Unlock instant, AI-driven research and patent intelligence for your innovation.

A kind of website malicious third-party content detection method and system

A content detection and malicious technology, applied in transmission systems, digital transmission systems, instruments, etc., can solve problems such as inability to solve dynamic network trust problems, and achieve the effect of easy deployment and increased security

Active Publication Date: 2022-07-22
山西三友和智慧信息技术股份有限公司
View PDF16 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Aiming at the above-mentioned technical problem that the existing security strategy cannot solve the trust problem on the dynamic network, the present invention provides a method and system for detecting malicious third-party content on a website that is easy to deploy, strong in security, and high in efficiency

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A kind of website malicious third-party content detection method and system
  • A kind of website malicious third-party content detection method and system
  • A kind of website malicious third-party content detection method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only a part of the embodiments of the present invention, rather than all the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present invention.

[0022] A method for detecting malicious third-party content on websites, such as figure 1 shown, including the following steps:

[0023] Step 1. The webpage resource is first checked by the content security policy CSP, and if the resource cannot pass the content security policy CSP, it is directly judged as malicious content;

[0024] Step 2, the content not detected by the content security policy CSP enters the sequence building mo...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention belongs to the technical field of website content detection, and in particular relates to a method and system for detecting malicious third-party content of a website. It is malicious content; the content not detected by the content security policy CSP enters the inclusion sequence building module to construct the inclusion sequence; feature extraction; extract the corresponding features for the sequence constructed in the inclusion sequence construction, and use it as training classification; classify by inclusion sequence The machine classifies the containing sequence. Compared with the method based on traditional security policy, the present invention is easier to deploy by performing third-party malicious content detection on the page resource containing sequence parsed by fine-grained analysis of the DOM tree, and at the same time, it makes it impossible for third parties to find security loopholes to bypass the present invention. Further increases the security of the web page. The present invention is used for the detection of malicious third-party content of a website.

Description

technical field [0001] The invention belongs to the technical field of website content detection, and particularly relates to a method and system for detecting malicious third-party content of a website. Background technique [0002] Affected by the same-origin policy, code and data from different sources are enforced to be isolated. Currently, the security mechanisms used to protect websites from malicious third parties include Content Security Policy (CSP), Cross-Origin Resource Sharing (CORS) and cross-domain communication based on POST messages, but since these strategies are difficult to apply securely in practice, and cannot solve trust problems on dynamic networks, third parties can also use their capabilities to bypass these security mechanisms. [0003] Problems or defects in the existing technology: The existing security policies are difficult to deploy and apply in practice, and cannot solve the trust problem on dynamic networks, and third parties can also use the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40G06K9/62
CPCH04L63/1441H04L63/1433G06F18/2415G06F18/214
Inventor 潘晓光马泽宇焦璐璐韩锋李娟
Owner 山西三友和智慧信息技术股份有限公司