Mimicry Web gateway system and mimicry Web gateway method for carrying out dynamic scheduling by adopting random selection
What is Al technical title?
Al technical title is built by PatSnap Al team. It summarizes the technical point description of the patent document.
A technology of random selection and dynamic scheduling, applied in the computer field to reduce risks and losses, and increase the difficulty of attacks
Active Publication Date: 2019-08-23
HANGZHOU DIANZI UNIV
View PDF3 Cites 10 Cited by
Summary
Abstract
Description
Claims
Application Information
AI Technical Summary
This helps you quickly interpret patents by identifying the three key elements:
Problems solved by technology
Method used
Benefits of technology
Problems solved by technology
Different system designs or implementations often make systems with similar functions have completely different characteristics. For example, different Web application service software has its own strengths and weaknesses in terms of stability, security, and static file processing; different operating systems have different advantages and disadvantages. Defects, such as the system privilege escalation vulnerability CVE-2014-6324 only exists on Windows systems, while Linux systems do not exist at all
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more
Image
Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
Click on the blue label to locate the original text in one second.
Reading with bidirectional positioning of images and text.
[0066] The client sends a user HTTP request to the web gateway, and the content of the request is as follows:
[0067] GET / test HTTP / 1.1
[0068] Host:acm.hdu.edu.cn
[0069] Upgrade-Insecure-Requests: 1
[0070] …
[0071] Cookie: UID=69mti5j53m9qh1
[0072] The multi-mode distribution module in the web gateway receives the user's HTTP request, analyzes and judges the type of the user's HTTP request, and extracts the URL address and the security cookie carried in the user's HTTP request. Since there is a secure cookie, the secure cookie flag contained in the user HTTP request is set to true, and the secure cookie database is retrieved to determine whether the secure cookie is safe and legal. If it is legal, it is judged whether the request type is POST. Since the user HTTP request type is GET, multiple HTTP subrequests are generated according to the informat...
Embodiment 2
[0096] Embodiment 2, user HTTP request generates HTTP sub-request (user HTTP request does not include security Cookie):
[0097] The client sends a user HTTP request to the web gateway, and the content of the request is as follows:
[0098] GET / test HTTP / 1.1
[0099] Host:acm.hdu.edu.cn
[0100] Upgrade-Insecure-Requests: 1
[0101] …
[0102] The multi-mode distribution module in the web gateway receives the user's HTTP request, analyzes and judges the type of the user's HTTP request, and extracts the URL address and the security cookie carried in the user's HTTP request. Since there is no secure cookie, the flag that the user's HTTP request contains a secure cookie is set to false. Determine whether the request type is POST. Since the user’s HTTP request type is GET, multiple HTTP sub-requests are generated according to the information contained in the HTTP request header and the security configuration policy (HTTP request header generation related parameters), and the...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
PUM
Login to view more
Abstract
The invention discloses a mimicry Web gateway system and a mimicry Web gateway method for carrying out dynamic scheduling by adopting random selection. The system comprises a system module distribution module, a multimode judgment module, a security Cookie generation module, a security Cookie decoding module, a heterogeneous server pool group, a background server dynamic switching module group, adatabase synchronization module, a security Cookie database group and a security configuration strategy. According to the invention, heterogeneous integration is carried out on the server, dynamic switching of the executor group is realized by utilizing a random selection technology, and a mimic Web gateway system is realized through Cookie mapping. According to the Web gateway based on dynamic heterogeneous redundancy, the background executor is dynamically switched by utilizing the dynamic scheduling and heterogeneous redundancy technology, the risk and loss of attacking a website system arereduced, the attack behavior can be more accurately judged, and countermeasures are taken in time.
Description
technical field [0001] The invention belongs to the technical field of computers, and in particular relates to a mimetic Web gateway system and method for dynamic scheduling by random selection. Background technique [0002] As an important platform for carrying and providing services, the Web application server system faces increasingly serious security problems. Existing defense technologies are mainly based on known attack methods or vulnerability information, which makes it difficult to deal with the threat of unknown attacks well, making it difficult to comprehensively protect the security of the web application server system and block the current increasingly diverse types of network attacks. [0003] Although there are many types and means of cyber attacks, they usually depend on the specific properties of specific systems. Different system designs or implementations often make systems with similar functions have completely different characteristics. For example, dif...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
Application Information
Patent Timeline
Application Date:The date an application was filed.
Publication Date:The date a patent or application was officially published.
First Publication Date:The earliest publication date of a patent with the same application number.
Issue Date:Publication date of the patent grant document.
PCT Entry Date:The Entry date of PCT National Phase.
Estimated Expiry Date:The statutory expiry date of a patent right according to the Patent Law, and it is the longest term of protection that the patent right can achieve without the termination of the patent right due to other reasons(Term extension factor has been taken into account ).
Invalid Date:Actual expiry date is based on effective date or publication date of legal transaction data of invalid patent.
Login to view more 
Login to view more