Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Hypertext?transfer protocol?over?secure?socket layer (HTTPS) encryption-based web filtering method and system

A website and website domain name technology, applied in the field of communication, can solve the problems of being easy to be exploited, potential safety hazards, stealing online banking, etc.

Active Publication Date: 2014-05-28
SANGFOR TECH INC
View PDF7 Cites 27 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, this method has great security risks and is easy to be exploited to achieve illegal purposes, such as stealing online banking passwords

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Hypertext?transfer protocol?over?secure?socket layer (HTTPS) encryption-based web filtering method and system
  • Hypertext?transfer protocol?over?secure?socket layer (HTTPS) encryption-based web filtering method and system
  • Hypertext?transfer protocol?over?secure?socket layer (HTTPS) encryption-based web filtering method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0044] The technical solutions of the present invention will be further described below in conjunction with the accompanying drawings and specific embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0045] Glossary:

[0046] SNI (Service Node Interface, service node interface) is an important extension of TLS (Transport Layer Security, security layer transport protocol) defined in RFC3546. The domain name accessed by the client can be identified in the handshake request packet of the TLS handshake process. This feature enables the server to provide multiple HTTPS sites on the same port on the same IP, and these sites can use different certificates.

[0047] refer to figure 1 , figure 1 It is a schematic flowchart of the first embodiment of the HTTPS encryption-based website filtering method of the present invention.

[0048] The present invention proposes a ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a hypertext?transfer protocol?over?secure?socket layer (HTTPS) encryption-based web filtering method and system. According to the HTTPS encryption-based web filtering method and system, a connection request data packet which is transmitted to a server by a terminal is grabbed; an access website domain name in the data packet is obtained; when the obtained access website domain name is matched with a pre-stored first webpage type keyword, the connection request data packet transmitted by the user end is intercepted, namely, a user is forbidden to visit the website; and therefore, website filtering can be realized, and specific data in the data packet communicated between the user end and the server in a filtering process are not obtained, such that the web filtering is securer.

Description

technical field [0001] The invention relates to the technical field of communication, in particular to a website filtering method and system based on HTTPS encryption. Background technique [0002] HTTPS (Hypertext Transfer Protocol over Secure Socket Layer, Hypertext Transfer Protocol Secure Socket Layer) is a very common encrypted communication method on the Internet, which can effectively protect the security of the communication process. However, while HTTPS realizes encrypted communication, it makes it difficult for network filtering equipment to filter, and it cannot filter according to the URL (Uniform Resource Locator, Uniform Resource Locator) type of the visited website. For example, it is difficult to realize that access to online banking (usually HTTPS encrypted) is prohibited, but it is difficult to access other HTTPS websites. [0003] To implement HTTPS website filtering, a common method is to use a man-in-the-middle attack. The filtering device replaces the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/08
Inventor 袁义金
Owner SANGFOR TECH INC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com