Method, device and system for preventing malicious requests for server

A server and application server technology, applied in the Internet field, can solve the problems of low accuracy, high misjudgment rate and missed judgment rate, and achieve the effect of improving accuracy and reducing false positive rate and missed judgment rate.

Active Publication Date: 2015-04-15
ALIBABA GRP HLDG LTD
View PDF3 Cites 50 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0011] The main purpose of this application is to provide a method, device and system for preventing malicious requests to the server, so as to solve ...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and system for preventing malicious requests for server
  • Method, device and system for preventing malicious requests for server
  • Method, device and system for preventing malicious requests for server

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] The main idea of ​​the present application is to prevent malicious requests directed at the server, and reduce situations where abnormal access users repeatedly access web page data or repeatedly request business data processing. The first verification is performed on the received first network request of the user, where the first network request is a page data request. When the first network request is verified, the user page data is returned, and the cookie blacklist user mark is empty (no blacklist mark), and a valid session token for requesting business data processing can be returned. When the first verification fails, the user page data will not be returned, and the cookie blacklist user mark and empty session token (no session token) can be returned without requesting business data processing. The second verification is performed on the received second network request, the second network request is a data processing request issued by the user based on the operati...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a method, device and system for preventing malicious requests for a server. The method includes the following steps that: first verification is performed on a received first network request, and verification results of the first verification and a generated session token are returned to the cookie of a user end which transmits the first network request; and second verification is performed on the verification results, the session token and the like which are carried by a received second first network request, if verification is successful, a response is made to the second first network request, so that corresponding service data processing can be performed, otherwise, the second first network is intercepted. According to the method, device and system for preventing malicious requests for the server of the invention, a blacklist user data table is updated in real time in a malicious request verification process, and users who send malicious requests are marked as blacklist users; and service processing is performed on the network request (the second network request) which is transmitted by a user based on the session token obtained by the user; and therefore, the rate of misjudgment and the rate of missed judgment can be effectively decreased, and the accuracy of malicious request judgment can be improved.

Description

technical field [0001] The present application relates to the technical field of the Internet, and more specifically relates to a method, device and system for preventing malicious requests to servers. Background technique [0002] With the rapid development of the Internet, malicious behavior on the Internet has become a problem that cannot be ignored in the industry. Malicious network behaviors can be abnormal means adopted to achieve a certain purpose, such as network attacks, malicious requests, etc. In the network environment, malicious behaviors on the network can cause the website to fail to provide services to users normally in a very short period of time, which seriously affects the normal operation of the Internet. [0003] Malicious requests can be hypertext transfer protocol (http) network requests that are continuously sent to the server through the application program within a period of time and affect the normal operation of the server. For example, to inter...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
Inventor 范洪涛
Owner ALIBABA GRP HLDG LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap