Web application security protection method and a Web application firewall system

A technology of security protection and web application, applied in transmission systems, electrical components, etc., can solve the problem of high server resource occupancy rate, reduce the occupancy rate, and facilitate later update and maintenance.

Inactive Publication Date: 2019-06-18
BEIJING SOHU NEW MEDIA INFORMATION TECH
View PDF7 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In view of this, the present invention provides a Web application security protection method and a Web application

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Web application security protection method and a Web application firewall system
  • Web application security protection method and a Web application firewall system
  • Web application security protection method and a Web application firewall system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0057] The technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only a part of the embodiments of the present invention, rather than all the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative work shall fall within the protection scope of the present invention.

[0058] The present invention provides a lightweight WAF system based on lua-nginx and web application security suitable for the WAF system in view of the high occupancy rate of server resources by the existing WAF (Web Application Firewall) system Protection method.

[0059] See figure 1 , figure 1 It is a flowchart of a method for web application security protection provided by an embodiment of the present invention.

[0060] The WAF syste...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a Web application security protection method and a WAF system. The WAF system comprises a Web server and an nginx server. The method comprises the following steps of building the Web server by adopting a python tornado framework; detecting whether the access request transmitted by the nginx server is an abnormal request or not by utilizing the Web server to obtain a detection result; using the Web server to send a detection result to the lua script in the nginx server; reading a detection result of the input lua script by using the nginx server to determine whether the access request is an abnormal request or not; if the access request is an abnormal request, intercepting the access request by using a lua script; and otherwise, forwarding the access request to the corresponding service line source station by using the nginx server. According to the WAF system, when Web application security protection is realized, excessive server resources are not occupied, and the occupancy rate of the WAF system on the server resources is reduced.

Description

Technical field [0001] The invention relates to the technical field of network application security, and more specifically, to a web application security protection method and a web application firewall system. Background technique [0002] WAF (Web Application Firewall, Web Application Firewall) system is mainly used to achieve enhanced protection against Web-specific intrusion methods, such as DDOS protection, SQL injection, XML injection, XSS, etc. [0003] The existing WAF system occupies a large amount of memory, it consumes more time to parse the request, and has a greater impact on the delay-sensitive business. Especially when processing a large number of real-time requests, in order to ensure the accuracy and real-time of request detection, it usually needs to consume a lot of server resources to provide support, resulting in a high occupancy rate of server resources by the WAF system, which affects other The normal use of server resources by the business. [0004] Therefor...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/08
Inventor 朱灿
Owner BEIJING SOHU NEW MEDIA INFORMATION TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap