Unlock instant, AI-driven research and patent intelligence for your innovation.

Method and apparatus for identifying illegal access requests to websites

An access request and illegal access technology, applied in the field of network security, can solve the problems of unrecognized, not fully utilizing the rich information of log files, and not flexible enough to achieve the effect of accurate identification and interception

Active Publication Date: 2015-12-09
重庆云流未来科技有限公司
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In the prior art, either identifying illegal requests based on log files or intercepting illegal requests based on a predetermined matching strategy is a method similar to blacklist filtering, which has the following disadvantages: it can only identify or intercept known specific The type of attack is not flexible enough; some illegal requests that do not exist in the blacklist cannot be identified; the cost is high
[0006] Moreover, existing solutions do not take full advantage of the rich information contained in log files

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and apparatus for identifying illegal access requests to websites
  • Method and apparatus for identifying illegal access requests to websites
  • Method and apparatus for identifying illegal access requests to websites

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0048] To facilitate a better understanding of the present invention, a brief introduction to the access log files of the website is firstly given here.

[0049] IIS is the abbreviation of Internet Information Server, which means Internet Information Service. The WEB log of IIS is the operation record of the website under IIS. Every time a visitor sends an http request to the website, no matter whether the visit is successful or not, the log file will record it.

[0050] The logs include information such as who visited the site, what the visitor viewed, and when the information was last viewed. Since IIS faithfully records all related records of accessing Web services, making full use of the logs can perform intrusion detection, traffic statistics analysis, solve IIS server failures, and solve page failures.

[0051] The default storage location of the WEB log files of IIS6.0 is %systemroot%\system32\LogFiles, and there is one log per day by default. If the log file is not p...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a method and a device for distinguishing an illegal access request to a website, and belongs to the technical field of network security. The method comprises the following steps of: acquiring a legal range of a http access request parameter of the website, and loading the legal range serving as a validity rule of the parameter; intercepting the http access request of a user browser to the website; and matching the intercepted http access request and the validity rule of the parameter, and judging whether the intercepted http access request is legal or not according to a matching result. By the method and the device, the legal range of the request parameter can be accurately and conveniently acquired; and the illegal request is accurately distinguished and intercepted conveniently according to the acquired legal range.

Description

technical field [0001] The invention relates to the field of network security, in particular to a method and device for identifying illegal access requests to websites. Background technique [0002] At present, the security problem of the website is becoming more and more serious. The website administrator can take many measures to prevent the server from being attacked and invaded. Among them, checking the log records of the webpage (Web) server in time is the most direct, most commonly used, and a relatively effective method. By monitoring the log files of the web server, you can look for signs of suspicious activities, obtain hacker intrusion methods and related operations, as well as the loopholes of the system, so as to prevent them. [0003] However, it is not very simple and clear to find out the clues of attacking the web server in the log file, because there are many entries in the log file, which requires the administrator to have rich knowledge and experience, as ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 陈逸
Owner 重庆云流未来科技有限公司