CN103780410A - Content obtaining system and method for encryption application - Google Patents
Content obtaining system and method for encryption application Download PDFInfo
- Publication number
- CN103780410A CN103780410A CN201210401185.8A CN201210401185A CN103780410A CN 103780410 A CN103780410 A CN 103780410A CN 201210401185 A CN201210401185 A CN 201210401185A CN 103780410 A CN103780410 A CN 103780410A
- Authority
- CN
- China
- Prior art keywords
- client
- content
- auditing device
- connection request
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Storage Device Security (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention relates to a content obtaining system and method for an encryption application, wherein the content obtaining system of the encryption application includes: a content auditing device; a client connected with the content auditing device; and a server connected with the client. The client sends a connection request to the server. The content auditing device includes a connection module, a capture module connected with the connection module, a judgment module connected with the capture module, a monitoring module connected with the judgment unit and a cheating-packet assembling module connected with the judgment unit. Through adoption of the content obtaining system and method for the encryption application, the content auditing device monitors transmission data between the client and the server and analyses the encryption application between the client and the server through a key so as to obtain internet surfing content and realize comprehensive and complete obtaining of the internet surfing content of the client.
Description
Technical field
The present invention relates to network audit field, more particularly, relate to a kind of content obtaining system and method thereof of encrypting application.
Background technology
Network audit is widely used in Public place and enterprises and institutions, the main audit to network behavior, internet behavior (comprise and surf the web, chat on line, surf the Net and see a film etc.) to client has carried out detailed record and statistics, be convenient to manager employee's behavior is carried out to detailed monitoring, the network traffics of all right monitor client, warn or punish unlawful practice.By network audit, each terminal use's internet content is obtained, thereby realize the audit function of tracing to its source, but on network, there are various application, application expressly, can directly obtain content by resolution data bag, but some application after encrypting, owing to cannot getting encryption key, the packet getting just can not be resolved, internet content just audit less than, thereby cause the internet content that gets each terminal use that Network Content Audit equipment cannot be comprehensively complete.
Summary of the invention
The technical problem to be solved in the present invention is, cannot resolve to the application after encrypting the above-mentioned defect of monitoring for the network audit of prior art, and a kind of content obtaining system and method for encrypting application is provided.
The technical solution adopted for the present invention to solve the technical problems is: construct a kind of content obtaining system of encrypting application, comprise content auditing device, the client being connected with described content auditing device, the server being connected with described client; Described client sends connection request to described server; Described content auditing device comprises link block, trapping module, judge module, monitoring module, deception bag Knockdown block; Wherein:
Link block: be connected with described client by data wire;
Trapping module: be connected with described link block, by described link block capture client to server send connection request packet, and by the connection request Packet Generation obtaining to judge module;
Judge module: be connected with described trapping module, for judging whether the connection request packet receiving is to encrypt application, if so, further judges whether content auditing device has obtained the secret key of client;
Monitoring module: be connected with described judge module, for judging that at judge module the connection request packet receiving is when encryption is applied and content auditing device has obtained the secret key of client, the transfer of data of monitor client and server, obtains application content;
Deception bag module units; Be connected with described judge module, for judging that at judge module the connection request packet receiving is when encryption is applied and content auditing device does not obtain the secret key of client, assembling deception bag, and this deception bag is sent to client by link block.
In the content obtaining system of encryption application of the present invention, described judge module comprises the first judging unit and the second judging unit, described the first judging unit is connected with described trapping module, for judging whether the connection request data that receive are to encrypt application; Described the second judging unit is connected with described the first judging unit, for judging whether content auditing device has obtained the secret key of client.
In the content obtaining system of encryption application of the present invention, the form assembling deception bag of the connection request packet that described deception bag module units sends according to client.
In the content obtaining system of encryption application of the present invention, described monitoring module further comprises resolution unit, and this resolution unit is for resolving the transferring content between client and server.
In the content obtaining system of encryption application of the present invention, described content auditing device also comprises memory, and described memory is used for storing secret key.
The present invention also constructs a kind of content acquisition method of encrypting application, comprises the following steps:
S1, user end to server send connection request;
The trapping module of S2, content auditing device by link block capture client to server send connection request packet, and by the connection request Packet Generation obtaining to judge module;
The first judging unit of S3, content auditing device judges whether the connection request packet receiving is to encrypt application, if so, performs step S4; If not, perform step S5;
The second judging unit of S4, content auditing device judges that whether content auditing device has obtained the secret key of client, if so, performs step S5; If not, perform step S6;
The monitoring module monitor client of S5, content auditing device and the transfer of data of server, obtain application content;
The deception bag module units assembling deception bag of S6, content auditing device, and this deception bag is sent to client by link block;
After S7, client deception bag, again initiate connection request to server, content auditing device obtains the secret key of client, and the monitoring module of content auditing device continues the transfer of data of monitor client and server, obtains application content.
In the content acquisition method of encryption application of the present invention, the form assembling deception bag of the connection request packet that the deception bag module units in described step S6 sends according to client.
In the content acquisition method of encryption application of the present invention, described monitoring module further comprises resolution unit, and this resolution unit is for resolving the transferring content between client and server.
In the content acquisition method of encryption application of the present invention, in described step S4, the second judging unit of content auditing device judges whether content auditing device has obtained the secret key of client, further comprising the steps:
The second judging unit of S41, described content auditing device reads secret key in memory, judges whether to store secret key corresponding to this client.
In the content acquisition method of encryption application of the present invention, in described step S7, further comprise:
S71, content auditing device obtain after secret key, and this secret key is stored in memory.
Implement the content obtaining system and method for encryption application of the present invention, there is following beneficial effect: by content auditing device, the transmission data between client and server are monitored, to the encryption application between client and server, resolve by secret key, and then acquisition internet content, realize the complete internet content that gets client comprehensively.
Accompanying drawing explanation
Below in conjunction with drawings and Examples, the invention will be further described, in accompanying drawing:
Fig. 1 is the structured flowchart of the content obtaining system of encryption application of the present invention;
Fig. 2 is the flow chart of the content acquisition method of encryption application of the present invention.
Embodiment
In order to make object of the present invention clearer, below in conjunction with drawings and Examples, the present invention is further elaborated.Should be appreciated that specific embodiment described herein, only in order to explain the present invention, is not intended to limit the present invention.
As shown in Figure 1, in the structured flowchart of the content obtaining system of applying in encryption of the present invention, comprise content auditing device 100, the client 200 being connected with content auditing device 100, the server 300 being connected with client 200; User end to server sends connection request, and this connection request comprises and surf the web, chat on line, surf the Net and see a film etc., and server 300 is receiving after connection request, sends relevant information to client 200.Content auditing device 100 is for the internet content of monitor client 200, monitor client and server between interaction data, and then understand the internet content of client, can also monitor flow.
In specific implementation process, content auditing device 100 comprises link block 10, trapping module 20, judge module 30, monitoring module 40, deception bag Knockdown block 50; Link block 10 is connected with client 200 by data wire, carries out communication; Trapping module 20 is connected with link block 10, by link block 10 capture client to server send connection request packet, and by the connection request Packet Generation obtaining to judge module; Judge module 30 is connected with trapping module 20, for judging whether the connection request packet receiving is to encrypt application, if so, further judges whether content auditing device 100 has obtained the secret key of client; Monitoring module 40 is connected with judge module 30, for judging that at judge module the connection request packet receiving is that when encryption is applied and content auditing device has obtained the secret key of client, the transfer of data of monitor client and server, obtains application content; Deception bag module units 50 is connected with judge module 30, for judging that at judge module the connection request packet receiving is when encryption is applied and content auditing device does not obtain the secret key of client, assembling deception bag, and this deception bag is sent to client by link block 10.The connection request packet that further judge module receives in judgement is when encryption is applied and content auditing device does not obtain the secret key of client, interrupt being connected of client and server, then deception bag module units assembling deception bag sends to client, client sends connection request to server more again, content auditing device obtains secret key, and then content auditing device is resolved the interaction data between client and server by this secret key.Monitoring module 40, in the time that judge module judges that the connection request packet receiving is non-encrypted application, is also monitored the transmission data between client and server, obtains application content.
Further, judge module 30 comprises that the first judging unit 31 and the second judging unit 32, the first judging units 31 are connected with trapping module 20, for judging whether the connection request data that receive are to encrypt application; The second judging unit 32 is connected with the first judging unit 31, for judging whether content auditing device has obtained the secret key of client.
The form assembling deception bag of the connection request packet that further, deception bag module units 50 sends according to client.
Further, monitoring module 40 further comprises resolution unit, and this resolution unit is for resolving the transferring content between client and server.
Further, content auditing device also comprises memory 60, and memory is used for storing secret key.The second judging unit reads secret key from memory, judges whether to store secret key corresponding to this client, if existed, resolves the transmission data between client and server by secret key.
By adopting the content obtaining system of this encryption application, content auditing device is resolved the transmission data between client and server by secret key, and the internet behavior of monitor client is seen a film etc. such as surfing the web, chat on line, surfing the Net.
As shown in Figure 2, be the flow chart of the content acquisition method of encryption application of the present invention, the content acquisition method of this encryption application uses the content obtaining system of encryption application as shown in Figure 1, comprises the following steps:
S1, client 200 send connection request to server 300;
The connection request packet that the trapping module 20 of S2, content auditing device 100 sends to server by link block 10 capture client, and by the connection request Packet Generation obtaining to judge module 30;
The first judging unit 31 of S3, content auditing device 100 judges whether the connection request packet receiving is to encrypt application, if so, performs step S4; If not, perform step S5;
The second judging unit 32 of S4, content auditing device 100 judges that whether content auditing device has obtained the secret key of client, if so, performs step S5; If not, perform step S6;
Monitoring module 40 monitor clients of S5, content auditing device 100 and the transfer of data of server, obtain application content;
The deception bag module units 50 assembling deception bags of S6, content auditing device 100, and this deception bag is sent to client by link block 10;
After S7, client deception bag, again initiate connection request to server, content auditing device obtains the secret key of client, and the monitoring module of content auditing device continues the transfer of data of monitor client and server, obtains application content.
The form assembling deception bag of the connection request packet that further, the deception bag module units in step S6 sends according to client.
Monitoring module 40 further comprises resolution unit, and this resolution unit is for resolving the transferring content between client and server.
Further, in step S4, the judge module 30 of content auditing device 100 judges whether content auditing device has obtained the secret key of client, further comprising the steps of:
The judge module 30 of S41, content auditing device reads secret key in memory, judges whether to store secret key corresponding to this client,
Further, in step S7, also comprise:
S71, content auditing device obtain after secret key, and this secret key is stored in memory.
Adopt the content acquisition method of above-mentioned encryption application, by content auditing device, the transmission data between client and server are monitored, to the encryption application between client and server, resolve by secret key, and then acquisition internet content, realize the complete internet content that gets client comprehensively.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, all any modifications of doing within the spirit and principles in the present invention, be equal to and replace and improvement etc., within all should being included in protection scope of the present invention.
Claims (10)
1. encrypt a content obtaining system for application, comprise content auditing device (100), the client (200) being connected with described content auditing device (100), the server (300) being connected with described client (200); Described client sends connection request to described server; It is characterized in that, described content auditing device (100) comprises link block (10), trapping module (20), judge module (30), monitoring module (40), deception bag Knockdown block (50); Wherein:
Link block (10): be connected with described client (200) by data wire;
Trapping module (20): be connected with described link block (10), by described link block capture client to server send connection request packet, and by the connection request Packet Generation obtaining to judge module;
Judge module (30): be connected with described trapping module, for judging whether the connection request packet receiving is to encrypt application, if so, further judges whether content auditing device has obtained the secret key of client;
Monitoring module (40): be connected with described judge module, for judging that at judge module the connection request packet receiving is when encryption is applied and content auditing device has obtained the secret key of client, the transfer of data of monitor client and server, obtains application content;
Deception bag module units (50); Be connected with described judge module, for judging that at judge module the connection request packet receiving is when encryption is applied and content auditing device does not obtain the secret key of client, assembling deception bag, and this deception bag is sent to client by link block (10).
2. the content obtaining system of encryption application according to claim 1, it is characterized in that, described judge module (30) comprises the first judging unit (31) and the second judging unit (32), described the first judging unit is connected with described trapping module (20), for judging whether the connection request data that receive are to encrypt application; Described the second judging unit is connected with described the first judging unit, for judging whether content auditing device has obtained the secret key of client.
3. the content obtaining system of encryption application according to claim 2, is characterized in that, the form assembling deception bag of the connection request packet that described deception bag module units (50) sends according to client.
4. the content obtaining system of encryption application according to claim 3, is characterized in that, described monitoring module (40) further comprises resolution unit, and this resolution unit is for resolving the transferring content between client and server.
5. the content obtaining system of encryption application according to claim 4, is characterized in that, described content auditing device also comprises memory (60), and described memory is used for storing secret key.
6. a content acquisition method of encrypting application, is characterized in that, comprises the following steps:
S1, client (200) send connection request to server (300);
The trapping module (20) of S2, content auditing device (100) by link block (10) capture client to server send connection request packet, and by the connection request Packet Generation obtaining to judge module (30);
First judging unit (31) of S3, content auditing device (100) judges whether the connection request packet receiving is to encrypt application, if so, performs step S4; If not, perform step S5;
Second judging unit (32) of S4, content auditing device (100) judges that whether content auditing device has obtained the secret key of client, if so, performs step S5; If not, perform step S6;
Monitoring module (40) monitor client of S5, content auditing device (100) and the transfer of data of server, obtain application content;
Deception bag module units (50) the assembling deception bag of S6, content auditing device (100), and this deception bag is sent to client by link block (10);
After S7, client deception bag, again initiate connection request to server, content auditing device obtains the secret key of client, and the monitoring module of content auditing device continues the transfer of data of monitor client and server, obtains application content.
7. the content acquisition method of encryption application according to claim 6, is characterized in that, the form assembling deception bag of the connection request packet that the deception bag module units in described step S6 sends according to client.
8. the content acquisition method of encryption application according to claim 7, is characterized in that, described monitoring module further comprises resolution unit, and this resolution unit is for resolving the transferring content between client and server.
9. the content acquisition method of encryption application according to claim 8, it is characterized in that, in described step S4, second judging unit (32) of content auditing device (100) judges whether content auditing device has obtained the secret key of client, further comprising the steps:
Second judging unit (32) of S41, described content auditing device reads secret key in memory (60), judges whether to store secret key corresponding to this client.
10. the content acquisition method of encryption application according to claim 9, is characterized in that, in described step S7, further comprises:
S71, content auditing device obtain after secret key, and this secret key is stored in memory.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210401185.8A CN103780410B (en) | 2012-10-19 | 2012-10-19 | A kind of content obtaining system and method for encrypting application |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210401185.8A CN103780410B (en) | 2012-10-19 | 2012-10-19 | A kind of content obtaining system and method for encrypting application |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103780410A true CN103780410A (en) | 2014-05-07 |
| CN103780410B CN103780410B (en) | 2017-06-06 |
Family
ID=50572281
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210401185.8A Active CN103780410B (en) | 2012-10-19 | 2012-10-19 | A kind of content obtaining system and method for encrypting application |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103780410B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106209767A (en) * | 2016-06-20 | 2016-12-07 | Tcl海外电子(惠州)有限公司 | Data transmission method and system |
| CN107528820A (en) * | 2017-06-07 | 2017-12-29 | 中国银联股份有限公司 | For the encipher-decipher method of application program, device and method for auditing safely and platform |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101325519A (en) * | 2008-06-05 | 2008-12-17 | 华为技术有限公司 | Content auditing method, system based on safety protocol and content auditing equipment |
| CN101588275A (en) * | 2008-12-25 | 2009-11-25 | 深圳市宇沃德信息技术有限公司 | Method for information monitoring of network application layer |
-
2012
- 2012-10-19 CN CN201210401185.8A patent/CN103780410B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101325519A (en) * | 2008-06-05 | 2008-12-17 | 华为技术有限公司 | Content auditing method, system based on safety protocol and content auditing equipment |
| CN101588275A (en) * | 2008-12-25 | 2009-11-25 | 深圳市宇沃德信息技术有限公司 | Method for information monitoring of network application layer |
Non-Patent Citations (1)
| Title |
|---|
| 吴琼: "即时通信信息检测监控技术的研究与实现", 《中国优秀硕士学位论文全文数据库信息科技辑》 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106209767A (en) * | 2016-06-20 | 2016-12-07 | Tcl海外电子(惠州)有限公司 | Data transmission method and system |
| CN106209767B (en) * | 2016-06-20 | 2020-03-17 | Tcl海外电子(惠州)有限公司 | Data transmission method and system |
| CN107528820A (en) * | 2017-06-07 | 2017-12-29 | 中国银联股份有限公司 | For the encipher-decipher method of application program, device and method for auditing safely and platform |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103780410B (en) | 2017-06-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107070735B (en) | Method, test terminal and the system of asynchronous interface test | |
| CN106533665B (en) | Mthods, systems and devices for storing website private key plaintext | |
| CN108537046A (en) | A kind of online contract signature system and method based on block chain technology | |
| CN107124281B (en) | Data security method and related system | |
| CN101635653B (en) | Method and device for real-time performance management | |
| CN107528865B (en) | File downloading method and system | |
| CN110780829B (en) | Advertisement printing method, device, equipment and medium based on cloud service | |
| CN104683407B (en) | A kind of transmission method and equipment of page data and application data | |
| CN101860549B (en) | Access session data processing method under Web Service and device | |
| US20150326486A1 (en) | Application identification in records of network flows | |
| CN105915529B (en) | A kind of message forming method and device | |
| CN108718347A (en) | A kind of domain name analytic method, system, device and storage medium | |
| CN106131165B (en) | Anti-stealing link method and device for content distributing network | |
| CN102571790B (en) | A kind of method and apparatus of the encrypted transmission for realize target file | |
| CN104253714A (en) | Monitoring method, system, browser and server | |
| CN106612264A (en) | Method and device for acquiring file decompression password | |
| CN112436936B (en) | Cloud storage method and system with quantum encryption function | |
| CN107070942A (en) | A kind of data security method and related system | |
| CN107172027A (en) | Certificate management method, storage device, storage medium and device | |
| CN104539636B (en) | video evidence service system | |
| CN102647432B (en) | A kind of authentication information transmission method, device and certification middleware | |
| CN209545761U (en) | Display screen monitoring system | |
| CN105530137A (en) | Traffic data analysis method and traffic data analysis system | |
| CN108810475B (en) | Android video monitoring device based on Onvif standard and Sip protocol | |
| CN103780410A (en) | Content obtaining system and method for encryption application |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |