Supercharge Your Innovation With Domain-Expert AI Agents!

Web page script identification method and apparatus

An identification method and identification device technology, applied in the field of information security, can solve problems such as the difficulty of macroscopic traffic monitoring, achieve good real-time performance, and improve the effect of accuracy

Inactive Publication Date: 2016-04-20
睿峰网云(北京)科技有限公司
View PDF2 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The monitoring and analysis of network traffic anomalies is very important for network security emergency response departments. However, due to the difficulty of macro-traffic anomaly monitoring, it is necessary to extract and explain abnormal patterns from a large number of high-dimensional and noisy data. Monitoring and analysis remain a great challenge

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Web page script identification method and apparatus

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0022] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. All other embodiments obtained by persons of ordinary skill in the art based on the embodiments of the present invention belong to the protection scope of the present invention.

[0023] Such as figure 1 As shown, a method for identifying a webpage script according to an embodiment of the present invention includes the following steps:

[0024] Generating a sensitive parameter feature library based on commonly used system commands and data commands, script language functions

[0025] Perform in-depth protocol analysis on web page traffic and extract command parameters;

[0026] Performing a similarity analysis between the extracted command parameters and the sensitiv...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a web page script identification method which comprises the following steps of: according to a common system command, a common data command and a script language function, generating a sensitive parameter feature library; carrying out deep protocol analysis on a web page traffic, and extracting command parameters; carrying out similarity analysis on the extracted command parameters and the sensitive parameter feature library by utilizing a vector-space algorithm; and comparing similarity analysis results with a threshold, recording parameter information of which the similarity analysis results are greater than the threshold into the sensitive parameter feature library, marking the information as blacklists, and simultaneously updating the sensitive parameter feature library. The web page script identification method has the beneficial effects that by the steps of generation of a basic library and a knowledge base, data analysis of deep protocol analysis, similarity analysis, data processing and the like and through deep protocol analysis, excellent real-time performance is achieved, and the web page script identification method can be applied to various places. Meanwhile, by information accumulation, accuracy of web page trojan identification is also improved.

Description

technical field [0001] The invention relates to the field of information security, in particular to a method and device for identifying web page scripts. Background technique [0002] Network traffic anomalies refer to significant changes in network traffic irregularities, such as local events such as transient network congestion, distributed denial of service attacks (DDoS, Distributed Denial of Service), large-scale scanning, or global events such as network routing anomalies. The monitoring and analysis of network traffic anomalies is very important for network security emergency response departments. However, due to the difficulty of macro-traffic anomaly monitoring, it is necessary to extract and explain abnormal patterns from a large number of high-dimensional and noisy data. Monitoring and analysis remains a great challenge. [0003] Aiming at the problems in the related technologies, no effective solution has been proposed yet. Contents of the invention [00...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1408H04L63/1416H04L63/1425H04L63/145H04L63/1458H04L63/1466
Inventor 储来斌
Owner 睿峰网云(北京)科技有限公司
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com