CN103428041B - A kind of end-to-end flux content detection system and detection method based on cloud - Google Patents
A kind of end-to-end flux content detection system and detection method based on cloud Download PDFInfo
- Publication number
- CN103428041B CN103428041B CN201210158668.XA CN201210158668A CN103428041B CN 103428041 B CN103428041 B CN 103428041B CN 201210158668 A CN201210158668 A CN 201210158668A CN 103428041 B CN103428041 B CN 103428041B
- Authority
- CN
- China
- Prior art keywords
- request
- data
- clouds
- content
- requested
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 225
- 230000004907 flux Effects 0.000 title claims abstract description 40
- 238000001914 filtration Methods 0.000 claims abstract description 51
- 238000000034 method Methods 0.000 claims abstract description 17
- 230000008569 process Effects 0.000 claims abstract description 14
- 238000004891 communication Methods 0.000 claims description 29
- 239000003550 marker Substances 0.000 claims description 27
- 230000005540 biological transmission Effects 0.000 claims description 10
- 238000002372 labelling Methods 0.000 claims description 8
- 238000013507 mapping Methods 0.000 claims description 6
- 239000000203 mixture Substances 0.000 claims description 3
- 230000000694 effects Effects 0.000 claims description 2
- 238000007689 inspection Methods 0.000 claims description 2
- 230000008901 benefit Effects 0.000 description 4
- 230000004044 response Effects 0.000 description 3
- 239000000243 solution Substances 0.000 description 3
- 101001072091 Homo sapiens ProSAAS Proteins 0.000 description 1
- 102100036366 ProSAAS Human genes 0.000 description 1
- 241000700605 Viruses Species 0.000 description 1
- 230000009471 action Effects 0.000 description 1
- 230000004888 barrier function Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000000903 blocking effect Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 239000007924 injection Substances 0.000 description 1
- 238000002347 injection Methods 0.000 description 1
- 230000004807 localization Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
Abstract
The present invention provides a kind of end-to-end flux content detection system and detection method based on cloud.The system includes request of data end, for sending the content-data that request and request are transferred to requested end to requested end;High in the clouds detection platform, for by corresponding for the domain name that obtains of parsing IP address, forwarded by registration table collaborative configuration, the content-data that the request at request of data end and request are transferred to requested end, being forwarded to carries out the threat filtration of flow content detection, and by the request by filtering and the transmitting content data for asking to be transferred to requested end, it is transmitted to requested end;Requested end, is transferred to the transmitting content data of requested end for receive that high in the clouds detection platform forwards by threatening the request end request after filtering and request, makes requests on transmitting content data operation process.Which both ensure that user carried out the safety of end-to-end flux content detection, improve the utilization ratio of end-to-end flux content detection again.
Description
Technical field
The present invention relates to content detection technique field, more particularly to a kind of end-to-end flux content detection system based on cloud
System and detection method.
Background technology
In flow content detection end to end, data are from one end(Such as client)Lead to the other end(Such as server or
Another client)During, specified protocol is recognized by end-to-end flux content detection, and data are extracted from specified protocol
Content is compared with fingerprint is threatened, and so as to discover whether that hit threatens fingerprint, is judged to include in data traffic to hit content
Threat taxonomy.
Usually, end-to-end flux content detection system physics or logic can be sealed in two transmission ends(Arrive one end
The other end)Between realize the flow content detection of end-to-end transmission data, realize threatening and filter.
Traditionally, flow content detection system can arrange establishment based on enterprises lan end to end,
Its advantage is that enterprise is managed to basis instrument localization completely, and preferably, shortcoming is that fund input is huge for performance potential and privacy
Greatly, operation expense is huge, and operation maintenance personnel's technical requirements are very high, and utilization rate is very low, is not suitable for reality
Application.
For the defect brought by the content detection system of flow end to end solved based on enterprises lan, people
Carry out improving flow content detection system end to end, it is proposed that based on the flow content end to end for concentrating trustship
Detecting system, the system allow enterprise to reduce the input to infrastructure, using rental equipment or the side of rental service
Method had an advantage in that and reduces cost to realize flow content detection end to end, but the system has asking more than comparison
Topic, during including rental equipment, the system availability of the utilization rate of equipment based on intranet is identical, and overall cost does not drop
Low, and the method for rental service, user hardly results in the service of customization, it is impossible to obtain independent administration authority, and in reality
Existing region method, needs company's capital construction in the IDC for having threat filtering function(Internet Data Center, interconnection
Network data center), while trustship difficulty is increased, and its communal space and network together with other users, exist potential
Unsafe factor, it is possible to divulging a secret.
In sum, flow content detection system end to end of the prior art, has high cost, impracticable,
Inefficient, there is safety again, it is impossible to meet the needs of end-to-end detection.
Content of the invention
In order to solve to efficiently solve high cost in prior art, impracticable, uneasy congruence is various to be lacked the present invention
Point, and a kind of end-to-end flux content detection system and detection method based on cloud for providing.
It is based on this, it is necessary to provide a kind of end-to-end flux content detection system based on cloud, including by least one work
For a high in the clouds detection platform of the cloud server composition of end-to-end flux content-data detection, at least one asks to carry out in flow
Hold the request of data end of data manipulation, and the requested end operated by least one pair of described flow content-data;
The request of data end, for sending the content number that request and request are transferred to requested end to requested end
According to;
The high in the clouds detection platform, for carrying out domain name service parsing according to requested end registered domain name address, according to solution
The corresponding IP address of the domain name that obtains of analysis, is forwarded by registration table collaborative configuration, by the request at request of data end with
And request is transferred to the content-data of requested end, being forwarded to high in the clouds detection platform carries out flow content detection, impends
Filter, and the request end request and request by filtering is transferred to the transmitting content data of requested end, it is transmitted to requested end;
More preferably, the high in the clouds detection platform, including registration generation module, domain name mapping module, the first forwarding lookup module, in flow
Hold detection module, the second forwarding lookup module receives forwarding module, wherein:
The registration generation module, for when requested end is registered to high in the clouds detection platform, according to the note of requested end
Volume information generates registration table, and registration table is stored, while registration table is fed back to requested end;
Domain name mapping module, when request end sends request by registered domain name to requested end, according to the note for receiving
Volume domain name, parsing obtain the corresponding domain name/IP address of registered domain name;
The first forwarding lookup module, for according to domain name/IP address, by the registration table for storing, finding phase
The high in the clouds IP address that answers, carries out domain host head identification according to high in the clouds IP address, then by the request of request end and request transmission
To the content-data of requested end, and registration table, according to domain host head recognition result, it is forwarded to flow content detection
Module;
The flow content detection module, for the request content of the request end to receiving, and request upload to by
The content-data of request end, carries out flow content detection filtration;If filter do not passed through, request end is asked and content-data
Abandon, return not by information to request end, detection does not pass through, and request and content-data are abandoned;If be filtered through, incited somebody to action
Request end request after filter, and request uploads to the content-data and registration table of requested end and is transferred to the second forwarding and looks into
Look for module;
Second forwarding lookup module, for according to high in the clouds second level domain, parsing and obtaining two grades of corresponding high in the clouds IP address,
According to the content-data that the request end request and request after the IP address forward filtering of two grades of high in the clouds uploads to requested end, cloud
End second level domain and marker characteristic code are to requested end;Or according to two grades of high in the clouds IP address and registration table record, obtain
High in the clouds detection platform and the dedicated network communication address of requested end, the request end after network communication address is by filtration please
Ask and ask the content-data for uploading to requested end, high in the clouds second level domain and marker characteristic code to be forwarded to requested end;
The reception forwarding module, for receiving the reply data fed back from requested end, asks according to request end
Reply data is forwarded back to request end by the request end address in content;
The requested end, for receiving that high in the clouds detection platform forwards by threatening the request end request after filtering
The transmitting content data of requested end is transferred to request, makes requests on transmitting content data operation process.
More preferably, the reception forwarding module, is additionally operable to before reply data is forwarded back to request end, and reply data is turned
It is dealt into flow content detection module to be filtered;And receive the reply data that flow content detection module is filtered through;
The flow content detection module, is additionally operable to forward the reply data for coming to filter to receiving forwarding module;Such as
It is filtered through, is forwarded back to reception forwarding module;Otherwise reply data is abandoned, is returned not by information to forwarding module is received,
Detection does not pass through, and request and content-data are abandoned.
More preferably, the requested end, including Registering modules, the 3rd forwarding module asks operation module, and response mould
Block, wherein:
The Registering modules, for sending registration request to high in the clouds detection platform, submit log-on message to, and receive storage cloud
Registration table after holding detection platform to succeed in registration;
3rd forwarding module, for according to the high in the clouds second level domain and registration table for receiving, finding and being asked
The second level domain at end is sought, and is parsed and is obtained and request end two grades of corresponding requested end of request IP address;And according to requested end
Two grades of IP address, corresponding request end is asked, and request uploads to the content-data of requested end, is forwarded to request operation
Module;
The request operation module, for being asked according to request end, and request uploads to the content-data of requested end,
Make requests on upload content data operation process;
The responder module, for, after the operation for completing to ask upload content data, being asked according to request end, obtains anti-
Be fed back to the reply data at request of data end, according to the decoding of marker characteristic code obtain high in the clouds IP address and/or high in the clouds second level domain and/
Or network communication address, the reply data of the acquisition is forwarded to high in the clouds detection platform;Or according to high in the clouds detection platform with
The reply data of the acquisition is forwarded to high in the clouds detection platform by the network communication address of requested end.
Additionally, there is a need to a kind of end-to-end flux content detection algorithm based on cloud of offer, comprise the steps:
Step S100, request of data end send the content number that request and request upload to requested end to requested end
According to;
Step S200, high in the clouds detection platform carry out domain name service parsing according to requested end registered domain name address, according to solution
The corresponding IP address of the domain name that obtains of analysis, is forwarded by registration table collaborative configuration, by the request at request of data end with
And request uploads to the content-data of requested end, forwarding carries out flow content detection and threatens filtration, and by by asking for filtering
Ask end request and request to upload to the upload content data of requested end, be transmitted to requested end;More preferably, step S200
Comprise the steps:
Step S210, when request end sends request by registered domain name to requested end, according to the log-on field for receiving
Name, parsing obtain the corresponding domain name/IP address of registered domain name;
Step S220, according to domain name/IP address, by the registration table for storing, finds corresponding high in the clouds IP address,
Domain host head identification is carried out according to high in the clouds IP address, then the request of request end and request are uploaded to the content of requested end
Data, and registration table, forward to carry out flow content detection according to domain host head recognition result;
Step S230, the request content of the request end to receiving, and request upload to the content-data of requested end,
Carry out flow content detection filtration;If filter do not passed through, request end is asked and content-data is abandoned, return to request end
Not by information, detection does not pass through, and request and content-data are abandoned;If be filtered through, by filtration after request end request,
And request uploads to the content-data and registration table transmission forwarding of requested end;
Step S240, according to high in the clouds second level domain, parses and obtains two grades of corresponding high in the clouds IP address, according to two grades of high in the clouds
Request end request and request after IP address forward filtering uploads to the content-data of requested end, high in the clouds second level domain and
Marker characteristic code is to requested end;Or according to two grades of high in the clouds IP address and registration table record, obtain high in the clouds detection platform
With the network communication address of requested end, the request end after network communication address is by filtration is asked and request is uploaded to
The content-data of requested end, high in the clouds second level domain and marker characteristic code are to requested end;
Step S300, requested end receive high in the clouds detection platform forward by threaten filter request end request and
Request uploads to the upload content data of requested end, makes requests on upload content data operation process.More preferably, the step
S300, comprises the steps:
Step S310, according to the high in the clouds second level domain that the high in the clouds detection platform for receiving is forwarded, and registration table, look into
Find and request end two grades of corresponding requested end of request IP address;And according to two grades of requested end IP address, will ask accordingly
End request is asked, and request uploads to the content-data of requested end, forward to make requests on operation process;
Step S320, asks according to request end, and request uploads to the content-data of requested end, makes requests on upload
Content-data operation is processed.
More preferably, after step S300, also comprise the steps:
Step S400, requested end are asked according to request end after the operation for completing to ask upload content data, are obtained anti-
The reply data at request of data end is fed back to, the reply data of the acquisition is forwarded to high in the clouds detection platform;
Step S500, the reply data that high in the clouds detection platform is fed back to requested end carry out flow content detection, complete
After filtering into threat, then it is forwarded to request of data end.
More preferably, before step S100, also comprise the steps:
Step S101 ', requested end sends registration request to high in the clouds detection platform, submits log-on message to;
Step S102 ', high in the clouds detection platform when requested end is registered to high in the clouds detection platform, according to the note of requested end
Volume information generates registration table, and registration table is stored, while registration table is fed back to requested end;
Step S103 ', requested end receives the registration table after storage high in the clouds detection platform succeeds in registration.
More preferably, step S400 comprises the steps:
Step S410, after the operation for completing to ask upload content data, asks according to request end, obtains and feed back to data
The reply data of request end, obtains high in the clouds IP address and/or high in the clouds second level domain according to the decoding of marker characteristic code and/or network is logical
The reply data of the acquisition is forwarded to high in the clouds detection platform by letter address;Or according to high in the clouds detection platform and requested end
Network communication address, the reply data of the acquisition is forwarded to high in the clouds detection platform.
More preferably, step S500 comprises the steps:
Step S510, before reply data is forwarded back to request end, reply data is forwarded carries out flow content detection mistake
Filter;As being filtered through, request end is forwarded back to;Otherwise reply data is abandoned, is returned not by information to request end, detection is not
Pass through, request and content-data are abandoned.
Beneficial effects of the present invention:The end-to-end flux content detection system based on cloud of the present invention and detection method, lead to
The high in the clouds for being deployed in data center is crossed, flow content detection end to end is carried out and is threatened filtration, it is achieved that meter truly
Calculate resource poolization and shared, utilization rate is high, and overall cost is few, there is provided efficient threaten filtered model and service ability based on
The end-to-end flux content detection of cloud, its are effectively protected enterprise web site, data base, server even subscriber's main station(Hold
End)Flow content detection, optimize the cost of system, improve the utilization rate of system, in terms of reducing cost and safety
Problem, both ensure that user carried out the safety of end-to-end flux content detection, improve end-to-end flux content detection again
Utilization ratio.
【Description of the drawings】
The present invention is described in more detail with reference to the accompanying drawings and examples:
Fig. 1 is end-to-end flux content detection system structural representation of the embodiment of the present invention based on cloud.
Fig. 2 is end-to-end flux content detection algorithm flow chart of the embodiment of the present invention based on cloud.
【Specific embodiment】
In order that the objects, technical solutions and advantages of the present invention become more apparent, below in conjunction with drawings and Examples, right
The end-to-end flux content detection system based on cloud and detection method of the present invention is further elaborated.It should be appreciated that
Specific embodiment described herein only in order to explain the present invention, is not intended to limit the present invention.
A kind of end-to-end flux content detection system based on cloud of the embodiment of the present invention, including by least one as end
To a high in the clouds detection platform 200 of the cloud server composition of end flow content-data detection, at least one asks to carry out in flow
Hold the request of data end 100 of data manipulation, and the requested end 300 operated by least one pair of described flow content-data.
The request of data end 100, high in the clouds detection platform 200, requested end 300 are connected with each other, at request of data end 100
During to 300 request content data of requested end, according to 300 registered domain name address of requested end, by the registration of requested end 300 note
Record table collaborative configuration carries out the forwarding based on domain name(CNAME, Canonical Name record), by request of data end 100
Request and request transmission(Or upload)Transmitting content data, being forwarded to high in the clouds detection platform 200 carries out flow content detection,
After completing to threaten filtration, then it is forwarded to requested end 300.
Further, request of the requested end 300 according to request of data end 100, obtains and feeds back to request of data end
After 100 reply data, the reply data of the acquisition is forwarded to by high in the clouds detection platform 200 by the registration table and is entered
Row flow content detection, after completing to threaten filtration, then is forwarded to request of data end 100.
The request of data end 100, can be the various clients that can send data, such as PC, smart mobile phone,
Palm PC(PAD), it is also possible to various server ends, the servers of such as various connection multiple clients, minicomputer or
Mainframe computer etc., its can be realized the content-data of the request and request transmission by various networks, such as LAN, nothing
Line communication network, Internet or Internet of Things etc., are sent to the requested end 300.
The requested end 300, can be the various visitors of the various content-datas for receiving the request and request transmission
Family end or service end, such as PC, smart mobile phone, palm PC(PAD), it is also possible to various server ends, such as various companies
Server, minicomputer or mainframe computer of multiple client etc. is connect, which can be realized receiving and pass through various networks, such as
The request of LAN, cordless communication network, Internet or Internet of Things etc. and the content-data of request transmission.
Further, the requested end 300 can obtain the reply data, feed back to be asked according to request end
Request end.
Used as a kind of embodiment, the end-to-end flux content detection system based on cloud of the embodiment of the present invention is described
Request of data end 100, for sending the content-data that request and request are transferred to requested end 300 to requested end 300.
The high in the clouds detection platform 200, for carrying out domain name service parsing according to 300 registered domain name address of requested end,
By corresponding for the domain name that obtains of parsing IP address, forwarded by registration table collaborative configuration(CNAME), by request of data
The request at end 100 and request are transferred to the content-data of requested end 300, and forwarding carries out the threat filtration of flow content detection,
And by the request end request by filtering and the transmitting content data for being transferred to requested end 300 is asked, it is transmitted to requested end
300;
The requested end 300, for receiving that high in the clouds detection platform 200 forwards by threatening the request after filtering
End request and request are transferred to the transmitting content data of requested end 300, make requests on transmitting content data operation process.
It is preferred that the requested end 300, is additionally operable to after the operation for completing to ask transmitting content data, according to request
End request, obtains the reply data for feeding back to request of data end 100, the reply data of the acquisition is forwarded to high in the clouds detection flat
Platform 200;
The high in the clouds detection platform 200, is additionally operable to carry out flow content to the reply data that requested end 300 feeds back
Detection, after completing to threaten filtration, then is forwarded to request of data end 100.
The end-to-end flux content detection system based on cloud of the present invention, according to registration table, is turned using user's domain name
Send out(CNAME), realize carrying out the high in the clouds detection platform 200 that content-data moves to cloud computing by high in the clouds detection platform 200
Threaten and filter, re-sending to content-data receiving terminal carries out safe access to content, so as to improve efficiency, cost-effective, protection
The safety of the website as requested end 300 etc..
It is preferred that the high in the clouds detection platform 200, including registering generation module 201, domain name mapping module 202, first turn
Searching modul 203 is sent out, flow content detection module 204, the second forwarding lookup module 205 receive forwarding module 206, wherein:
The registration generation module 201, for when requested end 300 is registered to high in the clouds detection platform 200, according to being asked
Ask the log-on message at end 300 to generate registration table, and registration table is stored, while registration table is fed back to being asked
Ask end 300;
It is preferred that the log-on message of the requested end, in addition to the information required for registered domain name is included, also include but not
It is limited to the note that the categorised content for carrying out content flow threat detection, i.e. log-on message include but is not limited to requested end signon protection
The threat taxonomy of volume domain name, name server and protection, such as virus, Sql injections, cross site scripting, and the side of protection content
To etc..
The registration table, including the registered domain name of the registration of requested end 300, corresponding domain name IP of registered domain name
(Internet Protocol)Address, the high in the clouds IP address of the corresponding high in the clouds detection platform 200 of domain name/IP address, and/or registration
The corresponding high in the clouds second level domain of domain name, two grades of corresponding high in the clouds of high in the clouds second level domain IP address, the corresponding quilt of high in the clouds second level domain
Request end second level domain, two grades of corresponding requested end of requested end second level domain IP address;
Requested end 300 to high in the clouds detection platform 200 register when, according to the log-on message of requested end 300, including but not
It is limited to the registered domain name of the registration of requested end 300, distribution generates corresponding domain name/IP address, and it is corresponding to generate domain name IP region
High in the clouds detection platform 200 high in the clouds IP address;And corresponding high in the clouds second level domain is generated according to registered domain name, according to two grades of high in the clouds
Domain name generates corresponding requested end second level domain;It is right further to be generated according to high in the clouds second level domain and flow content detection module
Two grades of the high in the clouds that answers IP address, generates corresponding two grades of IP address in requested end according to requested end second level domain;
Domain name mapping module 202, for request of data end 100 to by registered domain name to requested end 300 send please
When asking, according to the registered domain name for receiving, parsing obtains the corresponding domain name/IP address of registered domain name;
It is a kind of prior art that corresponding IP address is obtained according to registered domain name parsing, therefore, in embodiments of the present invention,
No longer describe in detail one by one.
The first forwarding lookup module 203, for according to domain name/IP address, by the registration table for storing, searches
To corresponding high in the clouds IP address, domain host head identification is carried out according to high in the clouds IP address, then by the request and request of request end
The content-data of requested end 300, and registration table is transferred to, according to domain host head recognition result, flow is forwarded to
Content detection module 204;
The flow content detection module 204, for the request content of the request end to receiving, and request is uploaded to
The content-data of requested end 300, carries out flow content detection filtration;If filter do not passed through, request end is asked and interior
Hold data to abandon, return not by information to request end, detection does not pass through, and request and content-data are abandoned;If be filtered through,
Then by filtration after request end request, and request uploads to the content-data and registration table of requested end 300 and is transferred to
Second searches forwarding module.
Wherein, carry out content-data flow content detection to filter is a kind of prior art, therefore, in the embodiment of the present invention
In, no longer describe in detail one by one.
Second forwarding lookup module 205, for according to high in the clouds second level domain, parsing and obtaining two grades of corresponding high in the clouds IP ground
Location, according to the content number that the request end request and request after the IP address forward filtering of two grades of high in the clouds uploads to requested end 300
According to, high in the clouds second level domain and marker characteristic code to requested end 300;Or marked according to two grades of high in the clouds IP address and registration
Record, obtains the dedicated network communication address of high in the clouds detection platform 200 and requested end 300, will be filtered by network communication address
Request end request and request afterwards uploads to the content-data of requested end 300, and high in the clouds second level domain and marker characteristic code are arrived
Requested end 300;
The network communication address can be two grades of high in the clouds IP address and the registration table according to high in the clouds detection platform 200
The dedicated communications network address communicated between the high in the clouds detection platform 200 of generation and requested end 300, its can be high in the clouds detections
Dedicated optical communication network address, Internet dedicated communications network address, channel radio between platform 200 and requested end 300
Letter net(Such as WCDMA, TD-SCDMA, CDMA2000 etc.)Dedicated communications network address etc..
The marker characteristic code be according to the high in the clouds IP address and/or two grades of high in the clouds IP address of high in the clouds detection platform 200 and/
Or the dedicated network communication address of high in the clouds detection platform 200 and requested end 300, in labelling request of generation and request upload
Hold the condition code with uniqueness with labelling effect that data are sent to requested end 300 by the high in the clouds detection platform 200.
Marker characteristic code is generated according to IP address, and is decoded according to marker characteristic code, obtain IP address, be a kind of
Prior art, therefore, in embodiments of the present invention, is no longer described in detail one by one.
The reception forwarding module 206, for receiving the reply data fed back from requested end 300, according to request
Reply data is forwarded back to request end by the request end address in the request content of end.
It is preferred that the reception forwarding module 206, is additionally operable to before reply data is forwarded back to request end, by answer number
Filtered according to flow content detection module is forwarded to;And receive the reply data that flow content detection module is filtered through;
The flow content detection module 204, is additionally operable to forward the reply data for coming to filter to receiving forwarding module;
As being filtered through, reception forwarding module is forwarded back to;Otherwise reply data is abandoned, is returned not by letter to forwarding module is received
Breath, detection do not pass through, and request and content-data are abandoned.
It is preferred that the requested end 300, including Registering modules 301, the 3rd forwarding module 302, asks operation module
303, and responder module 304, wherein:
The Registering modules 301, for sending registration request to high in the clouds detection platform 200, submit log-on message to, and receive
Store the registration table after high in the clouds detection platform 200 succeeds in registration;
The log-on message be requested end 300 registration when, to high in the clouds detection platform 200 submit to the quilt being manually set
Request client information.
3rd forwarding module 302, for according to the high in the clouds second level domain that receives and registration table, find by
The second level domain of request end, and parse and obtain and request end two grades of corresponding requested end of request IP address;And according to requested
The two grades of IP address in end, corresponding request end is asked, and request uploads to the content-data of requested end 300, and being forwarded to please
Seek operation module 303;
The request operation module 304, for being asked according to request end, and request uploads to the interior of requested end 300
Hold data, make requests on upload content data operation process.
To asking upload content data operation to process, including uploading and storing certain data-base content data, and modification,
Some content-datas etc. are updated, which is a kind of prior art, therefore, in embodiments of the present invention, no longer describes in detail one by one.
The responder module 405, for, after the operation for completing to ask upload content data, asking according to request end, obtaining
The reply data for being fed back to request of data end 100 is negated, two grades of high in the clouds IP address and/or high in the clouds are obtained according to the decoding of marker characteristic code
The reply data of the acquisition is forwarded to high in the clouds detection platform 200 by IP address and/or network communication address.
The end-to-end flux content detection system based on cloud of the embodiment of the present invention, by a high in the clouds detection platform 200, enters
Row end-to-end flux content detection, protects the various websites as requested end 300, carry out centralized detecting increase operation rate and
Input cost is reduced, is impended filtrations with the collaborative configuration at request of data end 100, requested end 300, so as to realize support cloud
Many concurrent requests at end, support more service user, and isolate data resource between different user(The data of requested end), protect
Barrier requested end resource data safety, or even the data safety at protection request end.
Correspondingly, the embodiment of the present invention also provides a kind of end-to-end flux content detection algorithm based on cloud, including as follows
Step:
Step S100, request of data end 100 sends request to requested end 300 and request uploads to requested end 300
Content-data;
Step S200, high in the clouds detection platform 200 carry out domain name service parsing according to 300 registered domain name address of requested end,
By corresponding for the domain name that obtains of parsing IP address, forwarded by registration table collaborative configuration(CNAME), by request of data
The request at end 100 and request upload to the content-data of requested end 300, and forwarding carries out the threat filtration of flow content detection,
And by the request end request by filtering and the upload content data for uploading to requested end 300 is asked, it is transmitted to requested end
300;
Step S300, requested end 300 receive the request end that filters by threat that high in the clouds detection platform 200 is forwarded
Request and request upload to the upload content data of requested end 300, make requests on upload content data operation process.
It is preferred that as a kind of embodiment, after step S300, also comprising the steps:
Step S400, requested end 300 after the operation for completing to ask upload content data are asked according to request end, are obtained
The reply data for being fed back to request of data end 100 is negated, the reply data of the acquisition is forwarded to high in the clouds detection platform 200;
Step S500, high in the clouds detection platform 200 carry out flow content inspection to the reply data that requested end 300 feeds back
Survey, after completing to threaten filtration, then be forwarded to request of data end 100.
It is preferred that as a kind of embodiment, before step S100, also comprising the steps:
Step S101 ', requested end 300 sends registration request to high in the clouds detection platform 200, submits log-on message to;
Step S102 ', high in the clouds detection platform 200 when requested end 300 is registered to high in the clouds detection platform 200, according to quilt
The log-on message of request end 300 generates registration table, and registration table is stored, at the same by registration table feed back to by
Request end 300;
Step S103 ', requested end 300 receives the registration table after storage high in the clouds detection platform 200 succeeds in registration.
It is preferred that used as a kind of embodiment, step S200 comprises the steps:
Step S210, request end to request is sent to requested end 300 by registered domain name when, according to the note for receiving
Volume domain name, parsing obtain the corresponding domain name/IP address of registered domain name;
Step S220, according to domain name/IP address, by the registration table for storing, finds corresponding high in the clouds IP address,
Domain host head identification is carried out according to high in the clouds IP address, the request of request end and request are uploaded to requested end 300 then
Content-data, and registration table, forward to carry out flow content detection according to domain host head recognition result;
Step S230, the request content of the request end to receiving, and request upload to the content number of requested end 300
According to carrying out flow content detection filtration;If filter do not passed through, request end is asked and content-data is abandoned, to request end
Return not by information, detection does not pass through, request and content-data are abandoned;If be filtered through, by filtration after request end
Request, and ask the content-data and registration table transmission for uploading to requested end 300 to forward;
Step S240, according to high in the clouds second level domain, parses and obtains two grades of corresponding high in the clouds IP address, according to two grades of high in the clouds
Request end request and request after IP address forward filtering uploads to the content-data of requested end 300, high in the clouds second level domain
Requested end 300 is forwarded to marker characteristic code;Or according to two grades of high in the clouds IP address and registration table record, obtain high in the clouds
The network communication address of detection platform 200 and requested end 300, request end request after network communication address is by filtration,
And request uploads to the content-data of requested end 300, high in the clouds second level domain and marker characteristic code are to requested end 300.
It is preferred that step S300, comprises the steps:
Step S310, according to the high in the clouds second level domain that the high in the clouds detection platform 200 for receiving is forwarded, and registration
Table, finds and request end two grades of corresponding requested end of request IP address;And according to two grades of requested end IP address, will be corresponding
Request end request, and request uploads to the content-data of requested end 300, forwards to make requests on operation process;
Step S320, asks according to request end, and request uploads to the content-data of requested end 300, makes requests on
Upload content data operation is processed.
It is preferred that used as a kind of embodiment, step S400 comprises the steps:
Step S410, after the operation for completing to ask upload content data, asks according to request end, obtains and feed back to data
The reply data of request end 100, according to marker characteristic code decoding obtain high in the clouds IP address and/or two grades of high in the clouds IP address and/or
The reply data of the acquisition is forwarded to high in the clouds detection platform 200 by network communication address.
Used as a kind of embodiment, step S500 comprises the steps:
Step S510, before reply data is forwarded back to request end, reply data is forwarded carries out flow content detection mistake
Filter;As being filtered through, request end is forwarded back to;Otherwise reply data is abandoned, is returned not by information to request end, detection is not
Pass through, request and content-data are abandoned.
The end-to-end flux content detection algorithm based on cloud of the invention is further illustrated below by an embodiment, including
Following steps:
1), requested end 300 carries out domain name registration in detection platform 200 beyond the clouds, by the registered domain name of requested end 300
Detection platform 200 carries out domain name registration beyond the clouds, according to log-on message and registered domain name(www.abc.com)Generate the domain name
Corresponding domain name/IP address(Www.abc.com domain names IP), and generate corresponding high in the clouds IP address(Domain name IP high in the clouds
IP), high in the clouds second level domain is generated according to registered domain name(cloud.abc.com ), and the cloud corresponding to the high in the clouds second level domain
The two grades of IP address in end(Two grades of cloud.abc.com high in the clouds IP), generate the corresponding two grades of IP address in high in the clouds of high in the clouds IP address(Cloud
End two grades of high in the clouds of IP IP address), and corresponding requested end second level domain is generated according to high in the clouds second level domain
(abc.cloud.com), corresponding two grades of IP address in requested end are generated according to requested end second level domain
(Two grades of abc.cloud.com requested ends IP address);
According to the registered domain name of the registration of requested end 300, the corresponding domain name/IP address of registered domain name, domain name IP region are corresponding
High in the clouds detection platform 200 high in the clouds IP address, the corresponding high in the clouds second level domain of registered domain name, the corresponding cloud of high in the clouds second level domain
The two grades of IP address in end, corresponding 300 second level domain of requested end of high in the clouds second level domain, requested end second level domain is corresponding to be asked
The two grades of IP address in end are sought, registration table, storage detection platform 200 beyond the clouds is generated, and is fed back to requested end and stored.
2), request of data end 100 accesses domain name, is input into registered domain name to be accessed in a browser, such as
Www.abc.com, is sent to high in the clouds detection platform 200, enters step 3;
3), high in the clouds detection platform 200 carries out domain name service parsing according to the domain name of input, obtains domain name/IP address, and profit
To be asked with CNAME and request upload content data is forwarded to high in the clouds IP address;
In the embodiment of the present invention, carry out parsing after inquiry obtains domain name/IP address, using the mode of CNAME, by domain name
IP address forwards request and request upload content data to high in the clouds IP address, such as:Www.abc.com domain name/IP address turns
It is changed into www.abc.com high in the clouds IP address;
The request of CNAME in 200 response data request end 100 of high in the clouds detection platform, and according to corresponding to for pre-setting
Domain name CNAME relation, transmits this session to the high in the clouds IP address of high in the clouds detection platform 200.
4), high in the clouds IP address is carried out host header identification, request and request is uploaded content and is transmitted to flow content-data
Detecting system, carries out content-data detection and filters.
5), content-data will be received and impended information filtering, and judge whether to belong to threat according to result, and according to plan
Slightly blocking request or request of letting pass;And according to registered domain name, using registration table search to high in the clouds second level domain, and parse
Two grades of high in the clouds IP address is arrived, the request by filtering and two grades of high in the clouds of request upload content data IP address are forwarded to generation then
Reason server(Receive forwarding module).
6), proxy server searched and obtains two grades of corresponding requested end according to high in the clouds second level domain and registration table
Domain name, forwards the request by filtering and request upload content data, high in the clouds second level domain and marker characteristic code to requested end
300;Or by the private network address between high in the clouds detection platform 200 and requested end 300 will pass through filter request and
Request upload content data, high in the clouds second level domain and marker characteristic code are forwarded to requested end 300.
7)Verify accessed second level domain in requested end 300(cloud.abc.com)And obtained according to registration table
Requested end second level domain(abc.cloud.com), parse requested end second level domain and obtain two grades of requested end IP address, will
Request and request upload data forwarding to data server(Request operation module), the response of the request that conducts interviews completes to ask
Operation is processed.
8)By the request content feedback data resource after being filtered(Reply data), according to marker characteristic code, decoding
High in the clouds IP address and/or two grades of high in the clouds IP address and/or dedicated network communication address is obtained, will be special to feedback data resource and labelling
Levy code and return to proxy server;
9)After proxy server obtains data resource and marker characteristic code, confirm it is by which user according to marker characteristic code
Source address(Request end)Access, and data resource is transmitted to user by the source address(Request end);Or data are provided
Source carries out after flow content detection is filtered through, relaying to user(Request end).
End-to-end flux content detection system and detection method of the embodiment of the present invention based on cloud, are forwarded using domain name and are accessed
Achieve user accesses data and be forwarded to high in the clouds detection platform 200, and carried out in end-to-end flux by high in the clouds detection platform 200
Hold detection, there is provided the data, services of end-to-end flux content detection, and the actually active money for having connected user and having been accessed
Source, and end-to-end flux content detection is achieved in access process, so as to identify threat the filtration that can impend.With
When, which has given full play to the advantage of cloud computing, so as to reduce the cost of the end-to-end content detection system of data center, and carries
The high utilization rate of end-to-end content detection system, reduce the cost of serving for imputing to enterprise by service, it is to avoid enterprise
Disposable input cost is too high, reduces the cost of serving of end-to-end flux content detection system used in enterprise-wide operation,
And then can achieve the SAAS that can be rented(Software-as-a-service, software operation)Service mode, can be flowed by threatening
The filtering services bandwidth usage of amount, or even can protection request end subscriber carrying out rational accounting management.
Embodiment described above only expresses the several embodiments of the present invention, and its description is more concrete and detailed, but simultaneously
Therefore the restriction to the scope of the claims of the present invention can not be interpreted as.It should be pointed out that for one of ordinary skill in the art
For, without departing from the inventive concept of the premise, some deformations and improvement can also be made, these belong to the guarantor of the present invention
Shield scope.Therefore, the protection domain of patent of the present invention should be defined by claims.
Claims (9)
1. a kind of end-to-end flux content detection system based on cloud, it is characterised in that include by least one as end-to-end
One high in the clouds detection platform of the cloud server composition of flow content-data detection, at least one request carry out flow content-data behaviour
The request of data end of work, and the requested end operated by least one pair of described flow content-data;
The request of data end, for sending the content-data that request and request are transferred to requested end to requested end;
The high in the clouds detection platform, for carrying out domain name service parsing according to requested end registered domain name address, according to parsing
The corresponding IP address of the domain name that arrives, is forwarded by registration table collaborative configuration, by the request at request of data end and please
The content-data for being transferred to requested end is sought, forwarding carries out the threat filtration of flow content detection, and will be by the request end of filtration
Request and request are transferred to the transmitting content data of requested end, are transmitted to requested end;The high in the clouds detection platform, including note
Volume generation module, domain name mapping module, the first forwarding lookup module, flow content detection module, the second forwarding lookup module connect
Forwarding module is received, wherein:
The registration generation module, for when requested end is registered to high in the clouds detection platform, believing according to the registration of requested end
Breath generates registration table, and registration table is stored, while registration table is fed back to requested end;
Domain name mapping module, when request end sends request by registered domain name to requested end, according to the log-on field for receiving
Name, parsing obtain the corresponding domain name/IP address of registered domain name;
The first forwarding lookup module, for according to domain name/IP address, by the registration table for storing, finds corresponding
High in the clouds IP address, carries out domain host head identification according to high in the clouds IP address, then by the request of request end and request be transferred to by
The content-data of request end, and registration table, according to domain host head recognition result, are forwarded to flow content detection mould
Block;
The flow content detection module, for the request content of the request end to receiving, and request upload to requested
The content-data at end, carries out flow content detection filtration;If filter do not passed through, request end is asked and content-data is lost
Abandon, return not by information to request end, detection does not pass through, and request and content-data are abandoned;If be filtered through, will filter
Request end request afterwards, and ask the content-data and registration table that upload to requested end to be transferred to the second forwarding lookup
Module;
Second forwarding lookup module, for according to high in the clouds second level domain, parsing and obtaining two grades of corresponding high in the clouds IP address, according to
Request end request and request after the IP address forward filtering of two grades of high in the clouds uploads to the content-data of requested end, high in the clouds two
Level domain name and marker characteristic code are to requested end;The marker characteristic code is according to high in the clouds detection platform(200)High in the clouds IP ground
Location and/or two grades of high in the clouds IP address and/or high in the clouds detection platform(200)With requested end(300)Dedicated network communication address,
The request of the labelling of generation and request upload content data are by the high in the clouds detection platform(200)It is sent to requested end(300)'s
There is the condition code with uniqueness of labelling effect;Or according to two grades of high in the clouds IP address and registration table record, obtain
High in the clouds detection platform and the dedicated network communication address of requested end, the request end after network communication address is by filtration please
Ask and ask the content-data for uploading to requested end, high in the clouds second level domain and marker characteristic code to be forwarded to requested end;
The reception forwarding module, for receiving the reply data fed back from requested end, according to request end request content
In request end address, reply data is forwarded back to request end;
The requested end, for receiving that high in the clouds detection platform forwards by threatening the request end request after filtering and please
The transmitting content data for being transferred to requested end is sought, transmitting content data operation process is made requests on.
2. the end-to-end flux content detection system based on cloud according to claim 1, it is characterised in that described requested
End generates registration table when registering to high in the clouds detection platform according to the log-on message of requested end, and the log-on message includes
The direction of the registered domain name of requested end signon protection, name server, the threat taxonomy of protection and protection content;
The registration table includes the registered domain name of requested end registration, the corresponding domain name/IP address of registered domain name, domain name IP
The high in the clouds IP address of the corresponding high in the clouds detection platform in address, and/or the corresponding high in the clouds second level domain of registered domain name, high in the clouds second-level domain
The corresponding two grades of IP address in high in the clouds of name, the corresponding requested end second level domain of high in the clouds second level domain, requested end second level domain pair
Two grades of the requested end that answers IP address.
3. the end-to-end flux content detection system based on cloud according to claim 1 and 2, it is characterised in that described connect
Forwarding module is received, is additionally operable to before reply data is forwarded back to request end, reply data is forwarded to flow content detection module
Filtered;And receive the reply data that flow content detection module is filtered through;
The flow content detection module, is additionally operable to forward the reply data for coming to filter to receiving forwarding module;As filtered
By being then forwarded back to reception forwarding module;Otherwise reply data is abandoned, is returned not by information, detection to forwarding module is received
Do not pass through, request and content-data are abandoned.
4. the end-to-end flux content detection system based on cloud according to claim 3, it is characterised in that described requested
End, including Registering modules, the 3rd forwarding module asks operation module, and responder module, wherein:
The Registering modules, for sending registration request to high in the clouds detection platform, submit log-on message to, and receive the inspection of storage high in the clouds
The registration table that surveys after platform succeeds in registration;
3rd forwarding module, for according to the high in the clouds second level domain and registration table for receiving, finding requested end
Second level domain, and parse and obtain and request end two grades of corresponding requested end of request IP address;And according to two grades of requested end
IP address, corresponding request end is asked, and request uploads to the content-data of requested end, is forwarded to request operation mould
Block;
The request operation module, for being asked according to request end, and request uploads to the content-data of requested end, carries out
The operation of request upload content data is processed;
The responder module, for, after the operation for completing to ask upload content data, being asked according to request end, acquisition feeds back to
The reply data at request of data end, according to marker characteristic code decoding obtain high in the clouds IP address and/or two grades of high in the clouds IP address and/or
The reply data of the acquisition is forwarded to high in the clouds detection platform by network communication address.
5. a kind of end-to-end flux content detection algorithm based on cloud, it is characterised in that comprise the steps:
Step S100, request of data end send the content-data that request and request upload to requested end to requested end;
Step S200, high in the clouds detection platform carry out domain name service parsing according to requested end registered domain name address, according to parsing
The corresponding IP address of the domain name that arrives, is forwarded by registration table collaborative configuration, by the request at request of data end and please
The content-data for uploading to requested end is sought, forwarding carries out the threat filtration of flow content detection, and will be by the request end of filtration
Request and request upload to the upload content data of requested end, are transmitted to requested end;Step S200 includes following step
Suddenly:
Step S210, when request end sends request by registered domain name to requested end, according to the registered domain name for receiving, solution
Analysis obtains the corresponding domain name/IP address of registered domain name;
Step S220, according to domain name/IP address, by the registration table for storing, finds corresponding high in the clouds IP address, according to
High in the clouds IP address carries out domain host head identification, and then the request of request end and request are uploaded to the content number of requested end
According to, and registration table, forwarded to carry out flow content detection according to domain host head recognition result;
Step S230, the request content of the request end to receiving, and request upload to the content-data of requested end, carry out
Flow content detection is filtered;If filter do not passed through, request end is asked and content-data is abandoned, return to request end and do not lead to
Information is crossed, detection does not pass through, request and content-data are abandoned;If be filtered through, by filtration after request end request, and
Request uploads to the content-data and registration table transmission of requested end and forwards;
Step S240, according to high in the clouds second level domain, parses and obtains two grades of corresponding high in the clouds IP address, according to two grades of high in the clouds IP ground
Request end request and request after the forward filtering of location uploads to the content-data of requested end, high in the clouds second level domain and labelling
Condition code is to requested end;The marker characteristic code is according to high in the clouds detection platform(200)High in the clouds IP address and/or high in the clouds two
Level IP address and/or high in the clouds detection platform(200)With requested end(300)Dedicated network communication address, the labelling of generation should
Request and request upload content data are by the high in the clouds detection platform(200)It is sent to requested end(300)With labelling act on
The condition code with uniqueness;Or according to two grades of high in the clouds IP address and registration table record, obtain high in the clouds detection platform
With the network communication address of requested end, the request end after network communication address is by filtration is asked and request is uploaded to
The content-data of requested end, high in the clouds second level domain and marker characteristic code are forwarded to requested end;
Step S300, requested end receive the request end request that filters by threat and the request that high in the clouds detection platform is forwarded
The upload content data of requested end is uploaded to, upload content data operation process is made requests on;Step S300, including such as
Lower step:
Step S310, according to the high in the clouds second level domain that the high in the clouds detection platform for receiving is forwarded, and registration table, find
With request end two grades of corresponding requested end of request IP address;And according to two grades of requested end IP address, by corresponding request end
Request, and the content-data for asking to upload to requested end, forward to make requests on operation process;
Step S320, asks according to request end, and request uploads to the content-data of requested end, makes requests on upload content
Data manipulation is processed.
6. the end-to-end flux content detection algorithm based on cloud according to claim 5, it is characterised in that in step S300
Afterwards, also comprise the steps:
Step S400, requested end are asked according to request end after the operation for completing to ask upload content data, and acquisition feeds back to
The reply data of the acquisition is forwarded to high in the clouds detection platform by the reply data at request of data end;
Step S500, the reply data that high in the clouds detection platform is fed back to requested end carry out flow content detection, complete prestige
After the side of body is filtered, then it is forwarded to request of data end.
7. the end-to-end flux content detection algorithm based on cloud according to claim 5 or 6, it is characterised in that the step
Before rapid S100, also comprise the steps:
Step S101 ', requested end sends registration request to high in the clouds detection platform, submits log-on message to;
Step S102 ', high in the clouds detection platform is believed according to the registration of requested end when requested end is registered to high in the clouds detection platform
Breath generates registration table, and registration table is stored, while registration table is fed back to requested end;
Step S103 ', requested end receives the registration table after storage high in the clouds detection platform succeeds in registration.
8. the end-to-end flux content detection algorithm based on cloud according to claim 6, it is characterised in that the step
S400 comprises the steps:
Step S410, after the operation for completing to ask upload content data, asks according to request end, obtains and feed back to request of data
The reply data at end, obtains high in the clouds IP address and/or two grades of high in the clouds IP address and/or network service according to the decoding of marker characteristic code
The reply data of the acquisition is forwarded to high in the clouds detection platform by address.
9. the end-to-end flux content detection algorithm based on cloud according to claim 8, it is characterised in that the step
S500 comprises the steps:
Step S510, before reply data is forwarded back to request end, reply data is forwarded carries out flow content detection filtration;Such as
It is filtered through, is forwarded back to request end;Otherwise reply data is abandoned, is returned not by information to request end, detection does not pass through,
Request and content-data are abandoned.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210158668.XA CN103428041B (en) | 2012-05-22 | 2012-05-22 | A kind of end-to-end flux content detection system and detection method based on cloud |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210158668.XA CN103428041B (en) | 2012-05-22 | 2012-05-22 | A kind of end-to-end flux content detection system and detection method based on cloud |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103428041A CN103428041A (en) | 2013-12-04 |
CN103428041B true CN103428041B (en) | 2017-03-15 |
Family
ID=49652244
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210158668.XA Active CN103428041B (en) | 2012-05-22 | 2012-05-22 | A kind of end-to-end flux content detection system and detection method based on cloud |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103428041B (en) |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104660727A (en) * | 2015-02-10 | 2015-05-27 | 深圳市博瑞得科技有限公司 | Service identification method based on DNS (Domain Name Server) and system of method |
CN106528396B (en) * | 2015-09-09 | 2019-06-11 | 阿里巴巴集团控股有限公司 | For handling the method and apparatus of application request |
CN106572142A (en) * | 2015-10-12 | 2017-04-19 | 中兴通讯股份有限公司 | Method, system and apparatus for discovering shared resources |
CN109787939A (en) * | 2017-11-14 | 2019-05-21 | 北京星河星云信息技术有限公司 | A kind of cloud security system of defense and its user's method for building up |
US11310053B2 (en) * | 2018-12-28 | 2022-04-19 | Plaid Inc. | System and method of filtering internet traffic via a client fingerprint |
CN110855632B (en) * | 2019-10-24 | 2022-03-11 | 新华三信息安全技术有限公司 | Message detection method, device, network equipment and computer readable storage medium |
CN111314197B (en) * | 2020-02-03 | 2021-06-29 | 杭州迪普科技股份有限公司 | Domain name resource management device and domain name resource management method |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101902456A (en) * | 2010-02-09 | 2010-12-01 | 北京启明星辰信息技术股份有限公司 | Safety defense system of Website |
CN102123396A (en) * | 2011-02-14 | 2011-07-13 | 恒安嘉新(北京)科技有限公司 | Cloud detection method of virus and malware of mobile phone based on communication network |
CN102347876A (en) * | 2011-09-30 | 2012-02-08 | 鞠洪尧 | Multilink aggregation control device for cloud computing network |
-
2012
- 2012-05-22 CN CN201210158668.XA patent/CN103428041B/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101902456A (en) * | 2010-02-09 | 2010-12-01 | 北京启明星辰信息技术股份有限公司 | Safety defense system of Website |
CN102123396A (en) * | 2011-02-14 | 2011-07-13 | 恒安嘉新(北京)科技有限公司 | Cloud detection method of virus and malware of mobile phone based on communication network |
CN102347876A (en) * | 2011-09-30 | 2012-02-08 | 鞠洪尧 | Multilink aggregation control device for cloud computing network |
Also Published As
Publication number | Publication date |
---|---|
CN103428041A (en) | 2013-12-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103428041B (en) | A kind of end-to-end flux content detection system and detection method based on cloud | |
CN103581213B (en) | A kind of application process of shared Hosts files, equipment and system | |
AU2015324004B2 (en) | Using credentials stored in different directories to access a common endpoint | |
CN103475726B (en) | A kind of virtual desktop management, server and client side | |
CN103825975B (en) | Cdn node distribution server and system | |
CN103685590B (en) | Obtain the method and system of IP address | |
CN102984159B (en) | Based on secure accessing logic control method and the Platform Server of terminal access behavior | |
US8665860B2 (en) | Relay device and method for continuing service | |
CN103532919A (en) | Method and system for maintaining login state of user account | |
MX2011003223A (en) | Service provider access. | |
CN102695167B (en) | Mobile subscriber identity management method and apparatus thereof | |
CN101217568A (en) | A webpage push method, system and device | |
CN102055813A (en) | Access controlling method for network application and device thereof | |
CN103139137B (en) | Network service provider method and device | |
CN104811371A (en) | Brand-new instant messaging system | |
CN102394885A (en) | Information classification protection automatic verification method based on data stream | |
CN106685949A (en) | Container access method, container access device and container access system | |
CN103905399A (en) | Account registration management method and apparatus | |
CN104811370B (en) | A kind of security instant communication system framework based on mark | |
CN109995710A (en) | A kind of lan device management system and method | |
CN102523196B (en) | Information identification method, device and system | |
CN101074991A (en) | Method and system for processing geographic position information and middleware in geographic information system | |
CN102685117B (en) | A kind of multicast safety management method and device | |
CN103581361A (en) | Domain name resolution proxy method, device and system | |
CN102118313B (en) | Method and device for detecting internet protocol (IP) address |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20240226 Address after: No. 118, Chunzhu East Road, Xishan Economic Development Zone (Dongting), Wuxi City, Jiangsu Province, 214000 Patentee after: TONGFANG COMPUTER Co.,Ltd. Country or region after: China Address before: 100083 Haidian District, Beijing, Tsinghua Tongfang square A block 29. Patentee before: Tongfang Co.,Ltd. Country or region before: China |