Embodiment
Below with reference to accompanying drawings exemplary embodiment of the present disclosure is described in more detail.Although show exemplary embodiment of the present disclosure in accompanying drawing, however should be appreciated that can realize the disclosure in a variety of manners and not should limit by the embodiment set forth here.On the contrary, provide these embodiments to be in order to more thoroughly the disclosure can be understood, and complete for the scope of the present disclosure can be conveyed to those skilled in the art.
See Fig. 1, show the system of the relevant information presenting website according to an embodiment of the invention.This system comprises browser 100, first server 200 and second server 300.This browser 100 comprises Type of website acquisition module 110, the Type of website presents module 120 and website relevant information acquisition module 130.
Type of website acquisition module 110 is suitable for the Type of website obtaining this website according to the network address of website from first server 200.The Type of website at least comprises one of following classes: security website's type and ICP(Web content service provider, InternetContentProvider) recorded website type.For example, Type of website acquisition module 110 sends the cryptographic Hash of the rhizosphere name in network address to first server 200.First server 200 inquires the Type of website of website according to the cryptographic Hash received, and website type is returned to Type of website acquisition module 110.
The Type of website presents module 120 and is suitable for, after Type of website acquisition module 110 gets the Type of website of website, presenting the Type of website of website; After receiving user and presenting the instruction of the relevant information of website, instruction website relevant information acquisition module 130 goes the relevant information obtaining website.For example, the user that is designated as that user presents the relevant information of website clicks the Type of website presented.
Website relevant information acquisition module 130 is suitable for the relevant information obtaining website according to the network address of the obtained Type of website and website from second server 300.For example, the relevant information of website is the website business card for presenting website identity information.Website business card is such as form web page, and at least comprises one of following message: the title of web site name, station address, the Type of website, website sponsor, the type of website sponsor, the card number put on record, credit number and the mark by security audit.The cryptographic Hash of the rhizosphere name in the interface transmission network address that website relevant information acquisition module 130 is corresponding with the Type of website in second server 300.Website relevant information, according to the cryptographic Hash query web relevant information in the database that this interface is corresponding received, is returned to website relevant information acquisition module 130 by second server 300.Website relevant information acquisition module 130 presents the website relevant information of reception.
Further, second server 300 first can inquire about corresponding website relevant information according to the cryptographic Hash received in the buffer, when not inquiring, inquires about corresponding website relevant information from the database that the Type of website is corresponding.As mentioned above, website relevant information can be called website business card.The web page contents of website business card is returned to website relevant information acquisition module 130 by second server 300.The web page contents of the network address business card of reception is embedded in web page dialog box htmldialog by website relevant information acquisition module 130, to show this website business card.
Thus, website business card generates at server side, network address business card is returned to browser with form web page, website business card updating can be avoided in prior art the dependence of browser, solve because browser version crosses old and problem that is that cannot upgrade, website business card can be upgraded in time according to the renewal of information in database.
In addition, in the prior art, at every turn when browser access website, all can obtain whole relevant informations of website from server, carry out malicious websites identification for user.But, user usually only need the part in whole relevant information just identifiable design go out malicious websites, cause the waste of network traffics resource thus.In the present embodiment, first obtain the Type of website and present, user can carry out malicious websites identification according to this Type of website.Only need user the details knowing website, after sending the instruction of the relevant information presenting website, just go the relevant information obtaining website, thereby reduce the transmission times of whole relevant information data, saved Internet resources.
Above-mentioned browser 100 comprises Type of website acquisition module 110, the Type of website presents module 120 and the structure of website relevant information acquisition module 130 is a kind of optional implementation, the present invention is not limited thereto.Especially, the Type of website presents module 120 for optional module.Present the Type of website at needs, according to user indicate obtain website relevant information time, select except Type of website acquisition module 110 and website relevant information acquisition module 130, to add the Type of website in browser 100 and present module 120.When not needing to present the Type of website, Type of website acquisition module 110 and website relevant information acquisition module 130 in browser 100, only can be comprised.
See Fig. 2, under showing embody rule scene according to an embodiment of the invention, present the structure chart of the system of the relevant information of website.In this embodiment, cloud server is first server 200, and website card server is second server 300, and browser is the browser 100 shown in Fig. 1.
See Fig. 3, show the deployment architecture figure of embody rule scene off line station card server 300 according to an embodiment of the invention.Website card server 300 comprises load balancing apparatus 310, multiple child servers 320 and buffer 330, buffer 330 and security website's database and ICP recorded website DataBase combining.Hash table is adopted, with the pairing of key-value(key-value in buffer 330) mode stores, and wherein key is the MD5 value of rhizosphere name, and value is information in the list of information or ICP recorded website in the list of the security website of correspondence.
The list of storage security website in security website's database, in the list of security website, a corresponding domain name ID at least comprises one of following message: website domain name, effective time, issuing time, publisher, web site name, domain name classification and authentication state.Domain name classification such as comprises: enterprise-class, net purchase class, government's class, payment class, bank's class and public institution's class etc.Authentication state such as comprises: application, identity detect, identity not by, safety detection, safety detection do not passed through by, business audit, business audit, issue, do not issue, cancelled issue etc.
Store the list of ICP recorded website in ICP recorded website database, in the list of ICP recorded website, a corresponding website at least comprises one of following message: the MD5 value of web site name, website homepage address, website domain name, domain name, site owners type, site owners, the website ICP number of putting on record, website are put on record the time.Site owners type such as comprises: army, government bodies, public institution, enterprise, individual, public organization etc.
For website, number of site have submitted safety certification, then the information of these websites can be stored in security website's database, and other websites do not submit safety certification to, but such as carry out ICP to put on record, then these websites appear in ICP recorded website database, and other website is not then likely present in any database.Should be noted that; above about the classification be stored into website in security website's database and ICP recorded website database is only an example; the present invention is not limited thereto, all can to website carry out classify store mode all within protection scope of the present invention.
Type of website acquisition module 110 is suitable for the MD5 value sending the rhizosphere name in network address to cloud server 200, to obtain the Type of website of this website.Cloud server 200 is suitable for inquiring about according to the MD5 value of the rhizosphere name of website, obtains the Type of website of website, the Type of website of acquisition is returned to Type of website acquisition module 110.The Type of website at least comprises one of following classes: security website's type and ICP recorded website type.
For example, when cloud server 200 returns ICP recorded website type information, its result is as follows:
{ icp.info:{d: website rhizosphere name } t:icp put on record in website in site owners type { v: version number } { p: matched rule }.
Wherein, icp.info represents that the information returned is ICP recorded website information.
When cloud server 200 returns security website's type information, its result is as follows:
{ kx.info:{d: website rhizosphere name } { n: web site name } { t: the site owners type in security website } { pr: mark in website } { v: version number } { p: matched rule } }
Wherein, kx.info represents that the information returned is security website's information.
In addition, alternatively, safety verification is carried out in cloud server 200 pairs of websites, and when finding that website is malicious websites, the website that notice Type of website acquisition module 110 is accessed is malicious websites.Type of website acquisition module 110 presents the prompting interface that access websites is malicious websites.
After Type of website acquisition module 110 receives the Type of website that cloud server 200 returns, if parse security website's information in Query Result, then the Type of website presents module 120 before the address field of browser 100, shows security website's type identification.For example, show site owners type and add " V " represent security website before address field, as shown in Figure 4 " enterprise V ", this is security website's type identification 410 of display.For the ease of distinguishing, can by shown in green for this mark, wherein " enterprise " is site owners type, the value of information namely in field { t: the site owners type in security website } field.
If parse ICP record information in Query Result, then the Type of website presents module 120 before the address field of browser 100, shows ICP recorded website type identification.For example, site owners type is shown before address field, wherein do not add " V ", represent ICP recorded website type, as shown in Figure 5 " government ", this is designated ICP recorded website type identification 510, and wherein " government " is site owners type, namely t:icp put on record in website in site owners type the value of information in field.For the ease of distinguishing, this mark can be shown as blueness.
In addition, alternatively, when not getting the Type of website of website from cloud server 200, the Type of website presents module 120 and the network address of this website is sent to website card server 300, so that website card server 300 is added up.
The Type of website presents module 120 and is suitable for after receiving user and presenting the instruction of the relevant information of website, and instruction website relevant information acquisition module 130 goes the relevant information obtaining website.
Website relevant information acquisition module 130 is suitable for the MD5 value sending the rhizosphere name in network address to website card server 300.
For example, the user that is designated as that user presents the relevant information of website clicks the Type of website presented.When user clicks the Type of website presented, namely click security website's type identification 410 or ICP recorded website type identification 510, the Type of website presents module 120 and indicates website relevant information acquisition module 130 to go to obtain the relevant information of website.
When the Type of website is security website, the request of transmission is as follows:
Http: the MD5 of // card server domain name/trust.php key=key A MP.AMp.Amp domain=rhizosphere name
Wherein, trust.php represents that the Type of website is security website.
When the Type of website is ICP recorded website, the request of transmission is as follows:
Http: the MD5 of // card server domain name/icp.php key=key A MP.AMp.Amp domain=rhizosphere name
Wherein, icp.php represents that the Type of website is ICP recorded website.
When not inquiring the Type of website of website, the request of transmission is as follows:
Http: the MD5 of // card server domain name/noicp.php key=key A MP.AMp.Amp domain=rhizosphere name
Wherein, noicp.php represents that the Type of website does not obtain.
Load balancing apparatus 310 is LVS interface, receives after the Type of website presents the request of module 120, by load balancing rule by this request dispatching in a child servers 320.
This child servers 320 from request parse noicp.php, namely the Type of website does not obtain, then carry out record to this network address, so as more new database time use.When this child servers 320 parses trust.php or icp.php from request, inquire about in buffer 330 according to the MD5 value of rhizosphere name in request, if inquire corresponding information, then according to the website business card of this information generating web page form, network address business card is returned to website relevant information acquisition module 130.If the MD5 value according to rhizosphere name does not inquire corresponding informance in buffer 330, then this child servers 320 is inquired about in the database of correspondence according to the Type of website.If namely parse trust.php from request, then inquire about in security website's database, if parse icp.php from request, then inquire about in ICP recorded website database.Network address business card, according to the website business card of the information generating web page form inquired, is returned to website relevant information acquisition module 130 by child servers 320.
Website relevant information acquisition module 130 obtains website business card and shows, as shown in Figure 4 the website business card 520 of ICP recorded website shown in the website business card 420 of security website and Fig. 5.By the information of dissimilar website is classified, be convenient to carry out fast finding according to the Type of website, improve the speed of query web business card.
See Fig. 6, show the method 600 of the relevant information presenting website according to an embodiment of the invention.The method starts from step S610, obtains the Type of website of this website in this step according to the network address of website from first server.The Type of website at least comprises one of following classes: security website's type and Web content service provider ICP recorded website type.For example, browser sends the cryptographic Hash of the rhizosphere name in the network address of access to first server, and first server is inquired about according to this cryptographic Hash, and the Type of website inquired is returned to browser.
Receive the Type of website returned in step S610 after, enter step S620.In step S620, present the Type of website of website.Enter step S630 subsequently, judge whether to receive the instruction that user presents the relevant information of website, if receive the instruction of user, then enter step S640, if do not receive the instruction of user, then method 600 terminates.For example, the user that is designated as that user presents the relevant information of website clicks the Type of website presented.
In step S640, obtain the relevant information of website from second server according to the network address of the obtained Type of website and website.For example, the relevant information of website is the website business card for presenting website identity information, website business card is form web page, and at least comprises one of following message: the title of web site name, station address, the Type of website, website sponsor, the type of website sponsor, the card number put on record, credit number and the mark by security audit.Wherein, the interface that browser is corresponding with the Type of website in second server sends the cryptographic Hash of the rhizosphere name in network address.Website relevant information, according to the cryptographic Hash query web relevant information in the database that this interface is corresponding received, is returned to browser by second server.Browser presents the website relevant information of reception.
Further, second server first can inquire about corresponding website relevant information according to the cryptographic Hash received in the buffer, when not inquiring, inquires about corresponding website relevant information from the database that the Type of website is corresponding.Wherein, website relevant information is website business card, and website business card is form web page, and the web page contents of website business card is returned to browser by second server.The web page contents of the network address business card of reception is embedded in web page dialog box htmldialog by browser, to show this website business card.
Thus, the renewal of website business card is carried out at server end, network address business card is issued as browser with form web page, website business card updating can be avoided in prior art the dependence of browser, solve because browser version crosses old and problem that is that cannot upgrade, website business card can be upgraded in time according to the renewal of information in database.
In addition, in the prior art, at every turn when browser access website, all can obtain whole relevant informations of website from server, carry out malicious websites identification for user.But, user usually only need the part in whole relevant information just identifiable design go out malicious websites, cause the waste of network traffics resource thus.In the present embodiment, first obtain the Type of website and present, user can carry out malicious websites identification according to this Type of website.Only need user the details knowing website, after sending the instruction of the relevant information presenting website, just go the relevant information obtaining website, thereby reduce the transmission times of whole relevant information data, saved Internet resources.
Above step is only the present invention presents the method for the relevant information of website a kind of execution mode at browser place, and the inventive method can realize by other means.Especially, step S620 and step S630 is optional step.Need to present the Type of website, according to user indicate obtain website relevant information time, present the Type of website by step S620, judge whether to receive user's instruction by step S630.Do not needing to present the Type of website, according to user indicate obtain website relevant information time, the inventive method can not comprise step S620 and step S630.
See Fig. 7, under showing embody rule scene according to an embodiment of the invention, present the flow chart of the method 700 of the relevant information of website.The method can perform in above with reference to the system shown in Fig. 2 and Fig. 3.When user is by browser access website, method 700 starts, and enters step S710.In step S710, browser sends the MD5 value of the rhizosphere name in the network address of access to cloud server, whether be malicious websites by cloud server according to the website of the MD5 value test access of the rhizosphere name of website, if detect that the website of access is malicious websites, then enter step S720, in step S720, browser receives the website of the access that cloud server sends is the notice of malicious websites, and method 700 terminates.If the website not detecting access is malicious websites, then enter step S730.
In step S730, browser receives cloud server to carry out according to the MD5 value of the rhizosphere name of website inquiring about the Type of website obtaining website.The Type of website at least comprises one of following classes: security website's type and ICP recorded website type.
For example, when cloud server returns ICP recorded website type information, its result is as follows:
{ icp.info:{d: website rhizosphere name } t:icp put on record in website in site owners type { v: version number } { p: matched rule }.
Wherein, icp.info represents that the information returned is ICP recorded website information.
When cloud server returns security website's type information, its result is as follows:
{ kx.info:{d: website rhizosphere name } { n: web site name } { t: the site owners type in security website } { pr: mark in website } { v: version number } { p: matched rule } }
Wherein, kx.info represents that the information returned is security website's information.
Subsequently, step S740 is entered.In step S740, browser presents the Type of website of reception.After execution of step S740, enter step S750.
For example, browser if parse security website's information in Query Result, then shows security website's type identification after receiving the Type of website that cloud server returns before address field.For example, show site owners type and add " V " represent security website before address field, as shown in Figure 4 " enterprise V ", this is security website's type identification 410 of display.For the ease of distinguishing, can by shown in green for this mark, wherein " enterprise " is site owners type, the value of information namely in field { t: the site owners type in security website } field.
If parse ICP record information in Query Result, then before address field, show ICP recorded website type identification.For example, site owners type is shown before address field, wherein do not add " V ", represent ICP recorded website type, as shown in Figure 5 " government ", this is designated ICP recorded website type identification 510, and wherein " government " is site owners type, namely t:icp put on record in website in site owners type the value of information in field.For the ease of distinguishing, this mark can be shown as blueness.
In addition, alternatively, when not getting the Type of website of website from cloud server, the network address of this website is sent to website card server by browser, so that website card server is added up.
In step S750, browser judges whether to receive the instruction that user presents the relevant information of website, if receive the instruction of user, then enter step S760, if do not receive the instruction of user, then method 700 terminates.In step S760, browser sends the MD5 value of the rhizosphere name in network address to website card server, enters step S770 subsequently.
For example, when user clicks the Type of website presented, namely click security website's type identification 410 or ICP recorded website type identification 510, browser goes the relevant information obtaining website.Browser sends the MD5 value of the rhizosphere name in network address to website card server.
When the Type of website is security website, the request of transmission is as follows:
Http: the MD5 of // card server domain name/trust.php key=key A MP.AMp.Amp domain=rhizosphere name
Wherein, trust.php represents that the Type of website is security website.
When the Type of website is ICP recorded website, the request of transmission is as follows:
Http: the MD5 of // card server domain name/icp.php key=key A MP.AMp.Amp domain=rhizosphere name
Wherein, icp.php represents that the Type of website is ICP recorded website.
When not inquiring the Type of website of website, the request of transmission is as follows:
Http: the MD5 of // card server domain name/noicp.php key=key A MP.AMp.Amp domain=rhizosphere name
Wherein, noicp.php represents that the Type of website does not obtain.
In step S770, browser receives the website business card of the form web page that cloud server returns, and enters step S780 subsequently.For example, after load balancing apparatus receives request, by load balancing rule by this request dispatching in a child servers.This child servers from request parse noicp.php, namely the Type of website does not obtain, then carry out record to this network address, so as more new database time use.When this child servers parses trust.php or icp.php from request, inquire about in both the buffers according to the MD5 value of rhizosphere name in request, if inquire corresponding information, then according to the website business card of this information generating web page form, network address business card is returned to browser.If do not inquire corresponding information in both the buffers according to the MD5 value of rhizosphere name, then this child servers is inquired about in the database of correspondence according to the Type of website.If namely parse trust.php from request, then inquire about in security website's database, if parse icp.php from request, then inquire about in ICP recorded website database.Network address business card, according to the website business card of the information generating web page form inquired, is returned to browser by child servers.
In step S780, browser, by the website business card embedded web page dialog box htmldialog of acquisition, presents webpage business card in a browser.For example, the website business card 520 of the webpage business card presented ICP recorded website shown in the website business card 420 of security website and Fig. 5 as shown in Figure 4.
In the present embodiment, by the information of dissimilar website is classified, be convenient to carry out fast finding according to the Type of website, improve the speed of query web business card.
Intrinsic not relevant to any certain computer, virtual system or miscellaneous equipment with display at this algorithm provided.Various general-purpose system also can with use based on together with this teaching.According to description above, the structure constructed required by this type systematic is apparent.In addition, the present invention is not also for any certain programmed language.It should be understood that and various programming language can be utilized to realize content of the present invention described here, and the description done language-specific is above to disclose preferred forms of the present invention.
In specification provided herein, describe a large amount of detail.But can understand, embodiments of the invention can be put into practice when not having these details.In some instances, be not shown specifically known method, structure and technology, so that not fuzzy understanding of this description.
Similarly, be to be understood that, in order to simplify the disclosure and to help to understand in each inventive aspect one or more, in the description above to exemplary embodiment of the present invention, each feature of the present invention is grouped together in single embodiment, figure or the description to it sometimes.But, the method for the disclosure should be construed to the following intention of reflection: namely the present invention for required protection requires feature more more than the feature clearly recorded in each claim.Or rather, as claims below reflect, all features of disclosed single embodiment before inventive aspect is to be less than.Therefore, the claims following embodiment are incorporated to this embodiment thus clearly, and wherein each claim itself is as independent embodiment of the present invention.
Those skilled in the art are appreciated that and adaptively can change the module in the equipment in embodiment and they are arranged in one or more equipment different from this embodiment.Module in embodiment or unit or assembly can be combined into a module or unit or assembly, and multiple submodule or subelement or sub-component can be put them in addition.Except at least some in such feature and/or process or unit be mutually repel except, any combination can be adopted to combine all processes of all features disclosed in this specification (comprising adjoint claim, summary and accompanying drawing) and so disclosed any method or equipment or unit.Unless expressly stated otherwise, each feature disclosed in this specification (comprising adjoint claim, summary and accompanying drawing) can by providing identical, alternative features that is equivalent or similar object replaces.
In addition, those skilled in the art can understand, although embodiments more described herein to comprise in other embodiment some included feature instead of further feature, the combination of the feature of different embodiment means and to be within scope of the present invention and to form different embodiments.Such as, in the following claims, the one of any of embodiment required for protection can use with arbitrary compound mode.
All parts embodiment of the present invention with hardware implementing, or can realize with the software module run on one or more processor, or realizes with their combination.It will be understood by those of skill in the art that the some or all functions presenting the some or all parts in the equipment of the relevant information of access websites that microprocessor or digital signal processor (DSP) can be used in practice to realize according to the embodiment of the present invention.The present invention can also be embodied as part or all equipment for performing method as described herein or device program (such as, computer program and computer program).Realizing program of the present invention and can store on a computer-readable medium like this, or the form of one or more signal can be had.Such signal can be downloaded from internet website and obtain, or provides on carrier signal, or provides with any other form.
The present invention will be described instead of limit the invention to it should be noted above-described embodiment, and those skilled in the art can design alternative embodiment when not departing from the scope of claims.In the claims, any reference symbol between bracket should be configured to limitations on claims.Word " comprises " not to be got rid of existence and does not arrange element in the claims or step.Word "a" or "an" before being positioned at element is not got rid of and be there is multiple such element.The present invention can by means of including the hardware of some different elements and realizing by means of the computer of suitably programming.In the unit claim listing some devices, several in these devices can be carry out imbody by same hardware branch.Word first, second and third-class use do not represent any order.Can be title by these word explanations.