Security defense method and device

A technology of security defense and compiling method, which is applied in the field of security defense method and device, and can solve problems such as access security risks, unexpected errors in data flow, and limited software diversity.

Inactive Publication Date: 2020-02-11
PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
View PDF6 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] Among them, the attack on the memory error of the service system is a kind of attack on the web service. The attack method is to use the security loopholes of the software to construct malicious input, resulting in unexpected errors when the software processes the data stream.
[0004] At present, due to the limited diversity of software and the hereditary code between multiple versions of the same software, once an attacker finds a vulnerability, he will spread the vulnerability to different versions of the same type of software, which affects the security of access. There is a great security risk

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Security defense method and device
  • Security defense method and device
  • Security defense method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0046] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0047] refer to figure 1 , which shows a schematic flowchart of a security defense method provided by an embodiment of the present invention. In this embodiment, the method includes:

[0048] S101: After receiving the web service request, distribute the web request to multiple software executables; the multiple software executables are obtained by compiling the same software through different compiling methods;

[0049] In this embodiment, the multiple pieces...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention discloses a security defense method and device. The method comprises the following steps: distributing a web service request to a plurality of software executors, wherein the plurality of software executors are obtained by compiling the same software in different compiling modes, analyzing the response information to determine whether abnormal response information is contained or not, and offline the software executor corresponding to the abnormal response information under the condition that the abnormal response information is contained. Therefore, the functions of the software executors obtained through different compiling modes are the same, but structures are different, in this way, attacks on a certain software execution body are greatly reduced; the risk that other execution bodies of the software or execution bodies of other versions of the software are attacked is avoided, and the risk that the software is attacked is greatly reduced by selecting the abnormal response information even if the software execution body which is possibly attacked is discovered and the software execution body is offline in time.

Description

technical field [0001] The invention relates to the field of the Internet, in particular to a security defense method and device. Background technique [0002] Accessing websites through browsers has become the main way for PC and mobile users to obtain information and services. The web service system involves user access to login passwords, access to search records and other user sensitive information and data. With huge potential benefits, attacks against web services emerge in endlessly. [0003] Among them, the attack on the memory error of the service system is a kind of attack on the web service. This attack method is to use the security loopholes of the software to construct malicious input, resulting in unexpected errors when the software processes the data stream. [0004] At present, due to the limited diversity of software and the hereditary code between multiple versions of the same software, once an attacker finds a vulnerability, he will spread the vulnerabili...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/14H04L63/1441H04L67/02
Inventor 张铮刘镇武邬江兴王晓梅马博林刘浩张高斐王疆李方云聂广来
Owner PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap