CN101582887A - Safety protection method, gateway device and safety protection system - Google Patents
Safety protection method, gateway device and safety protection system Download PDFInfo
- Publication number
- CN101582887A CN101582887A CNA2009100850560A CN200910085056A CN101582887A CN 101582887 A CN101582887 A CN 101582887A CN A2009100850560 A CNA2009100850560 A CN A2009100850560A CN 200910085056 A CN200910085056 A CN 200910085056A CN 101582887 A CN101582887 A CN 101582887A
- Authority
- CN
- China
- Prior art keywords
- url
- prestige
- uniform resource
- resource locator
- numerical value
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 34
- 239000000284 extract Substances 0.000 claims description 13
- 238000000605 extraction Methods 0.000 claims description 13
- 238000001514 detection method Methods 0.000 claims description 12
- 230000001681 protective effect Effects 0.000 claims description 12
- 238000012360 testing method Methods 0.000 claims description 7
- 230000000903 blocking effect Effects 0.000 claims 1
- 238000000151 deposition Methods 0.000 claims 1
- 238000010586 diagram Methods 0.000 description 11
- 238000004458 analytical method Methods 0.000 description 8
- 238000004364 calculation method Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 4
- 238000011156 evaluation Methods 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 2
- 238000004422 calculation algorithm Methods 0.000 description 2
- 238000004891 communication Methods 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 241000239290 Araneae Species 0.000 description 1
- 241000700605 Viruses Species 0.000 description 1
- 230000002950 deficient Effects 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Images
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The invention relates to a safety protection method, a gateway device and a safety protection system. The safety protection method comprises the following steps: acquiring a uniform resource locator for users to access; extracting the characteristic value of the uniform resource locator; inquiring corresponding credit value in a preset credit database according to the characteristic value; carrying out protection treatment when the inquired credit value is lower than the set value. In the embodiment of the invention, the credit of URL is judged according to the credit value gained by detecting the webpage corresponding to URL; the URL with lower credit value is interdicted to ensure that all the devices which can acquire URL can acquire URL credit by inquiring, thus effectively solving the problem of malicious webpage infringement.
Description
Technical field
The present invention relates to network communications technology field, relate in particular to a kind of safety protecting method, gateway device and security protection system.
Background technology
At present, along with rapid development of network technique, the use of network is also more convenient.As " Web 2.0 " correlation technique and application and development make online cooperation, share convenient.Along with increasing " Web 2.0 " website occurs, web applications with interaction capability are developed more, the hacker is also seeking technical flaw, in order to carrying out their rogue program code, thereby has produced more Cyberthreat (Web threat).
Web threatens and to utilize internet (Intemet) to carry out various rogue activitys, as identity theft, private information steal, bandwidth resources take etc.Web threatens employed rogue program code to slip into after the computer system, also can spread and brings in constant renewal in oneself, endangers very serious.
From its source, Web threatens to be divided into and internals attack and external attack two classes.The former is mainly from trust network, because the user has carried out unauthorized access or customized due to the malicious attack unintentionally; The latter mainly is because network hole is utilized or the user is subjected to due to rogue program maker's the single-minded attack.
In the prior art, the safety protection technique that the protection computer is avoided the Web threat comprises: filter the Web threat that the protection computer is avoided by websites collection.At present, a lot of enterprises adopt the websites collection technology, and discriminator is carried out in the website on the network, form class library.And by this function of the software and hardware system integration, the user can customize access strategy as required, thereby reaches the good relatively classifieds website of visit.Product such as " smartfilter ", " websense " all adopts this class technology.
In realizing process of the present invention, the inventor finds that there is following defective at least in prior art: security protection only is confined to detect the equipment of webpage itself, other equipment can't be known the testing result of the equipment that detects webpage, thereby can't avoid the problem of malicious web pages infringement.
Summary of the invention
The embodiment of the invention proposes a kind of safety protecting method, gateway device and security protection system, with the infringement of effective minimizing malicious web pages.
The embodiment of the invention has proposed a kind of safety protecting method, comprising:
Obtain the URL(uniform resource locator) of user capture;
Extract the characteristic value of described URL(uniform resource locator);
In preset credit database, inquire about corresponding prestige numerical value according to described characteristic value;
When the prestige numerical value that inquires is lower than the situation of set point, do protective treatment.
The embodiment of the invention has also proposed a kind of gateway device, comprising:
Acquisition module is used to obtain the URL(uniform resource locator) of user capture;
Extraction module is used to extract the characteristic value of described URL(uniform resource locator);
Enquiry module is used for according to described characteristic value at the corresponding prestige numerical value of preset credit database inquiry;
Protection module is used for doing protective treatment when the prestige numerical value that inquires is lower than the situation of set point.
The embodiment of the invention has also proposed a kind of security protection system, comprising:
Webpage prestige service equipment, be used to extract the characteristic value of URL(uniform resource locator), detect by webpage, obtain the prestige numerical value of described URL(uniform resource locator) correspondence described URL(uniform resource locator) correspondence, and described prestige numerical value of corresponding stored and described characteristic value;
Gateway device is used to obtain the URL(uniform resource locator) of user capture, extracts the characteristic value of described URL(uniform resource locator); In described webpage prestige service equipment, inquire about corresponding prestige numerical value according to described characteristic value; When the prestige numerical value that inquires is lower than the situation of set point, do protective treatment.
The foregoing description is according to URL(uniform resource locator) (Uniform Resource Locator, URL) corresponding webpage detects the prestige numerical value that obtains, prestige to URL is judged, the URL lower for prestige numerical value blocks, the equipment that makes all can obtain URL can both be known the prestige of URL by inquiry, efficiently solves the problem of malicious web pages infringement.
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
Description of drawings
Fig. 1 is the structural representation of a kind of security protection system of the embodiment of the invention;
Fig. 2 is the structural representation of webpage prestige service equipment in the embodiment of the invention security protection system;
Fig. 3 is the structural representation of a kind of gateway device of the embodiment of the invention;
Fig. 4 is the concrete workflow schematic diagram of the another kind of gateway device of the embodiment of the invention;
Fig. 5 is a kind of safety protecting method flow chart of the embodiment of the invention;
Fig. 6 is that the applied URL prestige of embodiment of the invention safety protecting method is filtered bypass deployment scenario schematic diagram;
Fig. 7 is that the applied URL prestige of embodiment of the invention safety protecting method is filtered forthright access deployment scenario schematic diagram;
Fig. 8 is the applied URL prestige service of an embodiment of the invention safety protecting method TSM terminal applies scene schematic diagram;
Fig. 9 is the applied URL prestige service of an embodiment of the invention safety protecting method wireless application scene schematic diagram;
Figure 10 is the application scenarios schematic diagram of the applied webpage prestige of embodiment of the invention safety protecting method service equipment at cloud security integrated service gateway.
Embodiment
Fig. 1 is the structural representation of a kind of security protection system of the embodiment of the invention.This system comprises webpage prestige service equipment 11 and gateway device 12.Webpage prestige service equipment 11 is used for obtaining in advance and preserve characteristic value and the prestige numerical value corresponding with each characteristic value of the URL that the network user visited, so that other equipment are inquired about, wherein, the characteristic value of the URL that is preserved and the prestige numerical value corresponding with each characteristic value can be used as credit database.Gateway device 12 is used for, extract the characteristic value of the URL of active user's visit, carry out Hash calculation as URL to active user's visit, obtain Hash result, from webpage prestige service equipment 11, inquire about the prestige numerical value of this URL according to Hash result,, then this URL is tackled if prestige numerical value is lower than set point, thereby reduced the infringement of malicious web pages, played the initiatively effect of protection.
In the another kind of security protection system of the embodiment of the invention, gateway device 12 can also carry out local cache to characteristic value and the prestige numerical value corresponding with each characteristic value of the URL of preservation in the webpage prestige service equipment 11, to reduce the processing time to URL.At this moment, gateway device 12 can at first be discerned according to the buffer memory of this locality, has judged whether relevant prestige recorded information, if record and prestige numerical value are arranged when being not less than preset value, then this URL is let pass fully; If when the prestige numerical value of this URL is lower than preset value, then this URL is carried out protective treatment;
Wherein, described preset value can be that concrete condition or empirical value preestablish; Described protective treatment comprises that the URL transmission that the user is visited blocks.
In the security protection system of the embodiment of the invention, gateway device 12 can further not have under the situation of buffer memory credit database in this locality, the URL that the active user visited is uploaded webpage prestige service equipment, so that webpage prestige service equipment carries out credit rating to this URL, obtain the reputation data of this URL.
In the security protection system of the embodiment of the invention, webpage prestige service equipment 11 can comprise extraction module 13, detection module 14 and memory module 15.Extraction module 13 extracts the characteristic value of the URL of user capture in the network, as utilizes hash algorithm that URL is calculated, and obtains the characteristic value of URL, promptly obtains the attribute of this URL uniqueness, as the Hash calculation result.Extraction module 13 extracts among the URL of characteristic value, the URL that may not have the active user to visit.If extraction module 13 extracts the URL that does not have the active user to visit among the URL of characteristic value, then the gateway device inquiry is less than the prestige numerical value of the URL correspondence of active user's visit, and this moment, gateway device can report webpage prestige service equipment.Webpage prestige service equipment is according to reporting the URL that obtains active user's visit and carrying out the prestige assessment.14 pairs of detection modules detect by the webpage to the URL correspondence, according to the prestige numerical value of testing result evaluation URL.When including malicious code in the webpage, give this URL evaluation a lower prestige numerical value as detecting when detection module 14; When detection module 14 detects when not having malicious code in the webpage, give this URL evaluation a higher prestige numerical value.The characteristic value that memory module 15 storage extraction modules 13 extract and the prestige numerical value of detection module 14 evaluations are in order to the prestige numerical value of gateway device 12 inquiry URL.
The another kind of security protection system of the embodiment of the invention can further comprise the resource memory module.The resource memory module is used to store the webpage of described URL correspondence.
Fig. 2 is the structural representation of webpage prestige service equipment in the embodiment of the invention security protection system.In the present embodiment, it mainly is to adopt the webpage that the user visited in the network is downloaded that webpage prestige service equipment carries out credit rating to URL, web crawlers is downloaded webpage, then webpage institute content is carried out check and analysis, whether identification possesses malice, is that URL gives prestige numerical value according to recognition result.As shown in Figure 2, webpage prestige service equipment swashes at network by spiders and takes the interested webpage in family, then the content of webpage is existed in the web page resources storehouse, each analysis engine such as analysis engine 1, analysis engine 2, analysis engine 3 etc. then do not stop reads the data of getting off from page download, comprise the annex that some are little, these The data are downloaded executable module feature detection, the detection of webpage extension horse, script virus detection etc.Estimate according to testing result then, obtain prestige numerical value, and record in the webpage prestige storehouse.Wherein, each analysis engine is the detection module in the foregoing description, and the web page resources storehouse can be the resource memory module in the foregoing description; Webpage prestige storehouse can be the memory module in the foregoing description.
Because the prestige of URL changes, do not fix, therefore, need to bring in constant renewal in.At this moment, webpage prestige service equipment can further comprise update module 21.This update module 21 can be used for downloading by setting-up time the webpage of described URL correspondence, and in web pages downloaded more under the news, the mark that on described web pages downloaded, is provided for detecting.Detection module can specifically be used for detecting according to described mark the content of described web pages downloaded, and upgrades prestige numerical value according to testing result.
As checking the page download time in a web page resources storehouse in per three days, utilize update module 21 to go to download this webpage on the website, if webpage of downloading and web page resources storehouse is identical, then only the page download time in the web page resources storehouse is upgraded; If different, then web pages downloaded is saved in the web page resources storehouse, stamp the mark that is used to detect on the webpage under downloading simultaneously, so that the indication analysis engine detects.Analysis engine finds that the content to this webpage detects and evaluate again prestige numerical value behind this mark.
Among the said system embodiment, characteristic value and the corresponding prestige numerical value of the URL of webpage prestige service equipment storage can be referred to as reputation data.Reputation data can comprise information as shown in table 1.
Table 1 reputation data structure
| The URL title | When just finding | During near the discovery | Hash result | The number of times statistics | Prestige numerical value |
Wherein, the URL title can be represented the title of a certain URL, represent the initial time of finding or downloading of this URL when just finding, the time of representing this URL recent findings or download during near the discovery is the nearest page download time among the said system embodiment also, Hash result represents the URL title is utilized the characteristic value of hash algorithm extraction, the number of times that this URL of number of times statistical representation is found or is downloaded in Internet communication, the prestige numerical value that this URL of Reputation Number value representation obtains after tested.
Fig. 3 is the structural representation of a kind of gateway device of the embodiment of the invention.This gateway device can be SIG, GGSN, cloud security gateway etc., comprising: acquisition module 31, extraction module 32, enquiry module 33, and protection module 34.Acquisition module 31 obtains the URL of user capture.Extraction module 32 extracts the characteristic value of the described URL that obtains, carries out Hash calculation as the URL that acquisition module 31 is obtained, and obtains the characteristic value of this URL.The corresponding prestige numerical value of characteristic value inquiry that enquiry module 33 extracts according to extraction module 32, i.e. the prestige numerical value of URL; Prestige numerical value sees said system embodiment for details.Protection module 34 is lower than under the situation of set point at the prestige numerical value that enquiry module 33 obtains, and does protective treatment.
Enquiry module 33 can be used for obtaining the prestige numerical value corresponding with described characteristic value from reputation data.
When reputation data was stored in webpage prestige service equipment, enquiry module 33 can be used for obtaining from webpage prestige service equipment the prestige numerical value of URL.
When reputation data is stored in this locality is in this gateway equipment the time, and the gateway device that the embodiment of the invention provided can further comprise: cache module.The reputation data that this cache module cache web pages prestige service equipment is safeguarded.At this moment, enquiry module 33 can be used for obtaining the prestige numerical value corresponding with described characteristic value from the reputation data of described cache module buffer memory, carries out efficient to improve.
Protection module 34 can comprise return submodule and the blocking-up submodule.Return submodule and return warning information; The blocking-up submodule stops to browse under the situation of indication according to described warning information indication the user, blocks the URL of described user capture.
The gateway device that the embodiment of the invention provided can also comprise the first clearance module.Return according to described warning information described user and to continue to browse under the situation of indication, the let pass URL of described user capture of the first clearance module.
The gateway device that the embodiment of the invention provided can also comprise the second clearance module.Prestige numerical value at the URL of described user capture is higher than under the situation of described set point, the let pass URL of described user capture of the second clearance module.
The gateway device that the embodiment of the invention provided can further comprise reporting module.Do not get access at enquiry module 33 under the situation of corresponding prestige numerical value, reporting module reports the URL of described user capture to webpage prestige service equipment.
The workflow of gateway device can comprise as shown in Figure 4:
The prestige numerical value of step 43, inquiry local cache;
Whether step 45 judges prestige numerical value greater than set point, if then execution in step 46; Otherwise, execution in step 47;
The another kind of gateway device of the embodiment of the invention can comprise the client (Secospace SA) of the inner Rights Management System of enterprise network and the server end (Secospace SC) of the inner Rights Management System of enterprise network.Secospace SA is used to obtain the URL of user capture; Extract the characteristic value of described URL; Obtain corresponding prestige numerical value according to described characteristic value; Described prestige numerical value sees said system embodiment for details.Secospace SC is lower than under the situation of set point at the prestige numerical value that Secospace SA obtains, and blocks described URL; Otherwise this URL lets pass.
Fig. 5 is a kind of safety protecting method flow chart of the embodiment of the invention.This method comprises:
The characteristic value of the URL that step 52, extraction step 51 obtain;
Present embodiment is by the prestige numerical value of inquiry URL, and under the lower situation of the prestige numerical value of URL, stop, the URL that has guaranteed all user captures can both be by its prestige numerical value of inquiry, and block or let pass according to the height of its prestige numerical value, efficiently solve the problem of the infringement of malicious web pages.
The safety protecting method that the embodiment of the invention provides can be applicable to as Fig. 6, Fig. 7, Fig. 8, Fig. 9 and deployment scenario shown in Figure 10.Fig. 6 is that the applied URL prestige of embodiment of the invention safety protecting method is filtered bypass deployment scenario schematic diagram.Fig. 7 is that the applied URL prestige of embodiment of the invention safety protecting method is filtered forthright access deployment scenario schematic diagram.Fig. 8 is the applied URL prestige service of an embodiment of the invention safety protecting method TSM terminal applies scene schematic diagram.Fig. 9 is the applied URL prestige service of an embodiment of the invention safety protecting method wireless application scene schematic diagram.Figure 10 is the application scenarios schematic diagram of the applied webpage prestige of embodiment of the invention safety protecting method service equipment at cloud security integrated service gateway.
When the safety protecting method that provides when the embodiment of the invention is applied to Fig. 6-scene shown in Figure 10, network (WEB) access request that above-mentioned steps 52 can be initiated to the internet by SIG, Secospace SA, GGSN, gateway device, cloud security integrated service gateway monitoring users respectively, obtain URL, and the characteristic value of extracting URL carries out reputation query to being sent to webpage prestige service equipment, and webpage prestige service equipment returns prestige numerical value after judging;
Can judge the prestige numerical value that webpage prestige service equipment returns by SIG, Secospace SC, GGSN, gateway device, cloud security integrated service gateway respectively in the above-mentioned steps 53, carry out protective treatment.Directly stop as the URL that prestige numerical value is lower than tactful set point, perhaps further forge the response page user is alarmed; Or, also further judge whether to continue to browse according to alarm by the user; If the user returns the indication that continues to browse, then this visit request is no longer handled, promptly URL is let pass; If the user returns the indication of not browsing, then URL is stopped.
In the foregoing description, webpage prestige service equipment is by detecting and set corresponding prestige numerical value in advance for the inquiry of gateway devices such as SIG, Secospace SC, GGSN, cloud security integrated service gateway to URL, guaranteed that all gateway devices can both stop URL or let pass according to the reputation data of storing in the webpage prestige service equipment, have avoided the infringement of malicious web pages.
One of ordinary skill in the art will appreciate that: all or part of step that realizes said method embodiment can be finished by the relevant hardware of program command, aforesaid program can be stored in the computer read/write memory medium, this program is carried out the step that comprises said method embodiment when carrying out; And aforesaid storage medium comprises: various media that can be program code stored such as ROM, RAM, magnetic disc or CD.
It should be noted that at last: above embodiment only in order to technical scheme of the present invention to be described, is not intended to limit; Although with reference to previous embodiment the present invention is had been described in detail, those of ordinary skill in the art is to be understood that: it still can be made amendment to the technical scheme that aforementioned each embodiment put down in writing, and perhaps part technical characterictic wherein is equal to replacement; And these modifications or replacement do not make the essence of appropriate technical solution break away from the spirit and scope of various embodiments of the present invention technical scheme.
Claims (16)
1, a kind of safety protecting method is characterized in that, comprising:
Obtain the URL(uniform resource locator) of user capture;
Extract the characteristic value of described URL(uniform resource locator);
In preset credit database, inquire about corresponding prestige numerical value according to described characteristic value;
When the prestige numerical value that inquires is lower than the situation of set point, do protective treatment.
2, safety protecting method according to claim 1 is characterized in that, described credit database is deposited in the local cache.
3, safety protecting method according to claim 1 is characterized in that, described protective treatment comprises: the blocking-up URL(uniform resource locator) that the user visited.
4, safety protecting method according to claim 1 is characterized in that, also comprises:
Webpage prestige service equipment is downloaded the webpage of described URL(uniform resource locator) correspondence by setting-up time;
More under the news, detect the content of described web pages downloaded in web pages downloaded;
Upgrade prestige numerical value according to testing result.
5, safety protecting method according to claim 4, it is characterized in that, the webpage that described webpage prestige service equipment is downloaded described URL(uniform resource locator) correspondence by setting-up time also comprises afterwards: upgrade download time, to carry out next update according to this download time.
6, according to each described safety protecting method among the claim 1-5, it is characterized in that, also comprise: under the situation of the prestige numerical value that does not inquire described URL(uniform resource locator), the URL(uniform resource locator) that reports described user capture is in order to the prestige numerical value of the URL(uniform resource locator) of assessing this user capture.
7, a kind of gateway device is characterized in that, comprising:
Acquisition module is used to obtain the URL(uniform resource locator) of user capture;
Extraction module is used to extract the characteristic value of described URL(uniform resource locator);
Enquiry module is used for according to described characteristic value at the corresponding prestige numerical value of preset credit database inquiry;
Protection module is used for doing protective treatment when the prestige numerical value that inquires is lower than the situation of set point.
8, gateway device according to claim 7 is characterized in that, also comprises:
Cache module is used for depositing in this locality described credit database.
According to claim 7 or 8 described gateway devices, it is characterized in that 9, described protection module is used for when the prestige numerical value that inquires is lower than the situation of set point, the blocking-up URL(uniform resource locator) that the user visited.
According to claim 7 or 8 described gateway devices, it is characterized in that 10, described protection module is used for blocking the URL(uniform resource locator) of described user capture when the prestige numerical value that inquires is lower than the situation of set point.
11, according to claim 7 or 8 described gateway devices, it is characterized in that, also comprise:
Reporting module is used for reporting the URL(uniform resource locator) of described user capture under the situation that does not get access to corresponding prestige numerical value, in order to the prestige numerical value of the URL(uniform resource locator) of assessing this user capture.
12, a kind of security protection system is characterized in that, comprising:
Webpage prestige service equipment, be used to extract the characteristic value of URL(uniform resource locator), detect by webpage, obtain the prestige numerical value of described URL(uniform resource locator) correspondence described URL(uniform resource locator) correspondence, and described prestige numerical value of corresponding stored and described characteristic value;
Gateway device is used to obtain the URL(uniform resource locator) of user capture, extracts the characteristic value of described URL(uniform resource locator); In described webpage prestige service equipment, inquire about corresponding prestige numerical value according to described characteristic value; When the prestige numerical value that inquires is lower than the situation of set point, do protective treatment.
13, security protection system according to claim 12 is characterized in that, described webpage prestige service equipment comprises:
Extraction module is used to extract the characteristic value of described URL(uniform resource locator);
Detection module is used for the webpage of described URL(uniform resource locator) correspondence is detected, and evaluates the prestige numerical value of described URL(uniform resource locator) according to testing result;
Memory module is used to store the characteristic value and the prestige numerical value that comprise described URL(uniform resource locator).
14, security protection system according to claim 13 is characterized in that, described webpage prestige service equipment also comprises:
The resource memory module is used to store the webpage of described URL(uniform resource locator) correspondence;
Update module is used for downloading by setting-up time the webpage of described URL(uniform resource locator) correspondence, and with described resource memory module in the webpage stored compare; In web pages downloaded more under the news, the mark that on described web pages downloaded, is provided for detecting;
Described detection module specifically is used for detecting according to described mark the content of described web pages downloaded, and upgrades prestige numerical value according to testing result.
15, security protection system according to claim 14 is characterized in that, described update module also is used to upgrade download time, to carry out next update according to this download time.
According to each described security protection system among the claim 13-15, it is characterized in that 16, described webpage prestige service equipment also comprises:
Receiver module is used to receive described gateway device under the non-existent situation of prestige numerical value of described correspondence, the URL(uniform resource locator) of the described user capture that reports.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910085056.0A CN101582887B (en) | 2009-05-20 | 2009-05-20 | Safety protection method, gateway device and safety protection system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910085056.0A CN101582887B (en) | 2009-05-20 | 2009-05-20 | Safety protection method, gateway device and safety protection system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101582887A true CN101582887A (en) | 2009-11-18 |
| CN101582887B CN101582887B (en) | 2014-02-26 |
Family
ID=41364850
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910085056.0A Expired - Fee Related CN101582887B (en) | 2009-05-20 | 2009-05-20 | Safety protection method, gateway device and safety protection system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101582887B (en) |
Cited By (24)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101827104A (en) * | 2010-04-27 | 2010-09-08 | 南京邮电大学 | Multi anti-virus engine-based network virus joint defense method |
| CN102043865A (en) * | 2011-01-17 | 2011-05-04 | 博视联(苏州)信息科技有限公司 | Malicious webpage filtration system based on C/S framework and filtration method thereof |
| CN102195971A (en) * | 2011-03-24 | 2011-09-21 | 北京思创银联科技股份有限公司 | Website access control method |
| CN102281591A (en) * | 2010-06-13 | 2011-12-14 | 中兴通讯股份有限公司 | Data buffer method and system thereof |
| CN102402620A (en) * | 2011-12-26 | 2012-04-04 | 余姚市供电局 | Method and system for defending malicious webpage |
| CN102419808A (en) * | 2011-09-28 | 2012-04-18 | 奇智软件(北京)有限公司 | Method, device and system for detecting safety of download link |
| WO2012051802A1 (en) * | 2010-10-22 | 2012-04-26 | 北京神州绿盟信息安全科技股份有限公司 | Website scanning device and method |
| CN102469113A (en) * | 2010-11-01 | 2012-05-23 | 北京启明星辰信息技术股份有限公司 | Security gateway and method for forwarding webpage by using security gateway |
| CN102741845A (en) * | 2010-02-01 | 2012-10-17 | 微软公司 | URL reputation system |
| WO2013053278A1 (en) * | 2011-10-14 | 2013-04-18 | 腾讯科技(深圳)有限公司 | Network security identification method, security detection server, client and system |
| CN103092832A (en) * | 2011-10-27 | 2013-05-08 | 腾讯科技(深圳)有限公司 | Website risk detection processing method and website risk detection processing device |
| CN103902889A (en) * | 2012-12-26 | 2014-07-02 | 腾讯科技(深圳)有限公司 | Malicious message cloud detection method and server |
| CN103973749A (en) * | 2013-02-05 | 2014-08-06 | 腾讯科技(深圳)有限公司 | Cloud server and website processing method based on same |
| CN104142815A (en) * | 2013-05-09 | 2014-11-12 | 腾讯科技(深圳)有限公司 | Icon displaying method and icon displaying device |
| CN105376211A (en) * | 2014-08-11 | 2016-03-02 | 帕洛阿尔托研究中心公司 | Probabilistic lazy-forwarding technique without validation in a content centric network |
| CN105991746A (en) * | 2015-03-04 | 2016-10-05 | 腾讯科技(深圳)有限公司 | File downloading method and file downloading device |
| CN106027564A (en) * | 2016-07-08 | 2016-10-12 | 携程计算机技术(上海)有限公司 | Method and device for detecting security of anti-crawler strategy |
| CN106131016A (en) * | 2016-07-13 | 2016-11-16 | 北京知道创宇信息技术有限公司 | Maliciously URL detection interference method, system and device |
| CN106487759A (en) * | 2015-08-28 | 2017-03-08 | 北京奇虎科技有限公司 | The method and apparatus that URL effectiveness and safety are promoted in a kind of detection |
| US9619107B2 (en) | 2013-05-09 | 2017-04-11 | Tencent Technology (Shenzhen) Company Limited | Methods and systems for dynamically displaying icons on a user interface for security check and other functions |
| CN107203580A (en) * | 2017-02-27 | 2017-09-26 | 张家口浩扬科技有限公司 | Webpage display method and device and corresponding mobile terminal |
| US9892931B2 (en) | 2013-10-14 | 2018-02-13 | Taiwan Semiconductor Manufacturing Company Ltd. | Semiconductor manufacturing apparatus and method thereof |
| CN108449235A (en) * | 2018-05-07 | 2018-08-24 | 苏州德姆斯信息技术有限公司 | Equipment alarm calculation processing system and processing method |
| US10348692B2 (en) | 2014-09-16 | 2019-07-09 | Nokia Technologies Oy | Method and apparatus for anonymous access and control of a service node |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070078936A1 (en) * | 2005-05-05 | 2007-04-05 | Daniel Quinlan | Detecting unwanted electronic mail messages based on probabilistic analysis of referenced resources |
| CN1991830A (en) * | 2005-12-28 | 2007-07-04 | 腾讯科技(深圳)有限公司 | Webpage mark extracting method |
-
2009
- 2009-05-20 CN CN200910085056.0A patent/CN101582887B/en not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070078936A1 (en) * | 2005-05-05 | 2007-04-05 | Daniel Quinlan | Detecting unwanted electronic mail messages based on probabilistic analysis of referenced resources |
| CN1991830A (en) * | 2005-12-28 | 2007-07-04 | 腾讯科技(深圳)有限公司 | Webpage mark extracting method |
Non-Patent Citations (1)
| Title |
|---|
| Z. GENOVA: "《Using Signatures to Improve UIU Routing》", 30 April 2002 * |
Cited By (40)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102741845A (en) * | 2010-02-01 | 2012-10-17 | 微软公司 | URL reputation system |
| CN102741845B (en) * | 2010-02-01 | 2015-08-19 | 微软技术许可有限责任公司 | URL reputation system |
| CN101827104A (en) * | 2010-04-27 | 2010-09-08 | 南京邮电大学 | Multi anti-virus engine-based network virus joint defense method |
| CN101827104B (en) * | 2010-04-27 | 2013-01-02 | 南京邮电大学 | Multi anti-virus engine-based network virus joint defense method |
| CN102281591A (en) * | 2010-06-13 | 2011-12-14 | 中兴通讯股份有限公司 | Data buffer method and system thereof |
| WO2012051802A1 (en) * | 2010-10-22 | 2012-04-26 | 北京神州绿盟信息安全科技股份有限公司 | Website scanning device and method |
| CN102457500A (en) * | 2010-10-22 | 2012-05-16 | 北京神州绿盟信息安全科技股份有限公司 | Website scanning equipment and method |
| US9215246B2 (en) | 2010-10-22 | 2015-12-15 | NSFOCUS Information Technology Co., Ltd. | Website scanning device and method |
| CN102457500B (en) * | 2010-10-22 | 2015-01-07 | 北京神州绿盟信息安全科技股份有限公司 | Website scanning equipment and method |
| CN102469113A (en) * | 2010-11-01 | 2012-05-23 | 北京启明星辰信息技术股份有限公司 | Security gateway and method for forwarding webpage by using security gateway |
| CN102469113B (en) * | 2010-11-01 | 2014-08-20 | 北京启明星辰信息技术股份有限公司 | Security gateway and method for forwarding webpage by using security gateway |
| CN102043865A (en) * | 2011-01-17 | 2011-05-04 | 博视联(苏州)信息科技有限公司 | Malicious webpage filtration system based on C/S framework and filtration method thereof |
| CN102195971A (en) * | 2011-03-24 | 2011-09-21 | 北京思创银联科技股份有限公司 | Website access control method |
| CN102419808A (en) * | 2011-09-28 | 2012-04-18 | 奇智软件(北京)有限公司 | Method, device and system for detecting safety of download link |
| US9154522B2 (en) | 2011-10-14 | 2015-10-06 | Tencent Technology (Shenzhen) Company Limited | Network security identification method, security detection server, and client and system therefor |
| US20140259100A1 (en) * | 2011-10-14 | 2014-09-11 | Tencent Technology (Shenzhen) Company Limited | Network security identification method, security detection server, and client and system therefor |
| WO2013053278A1 (en) * | 2011-10-14 | 2013-04-18 | 腾讯科技(深圳)有限公司 | Network security identification method, security detection server, client and system |
| CN103092832A (en) * | 2011-10-27 | 2013-05-08 | 腾讯科技(深圳)有限公司 | Website risk detection processing method and website risk detection processing device |
| CN102402620A (en) * | 2011-12-26 | 2012-04-04 | 余姚市供电局 | Method and system for defending malicious webpage |
| CN103902889A (en) * | 2012-12-26 | 2014-07-02 | 腾讯科技(深圳)有限公司 | Malicious message cloud detection method and server |
| CN103973749A (en) * | 2013-02-05 | 2014-08-06 | 腾讯科技(深圳)有限公司 | Cloud server and website processing method based on same |
| US9619107B2 (en) | 2013-05-09 | 2017-04-11 | Tencent Technology (Shenzhen) Company Limited | Methods and systems for dynamically displaying icons on a user interface for security check and other functions |
| CN104142815B (en) * | 2013-05-09 | 2017-11-17 | 腾讯科技(深圳)有限公司 | The method and apparatus for showing icon |
| CN104142815A (en) * | 2013-05-09 | 2014-11-12 | 腾讯科技(深圳)有限公司 | Icon displaying method and icon displaying device |
| US9892931B2 (en) | 2013-10-14 | 2018-02-13 | Taiwan Semiconductor Manufacturing Company Ltd. | Semiconductor manufacturing apparatus and method thereof |
| CN105376211B (en) * | 2014-08-11 | 2020-10-30 | 思科技术公司 | Probabilistic delay forwarding technique without validation in content-centric networks |
| CN105376211A (en) * | 2014-08-11 | 2016-03-02 | 帕洛阿尔托研究中心公司 | Probabilistic lazy-forwarding technique without validation in a content centric network |
| US10348692B2 (en) | 2014-09-16 | 2019-07-09 | Nokia Technologies Oy | Method and apparatus for anonymous access and control of a service node |
| CN105991746A (en) * | 2015-03-04 | 2016-10-05 | 腾讯科技(深圳)有限公司 | File downloading method and file downloading device |
| CN106487759A (en) * | 2015-08-28 | 2017-03-08 | 北京奇虎科技有限公司 | The method and apparatus that URL effectiveness and safety are promoted in a kind of detection |
| CN106027564B (en) * | 2016-07-08 | 2019-05-21 | 携程计算机技术(上海)有限公司 | Detect the method and device of anti-crawler security policy |
| CN106027564A (en) * | 2016-07-08 | 2016-10-12 | 携程计算机技术(上海)有限公司 | Method and device for detecting security of anti-crawler strategy |
| CN106131016B (en) * | 2016-07-13 | 2019-05-03 | 北京知道创宇信息技术有限公司 | Malice URL detects interference method, system and device |
| CN106131016A (en) * | 2016-07-13 | 2016-11-16 | 北京知道创宇信息技术有限公司 | Maliciously URL detection interference method, system and device |
| CN107203580A (en) * | 2017-02-27 | 2017-09-26 | 张家口浩扬科技有限公司 | Webpage display method and device and corresponding mobile terminal |
| CN107203580B (en) * | 2017-02-27 | 2018-06-26 | 广州旺加旺网络科技有限公司 | Webpage display method and mobile terminal using same |
| CN108427763A (en) * | 2017-02-27 | 2018-08-21 | 张家口浩扬科技有限公司 | A kind of Web page display apparatus |
| CN108427763B (en) * | 2017-02-27 | 2020-08-18 | 伟迈云科技股份有限公司 | Webpage display device |
| CN108449235A (en) * | 2018-05-07 | 2018-08-24 | 苏州德姆斯信息技术有限公司 | Equipment alarm calculation processing system and processing method |
| CN108449235B (en) * | 2018-05-07 | 2023-12-12 | 苏州德姆斯信息技术有限公司 | Equipment alarm calculation processing system and processing method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101582887B (en) | 2014-02-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101582887B (en) | Safety protection method, gateway device and safety protection system | |
| US10652265B2 (en) | Method and apparatus for network forensics compression and storage | |
| US9531734B2 (en) | Method and apparatus for intercepting or cleaning-up plugins | |
| CN102891826B (en) | The control method of web page access, equipment and system | |
| CN103918222A (en) | System and method for detection of denial of service attacks | |
| CN101330406B (en) | System and method for monitoring WAP imperfect picture | |
| CN103746992B (en) | Based on reverse intruding detection system and method thereof | |
| CN110677384B (en) | Phishing website detection method and device, storage medium and electronic device | |
| CN108023868B (en) | Malicious resource address detection method and device | |
| CN114915479B (en) | Web attack stage analysis method and system based on Web log | |
| CN107332804B (en) | Method and device for detecting webpage bugs | |
| CN107426196B (en) | Method and system for identifying WEB invasion | |
| CN103888480A (en) | Cloud monitoring based network information security identification method and cloud device | |
| CN105302801A (en) | Resource caching method and apparatus | |
| CN108234426B (en) | APT attack warning method and APT attack warning device | |
| CN101576947B (en) | Method, device and system for file protection treatment | |
| CN103401845A (en) | Detection method and device for website safety | |
| CN109660552A (en) | A kind of Web defence method combining address jump and WAF technology | |
| CN107231364B (en) | Website vulnerability detection method and device, computer device and storage medium | |
| CN108132948B (en) | Method and device for processing crawled webpage | |
| CN104426836A (en) | Invasion detection method and device | |
| CN111786990B (en) | Defense method and system for WEB active push skip page | |
| CN106612283B (en) | Method and device for identifying source of downloaded file | |
| KR101754195B1 (en) | Method for security enhancement based on multi log gathering server | |
| CN111885088A (en) | Log monitoring method and device based on block chain |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: HUAWEI TECHNOLOGY CO., LTD. Free format text: FORMER OWNER: HUAWEI DIGITAL TECHNOLOGY (CHENGDU) CO., LTD. Effective date: 20130909 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| C53 | Correction of patent of invention or patent application | ||
| CB02 | Change of applicant information |
Address after: High tech Park No. 88 University of Electronic Science and technology of Sichuan province 611731 Chengdu Tianchen Road Applicant after: HUAWEI DIGITAL TECHNOLOGIES (CHENG DU) Co.,Ltd. Address before: High tech Park No. 88 University of Electronic Science and technology of Sichuan province 611731 Chengdu Tianchen Road Applicant before: CHENGDU HUAWEI SYMANTEC TECHNOLOGIES Co.,Ltd. |
|
| COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 611731 CHENGDU, SICHUAN PROVINCE TO: 518129 SHENZHEN, GUANGDONG PROVINCE Free format text: CORRECT: APPLICANT; FROM: CHENGDU HUAWEI SYMANTEC TECHNOLOGIES CO., LTD. TO: HUAWEI DIGITAL TECHNOLOGY (CHENGDU) CO., LTD. |
|
| TA01 | Transfer of patent application right |
Effective date of registration: 20130909 Address after: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen Applicant after: HUAWEI TECHNOLOGIES Co.,Ltd. Address before: High tech Park No. 88 University of Electronic Science and technology of Sichuan province 611731 Chengdu Tianchen Road Applicant before: HUAWEI DIGITAL TECHNOLOGIES (CHENG DU) Co.,Ltd. |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20140226 |