CN108880923A - The method and apparatus that policer operation applied to application server is requested - Google Patents
The method and apparatus that policer operation applied to application server is requested Download PDFInfo
- Publication number
- CN108880923A CN108880923A CN201710343902.9A CN201710343902A CN108880923A CN 108880923 A CN108880923 A CN 108880923A CN 201710343902 A CN201710343902 A CN 201710343902A CN 108880923 A CN108880923 A CN 108880923A
- Authority
- CN
- China
- Prior art keywords
- access
- access time
- time
- mentioned
- sequence
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/50—Testing arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/16—Threshold monitoring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
Abstract
This application discloses the method and apparatus that the policer operation for being applied to application server is requested.Above-mentioned application server and Web server communicate to connect, and a specific embodiment of this method includes:Receive the operation requests that Web server is sent;The number with the access time in the matched access time sequence of operation requests is inquired in preset memory database, and the number for the access time found is determined as access times;In response to determining, access times have been greater than default access times, first access time in access time sequence are determined as earliest access time, and current time is added to access time sequence;In response to determining that the time difference of current time and earliest access time is not more than preset interval duration, the abnormal operation solicited message for being used to indicate operation requests exception is generated.The embodiment realizes the user name based on user and the operation requests of the operation mark application server of the requested operation of user are monitored.
Description
Technical field
This application involves field of computer technology, and in particular to Internet technical field, more particularly to it is applied to application clothes
The method and apparatus of the policer operation request of business device.
Background technique
With internet and the fast development of e-commerce, user more and more carries out various be related on the internet
The operation of personal information and property.Since leakage of personal information and password are too simple, it may cause malicious user and pass through malice
The operation of program batch analog subscriber, causes the loss of user.In order to distinguish real user operation or malice simulated operation, need
The operation requests of user are monitored, determine that the operation requests of user are normal operating request or abnormal operation request.
Presently mainly determined by the address (Internet protocol, Internet Protocol) IP to terminal used by a user
User's operation is normal users operation or abnormal user operation.
However, the IP address of terminal is easy to modify by agency, to cause monitoring less than having modified IP address
Abnormal operation request, so there is a problem that the efficiency being monitored to the operation requests of user is lower.
Summary of the invention
The purpose of the application be to propose the method for improved policer operation request applied to application server a kind of with
Device, to solve the technical issues of background section above is mentioned.
In a first aspect, this application provides a kind of method that the policer operation applied to application server is requested, it is above-mentioned to answer
It is communicated to connect with server and Web server, this method includes:That receive above-mentioned Web server transmission includes user name and behaviour
The operation requests to make a check mark, wherein aforesaid operations request is that above-mentioned Web server is communicated to connect from above-mentioned Web server
What terminal received;Inquiry requests the access in matched access time sequence with aforesaid operations in preset memory database
The number of time, and the number for the access time found is determined as access times, wherein it is right in above-mentioned memory database
User name, operation mark and access time sequence should be stored with;Determine whether above-mentioned access times are more than or equal to default access
Number;It is greater than default access times in response to the above-mentioned access times of determination, by first visit in above-mentioned access time sequence
It asks that the time is determined as earliest access time, and above-mentioned current time is added in above-mentioned access time sequence, as above-mentioned visit
Ask the last one access time of time series;It is pre- to determine whether current time and the time difference of above-mentioned earliest access time are greater than
If being spaced duration;It is raw in response to determining that the time difference of current time and above-mentioned earliest access time is not more than preset interval duration
At the abnormal operation solicited message for being used to indicate aforesaid operations request exception.
In some embodiments, the above method further includes:In response to determining current time and above-mentioned earliest access time
Time difference is greater than preset interval duration, and generation is used to indicate aforesaid operations and requests normal normal operating solicited message.
In some embodiments, the above method further includes:It is default no more than above-mentioned in response to the above-mentioned access times of determination
Access times generate above-mentioned normal operating solicited message.
In some embodiments, above-mentioned that above-mentioned current time is added in above-mentioned access time sequence, as above-mentioned visit
After the last one access time for asking time series, the above method further includes:First from above-mentioned access time sequence
Access time starts to delete access time until the number of access time in above-mentioned access time sequence is equal to above-mentioned default access
Number.
In some embodiments, when deleting access above-mentioned first access time since in above-mentioned access time sequence
Between until access time in above-mentioned access time sequence number be equal to above-mentioned default access times until, the above method also wraps
It includes:The sum of above-mentioned current time and preset expiration duration are determined as expired time, so that above-mentioned memory database is in above-mentioned mistake
Time phase, which is automatically deleted in above-mentioned memory database, requests matched user name, operation mark and access time sequence with aforesaid operations
Column.
In some embodiments, above-mentioned to be not more than above-mentioned default access times in response to the above-mentioned access times of determination, it is raw
At above-mentioned normal operating solicited message, including:The sum of above-mentioned current time and above-mentioned preset expiration duration are determined as above-mentioned mistake
Time phase;Generate above-mentioned user's operation normal information.
Second aspect, it is above-mentioned to answer this application provides a kind of device that the policer operation applied to application server is requested
It is communicated to connect with server and Web server, which includes:Receiving unit is configured to receive above-mentioned Web server transmission
The operation requests including user name and operation mark, wherein aforesaid operations request be above-mentioned Web server from above-mentioned Web
What the terminal of server communication connection received;Query unit, be configured in preset memory database inquiry with it is above-mentioned
The number of access time in the matched access time sequence of operation requests, and the number for the access time found is determined as
Access times, wherein correspondence is stored with user name, operation mark and access time sequence in above-mentioned memory database;First
Determination unit is configured to determine whether above-mentioned access times are more than or equal to default access times;Adding unit is configured to
It is greater than default access times in response to the above-mentioned access times of determination, by first access time in above-mentioned access time sequence
It is determined as earliest access time, and above-mentioned current time is added in above-mentioned access time sequence, as above-mentioned access time
The last one access time of sequence;Second determination unit is configured to determine current time and above-mentioned earliest access time
Whether the time difference is greater than preset interval duration;First generation unit, be configured in response to determine current time and it is above-mentioned earliest
The time difference of access time is not more than preset interval duration, generates and is used to indicate the abnormal abnormal operation request of aforesaid operations request
Information.
In some embodiments, above-mentioned apparatus further includes:Second generation unit is configured in response to determining current time
It is greater than preset interval duration with the time difference of above-mentioned earliest access time, it is normal normal that generation is used to indicate aforesaid operations request
Operation requests information.
In some embodiments, above-mentioned apparatus further includes:Third generation unit is configured to visit in response to determination is above-mentioned
Ask that number no more than above-mentioned default access times, generates above-mentioned normal operating solicited message.
In some embodiments, above-mentioned apparatus further includes:Unit is deleted, is configured to from above-mentioned access time sequence
First access time starts to delete access time until the number of access time in above-mentioned access time sequence is equal to above-mentioned pre-
If access times.
In some embodiments, above-mentioned apparatus further includes:Third determination unit is configured to above-mentioned current time and pre-
If the sum of expired duration is determined as expired time, so that above-mentioned memory database is automatically deleted above-mentioned memory in above-mentioned expired time
Matched user name, operation mark and access time sequence are requested with aforesaid operations in database.
In some embodiments, above-mentioned third generation unit includes:Determining module, be configured to by above-mentioned current time with
The sum of above-mentioned preset expiration duration is determined as above-mentioned expired time;Generation module is configured to generate above-mentioned user's operation normal
Information.
The third aspect, this application provides a kind of application server, which includes:One or more processing
Device;Storage device, for storing one or more programs, when said one or multiple programs are by said one or multiple processors
When execution, so that said one or multiple processors realize the method as described in implementation any in first aspect.
Fourth aspect, this application provides a kind of computer readable storage mediums, are stored thereon with computer program, special
Sign is, the method as described in implementation any in first aspect is realized when which is executed by processor.
The method and apparatus that policer operation provided by the present application applied to application server is requested, by receiving Web clothes
The operation requests that business device is sent, then inquiry and the matched access time sequence of aforesaid operations request in preset memory database
In access time number, and the number for the access time found is determined as access times, has been accessed time determining
In the case that number is greater than default access times, when first access time in access time sequence is determined as accessing earliest
Between, and current time is added in above-mentioned access time sequence, when the last one access as above-mentioned access time sequence
Between, and in the case where determining that the time difference of current time and above-mentioned earliest access time is no more than preset interval duration, it generates
It is used to indicate the abnormal abnormal operation solicited message of aforesaid operations request, to realize the user name based on user and user institute
The operation requests of the operation mark application server of the operation of request are monitored, rather than are based on terminal used by a user
IP address be monitored, may modify by agency so as to avoid IP address and cause monitoring efficiency is lower to ask
Topic.
Detailed description of the invention
By reading a detailed description of non-restrictive embodiments in the light of the attached drawings below, the application's is other
Feature, objects and advantages will become more apparent upon:
Fig. 1 is that this application can be applied to exemplary system architecture figures therein;
Fig. 2 is the stream of the one embodiment for the method requested according to the policer operation applied to application server of the application
Cheng Tu;
Fig. 3 is an application scenarios of the method requested according to the policer operation applied to application server of the application
Schematic diagram;
Fig. 4 is another embodiment of the method requested according to the policer operation applied to application server of the application
Flow chart;
Fig. 5 is the knot of the one embodiment for the device requested according to the policer operation applied to application server of the application
Structure schematic diagram;
Fig. 6 is adapted for the structural schematic diagram for the computer system for realizing the application server of the embodiment of the present application.
Specific embodiment
The application is described in further detail with reference to the accompanying drawings and examples.It is understood that this place is retouched
The specific embodiment stated is used only for explaining related invention, rather than the restriction to the invention.It also should be noted that in order to
Convenient for description, part relevant to related invention is illustrated only in attached drawing.
It should be noted that in the absence of conflict, the features in the embodiments and the embodiments of the present application can phase
Mutually combination.The application is described in detail below with reference to the accompanying drawings and in conjunction with the embodiments.
Fig. 1 shows the method that the policer operation applied to application server of the application can be applied to request or is applied to
The exemplary system architecture 100 of the embodiment of the device of the policer operation request of application server.
As shown in Figure 1, system architecture 100 may include terminal device 101,102,103, network 104, Web server
105, network 106 and application server 107.Network 104 is between terminal device 101,102,103 and Web server 105
The medium of communication link is provided.Network 106 between Web server 105 and application server 106 to provide communication link
Medium.Network 104 and network 106 may include various connection types, such as wired, wireless communication link or fiber optic cables etc.
Deng.
User can be used terminal device 101,102,103 and be interacted with Web server 105 by network 104, with reception or
Send message etc..Various client applications can be installed on terminal device 101,102,103, such as web browser applications,
Shopping class application, searching class application, instant messaging tools, mailbox client, social platform software etc..
Terminal device 101,102,103 can be the various electronic equipments with display screen and supported web page browsing, packet
Include but be not limited to smart phone, tablet computer, pocket computer on knee and desktop computer etc..
Web server 105 can be to provide the server of Web service, for example, showing on terminal device 101,102,103
The application of the Web clients such as the web browser shown and electronic business transaction provides document, site file and/or data file.Web clothes
Business device can analyze the operation requests such as the Webpage request received or Web application request, and be tied according to analysis
Fruit requests Webpage or the operation requests such as Web application request are transmitted to and provide support to the operation requests accordingly and answer
With server, and by application server monitoring aforesaid operations request it is that normal operating request or abnormal operation are requested, if on
Stating operation requests is normal operating request, then application server obtains corresponding with aforesaid operations request data (such as webpage page
Face data or Web application request data), then data corresponding with aforesaid operations request through Web server 105 are transmitted to end
End equipment.
Application server 107 can be provided for web browser and web application it is simple and manageable to being
The server of the access mechanism for resource of uniting, application server 107 can also provide rudimentary service, such as HTTP (Hyper text transfer
Agreement, Hyper Text Transfer Protocol) realization and database connection management.Application server 107 can be with
Servlet container, Java EE (Enterprise Edition) component etc. are provided.Application server 107 can be to being forwarded from
The operation requests of Web server 105 are monitored, and determine operation requests be normal operation requests in the case where, obtain with
Aforesaid operations request corresponding data (such as webpage data or Web request data), then will be with aforesaid operations request pair
The data answered are transmitted to terminal device through Web server 105.
It should be noted that the method requested provided by the embodiment of the present application applied to the policer operation of application server
It is generally executed by application server 107, correspondingly, the device that the policer operation applied to application server is requested is generally positioned at
In application server 107.
It should be understood that the number of terminal device, network, Web server and application server in Fig. 1 is only schematic
's.According to needs are realized, any number of terminal device, network, Web server and application server can have.
With continued reference to Fig. 2, it illustrates the methods that the policer operation applied to application server according to the application is requested
One embodiment process 200.The method that the policer operation for being applied to application server is requested, includes the following steps:
Step 201, the operation requests that Web server is sent are received.
In the present embodiment, the method requested applied to the policer operation of application server runs electronic equipment thereon
(such as application server shown in FIG. 1) can be received by wired connection mode or radio connection from Web server
Operation requests including user name and operation mark, wherein aforesaid operations request is that Web server is communicated from Web server
What the terminal of connection received.Here, operation mark may include English character, number, Chinese character etc..Operation mark is for only
The one requested operation of identity user using terminal.As an example, the user of user entitled " USER_A " can be used terminal and ask
The operation of " order train ticket " is asked, corresponding operation mark can be " ORDER_TRAIN_TICKET ", then operation requests can be with
For " USER_A-ORDER_TRAIN_TICKET ".
Step 202, it is inquired in preset memory database and the access in the matched access time sequence of operation requests
The number of time, and the number for the access time found is determined as access times.
In the present embodiment, based on received operation requests in step 201, above-mentioned electronic equipment (such as shown in FIG. 1 answer
With server) it can be inquired first in preset memory database and the access in the matched access time sequence of operation requests
The number of time;Then, the number for the access time found is determined as access times.Wherein, above-mentioned memory database
Middle correspondence is stored with user name, operation mark and access time sequence.
Here, each corresponding user name, operation mark and access time sequence stored in above-mentioned memory database, indicates
User indicated by the user name accessed operation mark meaning each access time once in the access time sequence
The operation shown.The access time sequence of storage corresponding with user name and operation mark is by least one according to time sequence
The access time composition of arrangement.
As an example, above-mentioned memory database can be key assignments type memory database, it can be with user name and operation mark
It is value with access time sequence as key, user name, operation mark and access time sequence correspondence is stored in above-mentioned memory number
According in library, in this way, above-mentioned electronic equipment query key and aforesaid operations can request matched value work in above-mentioned memory database
For access time sequence, and the number of access time in the access time sequence is obtained as access times.
Herein, identified access times indicate that above-mentioned electronic equipment once receives step before step 201
The number of operation requests received by 201.
Step 203, determine whether access times are more than or equal to default access times.
In the present embodiment, the method requested applied to the policer operation of application server runs electronic equipment thereon
On can determine in step 202 determined by access times whether be more than or equal to default access times, if so, showing above-mentioned
The number that electronic equipment receives operation requests received by step 201 before step 201 has reached or is more than
Default access times, existing recently received primary same operation requests again in step 201, then above-mentioned electronic equipment has been at present
The received number to operation requests received by step 201 has been over default access times, then can go to step
204.As an example, default access times can be 2 times, then above-mentioned electronic equipment can be greater than in identified access times
Step 204 is gone in the case where equal to 2 times.
Step 204, first access time in above-mentioned access time sequence is determined as earliest access time, and will worked as
The preceding time is added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence.
In the present embodiment, above-mentioned electronic equipment can determine that access times are greater than default access time in step 203
In the case where number, first access time in above-mentioned access time sequence is determined as earliest access time, and will be current when
Between be added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence.Due to above-mentioned electricity
Sub- equipment receives operation requests in current time, therefore, current time can be added to above-mentioned preset memory database
In in access time sequence corresponding with aforesaid operations request.
Step 205, determine whether current time and the time difference of above-mentioned earliest access time are greater than preset interval duration.
In the present embodiment, above-mentioned electronic equipment can determine current time and the time difference of above-mentioned earliest access time is
It is no to be greater than preset interval duration, if not, showing that above-mentioned electronic equipment receives institute in step 201 within preset interval duration
The number of the operation requests received has been more than default access times, then can go to step 206.As an example, preset interval
Duration can be 1 second, and default access times can be 2 times, then above-mentioned electronic equipment identified in step 202 can visit
Ask that number is more than or equal to 2 times, and the time difference of identified earliest access time is not more than 1 second in current time and step 204
In the case where, show above-mentioned electronic equipment continuously received in preset interval duration 1 second same operation requests number it is super
Default access times 2 times are crossed, which is considered abnormal operation request, then can go to
Step 206.
Step 206, the abnormal operation solicited message for being used to indicate operation requests exception is generated.
In the present embodiment, when above-mentioned electronic equipment can determine current time and above-mentioned earliest access in step 205
Between time difference no more than in the case where preset interval duration, show that above-mentioned electronic equipment continuously receives in preset interval duration
Number to same operation requests has been more than default access times, can be generated and is used to indicate the abnormal abnormal behaviour of operation requests
Make solicited message.Here, abnormal operation solicited message is used to indicate the operation requests received in step 201 and asks for abnormal operation
It asks.
In some optional implementations of the present embodiment, above-mentioned electronic equipment can generate abnormal operation request letter
After breath, above-mentioned abnormal operation solicited message is sent to Web server, so that Web server requests above-mentioned abnormal operation
Information is transmitted to the terminal for issuing the operation requests.
In some optional implementations of the present embodiment, above-mentioned electronic equipment can also generate abnormal operation request
After information, operation indicated by operation mark that above-mentioned abnormal operation solicited message is sent in aforesaid operations request is corresponding
Program module, for above procedure module according to above-mentioned abnormal operation solicited message determine do not execute aforesaid operations request in grasp
Make a check mark indicated operation.
It is the method requested according to the policer operation applied to application server of the present embodiment with continued reference to Fig. 3, Fig. 3
One schematic diagram of application scenarios.In the application scenarios of Fig. 3, user A first initiates a train using Web client application
The operation requests of ticket surplus inquiry;Later, Web server can obtain above-mentioned behaviour as shown in appended drawing reference 301 in Fig. 3 from the background
It requests, and as shown in appended drawing reference 302 in Fig. 3, aforesaid operations request is transmitted to, train ticket surplus query service is provided
The application server of support:Train ticket query service device.Train ticket query service device is after receiving aforesaid operations request, pre-
If memory database in inquiry with the matched access time sequence of the operation requests in access time number be 2, in advance
If access times are 2 times, then access times are more than or equal to default access times, and obtain first in access time sequence
Access time as earliest access time, and when current time is added in above-mentioned access time sequence as above-mentioned access
Between sequence the last one access time, then determine current time and the time difference of above-mentioned earliest access time no more than between default
Every duration 1 second, to generate exception request information, and as shown in appended drawing reference 303 in Fig. 3, above-mentioned exception generated is asked
Ask information to be sent to Web server, then as indicated by reference number 306 of fig. 3 shown in exception request information is transmitted to by Web server
Terminal, last terminal show exception request information in terminal as shown in appended drawing reference 305 in Fig. 3.
The operation requests that the method provided by the above embodiment of the application is sent by receiving Web server, then default
Memory database in inquiry with aforesaid operations request the number of the access time in matched access time sequence, and will be looked into
To the number of access time be determined as access times, in the case where determining that access times are greater than default access times,
First access time in access time sequence is determined as earliest access time, and current time is added to above-mentioned access
In time series, as the last one access time of above-mentioned access time sequence, and determine current time and it is above-mentioned earliest
In the case that the time difference of access time is not more than preset interval duration, generates and be used to indicate the abnormal exception of aforesaid operations request
Operation requests information, to realize the operation mark of user name and the requested operation of user based on user to application service
The operation requests of device are monitored.May be modified by agency so as to avoid IP address causes monitoring efficiency lower
Problem.
With further reference to Fig. 4, it illustrates another realities for the method that the policer operation for being applied to application server is requested
Apply the process 400 of example.The process 400 for the method that the policer operation for being applied to application server is requested, includes the following steps:
Step 401, the operation requests that Web server is sent are received.
Step 402, it is inquired in preset memory database and the access in the matched access time sequence of operation requests
The number of time, and the number for the access time found is determined as access times.
In the present embodiment, the concrete operations of step 401 and step 402 and step 201 in embodiment shown in Fig. 2 and step
Rapid 202 operation is essentially identical, and details are not described herein.
Step 403, determine whether access times are more than or equal to default access times.
In the present embodiment, the method requested applied to the policer operation of application server runs electronic equipment thereon
Can determine whether access times are more than or equal to default access times.
If so, showing that above-mentioned electronic equipment receives operation requests received by step 401 before step 401
Number has reached or has been more than default access times, and now recently received primary same operation is asked again in step 401
It asks, then the number that operation requests received by step 401 have been received in above-mentioned electronic equipment at present has been over default
Access times can then go to step 404.As an example, default access times can be 2 times, then above-mentioned electronic equipment can be with
Step 404 is gone in the case where identified access times are more than or equal to 2 times.
If not, showing that above-mentioned electronic equipment receives operation requests received by step 401 before step 401
Number is less than default access times, now recently received primary same operation requests again in step 401, then above-mentioned electronics is set
The standby number that operation requests received by step 401 have been received at present is less than or equal to default access times, then can turn
To step 409.As an example, default access times can be 2 times, then above-mentioned electronic equipment can access time identified
Step 409 is gone in the case where number small 2 times.
Step 404, first access time in above-mentioned access time sequence is determined as earliest access time, and will worked as
The preceding time is added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence.
In the present embodiment, the basic phase of operation of the concrete operations of step 404 and step 204 in embodiment shown in Fig. 2
Together, details are not described herein.Step 405 is gone to after executing the step 404.
Step 405, access time is deleted since first access time in access time sequence until above-mentioned access
The number of access time is equal to default access times in time series.
In the present embodiment, above-mentioned electronic equipment can after executing the step 404, from access time sequence first
A access time starts to delete access time until the number of access time in above-mentioned access time sequence is equal to default access time
Number.In this way, being the memory consumption in order to reduce memory database, will be connect in above-mentioned preset memory database with step 401
Time, access time deleted earlier in the matched access time sequence of the operation requests received, only retained default access times
Later access time time.After executing the step 405, step 406 is gone to.
Step 406, the sum of current time and preset expiration duration are determined as expired time.
In the present embodiment, above-mentioned electronic equipment can be after executing the step 405, when by current time and preset expiration
It is the sum of long to be determined as expired time, so that above-mentioned memory database is automatically deleted above-mentioned internal storage data in identified expired time
Matched user name, operation mark and access time sequence are requested with aforesaid operations in library.Herein, memory database provided
Phase is automatically deleted function, that is, when memory database can be arranged corresponding with the data expired to certain data therein here
Between, memory database can be automatically deleted corresponding data when reaching corresponding expired time.It is gone to after executing the step 406
Step 407.
Step 407, determine whether current time and the time difference of above-mentioned earliest access time are greater than preset interval duration.
In the present embodiment, above-mentioned electronic equipment can determine current time and the time difference of above-mentioned earliest access time is
It is no to be greater than preset interval duration.
If not, showing that above-mentioned electronic equipment receives behaviour received in step 401 within preset interval duration
The number for making to request has been more than default access times, then can go to step 408.As an example, preset interval duration can be 1
Second, default access times can be 2 times, then the access times that above-mentioned electronic equipment can determine in step 402 are greater than 2
It is secondary, and in current time and step 404 identified earliest access time time difference no more than 1 second in the case where, show on
Stating electronic equipment and continuously receiving the number of same operation requests in preset interval duration 1 second has been more than default access times
2 times, which is considered abnormal operation request, then can go to step 408.
Although if so, showing that above-mentioned electronic equipment receives operation received in step 401 before step 401
The number of request is more than or equal to default access times, still, in step 401 receives time of operation requests and once connects earliest
The time interval for receiving same operation requests has been over preset interval duration, shows the recently received operation requests
For normal operation requests, then step 410 can be gone to.As an example, preset interval duration can be 1 second, access times are preset
Can be 2 times, then above-mentioned electronic equipment can in step 402 determined by access times be more than or equal to 2 times, and it is current when
Between be greater than 1 second with time difference of earliest access time identified in step 404 in the case where, although showing above-mentioned electronic equipment
The number that the operation requests received in step 401 are received before step 401 is more than or equal to default access times 2 times, but
The time interval for being the last time for receiving access request and once receiving same access request earliest is greater than in advance
If interval duration 2 seconds, which is considered normal operating request, then can go to step 410.
It should be noted that the above-mentioned expired duration of expection can be greater than above-mentioned preset interval duration in practice.
Step 408, the abnormal operation solicited message for being used to indicate operation requests exception is generated.
In the present embodiment, the basic phase of operation of the concrete operations of step 408 and step 206 in embodiment shown in Fig. 2
Together, details are not described herein.After executing the step 408, method terminates.
Step 409, the sum of current time and preset expiration duration are determined as expired time.
In the present embodiment, above-mentioned electronic equipment can determine that access times are no more than default access in step 403
In the case where number, the sum of current time and preset expiration duration are determined as expired time, so that above-mentioned memory database exists
Identified expired time be automatically deleted in above-mentioned memory database with aforesaid operations request matched user name, operation mark and
Access time sequence.After executing the step 409, step 410 is gone to.
Step 410, it generates and is used to indicate the normal normal operating solicited message of aforesaid operations request.
In the present embodiment, when above-mentioned electronic equipment can determine current time and above-mentioned earliest access in step 407
Between time difference be greater than preset interval duration in the case where or can also step 409 completion after, generation be used to indicate
State the normal normal operating solicited message of operation requests.Here, normal operating solicited message, which is used to indicate in step 201, receives
Operation requests be normal operation requests.After executing the step 410, method terminates.
In some optional implementations of the present embodiment, above-mentioned electronic equipment can generate normal operating request letter
After breath, by above-mentioned normal operating solicited message be sent to aforesaid operations request in operation mark indicated by operation it is corresponding
Program module is marked so that above procedure module determines to execute to operate in aforesaid operations request according to above-mentioned normal operating solicited message
Know indicated operation.
Figure 4, it is seen that compared with the corresponding embodiment of Fig. 2, it is applied to application server in the present embodiment
The process 400 of the method for policer operation request has had more in the case where access times are not more than default access times, and
In the case where the time difference of current time and earliest access time being greater than preset interval duration, normal operating solicited message is generated
The step of.The scheme of the present embodiment description can make application server realizing more fully policer operation request as a result,.Separately
Outside, setting expired time has also been had more, so as to reduce the memory overhead of memory database, has improved monitoring efficiency.
With further reference to Fig. 5, as the realization to method shown in above-mentioned each figure, this application provides one kind to be applied to application
One embodiment of the device of the policer operation request of server, wherein above-mentioned application server and Web server communication link
It connects, the Installation practice is corresponding with embodiment of the method shown in Fig. 2, which specifically can be applied to various electronic equipments
In.
As shown in figure 5, the device 500 that the policer operation applied to application server of the present embodiment is requested includes:It receives
Unit 501, query unit 502, the first determination unit 503, adding unit 504, the second determination unit 505 and the first generation unit
506.Wherein, receiving unit 501 are configured to receive the behaviour including user name and operation mark that above-mentioned Web server is sent
It requests, wherein aforesaid operations request is that above-mentioned Web server is received from the terminal communicated to connect with above-mentioned Web server
's;Query unit 502 is configured to inquiry and the matched access time sequence of aforesaid operations request in preset memory database
The number of access time in column, and the number for the access time found is determined as access times, wherein above-mentioned memory
Correspondence is stored with user name, operation mark and access time sequence in database;First determination unit 503, is configured to determine
Whether above-mentioned access times are more than or equal to default access times;Adding unit 504 is configured to visit in response to determination is above-mentioned
Ask that number is greater than default access times, when first access time in above-mentioned access time sequence is determined as accessing earliest
Between, and above-mentioned current time is added in above-mentioned access time sequence, the last one visit as above-mentioned access time sequence
Ask the time;Second determination unit 505 is configured to determine whether current time and the time difference of above-mentioned earliest access time are greater than
Preset interval duration;First generation unit 506, be configured in response to determine current time and above-mentioned earliest access time when
Between difference be not more than preset interval duration, generate and be used to indicate the abnormal abnormal operation solicited message of aforesaid operations request.
In the present embodiment, the receiving unit 501 for the device 500 requested applied to the policer operation of application server is looked into
Ask the specific of unit 502, the first determination unit 503, adding unit 504, the second determination unit 505 and the first generation unit 506
Processing and its brought technical effect can be respectively with reference to step 201, step 202, step 203, steps in Fig. 2 corresponding embodiment
204, the related description of step 205 and step 206, details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Second generation unit 507,
It is configured to be greater than preset interval duration in response to the time difference for determining current time and above-mentioned earliest access time, generation is used for
Indicate that aforesaid operations request normal normal operating solicited message.Second generation unit 507 it is specific processing and its it is brought
Technical effect can refer to the related description of step 410 in Fig. 4 corresponding embodiment, and details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Third generation unit 508,
It is configured to generate above-mentioned normal operating request letter no more than above-mentioned default access times in response to the above-mentioned access times of determination
Breath.The specific processing of third generation unit 508 and its brought technical effect can refer to step 410 in Fig. 4 corresponding embodiment
Related description, details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Delete unit 509, configuration
For deleting access time since first access time in above-mentioned access time sequence until above-mentioned access time sequence
The number of middle access time is equal to above-mentioned default access times.Delete the specific processing and its brought technology effect of unit 509
Fruit can refer to the related description of step 405 in Fig. 4 corresponding embodiment, and details are not described herein.
In some optional implementations of the present embodiment, above-mentioned apparatus can also include:Third determination unit 510,
It is configured to the sum of above-mentioned current time and preset expiration duration being determined as expired time, so that above-mentioned memory database is upper
Expired time is stated to be automatically deleted in above-mentioned memory database when requesting matched user name, operation mark and access with aforesaid operations
Between sequence.The specific processing of third determination unit 510 and its brought technical effect can refer to step in Fig. 4 corresponding embodiment
406 related description, details are not described herein.
In some optional implementations of the present embodiment, above-mentioned third generation unit 508 may include:Determining module
5081, it is configured to the sum of above-mentioned current time and above-mentioned preset expiration duration being determined as above-mentioned expired time;Generation module
5082, it is configured to generate above-mentioned user's operation normal information.The specific processing of determining module 5081 and generation module 5082 and
Its brought technical effect can be respectively with reference to the related description of step 409 and step 410 in Fig. 4 corresponding embodiment, herein not
It repeats again.
Below with reference to Fig. 6, it illustrates the computer systems 600 for the server for being suitable for being used to realize the embodiment of the present application
Structural schematic diagram.Server shown in Fig. 6 is only an example, should not function and use scope band to the embodiment of the present application
Carry out any restrictions.
As shown in fig. 6, computer system 600 includes central processing unit (CPU, Central Processing Unit)
601, it can be according to the program being stored in read-only memory (ROM, Read Only Memory) 602 or from storage section
606 programs being loaded into random access storage device (RAM, Random Access Memory) 603 and execute various appropriate
Movement and processing.In RAM 603, also it is stored with system 600 and operates required various programs and data.CPU 601,ROM
602 and RAM 603 is connected with each other by bus 604.Input/output (I/O, Input/Output) interface 605 is also connected to
Bus 604.
I/O interface 605 is connected to lower component:Storage section 606 including hard disk etc.;And including such as LAN (local
Net, Local Area Network) card, modem etc. network interface card communications portion 607.Communications portion 607 passes through
Communication process is executed by the network of such as internet.Driver 608 is also connected to I/O interface 605 as needed.Detachable media
609, such as disk, CD, magneto-optic disk, semiconductor memory etc., are mounted on as needed on driver 608, in order to from
The computer program read thereon is mounted into storage section 606 as needed.
Particularly, in accordance with an embodiment of the present disclosure, it may be implemented as computer above with reference to the process of flow chart description
Software program.For example, embodiment of the disclosure includes a kind of computer program product comprising be carried on computer-readable medium
On computer program, which includes the program code for method shown in execution flow chart.In such reality
It applies in example, which can be downloaded and installed from network by communications portion 607, and/or from detachable media
609 are mounted.When the computer program is executed by central processing unit (CPU) 601, limited in execution the present processes
Above-mentioned function.It should be noted that computer-readable medium described herein can be computer-readable signal media or
Computer readable storage medium either the two any combination.Computer readable storage medium for example can be --- but
Be not limited to --- electricity, magnetic, optical, electromagnetic, infrared ray or semiconductor system, device or device, or any above combination.
The more specific example of computer readable storage medium can include but is not limited to:Electrical connection with one or more conducting wires,
Portable computer diskette, hard disk, random access storage device (RAM), read-only memory (ROM), erasable type may be programmed read-only deposit
Reservoir (EPROM or flash memory), optical fiber, portable compact disc read-only memory (CD-ROM), light storage device, magnetic memory
Part or above-mentioned any appropriate combination.In this application, computer readable storage medium, which can be, any include or stores
The tangible medium of program, the program can be commanded execution system, device or device use or in connection.And
In the application, computer-readable signal media may include in a base band or the data as the propagation of carrier wave a part are believed
Number, wherein carrying computer-readable program code.The data-signal of this propagation can take various forms, including but not
It is limited to electromagnetic signal, optical signal or above-mentioned any appropriate combination.Computer-readable signal media can also be computer
Any computer-readable medium other than readable storage medium storing program for executing, the computer-readable medium can send, propagate or transmit use
In by the use of instruction execution system, device or device or program in connection.Include on computer-readable medium
Program code can transmit with any suitable medium, including but not limited to:Wirelessly, electric wire, optical cable, RF etc., Huo Zheshang
Any appropriate combination stated.
Flow chart and block diagram in attached drawing are illustrated according to the system of the various embodiments of the application, method and computer journey
The architecture, function and operation in the cards of sequence product.In this regard, each box in flowchart or block diagram can generation
A part of one module, program segment or code of table, a part of the module, program segment or code include one or more use
The executable instruction of the logic function as defined in realizing.It should also be noted that in some implementations as replacements, being marked in box
The function of note can also occur in a different order than that indicated in the drawings.For example, two boxes succeedingly indicated are actually
It can be basically executed in parallel, they can also be executed in the opposite order sometimes, and this depends on the function involved.Also it to infuse
Meaning, the combination of each box in block diagram and or flow chart and the box in block diagram and or flow chart can be with holding
The dedicated hardware based system of functions or operations as defined in row is realized, or can use specialized hardware and computer instruction
Combination realize.
Being described in unit involved in the embodiment of the present application can be realized by way of software, can also be by hard
The mode of part is realized.Described unit also can be set in the processor, for example, can be described as:A kind of processor packet
Include receiving unit, query unit, the first determination unit, adding unit, the second determination unit and the first generation unit.Wherein, this
The title of a little units does not constitute the restriction to the unit itself under certain conditions, for example, receiving unit can also be described
For " unit for receiving operation requests ".
As on the other hand, present invention also provides a kind of computer-readable medium, which be can be
Included in device described in above-described embodiment;It is also possible to individualism, and without in the supplying device.Above-mentioned calculating
Machine readable medium carries one or more program, when said one or multiple programs are executed by the device, so that should
Device:Receive the operation requests including user name and operation mark that above-mentioned Web server is sent, wherein aforesaid operations request
It is that above-mentioned Web server is received from the terminal communicated to connect with above-mentioned Web server;It is looked into preset memory database
It askes and requests the number of the access time in matched access time sequence with aforesaid operations, and by for the access time found
Number is determined as access times, wherein correspondence is stored with user name, operation mark and access time sequence in above-mentioned memory database
Column;Determine whether above-mentioned access times are more than or equal to default access times;It is greater than in response to the above-mentioned access times of determination pre-
If access times, first access time in above-mentioned access time sequence is determined as earliest access time, and work as above-mentioned
The preceding time is added in above-mentioned access time sequence, the last one access time as above-mentioned access time sequence;Determination is worked as
Whether the time difference of preceding time and above-mentioned earliest access time are greater than preset interval duration;In response to determine current time with it is above-mentioned
The time difference of earliest access time is not more than preset interval duration, generates and is used to indicate the abnormal abnormal operation of aforesaid operations request
Solicited message.
Above description is only the preferred embodiment of the application and the explanation to institute's application technology principle.Those skilled in the art
Member is it should be appreciated that invention scope involved in the application, however it is not limited to technology made of the specific combination of above-mentioned technical characteristic
Scheme, while should also cover in the case where not departing from foregoing invention design, it is carried out by above-mentioned technical characteristic or its equivalent feature
Any combination and the other technical solutions formed.Such as features described above has similar function with (but being not limited to) disclosed herein
Can technical characteristic replaced mutually and the technical solution that is formed.
Claims (14)
1. a kind of method that the policer operation applied to application server is requested, which is characterized in that the application server and Web
Server communication connection, the method includes:
Receive the operation requests including user name and operation mark that the Web server is sent, wherein the operation requests are
The Web server is received from the terminal communicated to connect with the Web server;
With the access time in the matched access time sequence of the operation requests is inquired in preset memory database
Number, and the number for the access time found is determined as access times, wherein correspondence is stored in the memory database
User name, operation mark and access time sequence;
Determine whether the access times are more than or equal to default access times;
In response to determining that the access times are more than or equal to default access times, by first in the access time sequence
Access time is determined as earliest access time, and the current time is added in the access time sequence, as described
The last one access time of access time sequence;
Determine whether current time and the time difference of the earliest access time are greater than preset interval duration;
In response to determining that the time difference of current time and the earliest access time is not more than preset interval duration, generate for referring to
Show the abnormal operation solicited message of the operation requests exception.
2. the method according to claim 1, wherein the method also includes:
In response to determining that the time difference of current time and the earliest access time is greater than preset interval duration, generation is used to indicate
The normal normal operating solicited message of operation requests.
3. according to the method described in claim 2, it is characterized in that, the method also includes:
In response to determining that the access times are not more than the default access times, the normal operating solicited message is generated.
4. according to the method described in claim 3, it is characterized in that, described be added to the access time for the current time
In sequence, after the last one access time as the access time sequence, the method also includes:
Access time is deleted since first access time in the access time sequence until the access time sequence
The number of middle access time is equal to the default access times.
5. according to the method described in claim 4, it is characterized in that, first access from the access time sequence
Time starts to delete access time until the number of access time in the access time sequence is equal to the default access times
Later, the method also includes:
The sum of the current time and preset expiration duration are determined as expired time, so that the memory database is in the mistake
Time phase is automatically deleted in the memory database and the matched user name of the operation requests, operation mark and access time sequence
Column.
6. according to the method described in claim 5, it is characterized in that, described in response to determining that the access times are not more than institute
Default access times are stated, the normal operating solicited message is generated, including:
The sum of the current time and the preset expiration duration are determined as the expired time;
Generate the user's operation normal information.
7. a kind of device that the policer operation applied to application server is requested, which is characterized in that the application server and Web
Server communication connection, described device include:
Receiving unit is configured to receive the operation requests including user name and operation mark that the Web server is sent,
In, the operation requests are that the Web server is received from the terminal communicated to connect with the Web server;
Query unit is configured to inquiry and the matched access time sequence of the operation requests in preset memory database
In access time number, and the number for the access time found is determined as access times, wherein the memory number
User name, operation mark and access time sequence are stored with according to correspondence in library;
First determination unit is configured to determine whether the access times are more than or equal to default access times;
Adding unit is configured in response to determining that the access times are greater than default access times, by the access time
First access time in sequence is determined as earliest access time, and the current time is added to the access time sequence
The last one access time in column, as the access time sequence;
Second determination unit, be configured to determine current time and the time difference of the earliest access time whether be greater than it is default between
Every duration;
First generation unit is configured to the time difference in response to determining current time and the earliest access time no more than pre-
If being spaced duration, the abnormal operation solicited message for being used to indicate the operation requests exception is generated.
8. device according to claim 7, which is characterized in that described device further includes:
Second generation unit is configured to be greater than in response to the time difference for determining current time and the earliest access time default
It is spaced duration, generation is used to indicate the normal normal operating solicited message of the operation requests.
9. device according to claim 8, which is characterized in that described device further includes:
Third generation unit is configured to generate in response to determining that the access times are not more than the default access times
The normal operating solicited message.
10. device according to claim 9, which is characterized in that described device further includes:
Delete unit, be configured to delete first access time since the access time sequence access time until
The number of access time is equal to the default access times in the access time sequence.
11. device according to claim 10, which is characterized in that described device further includes:
Third determination unit is configured to the sum of the current time and preset expiration duration being determined as expired time, for
The memory database is automatically deleted in the memory database and the matched user of the operation requests in the expired time
Name, operation mark and access time sequence.
12. device according to claim 11, which is characterized in that the third generation unit includes:
Determining module is configured to the sum of the current time and the preset expiration duration being determined as the expired time;
Generation module is configured to generate the user's operation normal information.
13. a kind of application server, including:
One or more processors;
Storage device, for storing one or more programs,
When one or more of programs are executed by one or more of processors, so that one or more of processors
Realize such as method as claimed in any one of claims 1 to 6.
14. a kind of computer readable storage medium, is stored thereon with computer program, which is characterized in that the program is by processor
Such as method as claimed in any one of claims 1 to 6 is realized when execution.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710343902.9A CN108880923A (en) | 2017-05-16 | 2017-05-16 | The method and apparatus that policer operation applied to application server is requested |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710343902.9A CN108880923A (en) | 2017-05-16 | 2017-05-16 | The method and apparatus that policer operation applied to application server is requested |
Publications (1)
Publication Number | Publication Date |
---|---|
CN108880923A true CN108880923A (en) | 2018-11-23 |
Family
ID=64320823
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710343902.9A Pending CN108880923A (en) | 2017-05-16 | 2017-05-16 | The method and apparatus that policer operation applied to application server is requested |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108880923A (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109413212A (en) * | 2018-12-19 | 2019-03-01 | 北京百度网讯科技有限公司 | Method and apparatus for handling request |
CN110008050A (en) * | 2019-04-11 | 2019-07-12 | 北京百度网讯科技有限公司 | Method and apparatus for handling information |
CN110247902A (en) * | 2019-05-30 | 2019-09-17 | 中国工商银行股份有限公司 | Website visiting method of controlling security, apparatus and system |
CN111866101A (en) * | 2020-07-08 | 2020-10-30 | 深圳市欢太科技有限公司 | Access request processing method and device, storage medium and electronic equipment |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103107948A (en) * | 2011-11-15 | 2013-05-15 | 阿里巴巴集团控股有限公司 | Flow control method and flow control device |
US20140157341A1 (en) * | 2011-04-15 | 2014-06-05 | Sling Media, Inc. | System and method to remotely program a receiving device |
CN105337931A (en) * | 2014-06-30 | 2016-02-17 | 北京新媒传信科技有限公司 | Number limit control method and distributed number limit control system |
-
2017
- 2017-05-16 CN CN201710343902.9A patent/CN108880923A/en active Pending
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20140157341A1 (en) * | 2011-04-15 | 2014-06-05 | Sling Media, Inc. | System and method to remotely program a receiving device |
CN103107948A (en) * | 2011-11-15 | 2013-05-15 | 阿里巴巴集团控股有限公司 | Flow control method and flow control device |
CN105337931A (en) * | 2014-06-30 | 2016-02-17 | 北京新媒传信科技有限公司 | Number limit control method and distributed number limit control system |
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109413212A (en) * | 2018-12-19 | 2019-03-01 | 北京百度网讯科技有限公司 | Method and apparatus for handling request |
US10931791B2 (en) | 2018-12-19 | 2021-02-23 | Beijing Baidu Netcom Science And Technology Co., Ltd. | Method and apparatus for processing request |
CN109413212B (en) * | 2018-12-19 | 2021-09-17 | 北京百度网讯科技有限公司 | Method and apparatus for processing requests |
CN110008050A (en) * | 2019-04-11 | 2019-07-12 | 北京百度网讯科技有限公司 | Method and apparatus for handling information |
CN110008050B (en) * | 2019-04-11 | 2023-06-30 | 北京百度网讯科技有限公司 | Method and device for processing information |
CN110247902A (en) * | 2019-05-30 | 2019-09-17 | 中国工商银行股份有限公司 | Website visiting method of controlling security, apparatus and system |
CN111866101A (en) * | 2020-07-08 | 2020-10-30 | 深圳市欢太科技有限公司 | Access request processing method and device, storage medium and electronic equipment |
CN111866101B (en) * | 2020-07-08 | 2023-05-26 | 深圳市欢太科技有限公司 | Access request processing method and device, storage medium and electronic equipment |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106874471B (en) | Information pushing method and device | |
CN111062024B (en) | Application login method and device | |
CN108989362A (en) | A kind for the treatment of method and apparatus of static resource | |
CN110120917A (en) | Method for routing and device based on content | |
CN107623690A (en) | Login method, equipment and storage medium | |
CN109756337A (en) | A kind of safety access method and device of service interface | |
CN108880923A (en) | The method and apparatus that policer operation applied to application server is requested | |
CN108494860A (en) | WEB accesses system, WEB access methods and device for client | |
CN109992406A (en) | The method and client that picture requesting method, response picture are requested | |
CN109992732A (en) | Information sharing method, device, electronic equipment and storage medium | |
CN109447712A (en) | A kind of consultation method, device, electronic equipment and storage medium | |
CN112202744B (en) | Multi-system data communication method and device | |
CN110069911A (en) | Access control method, device, system, electronic equipment and readable storage medium | |
CN108804433A (en) | Information-pushing method and device | |
CN109408748A (en) | Method and apparatus for handling information | |
CN105701198B (en) | Page verification method and device | |
CN109218041A (en) | Request processing method and device for server system | |
CN109379179A (en) | Method and apparatus for updating digital certificate | |
CN108011936A (en) | Method and apparatus for pushed information | |
CN109471713A (en) | Method and apparatus for query information | |
CN105635059B (en) | A kind of WLAN access authentication method, relevant device and system | |
KR20130072907A (en) | Method and system for shortening url | |
CN109614603A (en) | Method and apparatus for generating information | |
CN110098921A (en) | Verification code generation method, device, application service end and system | |
CN109005250A (en) | Method and apparatus for accessing server-side |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20181123 |
|
RJ01 | Rejection of invention patent application after publication |