Embodiment
Exemplary embodiment of the present disclosure is described below with reference to accompanying drawings in more detail.Although shown exemplary embodiment of the present disclosure in the accompanying drawing, yet should be appreciated that and to realize the disclosure and the embodiment that should do not set forth limits here with various forms.On the contrary, it is in order to understand the disclosure more thoroughly that these embodiment are provided, and can with the scope of the present disclosure complete convey to those skilled in the art.
Referring to Fig. 1, show the system of the relevant information that presents according to an embodiment of the invention the website.This system comprises browser 100, first server 200 and second server 300.This browser 100 comprises that Type of website acquisition module 110, the Type of website present module 120 and website relevant information acquisition module 130.
Type of website acquisition module 110 is suitable for obtaining from first server 200 according to the network address of website the Type of website of this website.The Type of website comprises one of following type at least: security website's type and ICP(Web content service provider, Internet Content Provider) the recorded website type.For example, Type of website acquisition module 110 sends the cryptographic hash of the rhizosphere name in the network address to first server 200.First server 200 inquires the Type of website of website according to the cryptographic hash that receives, the network address type is returned to Type of website acquisition module 110.
The Type of website presents module 120 and is suitable for presenting the Type of website of website after Type of website acquisition module 110 gets access to the Type of website of website; After receiving the user and presenting the indication of relevant information of website, indication website relevant information acquisition module 130 goes to obtain the relevant information of website.For example, the user user that is designated as that presents the relevant information of website clicks the Type of website present.
Website relevant information acquisition module 130 is suitable for obtaining from second server 300 according to the network address of the Type of website of obtaining and website the relevant information of website.For example, the relevant information of website is for being used for presenting the website business card of website identity information.The website business card for example is form web page, and comprises at least one of following message: the title of web site name, station address, the Type of website, website sponsor, the type of website sponsor, the card number put on record, credit number and the sign by security audit.Relevant information acquisition module 130 interface corresponding with the Type of website in the second server 300 in website sends the cryptographic hash of the rhizosphere name in the network address.Second server 300 returns to website relevant information acquisition module 130 according to the cryptographic hash query web relevant information in database corresponding to this interface that receives with the website relevant information.Website relevant information acquisition module 130 presents the website relevant information of reception.
Further, second server 300 can be inquired about corresponding website relevant information according to the cryptographic hash that receives first in buffer memory, when not inquiring, and website relevant information corresponding to inquiry from database corresponding to the Type of website.As mentioned above, the website relevant information can be called the website business card.Second server 300 returns to website relevant information acquisition module 130 with the web page contents of website business card.Website relevant information acquisition module 130 is embedded in the web page contents of the network address business card of reception among the web page dialog box htmldialog, to show this website business card.
Thus, the website business card generates at server side, the network address business card is returned to browser with form web page, can avoid in the prior art website business card updating to the dependence of browser, the website business card solved the problem that can't upgrade because browser version crosses old, so that can upgrade in time according to the renewal of information in the database.
In addition, in the prior art, when the browser access website, all can obtain from server whole relevant informations of website at every turn, carry out malicious websites identification for the user.But the user only needs the part in whole relevant informations just can identify malicious websites usually, has caused thus the waste of network traffics resources.In the present embodiment, at first obtain the Type of website and present, the user can carry out malicious websites identification according to this Type of website.Only need to know the details of website the user, send the indication of the relevant information that presents the website after, just go to obtain the relevant information of website, reduced thus the transmission times of whole relevant information data, saved Internet resources.
Above-mentioned browser 100 comprises that the structure that Type of website acquisition module 110, the Type of website present module 120 and website relevant information acquisition module 130 is a kind of optional implementation, the invention is not restricted to this.Especially, the Type of website presents module 120 and is optional module.Present the Type of website at needs, when obtaining the website relevant information according to user indication, be chosen in the browser 100 that the interpolation Type of website presents module 120 except Type of website acquisition module 110 and website relevant information acquisition module 130.When not needing to present the Type of website, can only comprise Type of website acquisition module 110 and website relevant information acquisition module 130 in the browser 100.
Referring to Fig. 2, show the structural drawing of the system of the relevant information that presents the website under the concrete according to an embodiment of the invention application scenarios.In this embodiment, cloud server is first server 200, and website business card server is second server 300, and browser is browser 100 shown in Figure 1.
Referring to Fig. 3, show the according to an embodiment of the invention deployment architecture figure of the concrete off line name of station sheet of application scenarios server 300.Website business card server 300 comprises load balancing apparatus 310, a plurality of child servers 320 and buffer 330, and buffer 330 is connected with ICP recorded website database with the security website database.Adopt Hash table in the buffer 330, with the pairing of key-value(key word-value) mode stores, wherein key is the MD5 value of rhizosphere name, value is information in the tabulation of information or ICP recorded website in the tabulation of security website of correspondence.
The tabulation of storage security website in security website's database, corresponding domain name ID comprises one of following message at least in the tabulation of security website: website domain name, effective time, issuing time, publisher, web site name, domain name classification and authentication state.The domain name classification is such as comprising: enterprise-class, net purchase class, government's class, payment class, bank's class and public institution's class etc.Authentication state is such as comprising: application, identity detect, identity not by, safety detection, safety detection not by, business audit, business audit not by, issue, do not issue, cancel issue etc.
The tabulation of storage ICP recorded website in the ICP recorded website database, corresponding website comprises one of following message at least in the tabulation of ICP recorded website: put on record the time in the MD5 value of web site name, website homepage address, website domain name, domain name, site owners type, site owners, the website ICP number of putting on record, website.The site owners type is such as comprising: army, government bodies, public institution, enterprise, individual, public organization etc.
For the website, number of site has been submitted safety certification to, then the information of these websites can be stored in security website's database, and other websites are not submitted safety certification to, but for example having carried out ICP puts on record, then these websites can appear in the ICP recorded website database, and other website then might not be present in any database.Should be noted that; above relevant only be an example with web site stores to the classification in security website's database and the ICP recorded website database; the invention is not restricted to this, all can to the website classify the storage mode all within protection scope of the present invention.
Type of website acquisition module 110 is suitable for sending to cloud server 200 the MD5 value of the rhizosphere name in the network address, to obtain the Type of website of this website.Cloud server 200 is suitable for inquiring about according to the MD5 value of the rhizosphere name of website, obtains the Type of website of website, and the Type of website that obtains is returned to Type of website acquisition module 110.The Type of website comprises one of following type at least: security website's type and ICP recorded website type.
For example, when cloud server 200 returned ICP recorded website type information, its result was as follows:
{ icp.info:{d: website rhizosphere name } { the site owners type in the website of t:icp in putting on record } { v: version number } { p: matched rule } }.
Wherein, icp.info represents that the information of returning is ICP recorded website information.
When cloud server 200 returned security website's type information, its result was as follows:
{ kx.info:{d: website rhizosphere name } { n: web site name } { t: the site owners type in the security website } { pr: website scoring } { v: version number } { p: matched rule } }
Wherein, kx.info represents that the information of returning is security website's information.
In addition, alternatively, safety verification is carried out in 200 pairs of websites of cloud server, and when finding that the website is malicious websites, the website of notice Type of website acquisition module 110 access is malicious websites.Type of website acquisition module 110 presents the prompting interface that access websites is malicious websites.
After Type of website acquisition module 110 received the Type of website that cloud server 200 returns, if parse security website's information in Query Result, then the Type of website presented module 120 and show security website's type identification before the address field of browser 100.For example, before address field, show the site owners type and add " V " expression security website, as shown in Figure 4 " V of enterprise ", this security website's type identification 410 for showing.For the ease of distinguishing, can be shown in green with identifying, wherein " enterprise " is the site owners type, i.e. the value of information in field { t: the site owners type in the security website } field.
If parse the ICP record information in Query Result, then the Type of website presents module 120 and show ICP recorded website type identification before the address field of browser 100.For example, before address field, show the site owners type, wherein do not add " V ", expression ICP recorded website type, as shown in Figure 5 " government ", this is designated ICP recorded website type identification 510, and wherein " government " is the site owners type, i.e. the value of information in { the site owners type in the website of t:icp in putting on record } field.For the ease of distinguishing, this sign can be shown as blueness.
In addition, alternatively, when not getting access to the Type of website of website from cloud server 200, the Type of website presents module 120 network address of this website is sent to website business card server 300, so that website business card server 300 is added up.
The Type of website presents module 120 and is suitable for after receiving the user and presenting the indication of relevant information of website, and indication website relevant information acquisition module 130 goes to obtain the relevant information of website.
Website relevant information acquisition module 130 is suitable for sending to website business card server 300 the MD5 value of the rhizosphere name in the network address.
For example, the user user that is designated as that presents the relevant information of website clicks the Type of website present.When the user clicks the Type of website that presents, namely click security website's type identification 410 or ICP recorded website type identification 510, the Type of website presents module 120 indication website relevant information acquisition modules 130 and goes to obtain the relevant information of website.
When the Type of website was security website, the request of transmission was as follows:
Http: // business card server domain name/trust.php key=Mi Yao ﹠amp; The MD5 of domain=rhizosphere name
Wherein, trust.php represents that the Type of website is security website.
When the Type of website was the ICP recorded website, the request of transmission was as follows:
Http: // business card server domain name/icp.php key=Mi Yao ﹠amp; The MD5 of domain=rhizosphere name
Wherein, icp.php represents that the Type of website is the ICP recorded website.
When not inquiring the Type of website of website, the request of transmission is as follows:
Http: // business card server domain name/noicp.php key=Mi Yao ﹠amp; The MD5 of domain=rhizosphere name
Wherein, noicp.php represents that the Type of website does not obtain.
Load balancing apparatus 310 is the LVS interface, receive the request that the Type of website presents module 120 after, by the load balancing rule this request is assigned in the child servers 320.
This child servers 320 parses noicp.php from request, namely the Type of website does not obtain, and then this network address is carried out record, in order to more use during new database.When this child servers 320 parses trust.php or icp.php from request, MD5 value according to rhizosphere name in the request is inquired about in buffer 330, if inquire corresponding information, then according to the website business card of this Information generation form web page, the network address business card is returned to website relevant information acquisition module 130.If the MD5 value according to the rhizosphere name does not inquire corresponding informance in buffer 330, then this child servers 320 is inquired about in the database of correspondence according to the Type of website.If namely from request, parse trust.php, then in security website's database, inquire about, if from request, parse icp.php, then in ICP recorded website database, inquire about.Child servers 320 returns to website relevant information acquisition module 130 according to the website business card of the Information generation form web page that inquires with the network address business card.
Website relevant information acquisition module 130 obtains the website business card and shows, as shown in Figure 4 the website business card 520 of ICP recorded website shown in the website business card 420 of security website and Fig. 5.By the information of dissimilar website is classified, be convenient to carry out fast finding according to the Type of website, improved the speed of query web business card.
Referring to Fig. 6, show the method 600 of the relevant information that presents according to an embodiment of the invention the website.The method starts from step S610, obtains the Type of website of this website in this step from first server according to the network address of website.The Type of website comprises one of following type at least: security website's type and the ICP of Web content service provider recorded website type.For example, browser sends the cryptographic hash of the rhizosphere name in the network address of accessing to first server, and first server is inquired about according to this cryptographic hash, and the Type of website that inquires is returned to browser.
After in step S610, receiving the Type of website of returning, enter step S620.In step S620, present the Type of website of website.Enter subsequently step S630, judge whether to receive the indication that the user presents the relevant information of website, if receive user's indication, then enter step S640, if do not receive user's indication, then method 600 finishes.For example, the user user that is designated as that presents the relevant information of website clicks the Type of website present.
In step S640, obtain the relevant information of website from second server according to the network address of the Type of website of obtaining and website.For example, the relevant information of website is for being used for presenting the website business card of website identity information, the website business card is form web page, and comprises at least one of following message: the title of web site name, station address, the Type of website, website sponsor, the type of website sponsor, the card number put on record, credit number and the sign by security audit.Wherein, browser interface corresponding with the Type of website in the second server sends the cryptographic hash of the rhizosphere name in the network address.Second server returns to browser according to the cryptographic hash query web relevant information in database corresponding to this interface that receives with the website relevant information.Browser presents the website relevant information of reception.
Further, second server can be inquired about corresponding website relevant information according to the cryptographic hash that receives first in buffer memory, when not inquiring, and website relevant information corresponding to inquiry from database corresponding to the Type of website.Wherein, the website relevant information is the website business card, and the website business card is form web page, and second server returns to browser with the web page contents of website business card.Browser is embedded in the web page contents of the network address business card of reception among the web page dialog box htmldialog, to show this website business card.
Thus, the server end that is updated in of website business card carries out, the network address business card is issued as browser take form web page, can avoid in the prior art website business card updating to the dependence of browser, the website business card solved the problem that can't upgrade because browser version crosses old, so that can upgrade in time according to the renewal of information in the database.
In addition, in the prior art, when the browser access website, all can obtain from server whole relevant informations of website at every turn, carry out malicious websites identification for the user.But the user only needs the part in whole relevant informations just can identify malicious websites usually, has caused thus the waste of network traffics resources.In the present embodiment, at first obtain the Type of website and present, the user can carry out malicious websites identification according to this Type of website.Only need to know the details of website the user, send the indication of the relevant information that presents the website after, just go to obtain the relevant information of website, reduced thus the transmission times of whole relevant information data, saved Internet resources.
Above step only presents a kind of embodiment of method of the relevant information of website at the browser place for the present invention, the inventive method can realize by other means.Especially, step S620 and step S630 are optional step.Need to present the Type of website, when obtaining the website relevant information according to user's indication, S620 presents the Type of website by step, judges whether to receive user's indication by step S630.Do not needing to present the Type of website, when obtaining the website relevant information according to user's indication, the inventive method can not comprise step S620 and step S630.
Referring to Fig. 7, show the process flow diagram of the method 700 of the relevant information that presents the website under the concrete according to an embodiment of the invention application scenarios.The method can be in the above referring to figs. 2 and 3 shown in system in carry out.When the user passed through the browser access website, method 700 beginnings entered step S710.In step S710, browser sends the MD5 value of the rhizosphere name in the network address of accessing to cloud server, whether be malicious websites by cloud server according to the website of the MD5 value test access of the rhizosphere name of website, if detecting the website of access is malicious websites, then enter step S720, to receive the website of the access that cloud server sends be the notice of malicious websites to browser in step S720, and method 700 finishes.If not detecting the website of access is malicious websites, then enter step S730.
In step S730, browser receives cloud server and inquires about the Type of website that obtains the website according to the MD5 value of the rhizosphere name of website.The Type of website comprises one of following type at least: security website's type and ICP recorded website type.
For example, when cloud server returned ICP recorded website type information, its result was as follows:
{ icp.info:{d: website rhizosphere name } { the site owners type in the website of t:icp in putting on record } { v: version number } { p: matched rule } }.
Wherein, icp.info represents that the information of returning is ICP recorded website information.
When cloud server returned security website's type information, its result was as follows:
{ kx.info:{d: website rhizosphere name } { n: web site name } { t: the site owners type in the security website } { pr: website scoring } { v: version number } { p: matched rule } }
Wherein, kx.info represents that the information of returning is security website's information.
Subsequently, enter step S740.In step S740, browser presents the Type of website of reception.Behind the execution of step S740, enter step S750.
For example, after browser receives the Type of website that cloud server returns, if in Query Result, parse security website's information, then before address field, show security website's type identification.For example, before address field, show the site owners type and add " V " expression security website, as shown in Figure 4 " V of enterprise ", this security website's type identification 410 for showing.For the ease of distinguishing, can be shown in green with identifying, wherein " enterprise " is the site owners type, i.e. the value of information in field { t: the site owners type in the security website } field.
If in Query Result, parse the ICP record information, then before address field, show ICP recorded website type identification.For example, before address field, show the site owners type, wherein do not add " V ", expression ICP recorded website type, as shown in Figure 5 " government ", this is designated ICP recorded website type identification 510, and wherein " government " is the site owners type, i.e. the value of information in { the site owners type in the website of t:icp in putting on record } field.For the ease of distinguishing, this sign can be shown as blueness.
In addition, alternatively, when not getting access to the Type of website of website from cloud server, browser sends to website business card server with the network address of this website, so that website business card server is added up.
In step S750, browser judges whether to receive the indication that the user presents the relevant information of website, if receive user's indication, then enters step S760, if do not receive user's indication, then method 700 finishes.In step S760, browser sends the MD5 value of the rhizosphere name in the network address to website business card server, enter subsequently step S770.
For example, when the user clicks the Type of website that presents, namely click security website's type identification 410 or ICP recorded website type identification 510, browser goes to obtain the relevant information of website.Browser sends the MD5 value of the rhizosphere name in the network address to website business card server.
When the Type of website was security website, the request of transmission was as follows:
Http: // business card server domain name/trust.php key=Mi Yao ﹠amp; The MD5 of domain=rhizosphere name
Wherein, trust.php represents that the Type of website is security website.
When the Type of website was the ICP recorded website, the request of transmission was as follows:
Http: // business card server domain name/icp.php key=Mi Yao ﹠amp; The MD5 of domain=rhizosphere name
Wherein, icp.php represents that the Type of website is the ICP recorded website.
When not inquiring the Type of website of website, the request of transmission is as follows:
Http: // business card server domain name/noicp.php key=Mi Yao ﹠amp; The MD5 of domain=rhizosphere name
Wherein, noicp.php represents that the Type of website does not obtain.
In step S770, the website business card of the form web page that browser reception cloud server returns enters step S780 subsequently.For example, after load balancing apparatus receives request, by the load balancing rule this request is assigned in the child servers.This child servers parses noicp.php from request, namely the Type of website does not obtain, and then this network address is carried out record, in order to more use during new database.When this child servers parses trust.php or icp.php from request, MD5 value according to rhizosphere name in the request is inquired about in buffer, if inquire corresponding information, then according to the website business card of this Information generation form web page, the network address business card returned to browser.If the MD5 value according to the rhizosphere name does not inquire corresponding information in buffer, then this child servers is inquired about in the database of correspondence according to the Type of website.If namely from request, parse trust.php, then in security website's database, inquire about, if from request, parse icp.php, then in ICP recorded website database, inquire about.Child servers returns to browser according to the website business card of the Information generation form web page that inquires with the network address business card.
In step S780, browser presents the webpage business card with among the website business card embedded web page dialog box htmldialog that obtains in browser.For example, the webpage business card that presents is the website business card 520 of ICP recorded website shown in the website business card 420 of security website and Fig. 5 as shown in Figure 4.
In the present embodiment, by the information of dissimilar website is classified, be convenient to carry out fast finding according to the Type of website, improved the speed of query web business card.
Intrinsic not relevant with any certain computer, virtual system or miscellaneous equipment with demonstration at this algorithm that provides.Various general-purpose systems also can be with using based on the teaching at this.According to top description, it is apparent constructing the desired structure of this type systematic.In addition, the present invention is not also for any certain programmed language.Should be understood that and to utilize various programming languages to realize content of the present invention described here, and the top description that language-specific is done is in order to disclose preferred forms of the present invention.
In the instructions that provides herein, a large amount of details have been described.Yet, can understand, embodiments of the invention can be in the situation that there be these details to put into practice.In some instances, be not shown specifically known method, structure and technology, so that not fuzzy understanding of this description.
Similarly, be to be understood that, in order to simplify the disclosure and to help to understand one or more in each inventive aspect, in the description to exemplary embodiment of the present invention, each feature of the present invention is grouped together in single embodiment, figure or the description to it sometimes in the above.Yet the method for the disclosure should be construed to the following intention of reflection: namely the present invention for required protection requires the more feature of feature clearly put down in writing than institute in each claim.Or rather, as following claims reflected, inventive aspect was to be less than all features of the disclosed single embodiment in front.Therefore, follow claims of embodiment and incorporate clearly thus this embodiment into, wherein each claim itself is as independent embodiment of the present invention.
Those skilled in the art are appreciated that and can adaptively change and they are arranged in one or more equipment different from this embodiment the module in the equipment among the embodiment.Can be combined into a module or unit or assembly to the module among the embodiment or unit or assembly, and can be divided into a plurality of submodules or subelement or sub-component to them in addition.In such feature and/or process or unit at least some are mutually repelling, and can adopt any combination to disclosed all features in this instructions (comprising claim, summary and the accompanying drawing followed) and so all processes or the unit of disclosed any method or equipment make up.Unless in addition clearly statement, disclosed each feature can be by providing identical, being equal to or the alternative features of similar purpose replaces in this instructions (comprising claim, summary and the accompanying drawing followed).
In addition, those skilled in the art can understand, although embodiment more described herein comprise some feature rather than further feature included among other embodiment, the combination of the feature of different embodiment means and is within the scope of the present invention and forms different embodiment.For example, in the following claims, the one of any of embodiment required for protection can be used with array mode arbitrarily.
All parts embodiment of the present invention can realize with hardware, perhaps realizes with the software module of moving at one or more processor, and perhaps the combination with them realizes.It will be understood by those of skill in the art that and to use in practice microprocessor or digital signal processor (DSP) to realize according to some or all some or repertoire of parts in the equipment of the relevant information that presents access websites of the embodiment of the invention.The present invention can also be embodied as be used to part or all equipment or the device program (for example, computer program and computer program) of carrying out method as described herein.Such realization program of the present invention can be stored on the computer-readable medium, perhaps can have the form of one or more signal.Such signal can be downloaded from internet website and obtain, and perhaps provides at carrier signal, perhaps provides with any other form.
It should be noted above-described embodiment the present invention will be described rather than limit the invention, and those skilled in the art can design alternative embodiment in the situation of the scope that does not break away from claims.In the claims, any reference symbol between bracket should be configured to limitations on claims.Word " comprises " not to be got rid of existence and is not listed in element or step in the claim.Being positioned at word " " before the element or " one " does not get rid of and has a plurality of such elements.The present invention can realize by means of the hardware that includes some different elements and by means of the computing machine of suitably programming.In having enumerated the unit claim of some devices, several in these devices can be to come imbody by same hardware branch.The use of word first, second and C grade does not represent any order.Can be title with these word explanations.