Specific implementation mode
The embodiment of the present application provides a kind of page loading method and device, to ensure mobile terminal loading page data
Safety.
In order to make those skilled in the art better understand the technical solutions in the application, below in conjunction with the application reality
The attached drawing in example is applied, technical solutions in the embodiments of the present application is clearly and completely described, it is clear that described implementation
Example is merely a part but not all of the embodiments of the present application.Based on the embodiment in the application, this field is common
The every other embodiment that technical staff is obtained without creative efforts should all belong to the application protection
Range.
Fig. 1 is the application scenarios schematic diagram for the page load that one embodiment of the application provides, as shown in Figure 1, in the scene,
Mobile terminal 100 and server 200 are communicated to connect by network 300, and mobile terminal 100 can be mobile phone, tablet computer, notes
The intelligent terminals such as this computer, desktop computer, vehicle-mounted computer.Mobile terminal 100 is used to send to server 200 by network 300
The acquisition of page data is asked, and server 200 receives the acquisition request for the page data that mobile terminal 100 is sent, and to movement
100 back page data of terminal, mobile terminal 100 receive the page data and load, the page, mobile terminal is presented to user
The page of load includes but not limited to webpage etc..
Fig. 2 is the flow diagram for the page loading method that one embodiment of the application provides, and this method is applied to mobile whole
End side, by mobile terminal execution, as shown in Fig. 2, this method includes:
Step S202 sends the acquisition request of target pages data to server;Wherein, the corresponding clothes of target pages data
Business device domain name and/or page address meet preset sign test strategy;
Step S204 obtains the reply data that server is returned according to acquisition request;Wherein, reply data includes sign test
Data and target pages data;
Step S206 extracts sign test data and target pages data, according to sign test data to page object from reply data
Face data is verified;
Step S208 loads target pages data if being verified.
In the embodiment of the present application, the acquisition request of target pages data is sent to server, server is obtained and is obtained according to this
The reply data for taking request to return extracts sign test data and target pages data, according to sign test data to mesh from reply data
Mark page data is verified, if being verified, loads target pages data.As it can be seen that by the embodiment of the present application, can obtain
The target pages data and sign test data for getting acquisition request return of the server according to target pages data, are utilizing sign test number
After passing through to target pages data verification, target pages data are loaded, to utilize sign test data to target pages data
Verification effect ensures the safety of mobile terminal loading page data, and avoiding mobile terminal load, there are the page numbers of security risk
According to.
In above-mentioned steps S202, mobile terminal sends the acquisition request of target pages data to server, specifically, mobile
Terminal sends the acquisition request of target pages data to server, wherein specified use after receiving specified user's operation
Family operation is the operation that user asks accession page, including but not limited to puts " carriage return " button on beating keyboard, clicks on screen
" search " button, click page icon etc. on screen.
Server please seek survival after receiving the acquisition request of the target pages data of mobile terminal transmission according to the acquisition
At corresponding reply data and it is sent to mobile terminal.For example, mobile terminal according to user's operation to server request target page
Face data http://www.a.com/A.html, then server the reply data comprising the target pages data is back to shifting
Dynamic terminal, wherein reply data further includes sign test data.
Mobile terminal is preset with sign test strategy, the corresponding server domain name of target pages data and/or page in the present embodiment
Face address meets preset sign test strategy.In one embodiment, the corresponding server domain name of target pages data and/or the page
Location meets preset sign test strategy, including:The corresponding server domain name of target pages data and/or page address are tested with preset
Server domain name and/or page address in signature list match.
Specifically, with target pages data http:For //www.a.com/A.html, the target pages data are corresponding
The page address of the entitled www.a.com of server domain, the target pages data are www.a.com/A.html.In the present embodiment,
Sign test list is previously stored in mobile terminal, record has multiple server domain names and/or page address, target in sign test list
The corresponding server domain name of page data matches with the server domain name in preset sign test list, is, target pages data
Corresponding server domain name is recorded in sign test list;In the corresponding page address of target pages data and preset sign test list
Page address match, be that the corresponding page address of target pages data is recorded in sign test list;Target pages data pair
The server domain name answered matches with the page address in preset sign test list, is, exists in sign test list and includes page object
The page address of the corresponding server domain name of face data;The corresponding page address of target pages data and the service in sign test list
Device domain name matches, and is, there is the server domain name corresponding to page address corresponding with target pages data in sign test list
Identical server domain name.
In the present embodiment, sign test list can be sent to mobile terminal by server, and local is stored in by mobile terminal.Mesh
The corresponding server domain name of mark page data and/or page address meet preset sign test strategy, illustrate that target pages data are
Page data to be verified, mobile terminal are needed through the flow in Fig. 2 using the sign test data received to target pages number
According to being verified.
In above-mentioned steps S204, mobile terminal receives the response that server is returned according to the acquisition request of target pages data
Data, wherein reply data includes sign test data and target pages data, and sign test data are for testing target pages data
Card, in particular, for sign test data for being verified to target complete page data, which includes but not limited to verify page object
Whether face data is tampered.
In above-mentioned steps S206, mobile terminal extracts sign test data and target pages data from reply data.One reality
It applies in example, sign test data are located in the head response of reply data, and mobile terminal extracts sign test number from the head response of reply data
According to the data of extraction specific field are as sign test data such as from the head response of reply data.In another embodiment, answer number
According to comprising meta labels, sign test data are located in the meta labels of reply data, and mobile terminal extracts the number in the meta labels
According to as sign test data, such as the total data in the meta labels is extracted as sign test data, wherein meta labels can
To add in target pages data, then mobile terminal will remove the target pages data of meta labels as sign test data
The target pages data of verification.
In one specific embodiment, sign test data are located in the head response of reply data, are X-Sign words in head response
The data of section, then after mobile terminal receives reply data, the data that X-Sign fields are extracted from the head response of reply data are made
For sign test data.
In above-mentioned steps S206, mobile terminal verifies target pages data according to sign test data.One embodiment
In, step S206 is specially:
(11) digital digest processing is carried out to target pages data, obtains digital digest data;
(12) if digital digest data are consistent with sign test data, it is determined that target pages data verification passes through.
The digital digest processing being subsequently related in the present embodiment is digital signature processing, and digital digest data are number
Signature, hereafter will not be repeated again.In the embodiment, for server after the acquisition request for receiving target pages data, obtaining should
Corresponding target pages data are asked, and the target complete page data to getting carries out digital digest processing, obtains number
Summary data, server return target pages data and sign test data using the digital digest data as sign test data together
It is back to mobile terminal.Therefore, the sign test data in the reply data that mobile terminal receives, as to target complete page data
Carry out the digital digest data obtained after digital digest processing.
Also, it since digital digest processing is irreversible procedure, is merely able to obtain digital digest number by target pages data
According to target pages data can not be obtained from data summarization data, and therefore, mobile terminal is according to sign test data to target pages data
It is verified specially:Using Message Digest 5 identical with server, digital digest is carried out to target complete page data
Processing, obtains digital digest data, whether the digital digest data compared and sign test data are consistent, if unanimously, illustrating mesh
Page data is marked during by server transport to mobile terminal without distorting, determines that target pages data verification is logical
It crosses, if inconsistent, illustrates that target pages data are distorted during by server transport to mobile terminal by third attacker,
Determine that target pages data verification does not pass through.
The Message Digest 5 that the present embodiment is related to include but not limited to MD5 algorithms, hash algorithm, SHA-1 algorithms and its
A large amount of variant, hereafter will not be repeated again.
In the present embodiment, server can carry out digital digest processing to target complete page data, obtain sign test data,
Correspondingly, mobile terminal also carries out digital digest processing using same Message Digest 5 to target complete page data, obtains
To digital digest data.Since sign test data are obtained according to target complete page data, if target pages data exist
It is distorted by third attacker during by server transport to mobile terminal, then the digital digest data that mobile terminal obtains will
It is inconsistent with sign test data.
In the present embodiment, digital digest processing is carried out to target pages data, obtains digital digest data, by comparing number
Whether word summary data is consistent with sign test data, to determine whether target pages data verification passes through, can reach quick and precisely
Ground determines the technique effect whether target pages data are tampered, to avoid mobile terminal load from passing through the page number distorted
According to the safety of guarantee mobile terminal loading page data.
In another embodiment, to improve the difficulty that cracks of sign test data, sign test data are encryption data, step S206 tools
Body is:
(21) digital digest processing is carried out to target pages data, obtains digital digest data;
(22) sign test data are decrypted, obtain ciphertext data;
(23) if digital digest data are consistent with ciphertext data, it is determined that target pages data verification passes through.
In the embodiment, server obtains the corresponding mesh of the request after the acquisition request for receiving target pages data
Page data is marked, and the target complete page data to getting carries out digital digest processing, obtains digital digest data, serviced
Device is also encrypted digital summary data, and using encrypted digital digest data as sign test data, server is by mesh
Mark page data and sign test data are back to mobile terminal together.Therefore, the sign test in the reply data that mobile terminal receives
Data, the encrypted digital digest number obtained after as the corresponding digital digest data of target complete page data are encrypted
According to.
Also, it since digital digest processing is irreversible procedure, is merely able to obtain digital digest number by target pages data
According to can not obtain target pages data from data summarization data, digital summary data is encrypted to obtain the mistake of sign test data
Journey is reversible process, and digital summary data can be encrypted, and encrypted digital digest data can also be decrypted,
Therefore, mobile terminal verifies specially target pages data according to sign test data:Using message identical with server
Digest algorithm, to target complete page data carry out digital digest processing, obtain digital digest data, then, using with service
The corresponding decipherment algorithm of device, is decrypted sign test data, obtains ciphertext data, and comparing digital digest data and ciphertext data is
It is no consistent, if unanimously, illustrating that target pages data are no during by server transport to mobile terminal and distorting, really
The page data that sets the goal is verified, if inconsistent, illustrates target pages data in the mistake by server transport to mobile terminal
It is distorted by third attacker in journey, determines that target pages data verification does not pass through.
In the present embodiment, server can carry out digital digest processing to target complete page data, correspondingly, mobile whole
End also carries out digital digest processing using same Message Digest 5 to target complete page data.Since sign test data are roots
It is obtained according to target complete page data, if therefore target pages data quilt during by server transport to mobile terminal
Third attacker distorts, then the digital digest data that mobile terminal obtains will be inconsistent with the sign test data after decryption.
In the present embodiment, digital digest processing is carried out to target pages data, digital digest data are obtained, to sign test data
It is decrypted, obtains ciphertext data;It is whether consistent with ciphertext data by comparing digital digest data, to determine page object
Face data verifies whether to pass through, and can reach the technique effect that rapidly and accurately whether determining target pages data are tampered, from
And mobile terminal load is avoided to ensure the safety of mobile terminal loading page data by the page data distorted.
In the present embodiment, server is carrying out digital digest processing to target pages data, after obtaining digital digest data,
Also digital summary data is encrypted, using encrypted digital digest data as sign test data, using digital digest
Sign test data are obtained with the mode of Encryption Algorithm dual fail-safe, the degree of secrecy of sign test data can be improved, improve third party attack
Person cracks difficulty to sign test data, to improve the safety of mobile terminal loading page data.
In one specific embodiment, the corresponding sign test data of each target pages data are stored in advance in server end
On database storage medium, server to mobile terminal return reply data when, first obtain target pages data, then from
The corresponding sign test data of target pages data are obtained on storage medium, finally return to target pages data and sign test data together
To mobile terminal, to improve the speed for obtaining sign test data, the speed that server feeds back reply data to mobile terminal is improved
And efficiency.
In view of rivest, shamir, adelman has the advantages that crack difficulty big, in the present embodiment, sign test data are by non-
The encrypted data of symmetric encipherment algorithm are correspondingly decrypted sign test data, including:Based on above-mentioned asymmetric encryption
Sign test data are decrypted in algorithm.
Specifically, server is calculated after obtaining the corresponding digital digest data of target pages data using asymmetric encryption
Digital summary data is encrypted in method, correspondingly, mobile whole using encrypted digital digest data as sign test data
End is decrypted sign test data using rivest, shamir, adelman identical with server, if page data is not tampered, moves
The ciphertext data that dynamic terminal deciphering obtains will digital digest data corresponding with target pages data it is consistent.
In the present embodiment, server be based on rivest, shamir, adelman to the corresponding digital digest data of target pages data into
Row encryption, obtains sign test data, mobile terminal is decrypted sign test data based on identical rivest, shamir, adelman, is solved
Ciphertext data, the advantages of being difficult to be cracked by third party attack person based on rivest, shamir, adelman, the present embodiment can improve sign test number
According to degree of secrecy, improve third party attack person difficulty is cracked to sign test data, to improve mobile terminal loading page number
According to safety.In the present embodiment, rivest, shamir, adelman includes but not limited to RSA Algorithm etc..
Fig. 3 is the flow diagram for the page loading method that another embodiment of the application provides, and this method is applied to movement
End side, by mobile terminal execution, as shown in figure 3, this method includes:
Step S302 sends the acquisition request of page data to server;
Step S304 obtains the corresponding server domain name of page data and/or the page address of request;
Step S306, judge the corresponding server domain name of above-mentioned page data and/or page address whether with sign test list
Interior server domain name and/or page address matches;
If matching, thens follow the steps S308, otherwise, step S316 is executed.
Step S308 obtains the sign test data and page data of acquisition request return of the server according to page data;
Step S310 verifies page data according to sign test data;
Step S312 judges that page data verifies whether to pass through;
If being verified, S314 is thened follow the steps, if verification does not pass through, terminates flow.
Step S314, loading page data;
Step S316 obtains the page data of acquisition request return of the server according to page data and load.
Method in the present embodiment can be executed by the application program in mobile terminal, which sends to server
The acquisition of page data is asked, and judges whether page data needs to verify, and it is in Fig. 2 if desired to verify instruction page data
Target pages data, it is on the contrary then be not target pages data.If desired it verifies, is obtained using the interception of the tools such as NSURLProtocol
The page data and sign test data that server returns are taken, and page data is verified using sign test data, if need not test
Card is then loaded directly into the page data received.
To sum up, by the page loading method in the embodiment of the present application, target pages data are tested using sign test data
Card acts on, and can ensure the safety of mobile terminal loading page data, and avoiding mobile terminal load, there are the pages of security risk
Face data.Further, using the corresponding digital digest data of target complete page data as sign test data, or by whole mesh
The corresponding encrypted digital digest data of page data are marked as sign test data, can be reached using sign test data quick and precisely
Ground determines the technique effect whether target pages data are tampered, to avoid mobile terminal load from passing through the page number distorted
According to the safety of guarantee mobile terminal loading page data.
Fig. 4 is the flow diagram for the page loading method that another embodiment of the application provides, and this method is applied to service
Device side, is executed by server, as shown in figure 4, this method includes:
Step S402 receives the acquisition request for the target pages data that mobile terminal is sent;Wherein, target pages data pair
The server domain name and/or page address answered meet preset sign test strategy;
Step S404 obtains the acquisition and asks corresponding reply data;Wherein, reply data includes sign test data and target
Page data;
Reply data is back to mobile terminal by step S406;Wherein, sign test data are used to carry out target pages data
Load verification.
In the embodiment of the present application, the acquisition request for the target pages data that mobile terminal is sent is received, the acquisition is obtained and asks
Seek corresponding reply data, wherein reply data includes sign test data and target pages data, and reply data is back to movement
Terminal, wherein sign test data to target pages data for carrying out load verification.As it can be seen that by the embodiment of the present application, Neng Gouxiang
Mobile terminal returns to target pages data and sign test data, is acted on the load verification of target pages data using sign test data,
The safety that can ensure mobile terminal loading page data, avoiding mobile terminal load, there are the page datas of security risk.
In above-mentioned steps S402, server receives the acquisition request for the target pages data that mobile terminal is sent, specifically,
Mobile terminal sends the acquisition request of target pages data to server after receiving specified user's operation, and server connects
Receive the request.Wherein, specified user's operation is the operation that user asks accession page, is including but not limited to put on beating keyboard
" carriage return " button, " search " button on click screen, the page icon etc. on click screen.
Sign test strategy, the corresponding server domain name of target pages data and/or page address symbol are preset in the present embodiment
Close preset sign test strategy.In one embodiment, the corresponding server domain name of target pages data and/or page address meet pre-
If sign test strategy, including:In the corresponding server domain name of target pages data and/or page address and preset sign test list
Server domain name and/or page address match.Wherein, sign test list can store in the server, be sent by server
To mobile terminal.
The corresponding server domain name of target pages data and/or page address and the server domain in preset sign test list
The concrete meaning that name and/or page address match can refer to the description of front, be not repeated herein.Target pages data pair
The server domain name and/or page address answered meet preset sign test strategy, illustrate that target pages data are the page to be verified
Data, mobile terminal need to verify target pages data using the sign test data received by the flow in Fig. 2.
In above-mentioned steps S404, server receive mobile terminal transmission target pages data acquisition request after,
Corresponding reply data is requested to generate according to the acquisition and is sent to mobile terminal.For example, mobile terminal according to user's operation to
Server request target page data http://www.a.com/A.html, then server will include the target pages data
Reply data is back to mobile terminal, wherein reply data further includes sign test data.
In the present embodiment, sign test data are for verifying target pages data, and in particular, sign test data are used for complete
Portion's target pages data are verified, which includes but not limited to verify whether target pages data are tampered.
In one embodiment, server setting sign test data are located in the head response of reply data, correspondingly, mobile terminal
Sign test data are extracted from the head response of reply data, and the data conduct of specific field is extracted such as from the head response of reply data
Sign test data.
In another embodiment, reply data includes meta labels, and server setting sign test data are located at reply data
In meta labels, correspondingly, mobile terminal extracts the data in the meta labels as sign test data, such as will be in the meta labels
Total data extract as sign test data, wherein meta labels can add in target pages data, then it is mobile eventually
End will remove the target pages data of meta labels as the target pages data for sign test data verification.
In one specific embodiment, server setting sign test data are located in the head response of reply data, are head response
After then mobile terminal receives reply data, X-Sign words are extracted from the head response of reply data for the data of middle X-Sign fields
The data of section are as sign test data.
In one embodiment, corresponding response is asked in above-mentioned steps S404, the acquisition that server obtains target pages data
Data are specially:
(41) corresponding target pages data are asked in the acquisition for obtaining target pages data;
(42) digital digest processing is carried out to target pages data, obtains digital digest data, digital digest data is made
For sign test data;
(43) corresponding answer number is asked in the acquisition that target pages data are generated according to target pages data and sign test data
According to.
Specifically, server obtains the corresponding page object of the request after the acquisition request for receiving target pages data
Face data, and the target complete page data to getting carries out digital digest processing, obtains digital digest data, server will
The digital digest data generate reply data as sign test data, and according to target pages data and sign test data, by answer number
According to being back to mobile terminal, wherein reply data includes target pages data and sign test data.Therefore, mobile terminal receives
Reply data in sign test data, obtained digital digest after digital digest processing as is carried out to target complete page data
Data.
Correspondingly, mobile terminal verifies specially target pages data according to sign test data:Using with server
Identical Message Digest 5 carries out digital digest processing to target complete page data, obtains digital digest data, compare
Whether the digital digest data arrived and sign test data are consistent, if unanimously, illustrating target pages data by server transport to shifting
Without distorting during dynamic terminal, determines that target pages data verification passes through, if inconsistent, illustrate target pages data
It is distorted by third attacker during by server transport to mobile terminal, determines that target pages data verification does not pass through.
In the present embodiment, digital digest processing is carried out to target pages data, digital digest data are obtained, by digital digest
Data are enabled to mobile terminal to be verified to target pages data based on sign test data, reach quick as sign test data
The technique effect whether page data is tampered is accurately determined, to avoid mobile terminal load from passing through the page number distorted
According to the safety of guarantee mobile terminal loading page data.
In another embodiment, to improve the difficulty that cracks of sign test data, sign test data are encryption data, above-mentioned steps
S404, the corresponding reply data of acquisition request that server obtains target pages data are specially:
(51) corresponding target pages data are asked in the acquisition for obtaining target pages data;
(52) digital digest processing is carried out to target pages data, obtains digital digest data;
(53) digital summary data is encrypted, using encrypted digital digest data as sign test data;
(54) corresponding answer number is asked in the acquisition that target pages data are generated according to target pages data and sign test data
According to.
Specifically, server obtains the corresponding page object of the request after the acquisition request for receiving target pages data
Face data, and the target complete page data to getting carries out digital digest processing, obtains digital digest data, server is also
Digital summary data is encrypted, using encrypted digital digest data as sign test data, server is according to target
Page data and sign test data generate reply data, and reply data is back to mobile terminal, wherein reply data includes target
Page data and sign test data.Therefore, the sign test data in the reply data that mobile terminal receives, as to target complete page
The encrypted digital digest data that the corresponding digital digest data of face data obtain after being encrypted.
Correspondingly, mobile terminal verifies specially target pages data according to sign test data:Using with server
Identical Message Digest 5 carries out digital digest processing to target complete page data, obtains digital digest data, then,
Using decipherment algorithms corresponding with server, sign test data are decrypted, ciphertext data is obtained, compare digital digest data with
Whether ciphertext data is consistent, if unanimously, illustrating that target pages data do not have during by server transport to mobile terminal
It distorts, determines that target pages data verification passes through, if inconsistent, illustrate target pages data by server transport to shifting
It is distorted by third attacker during dynamic terminal, determines that target pages data verification does not pass through.
In the present embodiment, server is carrying out digital digest processing to target pages data, after obtaining digital digest data,
Also digital summary data is encrypted, using encrypted digital digest data as sign test data, using digital digest
Sign test data are obtained with the mode of Encryption Algorithm dual fail-safe, the degree of secrecy of sign test data can be improved, improve third party attack
Person cracks difficulty to sign test data, to improve the safety of mobile terminal loading page data, mobile terminal is avoided to load
By the page data distorted.
In one specific embodiment, the corresponding sign test data of each target pages data are stored in advance in server end
On database storage medium, server to mobile terminal return reply data when, first obtain target pages data, then from
The corresponding sign test data of target pages data are obtained on storage medium, finally return to target pages data and sign test data together
To mobile terminal, to improve the speed for obtaining sign test data, the speed that server feeds back reply data to mobile terminal is improved
And efficiency.
In view of rivest, shamir, adelman has the advantages that crack difficulty big, in the present embodiment, sign test data are by non-
The encrypted data of symmetric encipherment algorithm are correspondingly encrypted digital summary data, by encrypted digital digest number
According to as sign test data, specially:Based on above-mentioned rivest, shamir, adelman, digital summary data is encrypted, will be added
Digital digest data after close are as sign test data.
Specifically, server is calculated after obtaining the corresponding digital digest data of target pages data using asymmetric encryption
Digital summary data is encrypted in method, correspondingly, mobile whole using encrypted digital digest data as sign test data
End is decrypted sign test data using rivest, shamir, adelman corresponding with server, if page data is not tampered, moves
The ciphertext data that dynamic terminal deciphering obtains will digital digest data corresponding with target pages data it is consistent.
In the present embodiment, server be based on rivest, shamir, adelman to the corresponding digital digest data of target pages data into
Row encryption, obtains sign test data, mobile terminal is decrypted sign test data based on corresponding rivest, shamir, adelman, is solved
Ciphertext data, the advantages of being difficult to be cracked by third party attack person based on rivest, shamir, adelman, the present embodiment can improve sign test number
According to degree of secrecy, improve third party attack person difficulty is cracked to sign test data, to improve mobile terminal loading page number
According to safety.In the present embodiment, rivest, shamir, adelman includes but not limited to RSA Algorithm etc..
Fig. 5 is the flow diagram for the page loading method that another embodiment of the application provides, and this method is applied to service
Device side, is executed by server, as shown in figure 5, this method includes:
Step S502 receives the acquisition request for the page data that mobile terminal is sent;
Corresponding page data is asked in step S504, the acquisition for obtaining page data;
Step S506, judge the corresponding server domain name of the page data got and/or page address whether with sign test
Server domain name and/or page address in list match;
If mismatching, step S508 is executed, it is no to then follow the steps S510.
Page data is sent to mobile terminal by step S508;
Step S510 generates the corresponding sign test data of page data;Wherein, sign test data are for adding page data
Carry verification;
Step S512 generates reply data according to page data and sign test data;Wherein, reply data includes page data
With sign test data;
Reply data is sent to mobile terminal by step S514.
In Fig. 5, if the corresponding server domain name of page data and/page address and the server domain name in sign test list
And/or page address matches, then the page data is target pages data, is not target pages data if mismatching.It is logical
The method flow in Fig. 5 is crossed, can ensure the safety of mobile terminal loading page data, mobile terminal load is avoided to there is peace
The page data of full hidden danger.
Fig. 6 is the flow diagram for the page loading method that another embodiment of the application provides, and this method is applied to service
Device side and mobile terminal side, by server and mobile terminal execution, as shown in fig. 6, this method includes:
Step S602, mobile terminal send the acquisition request of target pages data to server;
Step S604, server receive the acquisition request of target pages data, obtain the corresponding target pages number of the request
According to;
Step S606, server carry out digital digest processing to target pages data, obtain digital digest data, will be digital
Summary data is as sign test data;
Step S608, server generate reply data according to target pages data and sign test data;Wherein, reply data packet
Include target pages data and sign test data;
Reply data is back to mobile terminal by step S610, server;
Step S612, mobile terminal receive reply data, and sign test data and target pages data are extracted from reply data;
Step S614, mobile terminal carry out digital digest processing to target pages data, obtain digital digest data;
Step S616, mobile terminal determine that digital digest data are consistent with sign test data, load target pages data.
In Fig. 6, if mobile terminal determines that digital digest data and sign test data are inconsistent, it is not loaded with target pages number
According to.
Fig. 7 is that the sign test data for the corresponding diagram 6 that one embodiment of the application provides generate schematic diagram, as shown in fig. 7, the figure
In, digital digest processing is carried out to target complete page data, using obtained digital digest data as sign test data.
By the method flow in Fig. 6, server also sends sign test number when sending target pages data to mobile terminal
According to mobile terminal ensures the verification effect of target pages data using sign test data the safety of mobile terminal loading page data
Property, avoiding mobile terminal load, there are the page datas of security risk.Also, in Fig. 6, by the corresponding number of target pages data
The technique effect that rapidly and accurately whether determining page data is tampered can be reached as sign test data for summary data, to
It avoids mobile terminal load by the page data distorted, ensures the safety of mobile terminal loading page data.
Fig. 8 is the flow diagram for the page loading method that another embodiment of the application provides, and this method is applied to service
Device side and mobile terminal side, by server and mobile terminal execution, as shown in figure 8, this method includes:
Step S802, mobile terminal send the acquisition request of target pages data to server;
Step S804, server receive the acquisition request of target pages data, obtain the corresponding target pages number of the request
According to;
Step S806, server carry out digital digest processing to target pages data, obtain digital digest data;
Step S808, server is encrypted digital summary data based on rivest, shamir, adelman, after encryption
Digital digest data as sign test data;
Step S810, server generate reply data according to target pages data and sign test data;Wherein, reply data packet
Include target pages data and sign test data;
Reply data is back to mobile terminal by step S812, server;
Step S814, mobile terminal receive reply data, and sign test data and target pages data are extracted from reply data;
Step S816, mobile terminal carry out digital digest processing to target pages data, obtain digital digest data;
Sign test data are decrypted in step S818, mobile terminal, obtain ciphertext data;
Step S820, mobile terminal determine that digital digest data are consistent with ciphertext data, load target pages data.
In Fig. 8, if mobile terminal determines that digital digest data are inconsistent with ciphertext data, it is not loaded with target pages number
According to.
Fig. 9 is that the sign test data for the corresponding diagram 8 that one embodiment of the application provides generate schematic diagram, as shown in figure 9, the figure
In, digital digest processing is carried out to target complete page data, obtains digital digest data, is based on rivest, shamir, adelman logarithm
Word summary data is encrypted, using encrypted digital digest data as sign test data.
By the method flow in Fig. 8, server also sends sign test number when sending target pages data to mobile terminal
According to mobile terminal ensures the verification effect of target pages data using sign test data the safety of mobile terminal loading page data
Property, avoiding mobile terminal load, there are the page datas of security risk.Also, in Fig. 8, by the corresponding number of target pages data
Summary data is encrypted, double using digital digest and Encryption Algorithm using encrypted digital digest data as sign test data
The mode of insurance obtains sign test data, can improve the degree of secrecy of sign test data, improves third party attack person to sign test data
Crack difficulty, to improve the safety of mobile terminal loading page data.Also, in Fig. 8, it is based on rivest, shamir, adelman
The advantages of being difficult to be cracked by third party attack person, can further increasing third party attack, person cracks difficulty to sign test data,
Further increase the safety of mobile terminal loading page data.
The embodiment of the present application also provides a kind of page loading device, Figure 10 is a kind of page that one embodiment of the application provides
Face loading device, as shown in Figure 10, which includes:
Request sending module 1001, the acquisition request for sending target pages data to server;Wherein, the target
The corresponding server domain name of page data and/or page address meet preset sign test strategy;
First acquisition module 1002, is used for, and obtains the server according to the reply data for obtaining request and returning;Its
In, the reply data includes sign test data and the target pages data;
Data Verification module 1003, for extracting the sign test data and the target pages number from the reply data
According to being verified to the target pages data according to the sign test data;
If page load-on module 1004 loads the target pages data for being verified.
Optionally, Data Verification module 1003 is specifically used for:
Digital digest processing is carried out to the target pages data, obtains digital digest data;
If the digital digest data are consistent with the sign test data, it is determined that the target pages data verification passes through.
Optionally, the sign test data are encryption data;Data Verification module 1003 is specifically used for:
Digital digest processing is carried out to the target pages data, obtains digital digest data;
The sign test data are decrypted, ciphertext data is obtained;
If the digital digest data are consistent with the ciphertext data, it is determined that the target pages data verification passes through.
Optionally, the sign test data are through the encrypted data of rivest, shamir, adelman;Data Verification module 1003 also has
Body is used for:
Based on the rivest, shamir, adelman, the sign test data are decrypted.
Optionally, the corresponding server domain name of the target pages data and/or page address meet preset sign test plan
It omits, including:
The corresponding server domain name of the target pages data and/or page address and the service in preset sign test list
Device domain name and/or page address match.
Optionally, the sign test data are located in the head response of the reply data.
Optionally, the sign test data are located in the meta labels of the reply data.
By the embodiment of the present application, the target that server is returned according to the acquisition request of target pages data can be got
Page data and sign test data load target pages data after passing through to target pages data verification using sign test data, from
And sign test data is utilized to ensure the verification effect of page data the safety of mobile terminal loading page data, it avoids mobile whole
There are the page datas of security risk for end load.
The embodiment of the present application also provides a kind of page loading equipemtn, Figure 11 is that the page that one embodiment of the application provides adds
Carry the structural schematic diagram of equipment.
As shown in figure 11, page loading equipemtn can generate bigger difference because configuration or performance are different, may include
One or more processor 1201 and memory 1202 can be stored with one or more in memory 1202 and deposit
Store up application program or data.Wherein, memory 1202 can be of short duration storage or persistent storage.It is stored in answering for memory 1202
May include one or more modules (diagram is not shown) with program, each module may include in page loading equipemtn
Series of computation machine executable instruction.Further, processor 1201 could be provided as communicating with memory 1202, in page
The series of computation machine executable instruction in memory 1202 is executed on the loading equipemtn of face.Page loading equipemtn can also include one
A or more than one power supply 1203, one or more wired or wireless network interfaces 1204, one or more inputs
Output interface 1205, one or more keyboards 1206 etc..
In a specific embodiment, page loading equipemtn includes memory and one or more journey
Sequence, either more than one program is stored in memory and one or more than one program may include one for one of them
Or more than one module, and each module may include to the series of computation machine executable instruction in page loading equipemtn, and
Be configured to by one either more than one processor execute this or more than one program include by carry out it is following based on
Calculation machine executable instruction:
The acquisition request of target pages data is sent to server;Wherein, the corresponding server of the target pages data
Domain name and/or page address meet preset sign test strategy;
The server is obtained according to the reply data for obtaining request and returning;Wherein, the reply data includes testing
Sign data and the target pages data;
The sign test data and the target pages data are extracted from the reply data, according to the sign test data pair
The target pages data are verified;
If being verified, the target pages data are loaded.
Optionally, computer executable instructions when executed, it is described according to the sign test data to the target pages
Data are verified, including:
Digital digest processing is carried out to the target pages data, obtains digital digest data;
If the digital digest data are consistent with the sign test data, it is determined that the target pages data verification passes through.
Optionally, when executed, the sign test data are encryption data to computer executable instructions;Described in the basis
Sign test data verify the target pages data, including:
Digital digest processing is carried out to the target pages data, obtains digital digest data;
The sign test data are decrypted, ciphertext data is obtained;
If the digital digest data are consistent with the ciphertext data, it is determined that the target pages data verification passes through.
Optionally, when executed, the sign test data are to be encrypted through rivest, shamir, adelman to computer executable instructions
Data;It is described that the sign test data are decrypted, including:
Based on the rivest, shamir, adelman, the sign test data are decrypted.
Optionally, computer executable instructions when executed, the corresponding server domain name of the target pages data and/
Or page address meets preset sign test strategy, including:
The corresponding server domain name of the target pages data and/or page address and the service in preset sign test list
Device domain name and/or page address match.
Optionally, when executed, the sign test data are located at the response of the reply data to computer executable instructions
In head.
Optionally, when executed, the sign test data are located at the meta of the reply data to computer executable instructions
In label.
By the embodiment of the present application, the target that server is returned according to the acquisition request of target pages data can be got
Page data and sign test data load target pages data after passing through to target pages data verification using sign test data, from
And sign test data is utilized to ensure the verification effect of page data the safety of mobile terminal loading page data, it avoids mobile whole
There are the page datas of security risk for end load.
The embodiment of the present application also provides a kind of storage mediums, a kind of specific for storing computer executable instructions
In embodiment, which can be USB flash disk, CD, hard disk etc., and the computer executable instructions of storage medium storage are in quilt
When processor executes, following below scheme can be realized:
The acquisition request of target pages data is sent to server;Wherein, the corresponding server of the target pages data
Domain name and/or page address meet preset sign test strategy;
The server is obtained according to the reply data for obtaining request and returning;Wherein, the reply data includes testing
Sign data and the target pages data;
The sign test data and the target pages data are extracted from the reply data, according to the sign test data pair
The target pages data are verified;
If being verified, the target pages data are loaded.
Optionally, the computer executable instructions of storage medium storage are when executed, described according to the sign test number
It is verified according to the target pages data, including:
Digital digest processing is carried out to the target pages data, obtains digital digest data;
If the digital digest data are consistent with the sign test data, it is determined that the target pages data verification passes through.
Optionally, when executed, the sign test data are encryption to the computer executable instructions of storage medium storage
Data;It is described that the target pages data are verified according to the sign test data, including:
Digital digest processing is carried out to the target pages data, obtains digital digest data;
The sign test data are decrypted, ciphertext data is obtained;
If the digital digest data are consistent with the ciphertext data, it is determined that the target pages data verification passes through.
Optionally, when executed, the sign test data are through non-to the computer executable instructions of storage medium storage
The encrypted data of symmetric encipherment algorithm;It is described that the sign test data are decrypted, including:
Based on the rivest, shamir, adelman, the sign test data are decrypted.
Optionally, the storage medium storage computer executable instructions when executed, the target pages data pair
The server domain name and/or page address answered meet preset sign test strategy, including:
The corresponding server domain name of the target pages data and/or page address and the service in preset sign test list
Device domain name and/or page address match.
Optionally, when executed, the sign test data are located at institute to the computer executable instructions of storage medium storage
In the head response for stating reply data.
Optionally, when executed, the sign test data are located at institute to the computer executable instructions of storage medium storage
In the meta labels for stating reply data.
By the embodiment of the present application, the target that server is returned according to the acquisition request of target pages data can be got
Page data and sign test data load target pages data after passing through to target pages data verification using sign test data, from
And sign test data is utilized to ensure the verification effect of page data the safety of mobile terminal loading page data, it avoids mobile whole
There are the page datas of security risk for end load.
In the 1990s, the improvement of a technology can be distinguished clearly be on hardware improvement (for example,
Improvement to circuit structures such as diode, transistor, switches) or software on improvement (improvement for method flow).So
And with the development of technology, the improvement of current many method flows can be considered as directly improving for hardware circuit.
Designer nearly all obtains corresponding hardware circuit by the way that improved method flow to be programmed into hardware circuit.Cause
This, it cannot be said that the improvement of a method flow cannot be realized with hardware entities module.For example, programmable logic device
(Programmable Logic Device, PLD) (such as field programmable gate array (Field Programmable Gate
Array, FPGA)) it is exactly such a integrated circuit, logic function determines device programming by user.By designer
Voluntarily programming comes a digital display circuit " integrated " on a piece of PLD, designs and makes without asking chip maker
Dedicated IC chip.Moreover, nowadays, substitution manually makes IC chip, this programming is also used instead mostly " patrols
Volume compiler (logic compiler) " software realizes that software compiler used is similar when it writes with program development,
And the source code before compiling also write by handy specific programming language, this is referred to as hardware description language
(Hardware Description Language, HDL), and HDL is also not only a kind of, but there are many kind, such as ABEL
(Advanced Boolean Expression Language)、AHDL(Altera Hardware Description
Language)、Confluence、CUPL(Cornell University Programming Language)、HDCal、JHDL
(Java Hardware Description Language)、Lava、Lola、MyHDL、PALASM、RHDL(Ruby
Hardware Description Language) etc., VHDL (Very-High-Speed are most generally used at present
Integrated Circuit Hardware Description Language) and Verilog.Those skilled in the art also answer
This understands, it is only necessary to method flow slightly programming in logic and is programmed into integrated circuit with above-mentioned several hardware description languages,
The hardware circuit for realizing the logical method flow can be readily available.
Controller can be implemented in any suitable manner, for example, controller can take such as microprocessor or processing
The computer for the computer readable program code (such as software or firmware) that device and storage can be executed by (micro-) processor can
Read medium, logic gate, switch, application-specific integrated circuit (Application Specific Integrated Circuit,
ASIC), the form of programmable logic controller (PLC) and embedded microcontroller, the example of controller includes but not limited to following microcontroller
Device:ARC 625D, Atmel AT91SAM, Microchip PIC18F26K20 and Silicone Labs C8051F320, are deposited
Memory controller is also implemented as a part for the control logic of memory.It is also known in the art that in addition to
Pure computer readable program code mode is realized other than controller, can be made completely by the way that method and step is carried out programming in logic
Controller is obtained in the form of logic gate, switch, application-specific integrated circuit, programmable logic controller (PLC) and embedded microcontroller etc. to come in fact
Existing identical function.Therefore this controller is considered a kind of hardware component, and to including for realizing various in it
The device of function can also be considered as the structure in hardware component.Or even, it can will be regarded for realizing the device of various functions
For either the software module of implementation method can be the structure in hardware component again.
System, device, module or the unit that above-described embodiment illustrates can specifically realize by computer chip or entity,
Or it is realized by the product with certain function.It is a kind of typically to realize that equipment is computer.Specifically, computer for example may be used
Think personal computer, laptop computer, cellular phone, camera phone, smart phone, personal digital assistant, media play
It is any in device, navigation equipment, electronic mail equipment, game console, tablet computer, wearable device or these equipment
The combination of equipment.
For convenience of description, it is divided into various units when description apparatus above with function to describe respectively.Certainly, implementing this
The function of each unit is realized can in the same or multiple software and or hardware when application.
It should be understood by those skilled in the art that, embodiments herein can be provided as method, system or computer program
Product.Therefore, complete hardware embodiment, complete software embodiment or reality combining software and hardware aspects can be used in the application
Apply the form of example.Moreover, the application can be used in one or more wherein include computer usable program code computer
The computer program production implemented in usable storage medium (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.)
The form of product.
The application is with reference to method, the flow of equipment (system) and computer program product according to the embodiment of the present application
Figure and/or block diagram describe.It should be understood that can be realized by computer program instructions every first-class in flowchart and/or the block diagram
The combination of flow and/or box in journey and/or box and flowchart and/or the block diagram.These computer programs can be provided
Instruct the processor of all-purpose computer, special purpose computer, Embedded Processor or other programmable data processing devices to produce
A raw machine so that the instruction executed by computer or the processor of other programmable data processing devices is generated for real
The device for the function of being specified in present one flow of flow chart or one box of multiple flows and/or block diagram or multiple boxes.
These computer program instructions, which may also be stored in, can guide computer or other programmable data processing devices with spy
Determine in the computer-readable memory that mode works so that instruction generation stored in the computer readable memory includes referring to
Enable the manufacture of device, the command device realize in one flow of flow chart or multiple flows and/or one box of block diagram or
The function of being specified in multiple boxes.
These computer program instructions also can be loaded onto a computer or other programmable data processing device so that count
Series of operation steps are executed on calculation machine or other programmable devices to generate computer implemented processing, in computer or
The instruction executed on other programmable devices is provided for realizing in one flow of flow chart or multiple flows and/or block diagram one
The step of function of being specified in a box or multiple boxes.
In a typical configuration, computing device includes one or more processors (CPU), input/output interface, net
Network interface and memory.
Memory may include computer-readable medium in volatile memory, random access memory (RAM) and/or
The forms such as Nonvolatile memory, such as read-only memory (ROM) or flash memory (flash RAM).Memory is computer-readable medium
Example.
Computer-readable medium includes permanent and non-permanent, removable and non-removable media can be by any method
Or technology realizes information storage.Information can be computer-readable instruction, data structure, the module of program or other data.
The example of the storage medium of computer includes, but are not limited to phase transition internal memory (PRAM), static RAM (SRAM), moves
State random access memory (DRAM), other kinds of random access memory (RAM), read-only memory (ROM), electric erasable
Programmable read only memory (EEPROM), fast flash memory bank or other memory techniques, read-only disc read only memory (CD-ROM) (CD-ROM),
Digital versatile disc (DVD) or other optical storages, magnetic tape cassette, tape magnetic disk storage or other magnetic storage apparatus
Or any other non-transmission medium, it can be used for storage and can be accessed by a computing device information.As defined in this article, it calculates
Machine readable medium does not include temporary computer readable media (transitory media), such as data-signal and carrier wave of modulation.
It should also be noted that, the terms "include", "comprise" or its any other variant are intended to nonexcludability
Including so that process, method, commodity or equipment including a series of elements include not only those elements, but also wrap
Include other elements that are not explicitly listed, or further include for this process, method, commodity or equipment intrinsic want
Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that wanted including described
There is also other identical elements in the process of element, method, commodity or equipment.
It will be understood by those skilled in the art that embodiments herein can be provided as method, system or computer program product.
Therefore, complete hardware embodiment, complete software embodiment or embodiment combining software and hardware aspects can be used in the application
Form.It is deposited moreover, the application can be used to can be used in the computer that one or more wherein includes computer usable program code
The shape for the computer program product implemented on storage media (including but not limited to magnetic disk storage, CD-ROM, optical memory etc.)
Formula.
The application can describe in the general context of computer-executable instructions executed by a computer, such as program
Module.Usually, program module includes routines performing specific tasks or implementing specific abstract data types, program, object, group
Part, data structure etc..The application can also be put into practice in a distributed computing environment, in these distributed computing environments, by
Task is executed by the connected remote processing devices of communication network.In a distributed computing environment, program module can be with
In the local and remote computer storage media including storage device.
Each embodiment in this specification is described in a progressive manner, identical similar portion between each embodiment
Point just to refer each other, and each embodiment focuses on the differences from other embodiments.Especially for system reality
For applying example, since it is substantially similar to the method embodiment, so description is fairly simple, related place is referring to embodiment of the method
Part explanation.
Above is only an example of the present application, it is not intended to limit this application.For those skilled in the art
For, the application can have various modifications and variations.It is all within spirit herein and principle made by any modification, equivalent
Replace, improve etc., it should be included within the scope of claims hereof.