the website to be accessed according to the IP address of the website to be accessed, and then select one or more pieces of information from the information as the information to be pushed.
When the pushing configuration parameters are the information which can be pushed and corresponds to each level of the priority of the website accessed to the cloud WAF platform, after the information distribution platform receives the parameter information of the user side and the parameter information of the website to be accessed, the level of the website to be accessed can be determined according to the parameter information of the website to be accessed, and then the information to be pushed can be obtained according to the information which can be pushed and corresponds to the level.
For example, after receiving the parameter information of the user side and the parameter information of the website to be accessed, the information distribution platform can determine to obtain the level of the website to be accessed according to the IP address and the type of the website to be accessed, then obtain the information which corresponds to the level and can be pushed, and select one or more pieces of information from the information as the information to be pushed.
After the information to be pushed is obtained, the information to be pushed can be sent to the WAF node by the information distribution platform, after the WAF node receives the information to be pushed, an interception page or a prompt page comprising the information to be pushed can be generated according to the information to be pushed, and then the generated interception page or the prompt page comprising the information to be pushed is pushed to a user side, so that information is put in, and the utilization rate of flow resources is improved.
In this embodiment, the information stored in the information distribution platform may be input by the information input host, and the information input host may set the push configuration parameters after inputting the information into the information distribution platform. In addition, after the information delivery owner puts the information on the information distribution platform, the information delivery website, the industry of the information delivery website, the user group of the delivery and the like can be preferentially designated.
Alternatively, in this embodiment, the information may be, but is not limited to, advertisement information, news information, etc., and may be, but is not limited to, video, photo, text, etc.
In order to ensure the partnership of the website, the cloud WAF platform and the information distribution platform, the win-win situation of multiparty cooperation is realized. Optionally, in this embodiment, after the information delivery owner drops the information, a certain amount of credit may be paid for the dropped information, and then the cloud WAF platform may allocate the amount of credit with each website accessed according to a set proportion, so that the cloud WAF platform may obtain additional income with each website accessed, and experience and enthusiasm of the website, the cloud WAF platform and the information distribution platform are improved.
As an optional implementation manner, each website may calculate the benefit of information pushing according to the number of times of information pushing, and pay the credit to each website according to the benefit of each website after calculating the benefit of each website.
According to the information pushing method provided by the embodiment, by pushing information on the interception page and the prompt page, reasonable utilization of traffic resources is realized, and the defense of the cloud WAF platform to the website and the normal operation content of the website are not affected.
Because the traffic resources mastered by the current internet enterprises are mainly from users using the internet products of the enterprises, no matter the size of the user group, the objects of information delivery have certain sealing performance, such as users only watching the excellent videos, users only browsing the news of new waves, and the like. Therefore, the information delivery owner must think about when selecting the information delivery platform, so as to find a delivery channel suitable for the product.
In order to achieve the accuracy of information pushing, as shown in fig. 9, the information pushing system 1 provided in this embodiment may further include a data processing platform 300, and the information pushing method provided in this embodiment further includes:
And generating an access log according to each access request of each user side.
And sending the access log to the data processing platform so that the data processing platform performs user portrait on the access user according to the access log to obtain a user portrait result.
The step of obtaining the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed comprises the following steps:
the method comprises the steps of sending parameter information of a user side and parameter information of a website to be accessed to an information distribution platform, sending the parameter information of the user side, the parameter information of the website to be accessed and pre-stored pushing configuration parameters to a data processing platform, and carrying out information matching by the data processing platform based on a result of a user portrait, the parameter information of the user side, the parameter information of the website to be accessed and the pushing configuration parameters to obtain an information matching result.
And receiving information to be pushed, which is obtained by the information distribution platform according to the information matching result.
Alternatively, in this embodiment, the data processing platform 300 may be a single physical server, or may be a server group formed by a plurality of physical servers for performing different data processing functions. The server group may be centralized or distributed. In some possible implementations, if data processing platform 300 employs a single physical server, different logical server components may be assigned to the physical server based on different data processing functions.
In this embodiment, after each WAF node receives each access request of each user side, an access log is generated according to each access request of each user side, and then the access log is sent to a data processing platform for data processing. The access log includes information such as an IP address of the user side, an access requirement, and attribute information (such as gender and age) of the user.
Optionally, in this embodiment, the data processing platform 300 builds a recommendation system for user portraits, so after receiving the access log sent by each WAF node 10, the data processing platform 300 performs user portraits on the access user according to the received access log, and obtains a result of the user portraits. The information overview of the access user can be comprehensively described according to the result of the user portrait, and the requirements of the access user are deeply mined, so that the information pushing is performed based on the result of the user portrait, and the accuracy of the information pushing can be effectively improved.
After receiving the parameter information of the user terminal and the parameter information of the website to be accessed sent by the WAF node, the information distribution platform sends the parameter information of the user terminal, the parameter information of the website to be accessed and the pre-stored pushing configuration parameters to the data processing platform, and the data processing platform performs information matching according to the parameter information of the user terminal, the parameter information of the website to be accessed, the pushing configuration parameters and the pre-obtained user image result to obtain an information matching result. After the information matching result is obtained, the information matching result is sent to an information distribution platform, and the information distribution platform sends the information to be pushed to the WAF node according to the information matching result.
The information matching result characterizes the type of the corresponding information which can be pushed or the specific information which can be pushed of the user side. When the information distribution platform receives the information matching result, the information to be pushed can be obtained by screening from the pre-stored information according to the information matching result, after the information to be pushed is obtained, the information to be pushed can be pushed to the WAF node, an interception page or a prompt page comprising the information to be pushed is generated by the WAF node, and then the interception page or the prompt page is pushed to the user side, so that the pushing of the information and the effective utilization of flow resources are realized.
The information pushing method provided by the embodiment provides data support for the user portrait function of the data processing platform based on the diversity of the cloud WAF corresponding to the user group, and further can effectively improve the accuracy of information pushing based on the result of the user portrait, the parameter information of the user side, the parameter information of the website to be accessed and the pre-stored pushing configuration parameter pushing information.
Based on the same inventive concept, referring to fig. 10 in combination, the present embodiment further provides an information pushing device 11, which is applied to the WAF node 10, where the information pushing device 11 includes a request processing module 111, an information obtaining module 112, and an information pushing module 113.
The request processing module 111 is configured to receive an access request from a user terminal, and determine whether the user terminal is in a state of dynamic interception according to the access request.
If in the state of dynamic interception, the information obtaining module 112 is configured to intercept an access request of the user side, and obtain information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed.
The information pushing module 113 is configured to generate an interception page including information to be pushed according to the information to be pushed, and push the interception page to the user side.
It can be clearly understood by those skilled in the art that, in this embodiment, the request processing module 111, the information obtaining module 112, and the information pushing module 113 may execute corresponding steps of the information pushing method, and for convenience and brevity of description, the specific working process of the above description apparatus may refer to the corresponding process in the foregoing method, which is not repeated herein.
On the basis of the above, as shown in fig. 9, the present embodiment further provides an information push system 1, which includes an information distribution platform 200 and a cloud WAF platform 100, where the cloud WAF platform 100 includes at least one WAF node 10.
The WAF node 10 is configured to receive an access request from a user terminal, and determine whether the user terminal is in a state of dynamic interception according to the access request; if the information is in a dynamic interception state, intercepting an access request of a user side, sending parameter information of the user side and parameter information of a website to be accessed to an information distribution platform 200, acquiring information to be pushed, generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user side.
Optionally, the information pushing system 1 provided in this embodiment may further include a data processing platform 300, and the function of the data processing platform 300 may refer to the corresponding description in the above information pushing method.
It will be clear to those skilled in the art that, for convenience and brevity of description, the specific working process of the above-described information pushing system 1 may refer to the corresponding process in the foregoing method, and will not be described in detail herein.
On the basis of the above, the present embodiment further provides a readable storage medium, on which a computer program is stored, which when executed by a processor, implements the steps of the method embodiments described above.
It will be clear to those skilled in the art that, for convenience and brevity of description, specific working procedures of the above-described readable storage medium may refer to corresponding procedures in the foregoing method, and will not be described in detail herein.
In summary, the information pushing method, device, system and readable storage medium provided by the embodiment of the invention push information on the interception page and the prompt page returned to the user in the cloud WAF workflow, thereby not only realizing effective utilization of traffic resources, but also not affecting the defense of the cloud WAF platform to each website and the normal operation of each website.
Meanwhile, based on the diversity of the cloud WAF corresponding user groups, data support is provided for the user portrait function of the data processing platform, each access user can be effectively and accurately positioned, the accuracy of information pushing is improved, and selectivity and convenience are provided for information delivery.
The foregoing is merely illustrative of the present invention, and the present invention is not limited thereto, and any changes or substitutions easily contemplated by those skilled in the art within the scope of the present invention should be included in the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (8)

1. An information pushing method, applied to a WAF node, comprising:
receiving an access request of a user terminal, and judging whether the user terminal is in a dynamic interception state according to the access request;
if the user terminal is in a dynamic interception state, intercepting the access request of the user terminal, and acquiring information to be pushed according to the parameter information of the user terminal and the parameter information of the website to be accessed;
generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user side; if the method is not in the state of dynamic interception, the method further comprises the following steps:
Forwarding the access request of the user side to the website to be accessed, and receiving response information of the website to be accessed;
identifying the response information and judging whether the response information is a state code which cannot be accessed;
if the state code is the state code, acquiring the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed;
generating a prompt page comprising the information to be pushed and prompt contents corresponding to the status code according to the information to be pushed and the status code, and pushing the prompt page to the user side; the step of identifying the response information and judging whether the response information is a state code which cannot be accessed comprises the following steps:
judging whether the website to be accessed starts prompt page information pushing configuration or not;
if the prompt page information pushing configuration is not started, pushing response information of the website to be accessed to the user side;
and if the prompt page information pushing configuration is started, identifying the response information, and judging whether the response information is a state code which cannot be accessed.
2. The information pushing method according to claim 1, wherein before forwarding the access request of the user terminal to the website to be accessed, the method further comprises:
Judging whether the access of the user terminal is attack access or not;
if the access request is non-attack access, forwarding the access request of the user side to the website to be accessed;
if the access request is attack access, intercepting the access request of the user side, acquiring the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed, generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user side.
3. The information pushing method according to claim 2, wherein after determining that the access of the user terminal is an attack access, the method further comprises:
judging whether the attack times of the user side in a preset time period reach a set interception threshold value or not;
if the interception threshold is reached, setting a dynamic interception mark for the user side;
and if the interception threshold is not reached, updating the attack times of the user side.
4. The method for pushing information according to any one of claims 1 to 3, wherein the step of obtaining the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed includes:
The parameter information of the user side and the parameter information of the website to be accessed are sent to an information distribution platform, so that the information distribution platform obtains the information to be pushed according to the parameter information of the user side, the parameter information of the website to be accessed and the pre-stored pushing configuration parameters;
and receiving the information to be pushed, which is sent by the information distribution platform.
5. The information pushing method according to any one of claims 1 to 3, characterized in that the method further comprises:
generating an access log according to each access request of each user side;
the access log is sent to a data processing platform, so that the data processing platform performs user portrait on an access user according to the access log to obtain a user portrait result;
the step of obtaining the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed comprises the following steps:
the parameter information of the user side and the parameter information of the website to be accessed are sent to an information distribution platform, so that the information distribution platform sends the parameter information of the user side, the parameter information of the website to be accessed and the pre-stored pushing configuration parameters to the data processing platform, and the data processing platform carries out information matching based on the result of the user portrait, the parameter information of the user side, the parameter information of the website to be accessed and the pushing configuration parameters to obtain an information matching result;
And receiving the information to be pushed, which is obtained by the information distribution platform according to the information matching result.
6. An information pushing device is characterized by being applied to a WAF node, and comprises a request processing module, an information acquisition module and an information pushing module;
the request processing module is used for receiving an access request of a user terminal and judging whether the user terminal is in a dynamic interception state according to the access request;
if the information is in a dynamic interception state, the information acquisition module is used for intercepting an access request of the user side and acquiring information to be pushed according to the parameter information of the user side and the parameter information of a website to be accessed;
the information pushing module is used for generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user side;
the pushing module is specifically configured to:
forwarding the access request of the user side to the website to be accessed, and receiving response information of the website to be accessed;
identifying the response information and judging whether the response information is a state code which cannot be accessed;
if the state code is the state code, acquiring the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed;
Generating a prompt page comprising the information to be pushed and prompt contents corresponding to the status code according to the information to be pushed and the status code, and pushing the prompt page to the user side;
the pushing module is specifically configured to:
judging whether the website to be accessed starts prompt page information pushing configuration or not;
if the prompt page information pushing configuration is not started, pushing response information of the website to be accessed to the user side;
and if the prompt page information pushing configuration is started, identifying the response information, and judging whether the response information is a state code which cannot be accessed.
7. The information pushing system is characterized by comprising an information distribution platform and a cloud WAF platform, wherein the cloud WAF platform comprises at least one WAF node;
the WAF node is used for receiving an access request of a user terminal and judging whether the user terminal is in a dynamic interception state according to the access request; if the user terminal is in a dynamic interception state, intercepting an access request of the user terminal, sending parameter information of the user terminal and parameter information of a website to be accessed to the information distribution platform to obtain information to be pushed, generating an interception page comprising the information to be pushed according to the information to be pushed, and pushing the interception page to the user terminal;
The WAF node is configured to: forwarding the access request of the user side to the website to be accessed, and receiving response information of the website to be accessed;
identifying the response information and judging whether the response information is a state code which cannot be accessed;
if the state code is the state code, acquiring the information to be pushed according to the parameter information of the user side and the parameter information of the website to be accessed;
generating a prompt page comprising the information to be pushed and prompt contents corresponding to the status code according to the information to be pushed and the status code, and pushing the prompt page to the user side;
judging whether the website to be accessed starts prompt page information pushing configuration or not;
if the prompt page information pushing configuration is not started, pushing response information of the website to be accessed to the user side;
and if the prompt page information pushing configuration is started, identifying the response information, and judging whether the response information is a state code which cannot be accessed.
8. A readable storage medium, characterized in that the readable storage medium has stored therein a computer program which, when executed, implements the information pushing method of any of claims 1-5.
CN202011113047.0A 2020-10-16 2020-10-16 Information pushing method, device, system and readable storage medium Active CN112231566B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011113047.0A CN112231566B (en) 2020-10-16 2020-10-16 Information pushing method, device, system and readable storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011113047.0A CN112231566B (en) 2020-10-16 2020-10-16 Information pushing method, device, system and readable storage medium

Publications (2)

Publication Number Publication Date
CN112231566A CN112231566A (en) 2021-01-15
CN112231566B true CN112231566B (en) 2023-11-28

Family

ID=74118564

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011113047.0A Active CN112231566B (en) 2020-10-16 2020-10-16 Information pushing method, device, system and readable storage medium

Country Status (1)

Country Link
CN (1) CN112231566B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114816826B (en) * 2022-06-28 2022-09-23 杭银消费金融股份有限公司 Push defect identification method and device of application system

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005267014A (en) * 2004-03-17 2005-09-29 Vodafone Kk Server device
CN102761554A (en) * 2012-07-24 2012-10-31 北京亿赞普网络技术有限公司 Method, device and system for pushing information to client
CN103620576A (en) * 2010-11-01 2014-03-05 七网络公司 Caching adapted for mobile application behavior and network conditions
CN105939313A (en) * 2015-09-01 2016-09-14 杭州迪普科技有限公司 State code redirecting method and device
CN106302100A (en) * 2015-06-12 2017-01-04 中兴通讯股份有限公司 Information push method and device
CN106911757A (en) * 2015-12-23 2017-06-30 阿里巴巴集团控股有限公司 The method for pushing and device of a kind of business information
CN107977857A (en) * 2017-11-14 2018-05-01 上海斐讯数据通信技术有限公司 A kind of advertisement sending method and system

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2859551A1 (en) * 2003-09-09 2005-03-11 France Telecom METHOD FOR INSERTING THEMATIC FILTERING INFORMATION OF HTML PAGES AND CORRESPONDING SYSTEM
CN101355524B (en) * 2007-07-24 2013-10-09 华为技术有限公司 Method, system, server and terminal for processing information
US10826886B2 (en) * 2018-05-30 2020-11-03 Oracle International Corporation Techniques for authentication using push notifications

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005267014A (en) * 2004-03-17 2005-09-29 Vodafone Kk Server device
CN103620576A (en) * 2010-11-01 2014-03-05 七网络公司 Caching adapted for mobile application behavior and network conditions
CN102761554A (en) * 2012-07-24 2012-10-31 北京亿赞普网络技术有限公司 Method, device and system for pushing information to client
CN106302100A (en) * 2015-06-12 2017-01-04 中兴通讯股份有限公司 Information push method and device
CN105939313A (en) * 2015-09-01 2016-09-14 杭州迪普科技有限公司 State code redirecting method and device
CN106911757A (en) * 2015-12-23 2017-06-30 阿里巴巴集团控股有限公司 The method for pushing and device of a kind of business information
CN107977857A (en) * 2017-11-14 2018-05-01 上海斐讯数据通信技术有限公司 A kind of advertisement sending method and system

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
CoAP: An Application Protocol for Billions of Tiny Internet Nodes;Carsten Bormann等;《IEEE Internet Computing》;第16卷(第2期);第62-67页 *
基于openwrt的远程控制wifi路由器系统设计与实现;张森炜;《中国优秀硕士学位论文全文数据库信息科技辑》(第11期);第I136-339页 *

Also Published As

Publication number Publication date
CN112231566A (en) 2021-01-15

Similar Documents

Publication Publication Date Title
US20220030085A1 (en) Method, client, server, and system for sharing content
US9501345B1 (en) Method and system for creating enriched log data
EP2695358B1 (en) Selection of service nodes for provision of services
CN106933871B (en) Short link processing method and device and short link server
CN102263828B (en) Load balanced sharing method and equipment
US7984186B2 (en) Method, system, and apparatus for discovering user agent DNS settings
CN110049022B (en) Domain name access control method and device and computer readable storage medium
CN109729183B (en) Request processing method, device, equipment and storage medium
US10122722B2 (en) Resource classification using resource requests
CN107239701B (en) Method and device for identifying malicious website
CN107347015B (en) Method, device and system for identifying content distribution network
CN111917900A (en) Request processing method and device for domain name proxy
CN105956143A (en) Database access method and database proxy node
US10225358B2 (en) Page push method, device, server and system
CN112231566B (en) Information pushing method, device, system and readable storage medium
CN105939320A (en) Message processing method and device
CN112087455B (en) WAF site protection rule generation method, system, equipment and medium
CN114039961A (en) Message pushing method, device, server and storage medium based on WebSocket
CN110933070A (en) User identification method, system, equipment and computer readable storage medium
CN108737350B (en) Information processing method and client
CN113596105B (en) Content acquisition method, edge node and computer readable storage medium
CN111190664A (en) Method and system for generating page
CN106803830B (en) Method, device and system for identifying internet access terminal and User Identity Module (UIM) card
CN108306859B (en) Method, apparatus and computer-readable storage medium for limiting server access volume
KR101379803B1 (en) System for distributing abnormal traffic and method of distributing abnormal traffice using the same

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant