Unlock instant, AI-driven research and patent intelligence for your innovation.

An Automatic Judgment Method for Malicious Jump and Malicious Nested Bad Websites

An automatic judgment and website technology, applied in the field of network security, can solve the problems of statistical learning based on image recognition detection failure, etc., achieve high accuracy, wide adaptability, and avoid misleading effects

Active Publication Date: 2019-01-04
CHINA INTERNET NETWORK INFORMATION CENTER
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] It can be seen that for bad websites with malicious jumps and malicious nesting, traditional identification methods, including statistical learning based on information such as text and links, and detection based on image recognition, have failed.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An Automatic Judgment Method for Malicious Jump and Malicious Nested Bad Websites
  • An Automatic Judgment Method for Malicious Jump and Malicious Nested Bad Websites
  • An Automatic Judgment Method for Malicious Jump and Malicious Nested Bad Websites

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0039] In order to make the above-mentioned features and advantages of the present invention more comprehensible, the following specific embodiments are described in detail in conjunction with the accompanying drawings.

[0040] The working principle of the present invention is: considering that the malicious behavior described in the background technology will initiate a series of DNS query requests when the browser loads the webpage, therefore, the present invention proposes a malicious jump and An automatic determination method for malicious nested bad websites. Including the following specific implementation methods:

[0041] (1) Build a large blacklist

[0042] First of all, build a large blacklist to take into account the cheating behavior of malicious redirection and malicious embedding of bad websites is often for the reuse of core website content. The size and real-time performance of the blacklist determine its effectiveness in the actual Internet detection environ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention proposes a method for automatically judging maliciously redirected and maliciously nested bad websites, including: 1) building a blacklist of domain names; 2) building a recursive server, and performing recursive analysis when a website to be judged initiates a domain name query request , and at the same time enable the query log recording function to record the domain name query request initiated by the website to be determined; 3) use the server to simulate the browser access behavior, and conduct polling access to the website to be determined; 4) analyze the query log of the recursive server to form a Screened domain name list; 5) Screen each domain name in the domain name list to form a list of suspected abused domain names; 6) Compare the list of suspected abused domain names with the blacklist of domain names to determine whether the website to be determined is a malicious website. Based on domain name resolution, by simulating browser access behavior, capture the domain name query sets of the above two types of websites, and finally realize the judgment of the two types of websites through the blacklist matching mechanism.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to an automatic determination method for malicious redirection and malicious nesting bad websites. Background technique [0002] The Domain Name System (DNS for short) is a core service of the Internet. As a distributed database that maps domain names and IP addresses to each other, it is the entrance for users to access network resources. Because of its intuition and convenience, it facilitates people's access to network resources, but at the same time, it also produces a large number of domain name abuse phenomena, including phishing, pornographic, gambling and other bad websites, botnets, etc., resulting in the leakage of user information and The loss of property has brought serious adverse effects on the social atmosphere. [0003] With the implementation of real-name authentication for some top-level domains (such as .CN domain names) and the strengthening of efforts ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/1441H04L61/4511H04L63/0236H04L63/101H04L63/1483H04L61/00
Inventor 王翠翠耿光刚延志伟
Owner CHINA INTERNET NETWORK INFORMATION CENTER