Unlock instant, AI-driven research and patent intelligence for your innovation.

Request and interface association method and system

An interface and user-requested technology, which is applied in the field of security scanning, can solve problems such as indistinguishability, high false positive rate, and inability to know test coverage, and achieve the effect of reducing performance impact

Pending Publication Date: 2021-08-13
TIANGU INFORMATION SCI TECH HANGZHOU
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the above existing technologies have disadvantages such as high false alarm rate and poor performance, and the accuracy is even worse in high concurrency scenarios
For example, the Get request host / user / abc for user ID abc and the Get request host / user / users for all user information are often considered to be the same request and cannot be distinguished
And for the unreceived request, the relevant API information cannot be generated, resulting in the inability to know all the API information of the entire web project, and the test coverage problem in the process of security testing cannot be known

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Request and interface association method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0031] It should be noted that, in the case of no conflict, the embodiments of the present invention and the features in the embodiments can be combined with each other.

[0032] The present invention will be further described below in conjunction with the accompanying drawings and specific embodiments, but not as a limitation of the present invention.

[0033] The present invention includes a method for associating a request with an interface, such as figure 1 sh...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a request and interface association method and system. The method comprises the following steps of scanning the interface configuration information, establishing a mapping relationship between an interface and an interface method, generating a corresponding interface marking code according to the method data of the interface method, and instrumenting the interface marking code into the interface method; generating a request context object of a current thread according to the user request information, when the current thread executes an interface method, calling an interface mark code of instrumentation in the interface method, setting an interface mark character string into the request context object via the interface mark code; and performing association setting on the current user request and the interface according to the interface mark character string in the request context object in combination with the mapping relationship. According to the method, the interface configuration information is actively scanned, the interface mark code is instrumented to the interface, the request context object of the current thread is generated according to the user request information, and the interface corresponding to the current user request is obtained in the program running process.

Description

technical field [0001] The invention relates to the technical field of security scanning, in particular to a method and system for associating a request and an interface. Background technique [0002] API (Application Programming Interface, application programming interface) are some predefined functions, the purpose is to provide applications and developers with the ability to access a set of routines based on a piece of software or hardware, without having to access the source code, or understand the inner workings Mechanism details. [0003] The current security detection tools cannot realize the binding of API traffic and interfaces. However, if the above-mentioned security detection tools want to realize functions such as interface detection coverage, traffic classification, and API-level rule control, a method that can bind interfaces and traffic is required. Methods. [0004] In view of the above problems, the current implementation of security detection tools is: o...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F9/448G06F21/57
CPCG06F9/449G06F21/577G06F2221/033
Inventor 郑有乐金宏洲程亮
Owner TIANGU INFORMATION SCI TECH HANGZHOU