TW200421772A - Method and system for blocking networked limitative information - Google Patents

Method and system for blocking networked limitative information Download PDF

Info

Publication number
TW200421772A
TW200421772A TW92107477A TW92107477A TW200421772A TW 200421772 A TW200421772 A TW 200421772A TW 92107477 A TW92107477 A TW 92107477A TW 92107477 A TW92107477 A TW 92107477A TW 200421772 A TW200421772 A TW 200421772A
Authority
TW
Taiwan
Prior art keywords
blocking
management information
network management
patent application
scope
Prior art date
Application number
TW92107477A
Other languages
Chinese (zh)
Other versions
TW595158B (en
Inventor
Chin-Lung Chiu
Original Assignee
Chin-Lung Chiu
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chin-Lung Chiu filed Critical Chin-Lung Chiu
Priority to TW92107477A priority Critical patent/TW595158B/en
Application granted granted Critical
Publication of TW595158B publication Critical patent/TW595158B/en
Publication of TW200421772A publication Critical patent/TW200421772A/en

Links

Landscapes

  • Information Transfer Between Computers (AREA)

Abstract

The present invention provides a method and a system for blocking limitative information entering an intranet of a client end, based on on-line remote comparison. An on-line server performs the filtering task regarding networked limitative information, including virus code information, accessed by client end. An on-line database capable of collecting new virus code and website information is updated in real-time with content of the limitative information. The server thus performs the comparison based on the content of the database, and returns the comparing results to the client end for blocking the link of a website or virus data.

Description

200421772 五、發明說明(1) 【發明所屬之技術領域】 本發明係有關於一種網路列管資訊的阻絕方法與系 統;特別是指,本發明是一種對於網際網路上列管資訊的 阻絕方法與系統,而該列管資訊的比對與收集於線上遠端 且為即時更新。 【先前技術】 在網際網路的劉覽中,内容安全(C ο n t e X t S e c u r i t y ) 包含了網頁的内容過濾以及病毒過濾。對於企業網路 (I n t r a n e t )而言,内容安全更是關係網路運作之安全性以 及員工之工作效率。 隨著企業e化的普遍,寬頻資源亦為企業帶來諸多的 φ 營運便利,但是許多員工卻利用企業的網際網路的寬頻資 源,在上班的時間瀏覽網站與下載或上傳大量私人的圖片 資料等,造成企業的生產效率下降,以及耗用企業的寬頻 資源。因此,企業管理者都希望能有效率的過濾員工在上 班時間所瀏覽的網站或網頁内容,並進一步阻絕企業所列 管之内容進入企業網路。 以網頁内容之過濾技術而言,主要係將收集的網址 (Uniform Resource Locators, URL)儲存於一資料庫,而 所收集的網址可能包括了成人色情、賭博、購物、即時對 談或股票網站等,或者是一些包含企業所希望列管資訊的 網站。企業網路的伺服器則依據資料庫所收集的網址來比t 對員工所瀏覽之網址或網頁的位置,進而加以阻絕和記 錄0200421772 V. Description of the invention (1) [Technical field to which the invention belongs] The present invention relates to a method and system for blocking information managed by a network; in particular, the present invention relates to a method for blocking information managed on an Internet And the system, and the management information is compared and collected online and remotely and updated in real time. [Prior technology] In Liu Lan of the Internet, content security (C ο n t e X t S e c r u t y) includes content filtering and virus filtering of web pages. For enterprise networks (Intra r a n e t), content security is more about the security of network operations and the efficiency of employees. With the popularization of enterprises, broadband resources have also brought a lot of φ operation convenience for enterprises. However, many employees use the broadband resources of the company's Internet to browse websites and download or upload a large number of private pictures during work hours. Etc., resulting in a decline in the production efficiency of the enterprise and the consumption of the company's broadband resources. Therefore, corporate managers want to be able to efficiently filter the content of websites or webpages that employees browse during business hours, and further prevent content listed by companies from entering the corporate network. In terms of webpage content filtering technology, the collected URLs (Uniform Resource Locators) are stored in a database, and the collected URLs may include adult pornography, gambling, shopping, instant chat or stock websites, etc. , Or some websites that contain information that companies want to manage. The server of the enterprise network compares the location of the website or webpage viewed by the employee according to the URL collected by the database, and then blocks and records it.

200421772 五、發明說明(2) 美國發明專利第6,233,618 號「Access control 〇f networked data」揭露一種存取控制技術,用以限 網路上資訊内容的存取,此—技術實施於用戶端裝置^ 如:代理伺服器、路由貝,^ ’衣置,例 他網路門戶設備。該用戶端步署=二防、$接器或其 包含:URLs、IP位址或農二=打用^戶端的貪訊分析, 的内容進行比對。 ,、貝源證明貢料,並且與資料庫 【發明内容】 依先前技術,過谵姑 對基礎,該資料廑 f枝術係以資料庫所收集的網址為比 並由該代理·置於用戶端的代理伺服器(Proxy200421772 V. Description of the invention (2) US invention patent No. 6,233,618 "Access control 0f networked data" discloses an access control technology for limiting access to information content on the network. This technology is implemented on the client device. : Proxy server, routing shell, ^ 'clothing, such as other network portal devices. The client's step = second defense, $ connector or its contents: URLs, IP address or Nonger = analysis of corruption by using ^ client, to compare. , Beiyuan proves the materials, and it is related to the database. 【Abstract】 According to the previous technology, the information is compared with the database. The website is compared with the URL collected by the database and placed by the agent. Proxy server

Server 載 a田琢代理甸 更新資料庫的内容,服益來執行比對工作以及定時下 過濾技術是否有辦:i由此可知資料庫所收集的網址成為 ^ 重毋 rn 主— 瞬息萬變,隨時架机、戈1^ f ;而且網際網路的資訊内容 列管網站亦應從^=列管網站應被即時收集,而無效的 影響阻絕效率且 ^ 移除,所以資料庫的更新問題不但 lt Al 1占用儲存杳 此外,弁铪%廿貝辟、。 70則技術之、广主、 用戶端的代理伺服娜毋過濾技術亦存在相同之問題, 毒碼的下載更新,因同樣地需要執行病毒比對工作以及病 毒碼應被即時妆隹 此為了企業網路的内容安全,新的病 而成本亦隨之増加。 t用戶端裝置必須承擔額外的負載 有鑒於先前社 月】技術,热仁^〜 對工作與收集工作比 轨仃包含病毒之網路列管資訊的比 儲存資源的佔用,=實施於用戶端裝置,因此造成用戶端 而且fc卜料τ 對工作亦增加了用戶端伺服器的Server Contains Tian Zhuo to update the contents of the database, to benefit from the comparison work and whether the filtering technology is available at regular intervals: From this, we can know that the URLs collected by the database become ^ heavy no rn master-changing rapidly, stand by Machine, Ge 1 ^ f; and the information content management website of the Internet should also be collected from ^ = management website should be collected in real time, and the ineffective impact prevents efficiency and ^ removed, so the database update problem is not only lt Al 1 Occupy storage. In addition, 弁 铪% 廿 Bepi. 70 of the technology, the owner, and the client's proxy server also have the same problem without filtering technology. The download and update of the virus code, because it also needs to perform virus comparison work, and the virus code should be real-time makeup. This is for the corporate network. Content is safe, new diseases and costs increase. t The client device must bear additional load. In view of the previous technology], the heat storage ^ ~ The occupation of the storage resources than the network management information that contains viruses, is implemented on the client device. , Which causes the client and fc data τ to work also increases the client server's

第6頁 200421772 五、發明說明(3) 負載。換言之,如何降低用戶端處理網路列管資訊的阻絕 問題,是此一技術領域有待解決的重要課題。 本發明的目的係提供一種遠端線上比對之阻絕方法。 本發明的另一目的係提供一種遠端線上比對之阻絕系 統。 本發明的另一目的係提供一種遠端線上比對之阻絕方 法,其中用戶端處理網路列管資訊的過濾工作可在線上遠 端執行,並即時更新網路列管資訊的内容。 本發明的另一目的係提供一種遠端線上比對之阻絕系 統,其中用戶端處理網路列管資訊的過濾工作可由線上遠 端的伺服器來執行,且該伺服器的資料庫即時更新網路列 管資訊的内容。 本發明的另一目的係提供一種遠端線上病毒比對之阻 絕方法,俾使用戶端處理病毒的過濾工作可在線上遠端執 行,並即時收集病毒碼特徵。 本發明的另一目的係提供一種遠端線上病毒比對之阻 絕系統,俾使用戶端處理病毒的過濾工作可由線上遠端的 伺服器來執行,其中該伺服器的資料庫即時收集病毒碼特 徵。 本發明的另一目的係提供一種可以提升比對效率的遠 端比對之阻絕方法,可在線上遠端有效過濾用戶端的網路 列管資訊。 本發明的另一目的係提供一種可以提升比對效率的遠 端比對之阻絕系統,可由線上遠端的伺服器有效過濾用戶Page 6 200421772 V. Description of the invention (3) Load. In other words, how to reduce the resistance of the client to processing network management information is an important issue to be solved in this technical field. The object of the present invention is to provide a method for blocking the comparison on the remote line. Another object of the present invention is to provide a rejection system for comparison on a remote line. Another object of the present invention is to provide a remote online comparison blocking method, in which the filtering work of the client to process the network management information can be performed online and remotely, and the content of the network management information is updated in real time. Another object of the present invention is to provide a remote online comparison and rejection system, in which the filtering work of the client to process network management information can be performed by an online and remote server, and the database of the server updates the network in real time. The contents of the road management information. Another object of the present invention is to provide a method for preventing and comparing virus on the remote line, so that the filtering work of virus processing on the client side can be performed on the remote line and collect virus code characteristics in real time. Another object of the present invention is to provide a remote online virus comparison and rejection system, so that the filtering work of virus processing on the client side can be performed by an online and remote server, wherein the database of the server collects virus signature characteristics in real time . Another object of the present invention is to provide a remote comparison and blocking method that can improve the comparison efficiency, and can effectively filter the network management information of the client on the remote side. Another object of the present invention is to provide a remote comparison and rejection system which can improve the comparison efficiency, and can effectively filter users by online and remote servers.

1 U H I 第7頁 200421772 五、發明說明(4) 端的網路列管資訊。 本發明的另一目的係提供一種可以提升比對效率的遠 端病毒比對之阻絕方法,可在線上遠端有效過濾用戶端的 病毒貧訊。 本發明的另一目的係提供一種可以提升比對效率的遠 端病毒比對之阻絕系統,可由線上遠端的伺服器有效過濾 用戶端的病毒貢訊。 本發明提供一種網路列管資訊的阻絕方法,當用戶端 使用者要經由網際網路連結某一網站或接收一可能包含病 毒之資料時,用戶端裝置會送出一特徵值至遠端的伺服 器,該伺服器的資料庫由一自動搜索引擎線上即時收集網 路列管資訊並收集病毒碼特徵,且該伺服器依據資料庫的 内容執行比對工作,並將比對結果傳回至用戶端裝置,俾 使用戶端根據比對結果來阻擋該網站的連結或包含病毒之 資料。 本發明提供一種網路列管資訊的阻絕系統,基於本發 明網路列管資訊的阻絕方法,該阻絕系統包含一線上的伺 服器以及一資料庫,該伺服器接收用戶端裝置送出的特徵 值,並依據資料庫的内容執行比對工作,再將比對結果傳 回至用戶端裝置,其中該資料庫由一自動搜索引擎線上即 時收集網路列管資訊並收集病毒碼特徵。 其中,本發明網路列管資訊的阻絕方法與系統係對於 一具有瀏覽器之用戶端終端機所連結之列管網站、網頁或 接收可能包含病毒之資料進行阻絕,俾使該瀏覽器無法連1 U H I Page 7 200421772 V. Description of the invention (4) Network management information at the end. Another object of the present invention is to provide a remote virus comparison and blocking method which can improve the comparison efficiency, and can effectively filter virus lean messages on the client side online and remotely. Another object of the present invention is to provide a remote virus comparison and rejection system that can improve the comparison efficiency, and can effectively filter virus messages on the client side by a server at the remote end of the line. The invention provides a method for blocking network management information. When a client user wants to connect to a website or receive data that may contain a virus through the Internet, the client device sends a characteristic value to a remote server. Server, the database of the server is collected by an automatic search engine in real time to collect network management information and virus signature characteristics, and the server performs a comparison task based on the content of the database and returns the comparison result to the user End device, so that the client can block the link to the website or contain virus-containing information based on the comparison result. The invention provides a network management information blocking system. Based on the network management information blocking method of the present invention, the blocking system includes an online server and a database, and the server receives the characteristic values sent by the client device. , And perform the comparison work according to the content of the database, and then return the comparison result to the client device, where the database collects network management information and virus signature characteristics online by an automatic search engine online. Among them, the method and system for blocking network management information according to the present invention is to block a management website, webpage or receiving data that may contain viruses connected to a client terminal with a browser, so that the browser cannot connect.

第8頁 200421772 五、發明說明(5) 結該列管網站、網頁,或者是無法顯示下載的内容,或是 無法接收。 其中,用戶端裝置可廣泛包含:終端機、代理伺服 器、路由器、交換器、防火牆、橋接器或其他網路門戶設 備,以執行列管網站、網頁或接收可能包含病毒之資料的 阻絕工作。 其中,特徵值可為U R L s、I P位址或未知格式之資料屬 性,或是連結網址的一部分,或病毒碼特徵。 根據本發明所實施的網路列管資訊的阻絕方法與系統,對 於用戶端的應用場合將可廣泛地包含但不受限於企業網 路、網咖網路、家庭網路以及學校網路對網際網路的連 _ 結。 ’ 【實施方式】 雖然本發明將參閱含有本發明較佳實施例之所附圖式 予以充份描述,但在此描述之前應瞭解熟悉本行之人士可 修改在本文中所描述之發明,同時獲致本發明之功效。因 此,須瞭解以下之描述對熟悉本行技藝之人士而言為一廣 泛之揭示,且其内容不在於限制本發明。 首先請參閱第一圖顯示本發明網路列管資訊的阻絕方 法之流程示意圖。本發明網路列管資訊的阻絕方法包含: 用戶端工作與遠端伺服工作,其中用戶端工作係在使用者 要經由網際網路1連結某一網站或接收一可能包含病毒之 資料時,用戶端裝置會擷取一特徵值並經網際網路傳送至 一遠端伺服器,且用戶端裝置會接收該遠端伺服器回傳一Page 8 200421772 V. Description of the invention (5) The website, webpage, or download content cannot be displayed or received. Among them, the client device can include a wide range of terminals, proxy servers, routers, switches, firewalls, bridges, or other web portal devices to perform blocking work to manage websites, web pages, or receive information that may contain viruses. Among them, the characteristic value may be a U R L s, an IP address, or a data attribute of an unknown format, or a part of a link URL, or a virus code characteristic. The method and system for blocking network management information implemented in accordance with the present invention can widely include, but not limited to, enterprise network, Internet cafe network, home network, and school network to the Internet for client applications. Internet connection. '[Embodiment] Although the present invention will be fully described with reference to the accompanying drawings containing preferred embodiments of the present invention, it should be understood that those skilled in the art can modify the invention described herein before describing this, and The effect of the present invention is obtained. Therefore, it should be understood that the following description is a broad disclosure for those familiar with the art of the Bank, and its content is not intended to limit the present invention. First, please refer to the first figure to show the flow chart of the method for blocking the network management information of the present invention. The method for blocking network management information according to the present invention includes: a client task and a remote server task, wherein the client task is when the user wants to connect to a website or receives a piece of data that may contain a virus through the Internet 1, the user The end device will capture a characteristic value and send it to a remote server via the Internet, and the client device will receive the remote server and send back a

200421772 五、發明說明(6) 比對結果,並依據該比對結果執行是否阻絕該網站的連結 或包含病毒之資料;遠端伺服工作係由一遠端伺服器接收 一來源之用戶端裝置所傳送的特徵值,並將該特徵值與一 資料庫的内容比對,進而得到一比對結果,該遠端伺服器 再將比對結果傳回至前述來源之用戶端裝置,俾使用戶端 處理網路列管資訊的過濾工作係由一遠端伺服器來執行。 在本發明的較佳實施例中,執行用戶端工作的用戶端 裝置可廣泛包含:代理伺服器、路由器、交換器、防火 牆、橋接器或其他網路門戶設備,而用戶端裝置所傳送的 特徵值與接收的比對結果僅數個位元組(B y t e s ),因此使 用戶端裝置可以有效地提昇遠端比對及執行的效率。此 彳B 外,遠端伺服工作尚包含即時更新該資料庫的内容,此資 料庫的内容為網路列管資訊的特徵值,該網路列管資訊泛 指網站或網頁内容包含成人色情、賭博、購物、毒品、搶 械、即時對談及或股票資訊等,或者是企業所制定的包含 病毒之電子郵件或檔案之網路列管資訊,其中包含最新病 毒碼資訊。 接著參閱第二圖,顯示本發明網路列管資訊的阻絕系 統之示意圖。本發明網路列管資訊的阻絕系統包含:一用 戶端裝置,位於用戶端;以及一伺服器,位於伺服器端, 而用戶端裝置與伺服器可藉由網際網路1彼此接收或傳送 資料。該用戶端裝置包含:瀏覽器1 1 ,提供使用者連結某> 一網站或接收一可能包含病毒之資料的介面;一擷取單元 1 2,可從該瀏覽器1 1欲連結之網站或可能包含病毒之資料200421772 V. Description of the invention (6) Comparison result, and whether the execution of the link or the virus-containing data is blocked according to the comparison result; the remote servo work is performed by a remote server receiving a source client device Send the characteristic value, and compare the characteristic value with the content of a database to obtain a comparison result, and the remote server returns the comparison result to the client device of the aforementioned source, so that the client end The filtering of network management information is performed by a remote server. In a preferred embodiment of the present invention, the client device performing the client's work may include: a proxy server, a router, a switch, a firewall, a bridge, or other network portal equipment, and the characteristics transmitted by the client device The comparison between the value and the received result is only a few bytes (Bytes), so that the client device can effectively improve the efficiency of remote comparison and execution. In addition, the remote server task also includes real-time updating of the content of this database. The content of this database is the characteristic value of the network management information. The network management information generally refers to the content of websites or webpages containing adult pornography, Gambling, shopping, drugs, snatching, real-time chat or stock information, etc., or network management information including virus emails or files formulated by enterprises, which contains the latest virus code information. Next, referring to the second figure, a schematic diagram of the network management information blocking system of the present invention is shown. The network management information blocking system of the present invention includes: a client device located at the client end; and a server located at the server end, and the client device and the server can receive or transmit data to each other through the Internet 1 . The client device includes: a browser 11 that provides a user with a link to a website or an interface that may receive data that may contain a virus; an extraction unit 12 that can be accessed from the website 11 1 Information that may contain viruses

第10頁 200421772 五、發明說明(7) 擷取一 碼特徵 傳送單 的伺服 元14, 瀏覽器 絕;以 果,並 站或接 時,允 料。 繼 列管資 博、購 網路列 21,從 並接收 24的網 端裝置 戶端裝 示為阻 徵值不 料庫2 4 比對結 特徵值 ,例如 元13, 器提出 從網際 1 1欲連 及一執 依據比 收可能 許該瀏 續參考 訊的特 物、即 管資訊 網際網 特徵值 路列管 所傳送 置所傳 擋,若 相同, ,則比 果經網 ,而該特徵值可能為資 :URLs、IP位址或未知4的一部份或是病毒 接收該特徵值並經由,式之資料屬性;一 請求,並將特徵值傳:際網路1向伺服器端 網路1接收一比對結果、,至^伺服器,一接收單 結之網站或可能包含主邊比對結果指示該 行單元1 5,接收來自=母之資料是否應該阻 對結果為阻擋日ί 單元Η的比對結 包含病毒之資料,且片劉覽器11連結該網 覽器1 1連結該網站< ^比對結果為允許 ^接收可能包含病毒之資 第二圖,伺服器包含一資 徵值,該網路列營眘邙—料庫2 4,儲存網路 時對談或股票網站ί 2成人色情、赌 ,其中包含最新病是企I所制定的 路1接收二來源之用戶端裝置所一提接出收的〜元求 二;運ί f7022,接收該特徵值並與資V庫 貝訊的特徵值比對以產生比對結/,4田庫 的特徵值與資料庫24的特徵值=同,二θ二 送的特徵值存在於資料庫24,則比對二 用戶端裝置所傳送的特徵值與資料庫2 4 ^ 或是用戶端裝置所傳送的特徵值不存在於次 對結果指示為允許;以及一傳送單元2 3,、貝 際網路1傳回至前述來源之用戶端裝置。Page 10 200421772 V. Description of the invention (7) Retrieve one-character features of the server element 14, the browser must not be used; if it is, the station or the receiver is allowed. Following the management of the network and the purchase of Internet 21, the network device installed from 24 receiving the client device is shown as the resistance value. Unexpected value 2 4 is the comparison characteristic value, such as RMB 13. The device proposes to connect from Internet 1 1 According to the agreement, the special feature that may allow the continuous reference information, that is, the information characteristic of the Internet, is transmitted and blocked by the pipeline, and if it is the same, then the result is passed through the network, and the characteristic value may be Data: URLs, IP address or part of unknown 4 or virus receives the characteristic value and passes the data attribute of the formula; a request and transmits the characteristic value: Internet 1 receives to server-side network 1 A comparison result, to a server, a website that receives a single knot may contain a primary side comparison result indicating that the unit of the line is 15. Whether receiving the data from the parent should block the result as a blocking date. Unit Η The comparison contains virus data, and the browser 11 links to the web browser 1 1 links to the website < ^ The result of the comparison is allowed ^ to receive the data that may contain viruses. The second picture, the server contains a value , The network is operated with caution—material bank 2 4 Or the stock website ί 2 adult pornography, gambling, which contains the latest disease is the road 1 formulated by the company I received from the source device of the client device ~ Yuan Qiu Er; Yun F7022, receive the feature value and Compare with the eigenvalue of Zibei Kuixun to generate a comparison result. The eigenvalue of 4 Tianku and the eigenvalue of database 24 = same. The feature value transmitted by the client device and the database 2 4 ^ or the feature value transmitted by the client device does not exist, and the result of the pairing is indicated as allowed; and a transmission unit 23, and the Internet 1 return To the client device from the aforementioned source.

第11頁 200421772 五、發明說明(8) 在本發明的進一步的實施例中,伺服器包含一自動搜 索引擎,該自動搜索引擎連結網際網路以即時收集最新的 網路列管資訊,進而更新資料庫的網路列管資訊,俾使用 戶端裝置可以阻絕網際網路上最新之列管網站或最新病毒 碼特徵。 請參閱第三圖A為本發明阻絕方法第一實施例之流程 圖。在本發明此一具體實施例揭示用戶端工作的流程與遠 端伺服工作的流程。用戶端工作的流程,包含以下步驟: 瀏覽資料 使用者操作瀏覽器經由網際網路欲 連結某一網站或接收一可能包含病毒之資料。 擷取特徵值 從該連結的網站或可能包含病毒 之資料擷取一特徵值,該特徵值可以為URLs、IP位址或資 料格式,並向遠端伺服器提出一請求(Request ),將特徵 值傳送至遠端伺服器。 判斷回傳結果 從遠端伺服器接收一比對結 果,並且判斷該比對結果係指示為阻絕或允許。 阻絕網頁連結根據比對結果指示為阻絕,執行網頁連 結的阻絕,即阻絕瀏覽器連結該網站或接收一可能包含病 毒之資料、網頁等,並繼續擷取瀏覽器欲連結另一網站或 接收另一可能包含病毒之資料的特徵值。 完成網頁連結 根據比對結果指不為允許’執 行網頁連結的程序,即允許瀏覽器連結該網站或接收資 料、網頁等,並繼續擷取瀏覽器欲連結另一網站或接收另 一可能包含病毒之資料的特徵值。Page 11 200421772 V. Description of the invention (8) In a further embodiment of the present invention, the server includes an automatic search engine that is connected to the Internet to collect the latest network management information in real time, and then update The database's network management information enables client devices to block the latest managed websites or the latest virus signatures on the Internet. Please refer to FIG. 3 for a flowchart of the first embodiment of the blocking method of the present invention. In this specific embodiment of the present invention, the flow of work on the client side and the flow of work on the remote end are disclosed. The flow of work on the client side includes the following steps: Browse data The user operates the browser via the Internet to connect to a website or receive information that may contain a virus. Retrieve feature value Extract a feature value from the linked website or data that may contain viruses. The feature value can be URLs, IP addresses, or data format, and submit a request to the remote server to request the feature. The value is sent to the remote server. Judging the return result A comparison result is received from the remote server, and the comparison result is indicated as being blocked or allowed. Blocking web links is indicated as blocking based on the result of the comparison. Blocking of web links is performed, that is, blocking the browser from linking to the website or receiving data, web pages, etc. that may contain viruses, and continuing to retrieve the browser's desire to link to another website or receive another A characteristic value that may contain information about the virus. Completing the web link according to the comparison result means that it is not allowed to perform the process of web link, that is, to allow the browser to link to the website or receive data, web pages, etc., and continue to retrieve the browser that wants to link to another website or receive another that may contain a virus The characteristic value of the data.

第12頁 200421772 五、發明說明(9) 繼續參考第三圖A,遠端伺服工作的流程,包含以下 步驟: 是否具有權限? 接收一來源之用戶端裝置所 提出的請求,判斷該來源是否具有權限,即判斷是否執行 比對工作。 拒絕提供服務 根據該來源不具有權限,伺服 器拒絕執行比對工作,並將此來源之要求棄置。 資料運算 根據該來源係具有權限,伺服器接 收該來源之用戶端裝置所傳送的特徵值,並執行資料運算 且將運算結果傳回至前述來源之用戶端裝置;在具體實施 例中,資料運算包含比對用戶端裝置所傳送的特徵值是否_ 存在於資料庫中之運算,而資料運算獲得用戶端裝置所傳 _ 送的特徵值存在於資料庫中,則產生指示為阻絕的比對結 果,反之資料運算獲得用戶端裝置所傳送的特徵值不存在 於資料庫中,則產生指示為允許的比對結果。 之後請參閱第三圖B為本發明阻絕方法第二實施例之 流程圖。在本發明此一具體實施例進一步揭示用戶端工作 的流程中包含快取單元的處理。為了進一步提昇用戶端處 理網路列管資訊的效率,在特徵值傳送之前,可在用戶端 進一步執行一初步比對,以快速允許用戶端經常連結之非 列管網站與網頁内容,或快速阻擋企業既定的列管網站與 網頁内容。用戶端裝置進一步包含一快取單元16,該快取 單元1 6包含快取記憶體,而該快取記憶體用儲存一部份網 路資訊的特徵值,俾使用戶端裝置向遠端伺服器提出請求Page 12 200421772 V. Description of the invention (9) Continue to refer to Figure 3A. The flow of the remote servo work includes the following steps: Do you have permission? After receiving a request from a client device of a source, it is determined whether the source has authority, that is, whether to perform a comparison task. Refuse to provide service According to the source does not have permission, the server refuses to perform the matching task and discards the request from this source. The data operation has authority according to the source. The server receives the feature value sent by the client device of the source, and performs data calculation and returns the operation result to the client device of the aforementioned source. In a specific embodiment, the data operation Contains an operation that compares whether the feature value sent by the client device _ exists in the database, and the data operation obtains the feature value sent by the client device _ that exists in the database, and generates a comparison result that indicates an obstruction On the other hand, if the feature value sent by the client device from the data operation does not exist in the database, a comparison result indicating that it is allowed is generated. Please refer to FIG. 3B for a flowchart of the second embodiment of the blocking method of the present invention. In this specific embodiment of the present invention, it is further disclosed that the process of the work of the client includes processing of the cache unit. In order to further improve the client's efficiency in processing network management information, before the feature value is transmitted, a preliminary comparison can be performed on the client to quickly allow non-managed websites and webpage content that the client frequently links to, or quickly block The company manages the website and webpage content. The client device further includes a cache unit 16, the cache unit 16 includes a cache memory, and the cache memory stores a part of the network information feature value, so that the client device servos to the remote server. Request

第13頁 200421772 五、發明說明(ίο) 之前,可以先判斷擷取的特徵值是否已存在於用戶端的快 取記憶體中,而獲得更快執行阻絕網路列管資訊的處理。 在本發明此一具體實施例中,用戶端工作的流程除了包含 第三圖A所示的步驟外,進一步包含以下步驟: 特徵值是否存在快取? 當擷取特徵值後,先 判斷該擷取的特徵值是否已存在快取記憶體中,並根據該 擷取的特徵值已存在於快取記憶體中,產生指示為阻絕或 允許的比對結果並執行判斷回傳結果的步驟,且根據該擷 取的特徵值不存在於快取記憶體中,向遠端伺服器提出一 請求,將該擷取的特徵值傳送至遠端伺服器。 將結果寫入快取 當遠端伺服器傳回比對結 果,將該網站、網頁的比對結果存入快取單元1 6,即記錄 於快取記憶體中,可提供上述步驟的初步比對之依據。俾 使用戶端經常連結之非列管網站與網頁内容,將直接決定 允許連結或顯示該非列管網站與網頁内容而無須傳送特徵 值至遠端伺服器;或者用戶端所連結之列管網站與網頁内 容,亦可直接阻擋連結或顯示該非列管網站與網頁内容而 無須傳送特徵值至遠端伺服器。 請參閱第四圖,顯示本發明網路列管資訊的阻絕系統 關於網址比對之系統方塊圖。在本發明此一具體實施例 中,本發明網路列管資訊的阻絕系統係執行包含網路列管 資訊的網址與網頁之阻絕,該阻絕系統包含:用戶端裝 置,位於用戶端;以及一伺服器,位於伺服器端,而用戶 端裝置與伺服器可藉由網際網路1彼此接收或傳送資料。Page 13 200421772 5. Before the description of the invention (ίο), you can first determine whether the extracted feature value already exists in the cache memory of the client, and get faster execution of the process of blocking network management information. In this specific embodiment of the present invention, in addition to the steps shown in FIG. 3A, the work flow of the client further includes the following steps: Is there a cache of feature values? After capturing the feature value, first determine whether the captured feature value already exists in the cache memory, and based on the captured feature value already exists in the cache memory, generate an indication as a block or allow comparison The result and the step of judging the return result are executed, and according to the extracted feature value does not exist in the cache memory, a request is made to the remote server, and the retrieved feature value is transmitted to the remote server. Write the result to the cache. When the remote server returns the comparison result, the comparison result of the website and the web page is stored in the cache unit 16, which is recorded in the cache memory, which can provide the preliminary comparison of the above steps. On the basis.俾 Unmanaged websites and webpage content that clients often link to will directly decide to allow linking or displaying the unmanaged websites and webpage content without sending characteristic values to remote servers; or managed websites and webpages linked to clients The content of the webpage can also directly block the link or display of the unmanaged website and webpage content without sending characteristic values to the remote server. Please refer to the fourth figure, which shows a block diagram of the system for blocking the network management information according to the present invention. In this specific embodiment of the present invention, the network management information blocking system of the present invention implements a blocking of a web site and a web page including the network management information. The blocking system includes: a client device located at the client; and The server is located on the server side, and the client device and the server can receive or transmit data to each other through the Internet 1.

第14頁 五、發明說明(11) 該用戶端裝置包含:複數個劉覽器1 別在用戶端裝置的終端機上執行; 200421772 ,這些瀏覽器11可分 些㈣器η欲連結之網站或網頁中掏例:從這 URLs或IP位址;一傳送單元13,接二如· „ ^ m H tf ,, , 伺服器,一接收單兀1 4,從網際網路工接收一比士 該比對結果指示某一瀏覽器〗丨欲連結之網站或網頁σ ’ 該阻絕;以及一執行單元丨5,接收該比對結果並確 應哪一劇覽器1 1 ,並依據比對結果為阻擋時,阻絕嗲斜庫 的瀏覽器1 1連結該網站或接收可能包含病毒之資料^ 據比對結果為允許時,允許該對應的瀏覽器丨丨連結該網^ 或接收可能包含病毒之資料。 在本發明的具體實施例中,執行單元1 5的實施包含數 種方式,其一方式係依據比對結果使用戶端的代理伺服器 阻擋或允許該對應的瀏覽器1 1連結網站或下載網頁;另L 方式係依據比對結果使用戶端的終端機無法顯示下载的内 容,或是無法接收開啟可能包含病毒之資料。 繼續參考第四圖,伺服器包含一資料庫2 4,儲存網路 列管資訊的特徵值,該網路列管資訊包含成人色情、賭 博、購物、即時對談或股票網站等,或者是企業所制定的 網路列管資訊;一接收單元2 1,從網際網路1接收一來源 之用戶端裝置所提出的請求,並確認該請求具有權限後接 收特徵值;一運算單元2 2,接收該特徵值並與資料庫的網 路列管資訊的特徵值比對,而基於一運算原則產生比對結Page 14 V. Description of the invention (11) The client device includes: a plurality of browsers 1 Do not execute on the terminal of the client device; 200421772, these browsers 11 can be divided into websites or websites to be linked Example from the webpage: from this URLs or IP addresses; a transmission unit 13, followed by such as „^ m H tf ,,, server, one receiving unit 14, one receiving from Internet workers The comparison result indicates a certain browser 〖丨 the website or webpage to be linked σ 'should be blocked; and an execution unit 丨 5 receives the comparison result and determines which browser 1 1 should be used, and according to the comparison result is When blocking, the browser of the oblique library is blocked 1 1 Link to the website or receive information that may contain viruses ^ When the comparison result is allowed, allow the corresponding browser 丨 丨 Link to the network ^ or receive information that may contain viruses In the specific embodiment of the present invention, the implementation of the execution unit 15 includes several ways. One way is to make the proxy server of the client block or allow the corresponding browser 11 to link to the website or download the webpage according to the comparison result. ; The other L mode is based on As a result, the terminal of the client cannot display the downloaded content or cannot receive the data that may contain viruses. Continue to refer to the fourth figure. The server includes a database 2 4 that stores the characteristic values of network management information. The network management information includes adult pornography, gambling, shopping, instant chat or stock websites, etc., or the network management information formulated by the enterprise; a receiving unit 21, which receives a source client from the Internet 1 A request made by a device and confirming that the request has permission to receive a characteristic value; an arithmetic unit 22 receives the characteristic value and compares it with the characteristic value of the network management information of the database, and generates a ratio based on an operation principle Butt

第15頁 200421772 五、發明說明(12) 果,該運算原則包含快速檢索資料庫之特徵值以進行比 對,若用戶端裝置所傳送的特徵值與資料庫的特徵值相 同,或是用戶端裝置所傳送的特徵值存在於資料庫,則比 對結果指示為阻擋,若用戶端裝置所傳送的特徵值與資料 庫的特徵值不相同,或是用戶端裝置所傳送的特徵值不存 在於資料庫,則比對結果指示為允許;以及一傳送單元 2 3,將比對結果經網際網路1傳回至前述來源之用戶端裝 置。 最後參考第五圖,顯示本發明網路列管資訊的阻絕系 統關於病毒碼特徵比對之系統方塊圖。在本發明此一具體 實施例中,本發明網路列管資訊的阻絕系統係執行包含病 毒碼之阻絕,該阻絕系統包含:用戶端裝置,位於用戶 端;以及一伺服器,位於伺服器端,而用戶端裝置與伺服 器可藉由網際網路彼此接收或傳送資料,其中相較於第四 圖所示的實施例,用戶端裝置進一步包含:一快取單元 1 6,該快取單元1 6包含:一記錄單元2 0,用於儲存網路列 管資訊以及病毒碼的特徵值,可由快取記憶體實施;一評 估單元1 7,接收擷取的特徵值並執行一評估原則,該評估 原則包含確認特徵值是否已存在於記錄單元2 0中,並且提 供列管資訊的定義改變,使用戶端可改變記錄單元2 0所收 集的内容;一決策單元1 8,接收評估單元1 6的結果決定是 否由傳送單元1 3提出請求並送出特徵值,且接收由接收單 元1 4所傳來的比對結果,並為該特徵值對應的病毒碼是否 應該阻絕或允許做出決定而指示執行單元1 5來執行;以Page 15 200421772 V. Description of the invention (12) As a result, the operation principle includes quickly searching the feature values of the database for comparison. If the feature value sent by the client device is the same as the feature value of the database, or the client side If the feature value sent by the device exists in the database, the comparison result indicates a block. If the feature value sent by the client device is not the same as the feature value of the database, or the feature value sent by the client device does not exist Database, the comparison result is indicated as permitted; and a transmitting unit 23 sends the comparison result to the client device of the aforementioned source via the Internet 1. Finally, referring to the fifth figure, a system block diagram of the virus information blocking system according to the present invention with respect to virus code feature comparison is shown. In this specific embodiment of the present invention, the network management information blocking system of the present invention performs blocking including virus codes. The blocking system includes: a client device located at the client; and a server located at the server. The client device and the server can receive or transmit data to each other through the Internet. Compared with the embodiment shown in the fourth figure, the client device further includes: a cache unit 16; the cache unit 16 includes: a recording unit 20 for storing network management information and characteristic values of virus codes, which can be implemented by cache memory; an evaluation unit 17 for receiving the extracted characteristic values and executing an evaluation principle, The evaluation principle includes confirming whether the characteristic value already exists in the recording unit 20, and providing a change in the definition of the management information, so that the user can change the content collected by the recording unit 20; a decision unit 18, and a receiving evaluation unit 1 The result of 6 determines whether the request is sent by the transmitting unit 13 and the characteristic value is received, and the comparison result transmitted by the receiving unit 14 is received, and the virus code corresponding to the characteristic value is received. Whether the decision should be blocked or allowed to be instructed to execute unit 15 to execute;

第16頁 200421772 五、發明說明(13) 及,一更新單元1 9,接受決策單元1 8的指示,將更新或最 新的病毒碼之特徵值寫入記錄單元2 0。 在詳細說明本發明的較佳實施例之後,熟悉該項技術 人士可清楚的瞭解,在不脫離下述申請專利範圍與精神下 可進行各種變化與改變,而本發明亦不受限於說明書之實 施例的實施方式。 (Page 16 200421772 V. Description of the invention (13) And, an update unit 19 accepts the instruction of the decision unit 18, and writes the updated or latest characteristic value of the virus code into the recording unit 20. After explaining the preferred embodiment of the present invention in detail, those skilled in the art can clearly understand that various changes and modifications can be made without departing from the scope and spirit of the patent application described below, and the present invention is not limited to the description Examples of implementation. (

第17頁 200421772 圖式簡單說明 【圖式簡單說明】 第一圖為本發明網路列管資訊的阻絕方法之流程示意 圖。 第二圖為本發明網路列管資訊的阻絕系統之示意圖。 第三圖A為本發明阻絕方法第一實施例之流程圖。 第三圖B為本發明阻絕方法第二實施例之流程圖。 第四圖為本發明網路列管資訊的阻絕系統關於網址比 對之系統方塊圖。 第五圖為本發明網路列管資訊的阻絕系統關於病毒碼 特徵比對之系統方塊圖。 [主要元件符號對照說明] 卜- -網際網路 11- —Μ 覽 器 12- --擷 取 單 元 13 - --傳 送 單 元 14- --接 收 單 元 15- --執 行 單 元 16- --快 取 單 元 17- --評 估 單 元 18- --決 策 單 元 19- --更 新 單 元 20- —記 錄 單 元 21- --接 收 單 元 22- 一一運 算 單 元Page 17 200421772 Brief description of the diagram [Simplified description of the diagram] The first diagram is a schematic flow chart of the method for blocking network management information according to the present invention. The second figure is a schematic diagram of a network blocking information blocking system according to the present invention. The third figure A is a flowchart of the first embodiment of the blocking method of the present invention. The third figure B is a flowchart of the second embodiment of the blocking method of the present invention. The fourth figure is a block diagram of a system for comparing information on the Internet with respect to URLs. The fifth figure is a system block diagram of virus code feature comparison of the network management information blocking system of the present invention. [Comparison of main component symbols] Bu--Internet 11- -M browser 12- -Capturing unit 13--Transmitting unit 14--Receiving unit 15--Executing unit 16---Cache Unit 17 --- Evaluation unit 18 --- Decision unit 19 --- Update unit 20 --- Recording unit 21 --- Receiving unit 22-One-by-one arithmetic unit

第18頁 200421772Page 18 200421772

Claims (1)

200421772 六、申請專利範圍 1. 一種網路列管資訊的阻絕方法,包括: 在用戶端擷取資料之特徵值,並傳送至一伺服器; 該伺服器執行前述特徵值與一資料庫的内容比對, 獲得阻擋或允許之比對結果; 將前述比對結果傳回用戶端;及 用戶端根據前述比對結果,阻擋含有該特徵值之資 料的顯示,或允許含有該特徵值之資料的顯示; 其特徵在於前述伺服器及資料庫均位於用戶端之遠 端,且該資料庫的内容為即時更新。 2. 如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,進一步包含:前述特徵值傳送之前,在用戶端進行 一初步比對。 3. 如申請專利範圍第2項所述之網路列管資訊的阻絕方 法,其中前述初步比對至少包含··執行前述特徵值與一 快取單元所記錄的内容比對。 4. 如申請專利範圍第2項所述之網路列管資訊的阻絕方 法,其中前述初步比對至少包含:決定前述特徵值是否 傳送至該伺服器。 5 .如申請專利範圍第3項所述之網路列管資訊的阻絕方 法,其中前述初步比對進一步包含:根據前述彳司服器傳 回之比對結果,更新該快取單元所記錄的内容。 6 .如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,其中該資料庫的内容為網路列管資訊之特徵值,該 網路列管資訊為包含成人色情、賭博、購物、毒品、搶200421772 VI. Scope of patent application 1. A method for blocking network management information, comprising: acquiring characteristic values of data on a client side and transmitting the characteristic values to a server; the server executing the foregoing characteristic values and the contents of a database Compare, obtain the result of blocking or allowing; return the above-mentioned comparison result to the client; and, based on the above-mentioned comparison result, the client blocks the display of the data containing the characteristic value, or allows the data containing the characteristic value to be allowed Display; characterized in that the aforementioned server and database are located remotely from the client, and the content of the database is updated in real time. 2. The method for blocking network management information as described in item 1 of the scope of patent application, further comprising: performing a preliminary comparison on the client side before transmitting the aforementioned characteristic value. 3. The method for blocking network management information as described in item 2 of the scope of patent application, wherein the preliminary comparison includes at least: performing a comparison of the aforementioned feature value with the content recorded by a cache unit. 4. The method for blocking network management information according to item 2 of the scope of patent application, wherein the preliminary comparison at least includes: determining whether the aforementioned characteristic value is transmitted to the server. 5. The method for blocking network management information as described in item 3 of the scope of patent application, wherein the preliminary comparison further includes: updating the records recorded by the cache unit according to the comparison result returned by the aforementioned server. content. 6. The method for blocking network management information as described in item 1 of the scope of patent application, wherein the content of the database is the characteristic value of network management information, and the network management information includes adult pornography, gambling, Shopping, drugs, robbing 第20頁 200421772 六、申請專利範圍 械、即時對談及或股票資訊之網站或網頁内容,或是企 業所列管之網站或網頁。 7. 如申請專利範圍第6項所述之網路列管資訊的阻絕方 法’其中前述特徵值為網址的一部分、U R L s或I P位址。 8. 如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,其中該資料庫的内容為網路列管資訊之特徵值,該 網路列管資訊為包含病毒之電子郵件或檔案。 9. 如申請專利範圍第8項所述之網路列管資訊的阻絕方 法,其中前述特徵值為病毒碼特徵。 1 0.如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,包含:由一自動搜索引擎從網際網路收集網路列管 資訊,以即時更新該資料庫的内容。 1 1 . 一種實施申請專利範圍第1項所述之網路列管資訊的阻 絕方法之阻絕系統,包括: 一用戶端裝置,用以擷取資料之特徵值,並傳送該 特徵值;以及接收一阻擋或允許之比對結果,以決定是 否阻擋含有該特徵值之資料的顯示;以及 一伺服器,包括一資料庫,該伺服器接收前述特徵 值並與該資料庫的内容比對,以獲得前述阻擋或允許之 比對結果,並將前述比對結果傳回該用戶端裝置; 其特徵在於前述伺服器及資料庫均位於用戶端裝置 之遠端,且該資料庫的内容為即時更新。 1 2.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置至少包含:一擷取單元,該擷取單元用以擷取資Page 20 200421772 VI. Scope of patent application Mechanical or real-time chat or stock information website or webpage content, or websites or webpages managed by the company. 7. The method for blocking network management information as described in item 6 of the scope of patent application, wherein the aforementioned characteristic value is part of a web address, a URL or IP address. 8. The method for blocking network management information as described in item 1 of the scope of patent application, wherein the content of the database is the characteristic value of network management information, and the network management information is an email or a virus file. 9. The method for blocking network management information as described in item 8 of the scope of patent application, wherein the aforementioned characteristic value is a virus code characteristic. 10. The method for blocking network management information as described in item 1 of the scope of patent application, which includes: collecting network management information from the Internet by an automatic search engine to update the content of the database in real time. 1 1. A blocking system for implementing a method for blocking network management information described in item 1 of the scope of patent application, comprising: a client device for acquiring a characteristic value of data and transmitting the characteristic value; and receiving A blocking or allowing comparison result to determine whether to block the display of the data containing the characteristic value; and a server, including a database, which receives the foregoing characteristic value and compares with the content of the database to Obtain the aforementioned blocking or allowing comparison result, and return the aforementioned comparison result to the client device; characterized in that the aforementioned server and database are located at the far end of the client device, and the content of the database is updated in real time . 1 2. The blocking system as described in item 11 of the scope of patent application, wherein the client device includes at least: an acquisition unit for acquiring funds 第21頁 200421772 六、申請專利範圍 料之特徵值。 1 3.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置進一步包含:一傳送單元,該傳送單元向該伺服 器提出請求,並傳送該特徵值。 1 4.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置進一步包含:一接收單元,該接收單元用以接收 一阻擋或允許之比對結果。 1 5.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置進一步包含:一執行單元,該執行單元根據前述 阻擋之比對結果,則阻擋含有該特徵值之資料的顯示, 且根據前述允許之比對結果,則允許含有該特徵值之資 料的顯示。 1 6.如申請專利範圍第1 1項所述之阻絕系統,其中該資料 庫的内容為網路列管資訊之特徵值,該網路列管資訊為 包含成人色情、賭傅、購物、毒品、搶械、即時對談及 或股票資訊之網站或網頁内容,或是企業所列管之網站 或網頁。 1 7.如申請專利範圍第1 6項所述之阻絕系統,其中前述特 徵值為網址的一部分、U R L s或I P位址。 1 8.如申請專利範圍第1 1項所述之阻絕系統,其中該資料 庫的内容為網路列管資訊之特徵值,該網路列管資訊為 包含病毒之電子郵件或檔案。 1 9.如申請專利範圍第1 8項所述之阻絕系統,其中前述特 徵值為病毒碼特徵。Page 21 200421772 VI. Scope of patent application Characteristic value of materials. 13. The blocking system according to item 11 of the scope of patent application, wherein the client device further comprises: a transmitting unit, the transmitting unit makes a request to the server, and transmits the characteristic value. 14. The blocking system according to item 11 of the scope of patent application, wherein the client device further comprises: a receiving unit for receiving a comparison result of blocking or allowing. 15. The blocking system as described in item 11 of the scope of patent application, wherein the client device further includes: an execution unit, which blocks the display of the data containing the characteristic value according to the comparison result of the foregoing blocking. , And according to the above-mentioned allowed comparison result, the display of data containing the characteristic value is allowed. 16. The blocking system as described in item 11 of the scope of patent application, wherein the content of the database is the characteristic value of the online management information, which includes adult pornography, gambling, shopping, drugs , The content of websites or webpages that are hacking, real-time talking or stock information, or websites or webpages controlled by companies. 1 7. The blocking system as described in item 16 of the scope of patent application, wherein the aforementioned characteristic value is part of a web address, a URL or IP address. 1 8. The blocking system as described in item 11 of the scope of patent application, wherein the content of the database is the characteristic value of network management information, and the network management information is an email or file containing a virus. 19. The blocking system according to item 18 of the scope of patent application, wherein the aforementioned characteristic value is a virus code feature. 第22頁 200421772 六、申請專利範圍 2 0.如申請專利範圍第11項所述之阻絕系統,其中該伺服 器至少包含:一接收單元,該接收單元用以接收該用戶 端裝置所傳送之特徵值。 2 1.如申請專利範圍第11項所述之阻絕系統,其中該伺服 器進一步包含:一傳送單元,該傳送單元將該阻擋或允 許之比對結果傳回該用戶端裝置。 2 2.如申請專利範圍第1 1項所述之阻絕系統,其中該伺服 器進一步包含:一運算單元,該運算單元比對前述特徵 值與該資料庫的内容,並產生前述阻擋或允許之比對結 果。 2 3. —種網路列管資訊的阻絕系統,包括: _ -用戶端裝置,包含: ’ 一或複數個瀏覽器,可由網際網路連結資料; 一擷取單元,用以擷取資料之特徵值; 一用戶端傳送單元,用以傳送該特徵值;一用戶端 接收單元,用以接收一阻擋或允許之比對結果;以及 一執行單元,根據前述比對結果,阻擋瀏覽器連結 含有該特徵值之資料,或允許瀏覽器連結含有該特徵值 之資料;以及 一伺服器,包含: 一資料庫,儲存網路列管資訊的特徵值; 一伺服器端接收單元,用以接收該用戶端傳送單元¥ 所傳送之特徵值; 一伺服器端傳送單元,將該阻擋或允許之比對結果Page 22 200421772 VI. Patent application scope 20. The blocking system as described in item 11 of the patent application scope, wherein the server includes at least: a receiving unit for receiving the characteristics transmitted by the client device value. 2 1. The blocking system according to item 11 of the scope of patent application, wherein the server further comprises: a transmitting unit, the transmitting unit returns the result of the blocking or permitting comparison to the client device. 2 2. The blocking system as described in item 11 of the scope of patent application, wherein the server further comprises: an arithmetic unit that compares the aforementioned characteristic value with the content of the database and generates the aforementioned blocking or allowing Compare the results. 2 3. —A blocking system for network management information, including: _-Client devices, including: 'One or more browsers, which can link data with the Internet; An acquisition unit, which is used to retrieve data. Characteristic value; a client-side transmitting unit for transmitting the characteristic value; a client-side receiving unit for receiving a blocking or allowing comparison result; and an executing unit for blocking the browser link according to the foregoing comparison result The characteristic value data, or allowing the browser to link the data containing the characteristic value; and a server including: a database storing the characteristic value of network management information; a server-side receiving unit for receiving the characteristic value The characteristic value transmitted by the client-side transmission unit ¥; a server-side transmission unit that compares the blocking or allowing results 第23頁 200421772 六、申請專利範圍 傳回該用戶端接收單元;以及 一運算單元,比對該用戶端傳送單元所傳送之特徵 值與該資料庫的網路列管資訊的特徵值,並產生前述阻 擋或允許之比對結果; 其特徵在於前述伺服器及資料庫均位於用戶端裝置 之遠端,且該資料庫的内容為即時更新。 2 4.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該網路列管資訊為包含病毒之電子郵件或檔 案。 2 5.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該網路列管資訊為包含成人色情、賭博、購 物、毒品、搶械、即時對談及或股票資訊之網站或網頁 内容,或是企業所列管之網站或網頁。 2 6.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該特徵值為網址或病毒碼特徵。 2 7.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該特徵值為URL或IP位址。 2 8.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該用戶端裝置進一步包含:一快取單元,在前 述用戶端傳送單元傳送該特徵值之前,該快取單元在用 戶端進行一初步比對,並根據初步比對以決定是否由該 用戶端傳送單元傳送特徵值至該伺服器,或是指示該執丨_ 行單位阻擋瀏覽器連結含有該特徵值之資料。 2 9.如申請專利範圍第2 8項所述之網路列管資訊的阻絕系Page 23 200421772 6. The scope of the patent application is returned to the client receiving unit; and an arithmetic unit compares the characteristic value transmitted by the client transmitting unit with the characteristic value of the network management information of the database, and generates The comparison result of the foregoing blocking or allowing; it is characterized in that the aforementioned server and database are located at the far end of the client device, and the content of the database is updated in real time. 2 4. The network management information blocking system as described in item 23 of the scope of patent application, wherein the network management information is an email or file containing a virus. 2 5. The network management information blocking system described in item 23 of the scope of patent application, wherein the network management information includes adult pornography, gambling, shopping, drugs, robberies, real-time talks or stocks Information website or webpage content, or website or webpage managed by the company. 2 6. The network management information blocking system described in item 23 of the scope of patent application, wherein the characteristic value is a URL or a virus code characteristic. 2 7. The network management information blocking system described in item 23 of the scope of patent application, wherein the characteristic value is a URL or an IP address. 2 8. The network management information blocking system as described in item 23 of the scope of patent application, wherein the client device further includes: a cache unit, and before the aforementioned client transmission unit transmits the feature value, the cache The fetch unit performs a preliminary comparison on the client side, and according to the preliminary comparison, determines whether the client side sends the feature value to the server, or instructs the executive unit to block the browser link from containing the feature value Information. 2 9. The blocking of network management information as described in item 28 of the scope of patent application 第24頁 200421772 六、申請專利範圍 統,其中該快取單元至少包含:一記錄單元,該記錄單 元用於儲存網路列管資訊以及病毒碼的特徵值,可由快 取記憶體實施。 3 0.如申請專利範圍第2 9項所述之網路列管資訊的阻絕系 統,其中該快取單元進一步包含:一評估單元,該評估 單元確認擷取的特徵值是否已存在於該記錄單元中。 3 1 .如申請專利範圍第3 0項所述之網路列管資訊的阻絕系 統,其中該快取單元進一步包含:一決策單元,該決策 單元依據該評估單元的確認結果決定是否由用戶端傳送 單元送出特徵值至該伺服器,或是指示該執行單位阻擋 瀏覽器連結含有該特徵值之資料。 3 2.如申請專利範圍第3 1項所述之網路列管資訊的阻絕系 統,其中該快取單元進一步包含:一更新單元,該更新 單元接受該決策單元的指示,將更新之特徵值寫入該記 錄單元。Page 24 200421772 6. The scope of patent application system, where the cache unit includes at least: a recording unit, which is used to store network management information and the characteristic values of virus codes, which can be implemented by cache memory. 30. The network management information blocking system as described in item 29 of the scope of patent application, wherein the cache unit further includes: an evaluation unit that confirms whether the extracted feature value already exists in the record Unit. 31. The network management information blocking system as described in item 30 of the scope of patent application, wherein the cache unit further includes: a decision unit that determines whether to be determined by the client based on the confirmation result of the evaluation unit The sending unit sends the characteristic value to the server, or instructs the execution unit to block the browser from linking the data containing the characteristic value. 3 2. The network management information blocking system as described in item 31 of the scope of patent application, wherein the cache unit further includes: an update unit that accepts the instruction of the decision unit and updates the characteristic value Write to this recording unit. 第25頁Page 25
TW92107477A 2003-04-02 2003-04-02 Method and system for blocking networked limitative information TW595158B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW92107477A TW595158B (en) 2003-04-02 2003-04-02 Method and system for blocking networked limitative information

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW92107477A TW595158B (en) 2003-04-02 2003-04-02 Method and system for blocking networked limitative information

Publications (2)

Publication Number Publication Date
TW595158B TW595158B (en) 2004-06-21
TW200421772A true TW200421772A (en) 2004-10-16

Family

ID=34076062

Family Applications (1)

Application Number Title Priority Date Filing Date
TW92107477A TW595158B (en) 2003-04-02 2003-04-02 Method and system for blocking networked limitative information

Country Status (1)

Country Link
TW (1) TW595158B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI475846B (en) * 2011-09-07 2015-03-01

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI475846B (en) * 2011-09-07 2015-03-01

Also Published As

Publication number Publication date
TW595158B (en) 2004-06-21

Similar Documents

Publication Publication Date Title
JP5917573B2 (en) Real-time data awareness and file tracking system and method
US8572100B2 (en) Method and system for recording search trails across one or more search engines in a communications network
JP4396242B2 (en) Document link structure information creation apparatus and method
CN109495377B (en) Instant E-mail embedded URL credit confirming equipment, system and method
JP4733886B2 (en) Method and system for extracting protocol characteristics of applications
US7165071B2 (en) Real-time search engine
US9210235B2 (en) Client side cache management
AU2008239682B2 (en) A system and method for creating a list of shared information on a peer-to-peer network
US8286248B1 (en) System and method of web application discovery via capture and analysis of HTTP requests for external resources
JP4358188B2 (en) Invalid click detection device in Internet search engine
WO2011116696A1 (en) Method and system for providing network resources
CN110430188B (en) Rapid URL filtering method and device
TW200525941A (en) Methods, apparatus and computer programs for enhanced access to resources within a network
CN108574686B (en) Method and device for previewing file online
Sardar et al. Detection and confirmation of web robot requests for cleaning the voluminous web log data
JP4765731B2 (en) Document management system, document management server, document providing method, and program
JP5603447B2 (en) Log management system, log management apparatus, and log management method
TW200421772A (en) Method and system for blocking networked limitative information
WO2003005240A1 (en) Apparatus for searching on internet
JP5801218B2 (en) URL filtering system
CN114244823B (en) Penetration test method and system based on Http request automatic deformation
JP5851251B2 (en) Communication packet storage device
AU2004313991B2 (en) Method and system for recording search trails across one or more search engines in a communications network
JPH11252163A (en) Communication information management method and device and storage medium recording communication information management processing program
Chavan Page Interest Estimation using Apriori Algorithm

Legal Events

Date Code Title Description
GD4A Issue of patent certificate for granted invention patent
MM4A Annulment or lapse of patent due to non-payment of fees