CN108880923A - The method and apparatus that policer operation applied to application server is requested - Google Patents

The method and apparatus that policer operation applied to application server is requested Download PDF

Info

Publication number
CN108880923A
CN108880923A CN201710343902.9A CN201710343902A CN108880923A CN 108880923 A CN108880923 A CN 108880923A CN 201710343902 A CN201710343902 A CN 201710343902A CN 108880923 A CN108880923 A CN 108880923A
Authority
CN
China
Prior art keywords
access
access time
time
mentioned
sequence
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710343902.9A
Other languages
Chinese (zh)
Inventor
杨立昆
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Jingdong Century Trading Co Ltd
Beijing Jingdong Shangke Information Technology Co Ltd
Original Assignee
Beijing Jingdong Century Trading Co Ltd
Beijing Jingdong Shangke Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Jingdong Century Trading Co Ltd, Beijing Jingdong Shangke Information Technology Co Ltd filed Critical Beijing Jingdong Century Trading Co Ltd
Priority to CN201710343902.9A priority Critical patent/CN108880923A/en
Publication of CN108880923A publication Critical patent/CN108880923A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/50Testing arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/16Threshold monitoring
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1425Traffic logging, e.g. anomaly detection

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer And Data Communications (AREA)

Abstract

This application discloses the method and apparatus that the policer operation for being applied to application server is requested.Above-mentioned application server and Web server communicate to connect, and a specific embodiment of this method includes:Receive the operation requests that Web server is sent;The number with the access time in the matched access time sequence of operation requests is inquired in preset memory database, and the number for the access time found is determined as access times;In response to determining, access times have been greater than default access times, first access time in access time sequence are determined as earliest access time, and current time is added to access time sequence;In response to determining that the time difference of current time and earliest access time is not more than preset interval duration, the abnormal operation solicited message for being used to indicate operation requests exception is generated.The embodiment realizes the user name based on user and the operation requests of the operation mark application server of the requested operation of user are monitored.

Description

The method and apparatus that policer operation applied to application server is requested
Technical field
This application involves field of computer technology, and in particular to Internet technical field, more particularly to it is applied to application clothes The method and apparatus of the policer operation request of business device.
Background technique
With internet and the fast development of e-commerce, user more and more carries out various be related on the internet The operation of personal information and property.Since leakage of personal information and password are too simple, it may cause malicious user and pass through malice The operation of program batch analog subscriber, causes the loss of user.In order to distinguish real user operation or malice simulated operation, need The operation requests of user are monitored, determine that the operation requests of user are normal operating request or abnormal operation request. Presently mainly determined by the address (Internet protocol, Internet Protocol) IP to terminal used by a user User's operation is normal users operation or abnormal user operation.
However, the IP address of terminal is easy to modify by agency, to cause monitoring less than having modified IP address Abnormal operation request, so there is a problem that the efficiency being monitored to the operation requests of user is lower.
Summary of the invention
The purpose of the application be to propose the method for improved policer operation request applied to application server a kind of with Device, to solve the technical issues of background section above is mentioned.
In a first aspect, this application provides a kind of method that the policer operation applied to application server is requested, it is above-mentioned to answer It is communicated to connect with server and Web server, this method includes:That receive above-mentioned Web server transmission includes user name and behaviour The operation requests to make a check mark, wherein aforesaid operations request is that above-mentioned Web server is communicated to connect from above-mentioned Web server What terminal received;Inquiry requests the access in matched access time sequence with aforesaid operations in preset memory database The number of time, and the number for the access time found is determined as access times, wherein it is right in above-mentioned memory database User name, operation mark and access time sequence should be stored with;Determine whether above-mentioned access times are more than or equal to default access Number;It is greater than default access times in response to the above-mentioned access times of determination, by first visit in above-mentioned access time sequence It asks that the time is determined as earliest access time, and above-mentioned current time is added in above-mentioned access time sequence, as above-mentioned visit Ask the last one access time of time series;It is pre- to determine whether current time and the time difference of above-mentioned earliest access time are greater than If being spaced duration;It is raw in response to determining that the time difference of current time and above-mentioned earliest access time is not more than preset interval duration At the abnormal operation solicited message for being used to indicate aforesaid operations request exception.
In some embodiments, the above method further includes:In response to determining current time and above-mentioned earliest access time Time difference is greater than preset interval duration, and generation is used to indicate aforesaid operations and requests normal normal operating solicited message.
In some embodiments, the above method further includes:It is default no more than above-mentioned in response to the above-mentioned access times of determination Access times generate above-mentioned normal operating solicited message.
In some embodiments, above-mentioned that above-mentioned current time is added in above-mentioned access time sequence, as above-mentioned visit After the last one access time for asking time series, the above method further includes:First from above-mentioned access time sequence Access time starts to delete access time until the number of access time in above-mentioned access time sequence is equal to above-mentioned default access Number.
In some embodiments, when deleting access above-mentioned first access time since in above-mentioned access time sequence Between until access time in above-mentioned access time sequence number be equal to above-mentioned default access times until, the above method also wraps It includes:The sum of above-mentioned current time and preset expiration duration are determined as expired time, so that above-mentioned memory database is in above-mentioned mistake Time phase, which is automatically deleted in above-mentioned memory database, requests matched user name, operation mark and access time sequence with aforesaid operations Column.
In some embodiments, above-mentioned to be not more than above-mentioned default access times in response to the above-mentioned access times of determination, it is raw At above-mentioned normal operating solicited message, including:The sum of above-mentioned current time and above-mentioned preset expiration duration are determined as above-mentioned mistake Time phase;Generate above-mentioned user's operation normal information.
Second aspect, it is above-mentioned to answer this application provides a kind of device that the policer operation applied to application server is requested It is communicated to connect with server and Web server, which includes:Receiving unit is configured to receive above-mentioned Web server transmission The operation requests including user name and operation mark, wherein aforesaid operations request be above-mentioned Web server from above-mentioned Web What the terminal of server communication connection received;Query unit, be configured in preset memory database inquiry with it is above-mentioned The number of access time in the matched access time sequence of operation requests, and the number for the access time found is determined as Access times, wherein correspondence is stored with user name, operation mark and access time sequence in above-mentioned memory database;First Determination unit is configured to determine whether above-mentioned access times are more than or equal to default access times;Adding unit is configured to It is greater than default access times in response to the above-mentioned access times of determination, by first access time in above-mentioned access time sequence It is determined as earliest access time, and above-mentioned current time is added in above-mentioned access time sequence, as above-mentioned access time The last one access time of sequence;Second determination unit is configured to determine current time and above-mentioned earliest access time Whether the time difference is greater than preset interval duration;First generation unit, be configured in response to determine current time and it is above-mentioned earliest The time difference of access time is not more than preset interval duration, generates and is used to indicate the abnormal abnormal operation request of aforesaid operations request Information.
In some embodiments, above-mentioned apparatus further includes:Second generation unit is configured in response to determining current time It is greater than preset interval duration with the time difference of above-mentioned earliest access time, it is normal normal that generation is used to indicate aforesaid operations request Operation requests information.
In some embodiments, above-mentioned apparatus further includes:Third generation unit is configured to visit in response to determination is above-mentioned Ask that number no more than above-mentioned default access times, generates above-mentioned normal operating solicited message.
In some embodiments, above-mentioned apparatus further includes:Unit is deleted, is configured to from above-mentioned access time sequence First access time starts to delete access time until the number of access time in above-mentioned access time sequence is equal to above-mentioned pre- If access times.
In some embodiments, above-mentioned apparatus further includes:Third determination unit is configured to above-mentioned current time and pre- If the sum of expired duration is determined as expired time, so that above-mentioned memory database is automatically deleted above-mentioned memory in above-mentioned expired time Matched user name, operation mark and access time sequence are requested with aforesaid operations in database.
In some embodiments, above-mentioned third generation unit includes:Determining module, be configured to by above-mentioned current time with The sum of above-mentioned preset expiration duration is determined as above-mentioned expired time;Generation module is configured to generate above-mentioned user's operation normal Information.
The third aspect, this application provides a kind of application server, which includes:One or more processing Device;Storage device, for storing one or more programs, when said one or multiple programs are by said one or multiple processors When execution, so that said one or multiple processors realize the method as described in implementation any in first aspect.
Fourth aspect, this application provides a kind of computer readable storage mediums, are stored thereon with computer program, special Sign is, the method as described in implementation any in first aspect is realized when which is executed by processor.
The method and apparatus that policer operation provided by the present application applied to application server is requested, by receiving Web clothes The operation requests that business device is sent, then inquiry and the matched access time sequence of aforesaid operations request in preset memory database In access time number, and the number for the access time found is determined as access times, has been accessed time determining In the case that number is greater than default access times, when first access time in access time sequence is determined as accessing earliest Between, and current time is added in above-mentioned access time sequence, when the last one access as above-mentioned access time sequence Between, and in the case where determining that the time difference of current time and above-mentioned earliest access time is no more than preset interval duration, it generates It is used to indicate the abnormal abnormal operation solicited message of aforesaid operations request, to realize the user name based on user and user institute The operation requests of the operation mark application server of the operation of request are monitored, rather than are based on terminal used by a user IP address be monitored, may modify by agency so as to avoid IP address and cause monitoring efficiency is lower to ask Topic.
Detailed description of the invention
By reading a detailed description of non-restrictive embodiments in the light of the attached drawings below, the application's is other Feature, objects and advantages will become more apparent upon:
Fig. 1 is that this application can be applied to exemplary system architecture figures therein;
Fig. 2 is the stream of the one embodiment for the method requested according to the policer operation applied to application server of the application Cheng Tu;
Fig. 3 is an application scenarios of the method requested according to the policer operation applied to application server of the application Schematic diagram;
Fig. 4 is another embodiment of the method requested according to the policer operation applied to application server of the application Flow chart;
Fig. 5 is the knot of the one embodiment for the device requested according to the policer operation applied to application server of the application Structure schematic diagram;
Fig. 6 is adapted for the structural schematic diagram for the computer system for realizing the application server of the embodiment of the present application.
Specific embodiment
The application is described in further detail with reference to the accompanying drawings and examples.It is understood that this place is retouched The specific embodiment stated is used only for explaining related invention, rather than the restriction to the invention.It also should be noted that in order to Convenient for description, part relevant to related invention is illustrated only in attached drawing.
It should be noted that in the absence of conflict, the features in the embodiments and the embodiments of the present application can phase Mutually combination.The application is described in detail below with reference to the accompanying drawings and in conjunction with the embodiments.
Fig. 1 shows the method that the policer operation applied to application server of the application can be applied to request or is applied to The exemplary system architecture 100 of the embodiment of the device of the policer operation request of application server.
As shown in Figure 1, system architecture 100 may include terminal device 101,102,103, network 104, Web server 105, network 106 and application server 107.Network 104 is between terminal device 101,102,103 and Web server 105 The medium of communication link is provided.Network 106 between Web server 105 and application server 106 to provide communication link Medium.Network 104 and network 106 may include various connection types, such as wired, wireless communication link or fiber optic cables etc. Deng.
User can be used terminal device 101,102,103 and be interacted with Web server 105 by network 104, with reception or Send message etc..Various client applications can be installed on terminal device 101,102,103, such as web browser applications, Shopping class application, searching class application, instant messaging tools, mailbox client, social platform software etc..
Terminal device 101,102,103 can be the various electronic equipments with display screen and supported web page browsing, packet Include but be not limited to smart phone, tablet computer, pocket computer on knee and desktop computer etc..
Web server 105 can be to provide the server of Web service, for example, showing on terminal device 101,102,103 The application of the Web clients such as the web browser shown and electronic business transaction provides document, site file and/or data file.Web clothes Business device can analyze the operation requests such as the Webpage request received or Web application request, and be tied according to analysis Fruit requests Webpage or the operation requests such as Web application request are transmitted to and provide support to the operation requests accordingly and answer With server, and by application server monitoring aforesaid operations request it is that normal operating request or abnormal operation are requested, if on Stating operation requests is normal operating request, then application server obtains corresponding with aforesaid operations request data (such as webpage page Face data or Web application request data), then data corresponding with aforesaid operations request through Web server 105 are transmitted to end End equipment.
Application server 107 can be provided for web browser and web application it is simple and manageable to being The server of the access mechanism for resource of uniting, application server 107 can also provide rudimentary service, such as HTTP (Hyper text transfer Agreement, Hyper Text Transfer Protocol) realization and database connection management.Application server 107 can be with Servlet container, Java EE (Enterprise Edition) component etc. are provided.Application server 107 can be to being forwarded from The operation requests of Web server 105 are monitored, and determine operation requests be normal operation requests in the case where, obtain with Aforesaid operations request corresponding data (such as webpage data or Web request data), then will be with aforesaid operations request pair The data answered are transmitted to terminal device through Web server 105.
It should be noted that the method requested provided by the embodiment of the present application applied to the policer operation of application server It is generally executed by application server 107, correspondingly, the device that the policer operation applied to application server is requested is generally positioned at In application server 107.
It should be understood that the number of terminal device, network, Web server and application server in Fig. 1 is only schematic 's.According to needs are realized, any number of terminal device, network, Web server and application server can have.
With continued reference to Fig. 2, it illustrates the methods that the policer operation applied to application server according to the application is requested One embodiment process 200.The method that the policer operation for being applied to application server is requested, includes the following steps:
Step 201, the operation requests that Web server is sent are received.
In the present embodiment, the method requested applied to the policer operation of application server runs electronic equipment thereon (such as application server shown in FIG. 1) can be received by wired connection mode or radio connection from Web server Operation requests including user name and operation mark, wherein aforesaid operations request is that Web server is communicated from Web server What the terminal of connection received.Here, operation mark may include English character, number, Chinese character etc..Operation mark is for only The one requested operation of identity user using terminal.As an example, the user of user entitled " USER_A " can be used terminal and ask The operation of " order train ticket " is asked, corresponding operation mark can be " ORDER_TRAIN_TICKET ", then operation requests can be with For " USER_A-ORDER_TRAIN_TICKET ".
Step 202, it is inquired in preset memory database and the access in the matched access time sequence of operation requests The number of time, and the number for the access time found is determined as access times.
In the present embodiment, based on received operation requests in step 201, above-mentioned electronic equipment (such as shown in FIG. 1 answer With server) it can be inquired first in preset memory database and the access in the matched access time sequence of operation requests The number of time;Then, the number for the access time found is determined as access times.Wherein, above-mentioned memory database Middle correspondence is stored with user name, operation mark and access time sequence.
Here, each corresponding user name, operation mark and access time sequence stored in above-mentioned memory database, indicates User indicated by the user name accessed operation mark meaning each access time once in the access time sequence The operation shown.The access time sequence of storage corresponding with user name and operation mark is by least one according to time sequence The access time composition of arrangement.
As an example, above-mentioned memory database can be key assignments type memory database, it can be with user name and operation mark It is value with access time sequence as key, user name, operation mark and access time sequence correspondence is stored in above-mentioned memory number According in library, in this way, above-mentioned electronic equipment query key and aforesaid operations can request matched value work in above-mentioned memory database For access time sequence, and the number of access time in the access time sequence is obtained as access times.
Herein, identified access times indicate that above-mentioned electronic equipment once receives step before step 201 The number of operation requests received by 201.
Step 203, determine whether access times are more than or equal to default access times.
In the present embodiment, the method requested applied to the policer operation of application server runs electronic equipment thereon On can determine in step 202 determined by access times whether be more than or equal to default access times, if so, showing above-mentioned The number that electronic equipment receives operation requests received by step 201 before step 201 has reached or is more than Default access times, existing recently received primary same operation requests again in step 201, then above-mentioned electronic equipment has been at present The received number to operation requests received by step 201 has been over default access times, then can go to step 204.As an example, default access times can be 2 times, then above-mentioned electronic equipment can be greater than in identified access times Step 204 is gone in the case where equal to 2 times.
Step 204, first access time in above-mentioned access time sequence is determined as earliest access time, and will worked as The preceding time is added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence.
In the present embodiment, above-mentioned electronic equipment can determine that access times are greater than default access time in step 203 In the case where number, first access time in above-mentioned access time sequence is determined as earliest access time, and will be current when Between be added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence.Due to above-mentioned electricity Sub- equipment receives operation requests in current time, therefore, current time can be added to above-mentioned preset memory database In in access time sequence corresponding with aforesaid operations request.
Step 205, determine whether current time and the time difference of above-mentioned earliest access time are greater than preset interval duration.
In the present embodiment, above-mentioned electronic equipment can determine current time and the time difference of above-mentioned earliest access time is It is no to be greater than preset interval duration, if not, showing that above-mentioned electronic equipment receives institute in step 201 within preset interval duration The number of the operation requests received has been more than default access times, then can go to step 206.As an example, preset interval Duration can be 1 second, and default access times can be 2 times, then above-mentioned electronic equipment identified in step 202 can visit Ask that number is more than or equal to 2 times, and the time difference of identified earliest access time is not more than 1 second in current time and step 204 In the case where, show above-mentioned electronic equipment continuously received in preset interval duration 1 second same operation requests number it is super Default access times 2 times are crossed, which is considered abnormal operation request, then can go to Step 206.
Step 206, the abnormal operation solicited message for being used to indicate operation requests exception is generated.
In the present embodiment, when above-mentioned electronic equipment can determine current time and above-mentioned earliest access in step 205 Between time difference no more than in the case where preset interval duration, show that above-mentioned electronic equipment continuously receives in preset interval duration Number to same operation requests has been more than default access times, can be generated and is used to indicate the abnormal abnormal behaviour of operation requests Make solicited message.Here, abnormal operation solicited message is used to indicate the operation requests received in step 201 and asks for abnormal operation It asks.
In some optional implementations of the present embodiment, above-mentioned electronic equipment can generate abnormal operation request letter After breath, above-mentioned abnormal operation solicited message is sent to Web server, so that Web server requests above-mentioned abnormal operation Information is transmitted to the terminal for issuing the operation requests.
In some optional implementations of the present embodiment, above-mentioned electronic equipment can also generate abnormal operation request After information, operation indicated by operation mark that above-mentioned abnormal operation solicited message is sent in aforesaid operations request is corresponding Program module, for above procedure module according to above-mentioned abnormal operation solicited message determine do not execute aforesaid operations request in grasp Make a check mark indicated operation.
It is the method requested according to the policer operation applied to application server of the present embodiment with continued reference to Fig. 3, Fig. 3 One schematic diagram of application scenarios.In the application scenarios of Fig. 3, user A first initiates a train using Web client application The operation requests of ticket surplus inquiry;Later, Web server can obtain above-mentioned behaviour as shown in appended drawing reference 301 in Fig. 3 from the background It requests, and as shown in appended drawing reference 302 in Fig. 3, aforesaid operations request is transmitted to, train ticket surplus query service is provided The application server of support:Train ticket query service device.Train ticket query service device is after receiving aforesaid operations request, pre- If memory database in inquiry with the matched access time sequence of the operation requests in access time number be 2, in advance If access times are 2 times, then access times are more than or equal to default access times, and obtain first in access time sequence Access time as earliest access time, and when current time is added in above-mentioned access time sequence as above-mentioned access Between sequence the last one access time, then determine current time and the time difference of above-mentioned earliest access time no more than between default Every duration 1 second, to generate exception request information, and as shown in appended drawing reference 303 in Fig. 3, above-mentioned exception generated is asked Ask information to be sent to Web server, then as indicated by reference number 306 of fig. 3 shown in exception request information is transmitted to by Web server Terminal, last terminal show exception request information in terminal as shown in appended drawing reference 305 in Fig. 3.
The operation requests that the method provided by the above embodiment of the application is sent by receiving Web server, then default Memory database in inquiry with aforesaid operations request the number of the access time in matched access time sequence, and will be looked into To the number of access time be determined as access times, in the case where determining that access times are greater than default access times, First access time in access time sequence is determined as earliest access time, and current time is added to above-mentioned access In time series, as the last one access time of above-mentioned access time sequence, and determine current time and it is above-mentioned earliest In the case that the time difference of access time is not more than preset interval duration, generates and be used to indicate the abnormal exception of aforesaid operations request Operation requests information, to realize the operation mark of user name and the requested operation of user based on user to application service The operation requests of device are monitored.May be modified by agency so as to avoid IP address causes monitoring efficiency lower Problem.
With further reference to Fig. 4, it illustrates another realities for the method that the policer operation for being applied to application server is requested Apply the process 400 of example.The process 400 for the method that the policer operation for being applied to application server is requested, includes the following steps:
Step 401, the operation requests that Web server is sent are received.
Step 402, it is inquired in preset memory database and the access in the matched access time sequence of operation requests The number of time, and the number for the access time found is determined as access times.
In the present embodiment, the concrete operations of step 401 and step 402 and step 201 in embodiment shown in Fig. 2 and step Rapid 202 operation is essentially identical, and details are not described herein.
Step 403, determine whether access times are more than or equal to default access times.
In the present embodiment, the method requested applied to the policer operation of application server runs electronic equipment thereon Can determine whether access times are more than or equal to default access times.
If so, showing that above-mentioned electronic equipment receives operation requests received by step 401 before step 401 Number has reached or has been more than default access times, and now recently received primary same operation is asked again in step 401 It asks, then the number that operation requests received by step 401 have been received in above-mentioned electronic equipment at present has been over default Access times can then go to step 404.As an example, default access times can be 2 times, then above-mentioned electronic equipment can be with Step 404 is gone in the case where identified access times are more than or equal to 2 times.
If not, showing that above-mentioned electronic equipment receives operation requests received by step 401 before step 401 Number is less than default access times, now recently received primary same operation requests again in step 401, then above-mentioned electronics is set The standby number that operation requests received by step 401 have been received at present is less than or equal to default access times, then can turn To step 409.As an example, default access times can be 2 times, then above-mentioned electronic equipment can access time identified Step 409 is gone in the case where number small 2 times.
Step 404, first access time in above-mentioned access time sequence is determined as earliest access time, and will worked as The preceding time is added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence.
In the present embodiment, the basic phase of operation of the concrete operations of step 404 and step 204 in embodiment shown in Fig. 2 Together, details are not described herein.Step 405 is gone to after executing the step 404.
Step 405, access time is deleted since first access time in access time sequence until above-mentioned access The number of access time is equal to default access times in time series.
In the present embodiment, above-mentioned electronic equipment can after executing the step 404, from access time sequence first A access time starts to delete access time until the number of access time in above-mentioned access time sequence is equal to default access time Number.In this way, being the memory consumption in order to reduce memory database, will be connect in above-mentioned preset memory database with step 401 Time, access time deleted earlier in the matched access time sequence of the operation requests received, only retained default access times Later access time time.After executing the step 405, step 406 is gone to.
Step 406, the sum of current time and preset expiration duration are determined as expired time.
In the present embodiment, above-mentioned electronic equipment can be after executing the step 405, when by current time and preset expiration It is the sum of long to be determined as expired time, so that above-mentioned memory database is automatically deleted above-mentioned internal storage data in identified expired time Matched user name, operation mark and access time sequence are requested with aforesaid operations in library.Herein, memory database provided Phase is automatically deleted function, that is, when memory database can be arranged corresponding with the data expired to certain data therein here Between, memory database can be automatically deleted corresponding data when reaching corresponding expired time.It is gone to after executing the step 406 Step 407.
Step 407, determine whether current time and the time difference of above-mentioned earliest access time are greater than preset interval duration.
In the present embodiment, above-mentioned electronic equipment can determine current time and the time difference of above-mentioned earliest access time is It is no to be greater than preset interval duration.
If not, showing that above-mentioned electronic equipment receives behaviour received in step 401 within preset interval duration The number for making to request has been more than default access times, then can go to step 408.As an example, preset interval duration can be 1 Second, default access times can be 2 times, then the access times that above-mentioned electronic equipment can determine in step 402 are greater than 2 It is secondary, and in current time and step 404 identified earliest access time time difference no more than 1 second in the case where, show on Stating electronic equipment and continuously receiving the number of same operation requests in preset interval duration 1 second has been more than default access times 2 times, which is considered abnormal operation request, then can go to step 408.
Although if so, showing that above-mentioned electronic equipment receives operation received in step 401 before step 401 The number of request is more than or equal to default access times, still, in step 401 receives time of operation requests and once connects earliest The time interval for receiving same operation requests has been over preset interval duration, shows the recently received operation requests For normal operation requests, then step 410 can be gone to.As an example, preset interval duration can be 1 second, access times are preset Can be 2 times, then above-mentioned electronic equipment can in step 402 determined by access times be more than or equal to 2 times, and it is current when Between be greater than 1 second with time difference of earliest access time identified in step 404 in the case where, although showing above-mentioned electronic equipment The number that the operation requests received in step 401 are received before step 401 is more than or equal to default access times 2 times, but The time interval for being the last time for receiving access request and once receiving same access request earliest is greater than in advance If interval duration 2 seconds, which is considered normal operating request, then can go to step 410.
It should be noted that the above-mentioned expired duration of expection can be greater than above-mentioned preset interval duration in practice.
Step 408, the abnormal operation solicited message for being used to indicate operation requests exception is generated.
In the present embodiment, the basic phase of operation of the concrete operations of step 408 and step 206 in embodiment shown in Fig. 2 Together, details are not described herein.After executing the step 408, method terminates.
Step 409, the sum of current time and preset expiration duration are determined as expired time.
In the present embodiment, above-mentioned electronic equipment can determine that access times are no more than default access in step 403 In the case where number, the sum of current time and preset expiration duration are determined as expired time, so that above-mentioned memory database exists Identified expired time be automatically deleted in above-mentioned memory database with aforesaid operations request matched user name, operation mark and Access time sequence.After executing the step 409, step 410 is gone to.
Step 410, it generates and is used to indicate the normal normal operating solicited message of aforesaid operations request.
In the present embodiment, when above-mentioned electronic equipment can determine current time and above-mentioned earliest access in step 407 Between time difference be greater than preset interval duration in the case where or can also step 409 completion after, generation be used to indicate State the normal normal operating solicited message of operation requests.Here, normal operating solicited message, which is used to indicate in step 201, receives Operation requests be normal operation requests.After executing the step 410, method terminates.
In some optional implementations of the present embodiment, above-mentioned electronic equipment can generate normal operating request letter After breath, by above-mentioned normal operating solicited message be sent to aforesaid operations request in operation mark indicated by operation it is corresponding Program module is marked so that above procedure module determines to execute to operate in aforesaid operations request according to above-mentioned normal operating solicited message Know indicated operation.
Figure 4, it is seen that compared with the corresponding embodiment of Fig. 2, it is applied to application server in the present embodiment The process 400 of the method for policer operation request has had more in the case where access times are not more than default access times, and In the case where the time difference of current time and earliest access time being greater than preset interval duration, normal operating solicited message is generated The step of.The scheme of the present embodiment description can make application server realizing more fully policer operation request as a result,.Separately Outside, setting expired time has also been had more, so as to reduce the memory overhead of memory database, has improved monitoring efficiency.
With further reference to Fig. 5, as the realization to method shown in above-mentioned each figure, this application provides one kind to be applied to application One embodiment of the device of the policer operation request of server, wherein above-mentioned application server and Web server communication link It connects, the Installation practice is corresponding with embodiment of the method shown in Fig. 2, which specifically can be applied to various electronic equipments In.
As shown in figure 5, the device 500 that the policer operation applied to application server of the present embodiment is requested includes:It receives Unit 501, query unit 502, the first determination unit 503, adding unit 504, the second determination unit 505 and the first generation unit 506.Wherein, receiving unit 501 are configured to receive the behaviour including user name and operation mark that above-mentioned Web server is sent It requests, wherein aforesaid operations request is that above-mentioned Web server is received from the terminal communicated to connect with above-mentioned Web server 's;Query unit 502 is configured to inquiry and the matched access time sequence of aforesaid operations request in preset memory database The number of access time in column, and the number for the access time found is determined as access times, wherein above-mentioned memory Correspondence is stored with user name, operation mark and access time sequence in database;First determination unit 503, is configured to determine Whether above-mentioned access times are more than or equal to default access times;Adding unit 504 is configured to visit in response to determination is above-mentioned Ask that number is greater than default access times, when first access time in above-mentioned access time sequence is determined as accessing earliest Between, and above-mentioned current time is added in above-mentioned access time sequence, the last one visit as above-mentioned access time sequence Ask the time;Second determination unit 505 is configured to determine whether current time and the time difference of above-mentioned earliest access time are greater than Preset interval duration;First generation unit 506, be configured in response to determine current time and above-mentioned earliest access time when Between difference be not more than preset interval duration, generate and be used to indicate the abnormal abnormal operation solicited message of aforesaid operations request.
In the present embodiment, the receiving unit 501 for the device 500 requested applied to the policer operation of application server is looked into Ask the specific of unit 502, the first determination unit 503, adding unit 504, the second determination unit 505 and the first generation unit 506 Processing and its brought technical effect can be respectively with reference to step 201, step 202, step 203, steps in Fig. 2 corresponding embodiment 204, the related description of step 205 and step 206, details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Second generation unit 507, It is configured to be greater than preset interval duration in response to the time difference for determining current time and above-mentioned earliest access time, generation is used for Indicate that aforesaid operations request normal normal operating solicited message.Second generation unit 507 it is specific processing and its it is brought Technical effect can refer to the related description of step 410 in Fig. 4 corresponding embodiment, and details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Third generation unit 508, It is configured to generate above-mentioned normal operating request letter no more than above-mentioned default access times in response to the above-mentioned access times of determination Breath.The specific processing of third generation unit 508 and its brought technical effect can refer to step 410 in Fig. 4 corresponding embodiment Related description, details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Delete unit 509, configuration For deleting access time since first access time in above-mentioned access time sequence until above-mentioned access time sequence The number of middle access time is equal to above-mentioned default access times.Delete the specific processing and its brought technology effect of unit 509 Fruit can refer to the related description of step 405 in Fig. 4 corresponding embodiment, and details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Third determination unit 510, It is configured to the sum of above-mentioned current time and preset expiration duration being determined as expired time, so that above-mentioned memory database is upper Expired time is stated to be automatically deleted in above-mentioned memory database when requesting matched user name, operation mark and access with aforesaid operations Between sequence.The specific processing of third determination unit 510 and its brought technical effect can refer to step in Fig. 4 corresponding embodiment 406 related description, details are not described herein.
In some optional implementations of the present embodiment, above-mentioned third generation unit 508 may include:Determining module 5081, it is configured to the sum of above-mentioned current time and above-mentioned preset expiration duration being determined as above-mentioned expired time;Generation module 5082, it is configured to generate above-mentioned user's operation normal information.The specific processing of determining module 5081 and generation module 5082 and Its brought technical effect can be respectively with reference to the related description of step 409 and step 410 in Fig. 4 corresponding embodiment, herein not It repeats again.
Below with reference to Fig. 6, it illustrates the computer systems 600 for the server for being suitable for being used to realize the embodiment of the present application Structural schematic diagram.Server shown in Fig. 6 is only an example, should not function and use scope band to the embodiment of the present application Carry out any restrictions.
As shown in fig. 6, computer system 600 includes central processing unit (CPU, Central Processing Unit) 601, it can be according to the program being stored in read-only memory (ROM, Read Only Memory) 602 or from storage section 606 programs being loaded into random access storage device (RAM, Random Access Memory) 603 and execute various appropriate Movement and processing.In RAM 603, also it is stored with system 600 and operates required various programs and data.CPU 601,ROM 602 and RAM 603 is connected with each other by bus 604.Input/output (I/O, Input/Output) interface 605 is also connected to Bus 604.
I/O interface 605 is connected to lower component:Storage section 606 including hard disk etc.;And including such as LAN (local Net, Local Area Network) card, modem etc. network interface card communications portion 607.Communications portion 607 passes through Communication process is executed by the network of such as internet.Driver 608 is also connected to I/O interface 605 as needed.Detachable media 609, such as disk, CD, magneto-optic disk, semiconductor memory etc., are mounted on as needed on driver 608, in order to from The computer program read thereon is mounted into storage section 606 as needed.
Particularly, in accordance with an embodiment of the present disclosure, it may be implemented as computer above with reference to the process of flow chart description Software program.For example, embodiment of the disclosure includes a kind of computer program product comprising be carried on computer-readable medium On computer program, which includes the program code for method shown in execution flow chart.In such reality It applies in example, which can be downloaded and installed from network by communications portion 607, and/or from detachable media 609 are mounted.When the computer program is executed by central processing unit (CPU) 601, limited in execution the present processes Above-mentioned function.It should be noted that computer-readable medium described herein can be computer-readable signal media or Computer readable storage medium either the two any combination.Computer readable storage medium for example can be --- but Be not limited to --- electricity, magnetic, optical, electromagnetic, infrared ray or semiconductor system, device or device, or any above combination. The more specific example of computer readable storage medium can include but is not limited to:Electrical connection with one or more conducting wires, Portable computer diskette, hard disk, random access storage device (RAM), read-only memory (ROM), erasable type may be programmed read-only deposit Reservoir (EPROM or flash memory), optical fiber, portable compact disc read-only memory (CD-ROM), light storage device, magnetic memory Part or above-mentioned any appropriate combination.In this application, computer readable storage medium, which can be, any include or stores The tangible medium of program, the program can be commanded execution system, device or device use or in connection.And In the application, computer-readable signal media may include in a base band or the data as the propagation of carrier wave a part are believed Number, wherein carrying computer-readable program code.The data-signal of this propagation can take various forms, including but not It is limited to electromagnetic signal, optical signal or above-mentioned any appropriate combination.Computer-readable signal media can also be computer Any computer-readable medium other than readable storage medium storing program for executing, the computer-readable medium can send, propagate or transmit use In by the use of instruction execution system, device or device or program in connection.Include on computer-readable medium Program code can transmit with any suitable medium, including but not limited to:Wirelessly, electric wire, optical cable, RF etc., Huo Zheshang Any appropriate combination stated.
Flow chart and block diagram in attached drawing are illustrated according to the system of the various embodiments of the application, method and computer journey The architecture, function and operation in the cards of sequence product.In this regard, each box in flowchart or block diagram can generation A part of one module, program segment or code of table, a part of the module, program segment or code include one or more use The executable instruction of the logic function as defined in realizing.It should also be noted that in some implementations as replacements, being marked in box The function of note can also occur in a different order than that indicated in the drawings.For example, two boxes succeedingly indicated are actually It can be basically executed in parallel, they can also be executed in the opposite order sometimes, and this depends on the function involved.Also it to infuse Meaning, the combination of each box in block diagram and or flow chart and the box in block diagram and or flow chart can be with holding The dedicated hardware based system of functions or operations as defined in row is realized, or can use specialized hardware and computer instruction Combination realize.
Being described in unit involved in the embodiment of the present application can be realized by way of software, can also be by hard The mode of part is realized.Described unit also can be set in the processor, for example, can be described as:A kind of processor packet Include receiving unit, query unit, the first determination unit, adding unit, the second determination unit and the first generation unit.Wherein, this The title of a little units does not constitute the restriction to the unit itself under certain conditions, for example, receiving unit can also be described For " unit for receiving operation requests ".
As on the other hand, present invention also provides a kind of computer-readable medium, which be can be Included in device described in above-described embodiment;It is also possible to individualism, and without in the supplying device.Above-mentioned calculating Machine readable medium carries one or more program, when said one or multiple programs are executed by the device, so that should Device:Receive the operation requests including user name and operation mark that above-mentioned Web server is sent, wherein aforesaid operations request It is that above-mentioned Web server is received from the terminal communicated to connect with above-mentioned Web server;It is looked into preset memory database It askes and requests the number of the access time in matched access time sequence with aforesaid operations, and by for the access time found Number is determined as access times, wherein correspondence is stored with user name, operation mark and access time sequence in above-mentioned memory database Column;Determine whether above-mentioned access times are more than or equal to default access times;It is greater than in response to the above-mentioned access times of determination pre- If access times, first access time in above-mentioned access time sequence is determined as earliest access time, and work as above-mentioned The preceding time is added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence;Determination is worked as Whether the time difference of preceding time and above-mentioned earliest access time are greater than preset interval duration;In response to determine current time with it is above-mentioned The time difference of earliest access time is not more than preset interval duration, generates and is used to indicate the abnormal abnormal operation of aforesaid operations request Solicited message.
Above description is only the preferred embodiment of the application and the explanation to institute's application technology principle.Those skilled in the art Member is it should be appreciated that invention scope involved in the application, however it is not limited to technology made of the specific combination of above-mentioned technical characteristic Scheme, while should also cover in the case where not departing from foregoing invention design, it is carried out by above-mentioned technical characteristic or its equivalent feature Any combination and the other technical solutions formed.Such as features described above has similar function with (but being not limited to) disclosed herein Can technical characteristic replaced mutually and the technical solution that is formed.

Claims (14)

1. a kind of method that the policer operation applied to application server is requested, which is characterized in that the application server and Web Server communication connection, the method includes:
Receive the operation requests including user name and operation mark that the Web server is sent, wherein the operation requests are The Web server is received from the terminal communicated to connect with the Web server;
With the access time in the matched access time sequence of the operation requests is inquired in preset memory database Number, and the number for the access time found is determined as access times, wherein correspondence is stored in the memory database User name, operation mark and access time sequence;
Determine whether the access times are more than or equal to default access times;
In response to determining that the access times are more than or equal to default access times, by first in the access time sequence Access time is determined as earliest access time, and the current time is added in the access time sequence, as described The last one access time of access time sequence;
Determine whether current time and the time difference of the earliest access time are greater than preset interval duration;
In response to determining that the time difference of current time and the earliest access time is not more than preset interval duration, generate for referring to Show the abnormal operation solicited message of the operation requests exception.
2. the method according to claim 1, wherein the method also includes:
In response to determining that the time difference of current time and the earliest access time is greater than preset interval duration, generation is used to indicate The normal normal operating solicited message of operation requests.
3. according to the method described in claim 2, it is characterized in that, the method also includes:
In response to determining that the access times are not more than the default access times, the normal operating solicited message is generated.
4. according to the method described in claim 3, it is characterized in that, described be added to the access time for the current time In sequence, after the last one access time as the access time sequence, the method also includes:
Access time is deleted since first access time in the access time sequence until the access time sequence The number of middle access time is equal to the default access times.
5. according to the method described in claim 4, it is characterized in that, first access from the access time sequence Time starts to delete access time until the number of access time in the access time sequence is equal to the default access times Later, the method also includes:
The sum of the current time and preset expiration duration are determined as expired time, so that the memory database is in the mistake Time phase is automatically deleted in the memory database and the matched user name of the operation requests, operation mark and access time sequence Column.
6. according to the method described in claim 5, it is characterized in that, described in response to determining that the access times are not more than institute Default access times are stated, the normal operating solicited message is generated, including:
The sum of the current time and the preset expiration duration are determined as the expired time;
Generate the user's operation normal information.
7. a kind of device that the policer operation applied to application server is requested, which is characterized in that the application server and Web Server communication connection, described device include:
Receiving unit is configured to receive the operation requests including user name and operation mark that the Web server is sent, In, the operation requests are that the Web server is received from the terminal communicated to connect with the Web server;
Query unit is configured to inquiry and the matched access time sequence of the operation requests in preset memory database In access time number, and the number for the access time found is determined as access times, wherein the memory number User name, operation mark and access time sequence are stored with according to correspondence in library;
First determination unit is configured to determine whether the access times are more than or equal to default access times;
Adding unit is configured in response to determining that the access times are greater than default access times, by the access time First access time in sequence is determined as earliest access time, and the current time is added to the access time sequence The last one access time in column, as the access time sequence;
Second determination unit, be configured to determine current time and the time difference of the earliest access time whether be greater than it is default between Every duration;
First generation unit is configured to the time difference in response to determining current time and the earliest access time no more than pre- If being spaced duration, the abnormal operation solicited message for being used to indicate the operation requests exception is generated.
8. device according to claim 7, which is characterized in that described device further includes:
Second generation unit is configured to be greater than in response to the time difference for determining current time and the earliest access time default It is spaced duration, generation is used to indicate the normal normal operating solicited message of the operation requests.
9. device according to claim 8, which is characterized in that described device further includes:
Third generation unit is configured to generate in response to determining that the access times are not more than the default access times The normal operating solicited message.
10. device according to claim 9, which is characterized in that described device further includes:
Delete unit, be configured to delete first access time since the access time sequence access time until The number of access time is equal to the default access times in the access time sequence.
11. device according to claim 10, which is characterized in that described device further includes:
Third determination unit is configured to the sum of the current time and preset expiration duration being determined as expired time, for The memory database is automatically deleted in the memory database and the matched user of the operation requests in the expired time Name, operation mark and access time sequence.
12. device according to claim 11, which is characterized in that the third generation unit includes:
Determining module is configured to the sum of the current time and the preset expiration duration being determined as the expired time;
Generation module is configured to generate the user's operation normal information.
13. a kind of application server, including:
One or more processors;
Storage device, for storing one or more programs,
When one or more of programs are executed by one or more of processors, so that one or more of processors Realize such as method as claimed in any one of claims 1 to 6.
14. a kind of computer readable storage medium, is stored thereon with computer program, which is characterized in that the program is by processor Such as method as claimed in any one of claims 1 to 6 is realized when execution.
CN201710343902.9A 2017-05-16 2017-05-16 The method and apparatus that policer operation applied to application server is requested Pending CN108880923A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710343902.9A CN108880923A (en) 2017-05-16 2017-05-16 The method and apparatus that policer operation applied to application server is requested

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710343902.9A CN108880923A (en) 2017-05-16 2017-05-16 The method and apparatus that policer operation applied to application server is requested

Publications (1)

Publication Number Publication Date
CN108880923A true CN108880923A (en) 2018-11-23

Family

ID=64320823

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710343902.9A Pending CN108880923A (en) 2017-05-16 2017-05-16 The method and apparatus that policer operation applied to application server is requested

Country Status (1)

Country Link
CN (1) CN108880923A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109413212A (en) * 2018-12-19 2019-03-01 北京百度网讯科技有限公司 Method and apparatus for handling request
CN110008050A (en) * 2019-04-11 2019-07-12 北京百度网讯科技有限公司 Method and apparatus for handling information
CN110247902A (en) * 2019-05-30 2019-09-17 中国工商银行股份有限公司 Website visiting method of controlling security, apparatus and system
CN111866101A (en) * 2020-07-08 2020-10-30 深圳市欢太科技有限公司 Access request processing method and device, storage medium and electronic equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103107948A (en) * 2011-11-15 2013-05-15 阿里巴巴集团控股有限公司 Flow control method and flow control device
US20140157341A1 (en) * 2011-04-15 2014-06-05 Sling Media, Inc. System and method to remotely program a receiving device
CN105337931A (en) * 2014-06-30 2016-02-17 北京新媒传信科技有限公司 Number limit control method and distributed number limit control system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140157341A1 (en) * 2011-04-15 2014-06-05 Sling Media, Inc. System and method to remotely program a receiving device
CN103107948A (en) * 2011-11-15 2013-05-15 阿里巴巴集团控股有限公司 Flow control method and flow control device
CN105337931A (en) * 2014-06-30 2016-02-17 北京新媒传信科技有限公司 Number limit control method and distributed number limit control system

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109413212A (en) * 2018-12-19 2019-03-01 北京百度网讯科技有限公司 Method and apparatus for handling request
US10931791B2 (en) 2018-12-19 2021-02-23 Beijing Baidu Netcom Science And Technology Co., Ltd. Method and apparatus for processing request
CN109413212B (en) * 2018-12-19 2021-09-17 北京百度网讯科技有限公司 Method and apparatus for processing requests
CN110008050A (en) * 2019-04-11 2019-07-12 北京百度网讯科技有限公司 Method and apparatus for handling information
CN110008050B (en) * 2019-04-11 2023-06-30 北京百度网讯科技有限公司 Method and device for processing information
CN110247902A (en) * 2019-05-30 2019-09-17 中国工商银行股份有限公司 Website visiting method of controlling security, apparatus and system
CN111866101A (en) * 2020-07-08 2020-10-30 深圳市欢太科技有限公司 Access request processing method and device, storage medium and electronic equipment
CN111866101B (en) * 2020-07-08 2023-05-26 深圳市欢太科技有限公司 Access request processing method and device, storage medium and electronic equipment

Similar Documents

Publication Publication Date Title
CN106874471B (en) Information pushing method and device
CN111062024B (en) Application login method and device
CN108989362A (en) A kind for the treatment of method and apparatus of static resource
CN110120917A (en) Method for routing and device based on content
CN107623690A (en) Login method, equipment and storage medium
CN109756337A (en) A kind of safety access method and device of service interface
CN108880923A (en) The method and apparatus that policer operation applied to application server is requested
CN108494860A (en) WEB accesses system, WEB access methods and device for client
CN109992406A (en) The method and client that picture requesting method, response picture are requested
CN109992732A (en) Information sharing method, device, electronic equipment and storage medium
CN109447712A (en) A kind of consultation method, device, electronic equipment and storage medium
CN112202744B (en) Multi-system data communication method and device
CN110069911A (en) Access control method, device, system, electronic equipment and readable storage medium
CN108804433A (en) Information-pushing method and device
CN109408748A (en) Method and apparatus for handling information
CN105701198B (en) Page verification method and device
CN109218041A (en) Request processing method and device for server system
CN109379179A (en) Method and apparatus for updating digital certificate
CN108011936A (en) Method and apparatus for pushed information
CN109471713A (en) Method and apparatus for query information
CN105635059B (en) A kind of WLAN access authentication method, relevant device and system
KR20130072907A (en) Method and system for shortening url
CN109614603A (en) Method and apparatus for generating information
CN110098921A (en) Verification code generation method, device, application service end and system
CN109005250A (en) Method and apparatus for accessing server-side

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20181123

RJ01 Rejection of invention patent application after publication