CN103647652A - Method, device and server for achieving data transmission - Google Patents
Method, device and server for achieving data transmission Download PDFInfo
- Publication number
- CN103647652A CN103647652A CN201310714560.9A CN201310714560A CN103647652A CN 103647652 A CN103647652 A CN 103647652A CN 201310714560 A CN201310714560 A CN 201310714560A CN 103647652 A CN103647652 A CN 103647652A
- Authority
- CN
- China
- Prior art keywords
- url
- data
- verification
- authentication token
- feedback
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The invention discloses a method, a device and a server for achieving data transmission. The method for achieving data transmission comprises sending an authentication token acquisition request to a remote server after a data transmission session is started and receiving a authentication token fed back by the remote server; utilizing the authentication token and data to be transmitted to generate a URL (Uniform Resource Locator); sending a URL interface address access request to the remote server; transmitting data through a URL interface address after verification pass information fed back by the remote server is received. By means of the method, the device and the server for achieving data transmission, the safety of data transmission is improved, security risks request playback and URL recovery can be avoided, and further efficiency of data transmission can be improved.
Description
Technical field
The present invention relates to the technical field of data processing, be specifically related to a kind of method, device and server of realizing transfer of data.
Background technology
Along with the fast development of network technology, computer network and people's life are more and more closer, and user can pass through the various resources of Network Capture, and the simplest method is exactly direct Gains resources on browser.At present the most frequently used is exactly to adopt HTTP(Hyper Text Transfer Protocol, HTML (Hypertext Markup Language)) connection Gains resources.HTTP is the transportation protocol that data arrive client browser, and it is one of upper modal agreement of Internet, by HTTP, can realize the transfer of data between computer, and it is the standard of the request of client and server end and response.
In the prior art, HTTP has defined the distinct methods of client and server interaction, and the most basic data transfer mode comprises Get and Post mode.Although the two is all the way of submission of data, when actual transmissions, is really very different, and may produces serious influence to transfer of data.Get is for obtaining data from server, and Post is for upload delivery data to server; But these two kinds of modes are in actual data transmission procedure, all can think to realize with clear-text way, and often easily illegally be distorted, exist serious potential safety hazard.
Summary of the invention
In view of the above problems, the present invention has been proposed to a kind of a kind of method and corresponding a kind of device and server of realizing transfer of data of realizing transfer of data that overcomes the problems referred to above or address the above problem is at least in part provided.
According to one aspect of the present invention, a kind of method that realizes transfer of data is provided, comprising:
After data transmission conversation starts, to far-end server, send authentication token and obtain request, and receive the authentication token of described far-end server feedback; Utilize described authentication token and data to be transmitted to generate URL; To far-end server, send URL interface IP address access request; Receive the verification of far-end server feedback by transmitting data by URL interface IP address after information.
Preferably, described described authentication token and the band of utilizing treats that transmission of data generates URL and comprises: utilize described data to be transmitted construction data character string; The check digit MD5 value of calculated data transformation parameter; Described data transmission parameters at least comprises described data character string and described authentication token; Add the serial number of described authentication token, check digit MD5 value and this data transfer to URL request msg string, generate the URL of complete form.
Preferably, described data transmission parameters also comprises the preset-key shared with described far-end server.
Preferably, described data transmission parameters also comprises the serial number of this data transmission conversation, and described this time data transmission conversation is greater than the last time serial number of data transmission conversation.
Preferably, the method also comprises: after generating URL, to far-end server, send authentication token and obtain request; After receiving the authentication token of described far-end server feedback, to far-end server, send URL interface IP address access request.
Preferably, the method also comprises: after receiving the authentication token of described far-end server feedback, obtain the feedback time of described far-end server.
According to another aspect of the present invention, a kind of method that realizes transfer of data is provided, comprising:
After data transmission conversation starts, the authentication token that receives client transmission obtains request, and to this client feedback authentication token; Receiving described client utilizes described authentication token and data to be transmitted to generate the URL interface IP address access request sending after URL; The fail safe of URL described in verification, if verification is passed through, passes through message to client feedback verification, to indicate described client by described URL interface IP address transmission data.
Preferably, the fail safe of described verification URL comprises: whether the authentication token described in verification in URL is the authentication token of described feedback, and if it is definite this verification is passed through; After described authentication token verification is passed through, in URL, whether check digit MD5 value is identical with the check digit MD5 value of local computing described in verification, if identical, determines that this verification passes through.
Preferably, the fail safe of described verification URL also comprises: after the check digit MD5 value verification in described URL is passed through, described in verification, in URL, this time whether the serial number of data transmission conversation is greater than the last time serial number of data transmission conversation, and if so, definite this verification is passed through.
Preferably, the method also comprises: during to described client feedback authentication token, record feedback time; After described serial number verification is passed through, the authentication token acquisition time described in verification in URL whether with early than the described URL interface IP address access request time, if so, determine that this verification passes through.
According to another aspect of the present invention, a kind of device of realizing transfer of data is provided, comprising: the first request unit, generation unit, the second request unit and transmission unit; Wherein,
Described the first request unit obtains request for sending authentication token to far-end server after starting when data transmission conversation, and receives the authentication token of described far-end server feedback; Authentication token and data to be transmitted generation URL that described generation unit receives for utilizing described the first request unit; Described the second request unit is for sending URL interface IP address access request to far-end server; Described transmission unit is for receiving after the verification succeeds information of far-end server feedback by URL interface IP address transmission data.
Preferably, described generation unit comprises: constructing module, computing module and interpolation module; Wherein, described constructing module is used for utilizing described data to be transmitted construction data character string; Described computing module is for the check digit MD5 value of calculated data transformation parameter; Described data transmission parameters at least comprises described data character string and described authentication token; Described interpolation module, for adding the serial number of described authentication token, check digit MD5 value and this data transfer to URL request msg string, generates the URL of complete form.
Preferably, described generation unit also obtains request for indicating described the first request unit to send authentication token to far-end server after generating URL; Described the first request unit also obtains after request for sending authentication token according to the indication of described generation unit, receive the authentication token request of described far-end server feedback, and indicate described the second request unit to send URL interface IP address access request to far-end server.
Preferably, this device also comprises: acquiring unit, for receiving at described the first request unit after the authentication token of described far-end server feedback, obtains the feedback time of described far-end server.
According to another aspect of the present invention, a kind of server of realizing transfer of data is provided, comprising: the first feedback unit, receiving element, verification unit and the second feedback unit; Wherein,
Described the first feedback unit is for after starting when data transmission conversation, and the authentication token that receives client transmission obtains request, and to this client feedback authentication token; Described receiving element utilizes described authentication token and data to be transmitted to generate the URL interface IP address access request sending after URL for receiving described client; Described verification unit is for the fail safe of URL described in verification, and check results is notified to described the second feedback unit; Described the second feedback unit is for receiving the check results of described verification unit, when verification by time to client feedback verification succeeds message, to indicate described client to transmit data by described URL interface IP address.
Preferably, described verification unit comprises: the first processing module and the second processing module; Wherein, whether described the first processing module is the authentication token of described the first feedback unit feedback for the authentication token of URL described in verification, if it is by verification, by result, notifies described the second processing module; Described the second processing module is for the verification that receives described the first processing module by after result, and in URL, whether check digit MD5 value is identical with the check digit MD5 value of local computing described in verification, if identical, definite this verification is passed through.
Preferably, described verification unit also comprises: the 3rd processing module, and after passing through in described the second processing module verification, in URL, this time whether the serial number of data transmission conversation is greater than the last time serial number of data transmission conversation described in verification, if so, definite this verification is passed through.
Preferably, this server also comprises: record cell, and for record feedback time during to described client feedback authentication token at described the first feedback unit.
Preferably, described verification unit also comprises: the 4th processing module, for after described the 3rd processing module verification is passed through, authentication token acquisition time described in verification in URL whether with early than described receiving element, receive the time of URL interface IP address access request, if so, definite this verification is passed through.。
The URL that the embodiment of the present invention comprises different authorization informations by structure, and utilize this URL to send URL interface IP address access request to far-end server, so that described far-end server utilizes this time legitimacy of data transmission conversation of described authorization information verification, with this, improved the fail safe of transfer of data, the potential safety hazard of having avoided request playback and URL to be caused by heavy brush etc., has further improved the efficiency of transfer of data.
Above-mentioned explanation is only the general introduction of technical solution of the present invention, in order to better understand technological means of the present invention, and can be implemented according to the content of specification, and for above and other objects of the present invention, feature and advantage can be become apparent, below especially exemplified by the specific embodiment of the present invention.
Accompanying drawing explanation
By reading below detailed description of the preferred embodiment, various other advantage and benefits will become cheer and bright for those of ordinary skills.Accompanying drawing is only for the object of preferred implementation is shown, and do not think limitation of the present invention.And in whole accompanying drawing, by identical reference symbol, represent identical parts.In the accompanying drawings:
Fig. 1 shows a kind of according to an embodiment of the invention method flow diagram of realizing transfer of data;
Fig. 2 shows a kind of according to an embodiment of the invention apparatus structure block diagram of realizing transfer of data; And,
Fig. 3 shows a kind of according to an embodiment of the invention server architecture block diagram of realizing transfer of data.
Embodiment
Exemplary embodiment of the present disclosure is described below with reference to accompanying drawings in more detail.Although shown exemplary embodiment of the present disclosure in accompanying drawing, yet should be appreciated that and can realize the disclosure and the embodiment that should do not set forth limits here with various forms.On the contrary, it is in order more thoroughly to understand the disclosure that these embodiment are provided, and can by the scope of the present disclosure complete convey to those skilled in the art.
With reference to Fig. 1, show a kind of according to an embodiment of the invention flow chart of steps that realizes the embodiment of the method 1 of transfer of data, specifically can comprise the steps:
Step 110: after data transmission conversation starts, client sends authentication token (token) to far-end server and obtains request;
It should be noted that, the logical identify label that refers to information interaction between client and far-end server of described authentication token in the present embodiment, concrete form can be certain request message, also one section of character string; Preferably, can obtain URL by authentication token and obtain this authentication token to described far-end server; In addition, described client is relative far-end server, not merely refers to client physically, and it can be also browser, application, APP, software etc.; Concrete the present embodiment does not limit.
Step 120: the authentication token that described far-end server receives client transmission obtains after request, to this authentication token of described client feedback;
In the present embodiment, when described far-end server receives obtaining after request of client, can to it, feed back this authentication token in several ways, for example: to its feedback response message, in this response message, comprise this authentication token; Again for example: can directly using authentication token itself as message format to client feedback authentication token.It should be noted that the authentication token in the present embodiment can be that far-end server receives the content generating at random after the request of obtaining of client, can be also the content setting in advance, and concrete the present embodiment does not limit.
In addition, the present embodiment proposes to record during to described client feedback authentication token at described far-end server the time T IME1 of this feedback operation, in order to follow-up other operations.
Step 130: described client, after the authentication token of described far-end server feedback, utilizes described authentication token and data to be transmitted to generate URL;
In actual application, the present embodiment proposes to generate in the following manner URL, specifically comprises:
S131: utilize described data to be transmitted construction data character string;
For example, when user need to by accessing server by customer end with obtain server and provide service time, by needs, first by authentication, and authentication information is the data that this data transmission conversation need to transmit; As, phone number and password when client is logined user are configured to serial data :/user/login/mobile/{ cell-phone number }/password/{ password string };
S132: the check digit MD5 value of calculated data transformation parameter;
Wherein, described data transmission parameters at least comprises described data character string and described authentication token; The computation rule of described check digit MD5 can be: MD5 (token+PATH), and wherein authentication token is the authentication token character string of far-end server feedback, PATH is the data character string of step S131 structure.
S133: add the serial number of described authentication token, MD5 value and this data transfer to URL request msg string, generate the URL of complete form;
Concrete, described token (token) and check digit (MD5) are appended on URL in GET mode, for example :/user/login/mobile/{ phone number }/password/{ password string } token={ token } & i={ serial number } & md5={ check digit }, URL request msg string construction complete so far;
Then the URL request msg of described structure is concatenated into the URL of complete form, described complete formula URL is http: // { domain name } { URI}, for example, http://api.browser.360.cn/user/login/mobile/{ phone number }/password/{ password string } token={ token } & i={ serial number } & md5={ check digit }.
It should be noted that, described data transmission parameters can also be included in described client and the default shared key of described server end in the present embodiment, and this key is in order to identify the identity information of described client; On this basis, the fall into a trap check digit MD5 value of calculating data transmission parameters of step S132 needs the check digit MD5 value of the data transmission parameters that calculating comprises this key, i.e. MD5 (token+key+PATH).
In addition, when described client and far-end server carry out data interaction, each mutual request and response all can be set the serial number i of this data transmission conversation, and when next data interaction, described serial number i needs to add up, for example, while last time asking, i was 12, and this should be set to i>=13; Therefore, when above-mentioned steps 132 is carried out the calculating of check digit MD5 value, also can comprise this serial number, i.e. MD5 (token+key+serial number+PATH).
Step 140: described client generates after described URL, utilizes this URL to send URL interface IP address access request to far-end server;
Step 150: described far-end server receives after the URL interface IP address access request of described client, the fail safe of URL described in verification, and by verification result feedback to client, notify whether success of described client verification;
Concrete, the present embodiment proposes to realize in the following manner the verification of URL fail safe, but is not limited to this:
S151: whether the authentication token described in described far-end server verification in URL is the authentication token to described client feedback, if it is definite this verification is passed through; Concrete, from http://api.browser.360.cn/user/login/mobile/{ phone number }/password/{ password string token={ token & i={ serial number & md5={ check digit extract authentication token character string, and with authentication token character string comparison to described client feedback, if consistent, definite this authentication token verification is passed through; Otherwise, determine that this authentication token verification do not pass through.
S152: after described authentication token verification is passed through, in URL, whether check digit MD5 value is identical with the check digit MD5 value of local computing described in verification, if identical, determines that this verification passes through; Concrete, after described in described far-end server verification, authentication token passes through, calculation check position MD5 (token+PATH), and from http://api.browser.360.cn/user/login/mobile/{ phone number }/password/{ password string token={ token & i={ serial number & md5={ check digit extract check digit MD5 value, if the two is consistent, definite this check digit MD5 value verification is passed through, otherwise does not pass through for verification.
In addition, the present embodiment proposes the method and can also comprise: after the check digit MD5 value verification in described URL is passed through, described in verification, in URL, this time whether the serial number of data transmission conversation is greater than the last time serial number of data transmission conversation, and if so, definite this verification is passed through.
It should be noted that, if described far-end server has recorded the time T IME1 of this feedback operation during to described client feedback authentication token, this far-end server is after passing through serial number verification, record receives the URL interface IP address access request time T IME2 that described client sends, and described in verification, whether TIME1 is early than described TIME2, if so, definite this timeliness verification is passed through, otherwise be defined as verification, does not pass through.
It should be noted that, after order setting between above-mentioned checking procedure completes, if wherein arbitrarily verification not by; think that this data transmission conversation is illegal, be that described far-end server does not pass through information to described client feedback verification, and subsequent client also cannot be carried out transfer of data by this URL interface IP address.
Step 160: the check results of far-end server feedback described in described client, if verification succeeds, by described URL interface IP address transmission data.
Can find out, the URL that the method for the embodiment of the present invention comprises different authorization informations by structure, and utilize this URL to send URL interface IP address access request to far-end server, so that described far-end server utilizes this time legitimacy of data transmission conversation of described authorization information verification, with this, improved the fail safe of transfer of data, the potential safety hazard of having avoided request playback and URL to be caused by heavy brush etc., has further improved the efficiency of transfer of data.
Certainly, above-mentioned special type information and judgment mode thereof, just as example, when implementing the embodiment of the present invention, can arrange other special type informations and judgment mode thereof according to actual conditions, and the embodiment of the present invention is not limited this.In addition, except above-mentioned special type information and judgment mode thereof, those skilled in the art can also adopt other special type informations and judgment mode thereof according to actual needs, and the embodiment of the present invention is not limited this yet.
For embodiment of the method, for simple description, therefore it is all expressed as to a series of combination of actions, but those skilled in the art should know, the embodiment of the present invention is not subject to the restriction of described sequence of movement, because according to the embodiment of the present invention, some step can adopt other orders or carry out simultaneously.Secondly, those skilled in the art also should know, the embodiment described in specification all belongs to preferred embodiment, and related action might not be that the embodiment of the present invention is necessary.
With reference to Fig. 2, show a kind of according to an embodiment of the invention structured flowchart of realizing the device of transfer of data, specifically can comprise as lower module: the first request unit 210, generation unit 220, the second request unit 230 and transmission unit 240; Wherein,
Described the first request unit 210 obtains request for sending authentication token to far-end server after starting when data transmission conversation, and receives the authentication token of described far-end server feedback; Authentication token and data to be transmitted generation URL that described generation unit 220 receives for utilizing described the first request unit 210; Described the second request unit 230 is for sending URL interface IP address access request to far-end server; Described transmission unit 240 is for receiving after the verification succeeds information of far-end server feedback by URL interface IP address transmission data.
Wherein, described generation unit 220 comprises (not shown): constructing module, computing module and interpolation module; Wherein, described constructing module is used for utilizing described data to be transmitted construction data character string; Described computing module is for the check digit MD5 value of calculated data transformation parameter; Described data transmission parameters at least comprises described data character string and described authentication token; Described interpolation module, for adding the serial number of described authentication token, check digit MD5 value and this data transfer to URL request msg string, generates the URL of complete form.
In addition, described generation unit 220 also obtains request for indicating described the first request unit to send authentication token to far-end server after generating URL; Described the first request unit 210 also obtains after request for sending authentication token according to the indication of described generation unit 220, receive the authentication token request of described far-end server feedback, and indicate described the second request unit 230 to send URL interface IP address access request to far-end server.
It should be noted that this device also comprises (not shown): acquiring unit, for receiving at described the first request unit after the authentication token of described far-end server feedback, obtains the feedback time of described far-end server.
With reference to Fig. 3, show a kind of according to an embodiment of the invention structured flowchart of realizing the server of transfer of data, specifically can comprise as lower module: the first feedback unit 310, receiving element 320, verification unit 330 and the second feedback unit 340; Wherein,
Described the first feedback unit 310 is for after starting when data transmission conversation, and the authentication token that receives client transmission obtains request, and to this client feedback authentication token; Described receiving element 320 utilizes described authentication token and data to be transmitted to generate the URL interface IP address access request sending after URL for receiving described client; Described verification unit 330 is for the fail safe of URL described in verification, and check results is notified to described the second feedback unit 340; Described the second feedback unit 340 is for receiving the check results of described verification unit 330, when verification by time to client feedback verification succeeds message, to indicate described client by described URL interface IP address transmission data.
Wherein, described verification unit 330 comprises (not shown): the first processing module and the second processing module; Wherein, whether described the first processing module is the authentication token of described the first feedback unit feedback for the authentication token of URL described in verification, if it is by verification, by result, notifies described the second processing module; Described the second processing module is for the verification that receives described the first processing module by after result, and in URL, whether check digit MD5 value is identical with the check digit MD5 value of local computing described in verification, if identical, definite this verification is passed through.
In addition, described verification unit 330 also can comprise (not shown): the 3rd processing module, for after described the second processing module verification is passed through, described in verification, in URL, this time whether the serial number of data transmission conversation is greater than the last time serial number of data transmission conversation, if so, definite this verification is passed through.
It should be noted that, this server also can comprise (not shown): record cell, and for record feedback time during to described client feedback authentication token at described the first feedback unit.
On this basis, described verification unit 330 also can comprise (not shown): the 4th processing module, for after described the 3rd processing module verification is passed through, authentication token acquisition time described in verification in URL whether with early than described receiving element, receive the time of URL interface IP address access request, if so, definite this verification is passed through.
For device embodiment, because it is substantially similar to embodiment of the method, so description is fairly simple, relevant part is referring to the part explanation of embodiment of the method.
The algorithm providing at this is intrinsic not relevant to any certain computer, virtual system or miscellaneous equipment with demonstration.Various general-purpose systems also can with based on using together with this teaching.According to description above, it is apparent constructing the desired structure of this type systematic.In addition, the present invention is not also for any certain programmed language.It should be understood that and can utilize various programming languages to realize content of the present invention described here, and the description of above language-specific being done is in order to disclose preferred forms of the present invention.
In the specification that provided herein, a large amount of details have been described.Yet, can understand, embodiments of the invention can not put into practice in the situation that there is no these details.In some instances, be not shown specifically known method, structure and technology, so that not fuzzy understanding of this description.
Similarly, be to be understood that, in order to simplify the disclosure and to help to understand one or more in each inventive aspect, in the above in the description of exemplary embodiment of the present invention, each feature of the present invention is grouped together into single embodiment, figure or sometimes in its description.Yet, the method for the disclosure should be construed to the following intention of reflection: the present invention for required protection requires than the more feature of feature of clearly recording in each claim.Or rather, as reflected in claims below, inventive aspect is to be less than all features of disclosed single embodiment above.Therefore, claims of following embodiment are incorporated to this embodiment thus clearly, and wherein each claim itself is as independent embodiment of the present invention.
Those skilled in the art are appreciated that and can the module in the equipment in embodiment are adaptively changed and they are arranged in one or more equipment different from this embodiment.Module in embodiment or unit or assembly can be combined into a module or unit or assembly, and can put them into a plurality of submodules or subelement or sub-component in addition.At least some in such feature and/or process or unit are mutually repelling, and can adopt any combination to combine all processes or the unit of disclosed all features in this specification (comprising claim, summary and the accompanying drawing followed) and disclosed any method like this or equipment.Unless clearly statement in addition, in this specification (comprising claim, summary and the accompanying drawing followed) disclosed each feature can be by providing identical, be equal to or the alternative features of similar object replaces.
In addition, those skilled in the art can understand, although embodiment more described herein comprise some feature rather than further feature included in other embodiment, the combination of the feature of different embodiment means within scope of the present invention and forms different embodiment.For example, in the following claims, the one of any of embodiment required for protection can be used with compound mode arbitrarily.
All parts embodiment of the present invention can realize with hardware, or realizes with the software module moved on one or more processor, or realizes with their combination.It will be understood by those of skill in the art that and can use in practice microprocessor or digital signal processor (DSP) to realize the some or all functions that realize the some or all parts in the device of transfer of data according to the embodiment of the present invention.The present invention for example can also be embodied as, for carrying out part or all equipment or device program (, computer program and computer program) of method as described herein.Realizing program of the present invention and can be stored on computer-readable medium like this, or can there is the form of one or more signal.Such signal can be downloaded and obtain from internet website, or provides on carrier signal, or provides with any other form.
It should be noted above-described embodiment the present invention will be described rather than limit the invention, and those skilled in the art can design alternative embodiment in the situation that do not depart from the scope of claims.In the claims, any reference symbol between bracket should be configured to limitations on claims.Word " comprises " not to be got rid of existence and is not listed as element or step in the claims.Being positioned at word " " before element or " one " does not get rid of and has a plurality of such elements.The present invention can be by means of including the hardware of some different elements and realizing by means of the computer of suitably programming.In having enumerated the unit claim of some devices, several in these devices can be to carry out imbody by same hardware branch.The use of word first, second and C grade does not represent any order.Can be title by these word explanations.
The embodiment of the invention also discloses A1, a kind of method that realizes transfer of data, comprising:
After data transmission conversation starts, to far-end server, send authentication token and obtain request, and receive the authentication token of described far-end server feedback;
Utilize described authentication token and data to be transmitted to generate URL;
To far-end server, send URL interface IP address access request;
Receive the verification of far-end server feedback by transmitting data by URL interface IP address after information.
A2, the method as described in A1, described described authentication token and the band of utilizing treats that transmission of data generates URL and comprises: utilize described data to be transmitted construction data character string;
The check digit MD5 value of calculated data transformation parameter; Described data transmission parameters at least comprises described data character string and described authentication token;
Add the serial number of described authentication token, check digit MD5 value and this data transfer to URL request msg string, generate the URL of complete form.
A3, the method as described in A2, described data transmission parameters also comprises the preset-key shared with described far-end server.
A4, the method as described in claim A2 or A3, described data transmission parameters also comprises the serial number of this data transmission conversation, described this time data transmission conversation is greater than the last time serial number of data transmission conversation.
A5, the method as described in A1, the method also comprises:
After generating URL, to far-end server, send authentication token and obtain request;
After receiving the authentication token of described far-end server feedback, to far-end server, send URL interface IP address access request.
A6, the method as described in A1, the method also comprises:
After receiving the authentication token of described far-end server feedback, obtain the feedback time of described far-end server.
The embodiment of the invention also discloses B7, a kind of method that realizes transfer of data, comprising:
After data transmission conversation starts, the authentication token that receives client transmission obtains request, and to this client feedback authentication token;
Receiving described client utilizes described authentication token and data to be transmitted to generate the URL interface IP address access request sending after URL;
The fail safe of URL described in verification, if verification is passed through, passes through message to client feedback verification, to indicate described client by described URL interface IP address transmission data.
B8, the method as described in B7, the fail safe of described verification URL comprises: whether the authentication token described in verification in URL is the authentication token of described feedback, if it is definite this verification is passed through;
After described authentication token verification is passed through, in URL, whether check digit MD5 value is identical with the check digit MD5 value of local computing described in verification, if identical, determines that this verification passes through.
B9, the method as described in B8, the fail safe of described verification URL also comprises: after the check digit MD5 value verification in described URL is passed through, described in verification, in URL, this time whether the serial number of data transmission conversation is greater than the last time serial number of data transmission conversation, and if so, definite this verification is passed through.
B10, the method as described in B9, the method also comprises:
During to described client feedback authentication token, record feedback time;
After described serial number verification is passed through, the authentication token acquisition time described in verification in URL whether with early than the described URL interface IP address access request time, if so, determine that this verification passes through.
The embodiment of the invention also discloses C11, a kind of device of realizing transfer of data, comprising: the first request unit, generation unit, the second request unit and transmission unit; Wherein,
Described the first request unit obtains request for sending authentication token to far-end server after starting when data transmission conversation, and receives the authentication token of described far-end server feedback;
Authentication token and data to be transmitted generation URL that described generation unit receives for utilizing described the first request unit;
Described the second request unit is for sending URL interface IP address access request to far-end server;
Described transmission unit is for receiving after the verification succeeds information of far-end server feedback by URL interface IP address transmission data.
C12, the device as described in C11, described generation unit comprises: constructing module, computing module and interpolation module; Wherein,
Described constructing module is used for utilizing described data to be transmitted construction data character string;
Described computing module is for the check digit MD5 value of calculated data transformation parameter; Described data transmission parameters at least comprises described data character string and described authentication token;
Described interpolation module, for adding the serial number of described authentication token, check digit MD5 value and this data transfer to URL request msg string, generates the URL of complete form.
C13, the device as described in C11, described generation unit also obtains request for indicating described the first request unit to send authentication token to far-end server after generating URL;
Described the first request unit also obtains after request for sending authentication token according to the indication of described generation unit, receive the authentication token request of described far-end server feedback, and indicate described the second request unit to send URL interface IP address access request to far-end server.
C14, the device as described in C11, this device also comprises:
Acquiring unit, for receiving at described the first request unit after the authentication token of described far-end server feedback, obtains the feedback time of described far-end server.
The invention also discloses D15, a kind of server of realizing transfer of data, comprising: the first feedback unit, receiving element, verification unit and the second feedback unit; Wherein,
Described the first feedback unit is for after starting when data transmission conversation, and the authentication token that receives client transmission obtains request, and to this client feedback authentication token;
Described receiving element utilizes described authentication token and data to be transmitted to generate the URL interface IP address access request sending after URL for receiving described client;
Described verification unit is for the fail safe of URL described in verification, and check results is notified to described the second feedback unit;
Described the second feedback unit is for receiving the check results of described verification unit, when verification by time to client feedback verification succeeds message, to indicate described client to transmit data by described URL interface IP address.
D16, the server as described in D15, described verification unit comprises: the first processing module and the second processing module; Wherein,
Whether described the first processing module is the authentication token of described the first feedback unit feedback for the authentication token of URL described in verification, if it is by verification, by result, notifies described the second processing module;
Described the second processing module is for the verification that receives described the first processing module by after result, and in URL, whether check digit MD5 value is identical with the check digit MD5 value of local computing described in verification, if identical, definite this verification is passed through.
D17, the server as described in D16, described verification unit also comprises:
The 3rd processing module, after passing through in described the second processing module verification, in URL, this time whether the serial number of data transmission conversation is greater than the last time serial number of data transmission conversation described in verification, if so, determines that this verification passes through.
D18, the server as described in D17, this server also comprises:
Record cell, for recording feedback time during to described client feedback authentication token at described the first feedback unit.
D19, the server as described in D18, described verification unit also comprises:
The 4th processing module, after passing through when described the 3rd processing module verification, the authentication token acquisition time described in verification in URL whether with early than described receiving element, receive the time of URL interface IP address access request, if so, determine that this verification passes through.
Claims (10)
1. a method that realizes transfer of data, comprising:
After data transmission conversation starts, to far-end server, send authentication token and obtain request, and receive the authentication token of described far-end server feedback;
Utilize described authentication token and data to be transmitted to generate URL;
To far-end server, send URL interface IP address access request;
Receive the verification of far-end server feedback by transmitting data by URL interface IP address after information.
2. the method for claim 1, is characterized in that, described described authentication token and the band of utilizing treats that transmission of data generates URL and comprises:
Utilize described data to be transmitted construction data character string;
The check digit MD5 value of calculated data transformation parameter; Described data transmission parameters at least comprises described data character string and described authentication token;
Add the serial number of described authentication token, check digit MD5 value and this data transfer to URL request msg string, generate the URL of complete form.
3. method as claimed in claim 2, is characterized in that:
Described data transmission parameters also comprises the preset-key shared with described far-end server.
4. method as claimed in claim 2 or claim 3, is characterized in that:
Described data transmission parameters also comprises the serial number of this data transmission conversation, and described this time data transmission conversation is greater than the last time serial number of data transmission conversation.
5. a method that realizes transfer of data, comprising:
After data transmission conversation starts, the authentication token that receives client transmission obtains request, and to this client feedback authentication token;
Receiving described client utilizes described authentication token and data to be transmitted to generate the URL interface IP address access request sending after URL;
The fail safe of URL described in verification, if verification is passed through, passes through message to client feedback verification, to indicate described client by described URL interface IP address transmission data.
6. method as claimed in claim 5, is characterized in that, the fail safe of described verification URL comprises: whether the authentication token described in verification in URL is the authentication token of described feedback, and if it is definite this verification is passed through;
After described authentication token verification is passed through, in URL, whether check digit MD5 value is identical with the check digit MD5 value of local computing described in verification, if identical, determines that this verification passes through.
7. method as claimed in claim 6, it is characterized in that, the fail safe of described verification URL also comprises: after the check digit MD5 value verification in described URL is passed through, described in verification, in URL, this time whether the serial number of data transmission conversation is greater than the last time serial number of data transmission conversation, if so, definite this verification is passed through.
8. a device of realizing transfer of data, comprising: the first request unit, generation unit, the second request unit and transmission unit; Wherein,
Described the first request unit obtains request for sending authentication token to far-end server after starting when data transmission conversation, and receives the authentication token of described far-end server feedback;
Authentication token and data to be transmitted generation URL that described generation unit receives for utilizing described the first request unit;
Described the second request unit is for sending URL interface IP address access request to far-end server;
Described transmission unit is for receiving after the verification succeeds information of far-end server feedback by URL interface IP address transmission data.
9. device as claimed in claim 8, is characterized in that, described generation unit comprises: constructing module, computing module and interpolation module; Wherein,
Described constructing module is used for utilizing described data to be transmitted construction data character string;
Described computing module is for the check digit MD5 value of calculated data transformation parameter; Described data transmission parameters at least comprises described data character string and described authentication token;
Described interpolation module, for adding the serial number of described authentication token, check digit MD5 value and this data transfer to URL request msg string, generates the URL of complete form.
10. a server of realizing transfer of data, comprising: the first feedback unit, receiving element, verification unit and the second feedback unit; Wherein,
Described the first feedback unit is for after starting when data transmission conversation, and the authentication token that receives client transmission obtains request, and to this client feedback authentication token;
Described receiving element utilizes described authentication token and data to be transmitted to generate the URL interface IP address access request sending after URL for receiving described client;
Described verification unit is for the fail safe of URL described in verification, and check results is notified to described the second feedback unit;
Described the second feedback unit is for receiving the check results of described verification unit, when verification by time to client feedback verification succeeds message, to indicate described client to transmit data by described URL interface IP address.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310714560.9A CN103647652B (en) | 2013-12-20 | 2013-12-20 | A kind of method for realizing data transfer, device and server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310714560.9A CN103647652B (en) | 2013-12-20 | 2013-12-20 | A kind of method for realizing data transfer, device and server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103647652A true CN103647652A (en) | 2014-03-19 |
| CN103647652B CN103647652B (en) | 2017-06-09 |
Family
ID=50252813
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310714560.9A Active CN103647652B (en) | 2013-12-20 | 2013-12-20 | A kind of method for realizing data transfer, device and server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103647652B (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108694249A (en) * | 2018-05-30 | 2018-10-23 | 平安科技(深圳)有限公司 | Data processing method, device, computer equipment and storage medium |
| CN108900471A (en) * | 2018-05-31 | 2018-11-27 | 北京证大向上金融信息服务有限公司 | It is used for transmission server, client, network system and the method for data |
| CN109831446A (en) * | 2019-03-05 | 2019-05-31 | 广州虎牙信息科技有限公司 | A kind of request method of calibration, device, equipment and storage medium |
| CN111107445A (en) * | 2018-10-29 | 2020-05-05 | 浙江宇视科技有限公司 | Media protocol stream optimization method and system |
| CN114257583A (en) * | 2021-12-22 | 2022-03-29 | 贵州东彩供应链科技有限公司 | Safe downloading method for solving JWT authorization |
| CN114531246A (en) * | 2022-02-22 | 2022-05-24 | 中国银行股份有限公司 | Data downloading method and device |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101075866A (en) * | 2006-12-26 | 2007-11-21 | 腾讯科技(深圳)有限公司 | Method and system for loading message on Internet |
| CN101351027A (en) * | 2007-07-19 | 2009-01-21 | 中国移动通信集团公司 | Method and system for processing service authentication |
| WO2011152593A1 (en) * | 2010-05-31 | 2011-12-08 | Hyo-Hwan Bae | Data upload method using shortcut |
| CN102567903A (en) * | 2010-12-07 | 2012-07-11 | 中国移动通信集团公司 | Web application subscription method, device and system |
| CN102946392A (en) * | 2012-11-15 | 2013-02-27 | 亚信联创科技(中国)有限公司 | URL (Uniform Resource Locator) data encrypted transmission method and system |
| CN103004244A (en) * | 2010-05-18 | 2013-03-27 | 诺基亚公司 | Generic bootstrapping architecture usage with web applications and web pages |
-
2013
- 2013-12-20 CN CN201310714560.9A patent/CN103647652B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101075866A (en) * | 2006-12-26 | 2007-11-21 | 腾讯科技(深圳)有限公司 | Method and system for loading message on Internet |
| CN101351027A (en) * | 2007-07-19 | 2009-01-21 | 中国移动通信集团公司 | Method and system for processing service authentication |
| CN103004244A (en) * | 2010-05-18 | 2013-03-27 | 诺基亚公司 | Generic bootstrapping architecture usage with web applications and web pages |
| WO2011152593A1 (en) * | 2010-05-31 | 2011-12-08 | Hyo-Hwan Bae | Data upload method using shortcut |
| CN102567903A (en) * | 2010-12-07 | 2012-07-11 | 中国移动通信集团公司 | Web application subscription method, device and system |
| CN102946392A (en) * | 2012-11-15 | 2013-02-27 | 亚信联创科技(中国)有限公司 | URL (Uniform Resource Locator) data encrypted transmission method and system |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108694249A (en) * | 2018-05-30 | 2018-10-23 | 平安科技(深圳)有限公司 | Data processing method, device, computer equipment and storage medium |
| CN108694249B (en) * | 2018-05-30 | 2022-02-25 | 平安科技(深圳)有限公司 | Data processing method, data processing device, computer equipment and storage medium |
| CN108900471A (en) * | 2018-05-31 | 2018-11-27 | 北京证大向上金融信息服务有限公司 | It is used for transmission server, client, network system and the method for data |
| CN108900471B (en) * | 2018-05-31 | 2022-02-25 | 北京证大向上金融信息服务有限公司 | Server, client, network system and method for transmitting data |
| CN111107445A (en) * | 2018-10-29 | 2020-05-05 | 浙江宇视科技有限公司 | Media protocol stream optimization method and system |
| CN109831446A (en) * | 2019-03-05 | 2019-05-31 | 广州虎牙信息科技有限公司 | A kind of request method of calibration, device, equipment and storage medium |
| CN114257583A (en) * | 2021-12-22 | 2022-03-29 | 贵州东彩供应链科技有限公司 | Safe downloading method for solving JWT authorization |
| CN114531246A (en) * | 2022-02-22 | 2022-05-24 | 中国银行股份有限公司 | Data downloading method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103647652B (en) | 2017-06-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10079854B1 (en) | Client-side protective script to mitigate server loading | |
| CN103020687B (en) | Quick Response Code sharing method and system | |
| CN103065178B (en) | A kind of Quick Response Code sharing apparatus, access means and sharing method | |
| WO2015062362A1 (en) | Method, device, and system for user login | |
| CN103647652A (en) | Method, device and server for achieving data transmission | |
| CN109376078B (en) | Mobile application testing method, terminal equipment and medium | |
| CN111400722B (en) | Method, apparatus, computer device and storage medium for scanning small program | |
| CN105610810A (en) | Data processing method, client and servers | |
| EP2823431B1 (en) | Validation associated with a form | |
| US9544317B2 (en) | Identification of potential fraudulent website activity | |
| CN101964025A (en) | XSS (Cross Site Scripting) detection method and device | |
| CN103618717A (en) | Multi-account client information dynamic authentication method, device and system | |
| CN105407074A (en) | Authentication method, apparatus and system | |
| CN103634399A (en) | Method and device for realizing cross-domain data transmission | |
| CN102882886A (en) | Network terminal and method for presenting visited website associated information | |
| CN103647678A (en) | Method and device for online verification of website vulnerabilities | |
| CN102917049A (en) | Method for showing information of visited website, browser and system | |
| CN102946384A (en) | User authentication method and device | |
| CN111355726A (en) | Identity authorization login method and device, electronic equipment and storage medium | |
| CN103207863A (en) | Page cross-domain interacting method and terminal | |
| CN103020826A (en) | Payment processing method and server | |
| CN104580112A (en) | Service authentication method and system, and server | |
| CN105099707A (en) | Offline authentication method, server and system | |
| CN104901970A (en) | Two dimension code registration method, server and system | |
| CN103001770A (en) | User verification method, user verification server and user verification system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20220721 Address after: Room 801, 8th floor, No. 104, floors 1-19, building 2, yard 6, Jiuxianqiao Road, Chaoyang District, Beijing 100015 Patentee after: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before: Qizhi software (Beijing) Co.,Ltd. |