Method and device for detecting webpage safety

A web page and security technology, applied in the field of information security, can solve the problems of inappropriate detection of malicious fraudulent phishing web pages, inability to accurately detect malicious fraudulent phishing web pages, etc., and achieve the effect of improving accuracy

Inactive Publication Date: 2012-08-01
TENCENT TECH (SHENZHEN) CO LTD
View PDF6 Cites 23 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Since malicious and fraudulent phishing webpages are indistinguishable from legitimate webpages in terms of page structure and text, the similarity detection method based on phishing webpages and legitimate webpages is not suitable for the detection of malicious and fraudulent phishing webpages, while the detection method based on page features and classification-based None of the detection methods can accurately detect malicious and fraudulent phishing webpages

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for detecting webpage safety
  • Method and device for detecting webpage safety
  • Method and device for detecting webpage safety

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0055] This embodiment provides a method for detecting webpage security, see figure 1 , the method flow provided by this embodiment is specifically as follows:

[0056] 101: Determine the webpage type of the webpage to be detected according to the page information of the webpage to be detected, and obtain domain name information of the webpage to be detected;

[0057] Optionally, before determining the webpage type of the webpage to be detected according to the page information of the webpage to be detected, it also includes:

[0058] Collect the domain names of non-phishing webpages whose webpage type is consistent with that of the webpage to be detected to obtain a white domain name set;

[0059] Determine whether the domain name of the webpage to be detected is in the white domain name set;

[0060] If yes, it is determined that the webpage to be detected is a non-phishing webpage;

[0061] If not, continue to execute the subsequent detection step of determining the webpag...

Embodiment 2

[0077] In order to more clearly illustrate the method provided by the above-mentioned embodiment 1, in combination with the above content, the following embodiment 2 and embodiment 3 are taken as examples to illustrate the method of detecting web page security in detail. For details, see the following embodiment 2 and embodiment three:

[0078] Embodiment two

[0079] This embodiment provides a method for detecting webpage security. Combining the content of the first embodiment above, this embodiment matches the domain name information of the webpage to be detected with the domain name characteristics of the phishing webpage to determine whether the webpage to be detected is phishing Taking a webpage as an example, the method for detecting the security of a webpage is described with an example. see figure 2 , the method flow provided by this embodiment is specifically as follows:

[0080] 201: Determine the webpage type of the webpage to be detected according to the page i...

Embodiment 3

[0120] This embodiment provides a method for detecting webpage security. Combining the content of the first embodiment above, this embodiment matches the domain name information of the webpage to be detected with the domain name characteristics of the non-phishing webpage to determine whether the webpage to be detected is a Taking a phishing webpage as an example, a method for detecting webpage security is illustrated. see image 3 , the method flow provided by this embodiment is specifically as follows:

[0121] 301: Determine the webpage type of the webpage to be detected according to the page information of the webpage to be detected, and obtain domain name information of the webpage to be detected;

[0122] The specific implementation manner of this step is the same as the implementation manner of step 201 in the above-mentioned embodiment 2. For details, refer to the description of step 201 in the above-mentioned embodiment 2, which will not be repeated here.

[0123] 3...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and device for detecting webpage safety, belonging to the technical field of computers. The method comprises the following steps of: determining the webpage type of a webpage to be detected according to the webpage information of the webpage to be detected, and acquiring the domain name information of the webpage to be detected; matching the domain name information of the webpage to be detected with the domain name characteristic of a phishing webpage or non-phishing webpage, wherein the webpage type of the phishing webpage or non-phishing webpage is consistent with the webpage type of the webpage to be detected; and judging whether the webpage to be detected is a phishing webpage according to a matching result. The domain names of maliciously false phishing webpages have remarkable characteristics. In the method, the domain name information of the webpage to be detected is acquired and is matched with the domain name characteristic of the phishing webpage or non-phishing webpage, and a judgment on whether the webpage to be detected is a phishing webpage is made according to the matching result, so that detection of maliciously false phishing webpages can be realized, and the detection accuracy of the type of phishing webpages can be enhanced.

Description

technical field [0001] The invention relates to the technical field of information security, in particular to a method and device for detecting webpage security. Background technique [0002] With the popularity of the Internet, phishing webpages have appeared frequently around the world in recent years, seriously affecting the development of online financial services and e-commerce. Among them, phishing web pages are usually divided into several types such as counterfeit, illegal, and malicious fraud. How to accurately and effectively detect phishing web pages has become the key to protecting user network security. [0003] When detecting webpage security in the prior art, one way is to detect phishing webpages based on the similarity between phishing webpages and legitimate webpages, another way is to detect phishing webpages based on the characteristics of phishing webpages, and another way is to detect phishing webpages based on Web page text information uses a classifi...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/00G06F17/30G06F21/55
Inventor 罗焱
Owner TENCENT TECH (SHENZHEN) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap