技术领域technical field
本发明涉及计算机技术领域,具体涉及一种移动终端浏览器网址检测方法及装置。The invention relates to the field of computer technology, in particular to a mobile terminal browser website detection method and device.
背景技术Background technique
随着移动终端的普及,用户在移动终端上进行各种操作,例如在手机浏览器上进行网页浏览。如果用户浏览的是不安全网址(如,钓鱼网站、虚假网站等),很有可能给用户带来经济损失,因此,需要对用户的浏览行为进行监控,若用户当前浏览的网址是不安全的网址时,需提示用户当前网址有风险。With the popularization of mobile terminals, users perform various operations on mobile terminals, such as browsing webpages on mobile phone browsers. If the user browses an unsafe website (such as a phishing website, a fake website, etc.), it is likely to bring economic losses to the user. Therefore, it is necessary to monitor the user's browsing behavior. If the website the user is currently browsing is unsafe URL, the user needs to be reminded that the current URL is risky.
现有网址检测方案是:获取用户在浏览器地址栏输入的网址;根据预置的网址黑/白名单进行网址检测;如果是危险网址,在客户端本地进行危险警告,可提供关闭当前网页或继续访问功能。上述网址检测的步骤可以在客户端或服务器端进行,但是不论哪种,后续都是在客户端通过危险警告页方式向用户进行风险提示,而没有针对网站的危险程度做进一步处理。这种方式可控程度较低,只能进行简单的风险提示,而不能进行有效的引导和控制。The existing URL detection scheme is: obtain the URL entered by the user in the browser address bar; perform URL detection according to the preset URL black/white list; Continue to access features. The above steps of URL detection can be performed on the client or the server, but either way, the risk warning is given to the user on the client through the danger warning page, and no further processing is performed on the danger of the website. This method has a low degree of controllability, and can only provide simple risk warnings, but cannot carry out effective guidance and control.
发明内容Contents of the invention
鉴于上述问题,提出了本发明以便提供一种克服上述问题或者至少部分地解决上述问题的移动终端浏览器网址检测方法及装置。In view of the above problems, the present invention is proposed to provide a mobile terminal browser website detection method and device that overcomes the above problems or at least partially solves the above problems.
依据本发明的一个方面,提供一种移动终端浏览器网址检测方法,包括:获取所述移动终端浏览器的地址栏中的网址;在所述网址对应的页面加载到预定程度时,向云端发起网址异步检测请求;接收云端返回的网址检测结果,提取出网址的危险级别参数;向所述云端请求与所述危险级别参数对应的拦截页面;根据所述拦截页面,向用户进行网页显示。According to one aspect of the present invention, a mobile terminal browser website detection method is provided, including: obtaining the website address in the address bar of the mobile terminal browser; URL asynchronous detection request; receiving the URL detection result returned by the cloud, and extracting the risk level parameter of the URL; requesting the cloud for an interception page corresponding to the risk level parameter; displaying the webpage to the user according to the interception page.
优选的,在接收云端返回的网址检测结果之后,还包括:将检测结果中的相关信息存储在移动终端本地,生成网址检测记录。Preferably, after receiving the website detection result returned by the cloud, the method further includes: storing relevant information in the detection result locally in the mobile terminal to generate a website detection record.
优选的,在所述向云端发起网址异步检测请求之前,还包括:根据本地预先存储的网址检测记录,查找是否包括所述地址栏中输入的网址对应的检测记录,若有,直接从所述检测记录中提取出所述网址的危险级别参数。Preferably, before the asynchronous website address detection request is initiated to the cloud, it further includes: according to the local pre-stored website website detection record, searching whether the detection record corresponding to the website address entered in the address bar is included, and if so, directly from the The risk level parameter of the URL is extracted from the detection record.
优选的,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。Preferably, the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
优选的,当所述危险级别参数是所述第一级别参数时,所述根据所述拦截页面,向用户进行网页显示,包括:在所述拦截页面中向用户显示所述网址存在危险的提示,和/或,通过所述拦截页面跳转到其他安全的网页。Preferably, when the risk level parameter is the first level parameter, displaying the webpage to the user according to the interception page includes: displaying to the user a warning that the website is dangerous in the interception page , and/or, jump to other safe webpages through the blocking page.
优选的,当所述危险级别参数是所述第一级别参数时,所述方法还包括:将所述网址的访问请求从本地记录中清除。Preferably, when the risk level parameter is the first level parameter, the method further includes: clearing the access request of the website from local records.
优选的,当所述危险级别参数是所述第二级别参数时,所述向所述云端请求与所述危险级别参数对应的拦截页面之前,还包括:根据所述网址对应的信息,按照与所述云端预先约定算法,计算得到访问通行码并存储;在向所述云端请求到所述拦截页面之后,还包括:从所述拦截页面中提取出云端按照所述预先约定算法计算的访问通行码,并将云端计算的访问通行码与本地存储的访问通行码进行比对,如果一致,则在所述拦截页面中进行所述网址对应页面内容的显示。Preferably, when the risk level parameter is the second level parameter, before requesting the interception page corresponding to the risk level parameter from the cloud, it further includes: according to the information corresponding to the URL, according to the The cloud pre-agreed algorithm calculates and stores the access passcode; after requesting the interception page from the cloud, it also includes: extracting the access passcode calculated by the cloud according to the pre-agreed algorithm from the interception page code, and compare the access passcode of cloud computing with the access passcode of local storage, and if they are consistent, display the content of the page corresponding to the URL in the interception page.
依据本发明的另一个方面,提供一种移动终端浏览器网址检测方法,包括:接收移动终端发送的网址异步检测请求;根据预置的危险网址库,对所述网址异步检测请求中所针对的网址进行安全性检测;向移动终端返回的网址检测结果,其中,所述网址检测结果中包含网址的危险级别参数;接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求;根据所述拦截页面的请求,向所述移动终端返回拦截页面。According to another aspect of the present invention, a mobile terminal browser website detection method is provided, including: receiving a website asynchronous detection request sent by a mobile terminal; Perform security detection on the URL; return the URL detection result to the mobile terminal, wherein the URL detection result includes a risk level parameter of the URL; receive a request initiated by the mobile terminal to obtain an intercepted page corresponding to the risk level parameter; according to The request for the intercepted page returns the intercepted page to the mobile terminal.
优选的,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。Preferably, the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
优选的,当所述危险级别参数是所述第一级别参数时,所述根据所述拦截页面的请求,向所述移动终端返回拦截页面,包括:在所述拦截页面中创建包含危险的提示信息,和/或,通过所述拦截页面跳转到其他安全的网页。Preferably, when the risk level parameter is the first level parameter, returning the interception page to the mobile terminal according to the request of the interception page includes: creating a warning containing danger in the interception page information, and/or, jump to other safe webpages through the blocking page.
优选的,当所述危险级别参数是所述第二级别参数时,在所述接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求之后,还包括:按照与移动终端预先约定算法计算所述网址的访问通行码,并在所述拦截页面中携带所述访问通行码。Preferably, when the risk level parameter is the second level parameter, after receiving the request initiated by the mobile terminal to acquire the interception page corresponding to the risk level parameter, further include: The algorithm calculates the access pass code of the website, and carries the access pass code in the intercepted page.
依据本发明的又一个方面,提供一种移动终端浏览器网址检测装置,包括:网址获取单元,用于获取所述移动终端浏览器的地址栏中的网址;检测请求单元,用于在所述网址对应的页面加载到预定程度时,向云端发起网址异步检测请求;检测结果接收单元,用于接收云端返回的网址检测结果,提取出网址的危险级别参数;拦截页面请求单元,用于向所述云端请求与所述危险级别参数对应的拦截页面;网页显示单元,用于根据所述拦截页面,向用户进行网页显示。According to still another aspect of the present invention, a mobile terminal browser website detection device is provided, including: a website acquisition unit for obtaining the website in the address bar of the mobile terminal browser; a detection request unit for When the page corresponding to the URL is loaded to a predetermined level, an asynchronous URL detection request is initiated to the cloud; the detection result receiving unit is used to receive the URL detection result returned by the cloud, and extract the risk level parameters of the URL; the intercepting page request unit is used to send to all The cloud requests an interception page corresponding to the risk level parameter; the webpage display unit is configured to display the webpage to the user according to the interception page.
优选的,还包括:检测记录存储单元,用于将检测结果中的相关信息存储在移动终端本地,生成网址检测记录。Preferably, it further includes: a detection record storage unit, configured to store relevant information in the detection result locally in the mobile terminal to generate a website detection record.
优选的,还包括:本地检测单元,用于根据本地预先存储的网址检测记录,查找是否包括所述地址栏中输入的网址对应的检测记录,若有,直接从所述检测记录中提取出所述网址的危险级别参数。Preferably, it also includes: a local detection unit, configured to find out whether the detection record corresponding to the URL input in the address bar is included according to the local pre-stored network detection record, and if so, directly extract the detection record from the detection record. Danger level parameter for the above URL.
优选的,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。Preferably, the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
优选的,当所述危险级别参数是所述第一级别参数时,所述网页显示单元具体用于:在所述拦截页面中向用户显示所述网址存在危险的提示,和/或,通过所述拦截页面跳转到其他安全的网页。Preferably, when the risk level parameter is the first level parameter, the webpage display unit is specifically configured to: display a warning to the user that the website is dangerous in the blocking page, and/or, through the The above interception page jumps to other safe web pages.
优选的,当所述危险级别参数是所述第一级别参数时,所述装置还包括:记录清除单元,用于将所述网址的访问请求从本地记录中清除。Preferably, when the risk level parameter is the first level parameter, the device further includes: a record clearing unit, configured to clear the access request of the website from local records.
优选的,当所述危险级别参数是所述第二级别参数时,所述装置还包括:访问通行码计算单元,用于根据所述网址对应的信息,按照与所述云端预先约定算法,计算得到访问通行码并存储;访问通行码比对单元,用于从所述拦截页面中提取出云端按照所述预先约定算法计算的访问通行码,并将云端计算的访问通行码与本地存储的访问通行码进行比对,如果一致,则指示所述网页显示单元在所述拦截页面中进行所述网址对应页面内容的显示。Preferably, when the risk level parameter is the second level parameter, the device further includes: an access passcode calculation unit, configured to calculate according to the information corresponding to the website and according to the pre-agreed algorithm with the cloud The access pass code is obtained and stored; the access pass code comparison unit is used to extract the access pass code calculated by the cloud according to the pre-agreed algorithm from the intercepted page, and compare the access pass code calculated by the cloud with the access code stored locally. The passcodes are compared, and if they are consistent, the web page display unit is instructed to display the content of the page corresponding to the URL on the intercepted page.
依据本发明的又一个方面,提供一种移动终端浏览器网址检测装置,包括:检测请求接收单元,用于接收移动终端发送的网址异步检测请求;检测单元,用于根据预置的危险网址库,对所述网址异步检测请求中所针对的网址进行安全性检测;检测结果反馈单元,用于向移动终端返回的网址检测结果,其中,所述网址检测结果中包含网址的危险级别参数;拦截页面请求接收单元,用于接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求;拦截页面返回单元,用于根据所述拦截页面的请求,向所述移动终端返回拦截页面。According to yet another aspect of the present invention, a mobile terminal browser URL detection device is provided, including: a detection request receiving unit, configured to receive an asynchronous URL detection request sent by a mobile terminal; a detection unit, configured to performing security detection on the URL targeted in the URL asynchronous detection request; the detection result feedback unit is used to return the URL detection result to the mobile terminal, wherein the URL detection result includes a risk level parameter of the URL; intercepting The page request receiving unit is used to receive the request initiated by the mobile terminal to obtain the intercepted page corresponding to the risk level parameter; the intercepted page returning unit is used to return the intercepted page to the mobile terminal according to the request for the intercepted page.
优选的,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。Preferably, the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
优选的,当所述危险级别参数是所述第一级别参数时,所述拦截页面返回单元具体用于:在所述拦截页面中创建包含危险的提示信息,和/或,通过所述拦截页面跳转到其他安全的网页。Preferably, when the risk level parameter is the first level parameter, the interception page returning unit is specifically configured to: create a warning message containing danger in the interception page, and/or, pass the interception page Jump to another safe webpage.
优选的,当所述危险级别参数是所述第二级别参数时,所述装置还包括:访问通行码计算单元,用于按照与移动终端预先约定算法计算所述网址的访问通行码,并在所述拦截页面中携带所述访问通行码。Preferably, when the risk level parameter is the second level parameter, the device further includes: an access passcode calculation unit, configured to calculate the access passcode of the website according to an algorithm pre-agreed with the mobile terminal, and The interception page carries the access passcode.
本发明主要是针对移动终端浏览器进行的网址安全性检测方案。相比于现有技术中仅在客户端进行风险提示的方式,本发明方案在得到网址检测结果之后,根据网址危险程度进行不同程度的网页显示控制。例如,针对危险程度高的网址,不但进行风险提示,而且直接屏蔽掉危险网址的内容,进一步还可以直接跳转到其他安全网页,从而对用户进行正面引导;对于危险程度一般的网址,虽然也存在一定的风险,但是访问这类网址并不会造成实质性危害,对这类网址,可允许用户继续访问,但是可通过一个访问通行码进行有效性控制。The present invention is mainly aimed at the website security detection scheme carried out by the browser of the mobile terminal. Compared with the way in the prior art that the risk prompt is only provided on the client side, the solution of the present invention controls the display of webpages in different degrees according to the degree of danger of the website after obtaining the detection result of the website. For example, for websites with a high degree of danger, not only risk warnings are provided, but the content of the dangerous website is directly blocked, and further, it can be directly redirected to other safe webpages, so as to guide users positively; for websites with an average degree of danger, although there are There are certain risks, but accessing such websites will not cause substantial harm. For such websites, users can be allowed to continue to visit, but the validity can be controlled through an access passcode.
上述说明仅是本发明技术方案的概述,为了能够更清楚了解本发明的技术手段,而可依照说明书的内容予以实施,并且为了让本发明的上述和其它目的、特征和优点能够更明显易懂,以下特举本发明的具体实施方式。The above description is only an overview of the technical solution of the present invention. In order to better understand the technical means of the present invention, it can be implemented according to the contents of the description, and in order to make the above and other purposes, features and advantages of the present invention more obvious and understandable , the specific embodiments of the present invention are enumerated below.
附图说明Description of drawings
通过阅读下文优选实施方式的详细描述,各种其他的优点和益处对于本领域普通技术人员将变得清楚明了。附图仅用于示出优选实施方式的目的,而并不认为是对本发明的限制。而且在整个附图中,用相同的参考符号表示相同的部件。在附图中:Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiment. The drawings are only for the purpose of illustrating a preferred embodiment and are not to be considered as limiting the invention. Also throughout the drawings, the same reference numerals are used to designate the same components. In the attached picture:
图1示出了根据本发明第一实施例的移动终端浏览器网址检测方法流程图;Fig. 1 shows the flow chart of the mobile terminal browser URL detection method according to the first embodiment of the present invention;
图2示出了根据本发明第二实施例的移动终端浏览器网址检测方法流程图;Fig. 2 shows the flowchart of the mobile terminal browser URL detection method according to the second embodiment of the present invention;
图3示出了根据本发明第二实施例的访问通行码的生成及验证流程图;Fig. 3 shows a flow chart of generating and verifying an access passcode according to a second embodiment of the present invention;
图4示出了根据本发明实施例的移动终端侧的网址检测装置结构示意图;以及FIG. 4 shows a schematic structural diagram of a mobile terminal side website detection device according to an embodiment of the present invention; and
图5示出了根据本发明实施例的云端侧的网址检测装置结构示意图。Fig. 5 shows a schematic structural diagram of an apparatus for detecting a website on the cloud side according to an embodiment of the present invention.
具体实施方式detailed description
下面将参照附图更详细地描述本公开的示例性实施例。虽然附图中显示了本公开的示例性实施例,然而应当理解,可以以各种形式实现本公开而不应被这里阐述的实施例所限制。相反,提供这些实施例是为了能够更透彻地理解本公开,并且能够将本公开的范围完整的传达给本领域的技术人员。Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.
本发明主要是针对移动终端浏览器进行的网址安全性检测方案。相比于现有技术中仅在客户端进行风险提示的方式,本发明方案在得到网址检测结果之后,根据网址危险程度进行不同程度的网页显示控制。例如,针对危险程度高的网址,不但进行风险提示,而且直接屏蔽掉危险网址的内容,进一步还可以直接跳转到其他安全网页,从而对用户进行正面引导;对于危险程度一般的网址,虽然也存在一定的风险,但是访问这类网址并不会造成实质性危害,对这类网址,可允许用户继续访问,但是可通过一个访问通行码进行有效性控制。The present invention is mainly aimed at the website security detection scheme carried out by the browser of the mobile terminal. Compared with the way in the prior art that the risk prompt is only provided on the client side, the solution of the present invention controls the display of webpages in different degrees according to the degree of danger of the website after obtaining the detection result of the website. For example, for websites with a high degree of danger, not only risk warnings are provided, but the content of the dangerous website is directly blocked, and further, it can be directly redirected to other safe webpages, so as to guide users positively; for websites with an average degree of danger, although there are There are certain risks, but accessing such websites will not cause substantial harm. For such websites, users can be allowed to continue to visit, but the validity can be controlled through an access passcode.
下面结合附图对本发明实施例进行详细介绍。Embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings.
参见图1,示出了根据本发明第一实施例的移动终端浏览器网址检测方法流程图。该方法包括如下步骤S101-S105。Referring to FIG. 1 , it shows a flowchart of a method for detecting a website address of a mobile terminal browser according to a first embodiment of the present invention. The method includes the following steps S101-S105.
S101:获取移动终端浏览器地址栏中的网址。S101: Obtain the URL in the address bar of the browser of the mobile terminal.
步骤S101中,用户在地址栏中输入要访问的网址,也即本发明方案中待检测的网址,例如,在IE地址栏中输入网址访问网站是IE地址栏最基本的功能。网址一般采用URL(统一资源定位符)表示,URL是对可以从互联网上得到的资源的位置和访问方法的一种简洁的表示,是互联网上标准资源的地址。互联网上的每个文件都有一个唯一的URL,它包含的信息指出文件的位置以及浏览器针对她的处理方式。获取URL的方式是现有技术,例如,可采取JavaScript编码方式或者读取UI(User Interface,用户界面)线程的方式获取URL,等等。In step S101, the user inputs the website to be visited in the address bar, that is, the website to be detected in the solution of the present invention. For example, inputting a website in the IE address bar to access a website is the most basic function of the IE address bar. A web address is generally represented by a URL (Uniform Resource Locator), which is a concise representation of the location and access method of a resource that can be obtained from the Internet, and is the address of a standard resource on the Internet. Every file on the Internet has a unique URL, which contains information indicating the location of the file and how the browser handles it. The method of obtaining the URL is an existing technology, for example, the method of encoding JavaScript or reading a UI (User Interface, user interface) thread may be used to obtain the URL, and so on.
S102:在网址对应的页面加载到预定程度时,向云端发起网址异步检测请求。S102: When the page corresponding to the URL is loaded to a predetermined level, initiate a URL asynchronous detection request to the cloud.
在步骤S102中,为了最大程度不影响正常安全网页的加载和浏览,通过检测网页加载进度,选择在网址对应的页面加载到预定程度时,向云端发起网址异步检测请求。例如,在页面加载到80%时,向云端发起网址异步检测请求,暂停页面加载,待检测结果表明为安全网址时,则继续后续部分页面的加载,如果检测结果表明是危险或警示时,则按照本发明后续控制方法进行网页显示的控制。In step S102, in order not to affect the loading and browsing of normal secure webpages to the greatest extent, by detecting the loading progress of the webpage, an asynchronous URL detection request is initiated to the cloud when the page corresponding to the URL is loaded to a predetermined level. For example, when the page is loaded to 80%, initiate a URL asynchronous detection request to the cloud, suspend page loading, and wait for the detection result to indicate that it is a safe URL, then continue to load the subsequent part of the page, if the detection result indicates that it is a dangerous or warning, then The web page display is controlled according to the follow-up control method of the present invention.
S103:接收云端返回的网址检测结果,提取出网址的危险级别参数。S103: Receive the URL detection result returned by the cloud, and extract the risk level parameter of the URL.
在步骤S103之前,在云端进行网址安全性检测。例如,可以通过预先设定的网址黑/白名单的方式,按照网址标识进行遍历,识别出该待检测网址的安全性。特别的,可以在云端设置两个危险网址库以及一个安全网址库,其中,两个危险网址库分别对应两种危险程度的网址集合,一个是危险程度较高的第一级别危险网址库,另一个是危险程度相对较低的第二级别危险网址库。另外,设置与各级别的危险网址库对应的危险级别参数。例如,设置与第一级别危险网址库对应的第一级别参数,以及,与第二级别危险网址库对应的第二级别参数。Before step S103, website security detection is performed on the cloud. For example, the security of the website to be detected can be identified by traversing according to the website identifier through a pre-set blacklist/whitelist of the website. In particular, two libraries of dangerous URLs and one library of safe URLs can be set up in the cloud, wherein the two libraries of dangerous URLs correspond to URL collections of two levels of danger respectively, one is the first-level dangerous URL library with a higher degree of danger, and the other One is the second-level dangerous URL library with a relatively low degree of danger. In addition, dangerous level parameters corresponding to dangerous URL libraries of various levels are set. For example, first-level parameters corresponding to the first-level dangerous website library, and second-level parameters corresponding to the second-level dangerous website library are set.
在对待检测网址进行网址库匹配时,若匹配出第一级别危险网址库,则向移动终端返回的网址检测结果中携带的第一级别参数,同理,在对待检测网址进行网址库匹配时,若匹配出第二级别危险网址库,则向移动终端返回的网址检测结果中携带的第二级别参数。When performing URL library matching on the URL to be detected, if the first-level dangerous URL library is matched, the first-level parameters carried in the URL detection result returned to the mobile terminal, similarly, when the URL to be detected is matched to the URL library, If the second-level dangerous website library is matched, the second-level parameters carried in the website detection result are returned to the mobile terminal.
在步骤S103中,接收云端返回的网址检测结果,提取出网址的危险级别参数。如前段描述的,第一级别参数是表明待检测网址是危险程度较高的网址,例如,页面中含有木马程序的网址,或者,受政府或政治原因禁止访问的一些的网址;第二级别参数是表明待检测网址是危险程度相对较低的网址,例如,网页内容被篡改、或含有恶意广告、或签名不合法但危害不严重的一些网址,这些网址虽然有一定的危险性,但是却不会对用户造成实质性损失,对于这类网址,本发明方案是允许继续访问,还可以通过访问通行码进行访问限制,对此后续会有说明。In step S103, the website detection result returned by the cloud is received, and the risk level parameter of the website is extracted. As described in the previous paragraph, the first-level parameters indicate that the website to be detected is a highly dangerous website, for example, a website containing a Trojan horse program in the page, or some websites that are prohibited from being accessed by the government or political reasons; the second-level parameter It indicates that the URLs to be detected are relatively low-risk URLs. For example, some URLs whose webpage content has been tampered with, or contain malicious advertisements, or have illegal signatures but are not seriously harmful. Although these URLs have certain risks, they are not serious. Substantial losses will be caused to users. For this type of website, the solution of the present invention allows continued access, and can also restrict access through the access passcode, which will be explained later.
S104:向云端请求与危险级别参数对应的拦截页面。S104: Request the interception page corresponding to the risk level parameter from the cloud.
S105:根据拦截页面,向用户进行网页显示。S105: Display the webpage to the user according to the intercepted page.
针对不同危险程度的网址,采取不同的处理方式,具体的,通过向云端请求拦截页面的方式,实现对不同危险程度的网址的不同程度的控制。For websites with different risk levels, different processing methods are adopted. Specifically, different degrees of control over websites with different risk levels are realized by requesting the cloud to block pages.
例如,对于危险程度较高的网址,在拦截页面中向用户显示网址存在危险的提示,和/或,通过拦截页面跳转到其他安全的网页,从而实现对用户的正确、安全引导。例如,用户输入的网址是含有木马程序的一个视频类网址,此时,可将原网址对应页面屏蔽掉,并引导到同类型的一个安全视频网址,从而可有效避免用户访问风险,同时又节省用户重新输入其他网址的繁琐操作,提高效率。另外,对于危险程度较高的网址,还可以将该网址的访问请求从本地记录中清除,从而避免用户下次再次请求访问该网址,进一步提高安全性。For example, for a website with a high degree of risk, a warning that the website is dangerous is displayed to the user on the blocking page, and/or, the blocking page is redirected to another safe webpage, so as to achieve correct and safe guidance for the user. For example, if the URL entered by the user is a video URL containing a Trojan horse program, at this time, the corresponding page of the original URL can be blocked and redirected to a safe video URL of the same type, thereby effectively avoiding the risk of user access and saving money. The cumbersome operation of users re-entering other URLs improves efficiency. In addition, for a website with a high degree of risk, the access request of the website can also be cleared from the local records, so as to prevent the user from requesting to visit the website again next time, and further improve security.
再如,对于危险程度一般的网址,可允许用户对该网址的页面内容进行访问。优选的,可以在显示页面内容时进行访问通行码的确认,以此提高访问的安全性。具体的,移动终端在向云端请求拦截页面之前,还包括:根据网址对应的信息,按照与云端预先约定算法,计算得到访问通行码并存储;在向云端请求到拦截页面之后,还包括:从拦截页面中提取出云端按照预先约定算法计算的访问通行码,并将云端计算的访问通行码与本地存储的访问通行码进行比对,如果一致,则在拦截页面中进行网址对应页面内容的显示。For another example, for a website with an average risk level, the user may be allowed to access the page content of the website. Preferably, the access passcode can be confirmed when the page content is displayed, so as to improve access security. Specifically, before the mobile terminal requests the cloud to intercept the page, it also includes: according to the information corresponding to the URL, according to the pre-agreed algorithm with the cloud, calculate and store the access passcode; after requesting the cloud to intercept the page, it also includes: from The access passcode calculated by the cloud according to the pre-agreed algorithm is extracted from the interception page, and the access passcode calculated on the cloud is compared with the access passcode stored locally. If they are consistent, the content of the page corresponding to the URL is displayed on the interception page .
优选的,在步骤S103接收云端返回的网址检测结果之后,还包括步骤:将检测结果中的相关信息存储在移动终端本地,生成网址检测记录。网址检测记录例如包括网址标识、危险级别参数、网址内容、网址标题、存储类型、页面类型,等。在本地存储网址检测结果的意图在于,在下次进行网址检测时,可首先在本地根据存储的网址检测结果进行查找,如果检测不出结果,再进行云端检测。因此,在步骤S102之前,还包括:根据本地预先存储的网址检测记录,查找是否包括地址栏中输入的网址对应的检测记录,若有,直接从检测记录中提取出网址的危险级别参数,若没有,则向云端发起网址异步检测请求。Preferably, after receiving the website detection result returned by the cloud in step S103, a further step is included: storing relevant information in the detection result locally in the mobile terminal to generate a website detection record. The URL detection records include, for example, URL identifiers, risk level parameters, URL content, URL titles, storage types, page types, and the like. The purpose of storing the URL detection results locally is that the next URL detection can be performed locally based on the stored URL detection results, and if no results can be detected, cloud detection is performed. Therefore, before step S102, it also includes: according to the local pre-stored URL detection records, find whether the detection records corresponding to the URLs input in the address bar are included, if so, directly extract the risk level parameters of the URLs from the detection records, if If not, a URL asynchronous detection request is initiated to the cloud.
参见图2,示出了根据本发明第二实施例的移动终端浏览器网址检测方法流程图。与第一实施例相比,该第二实施例具体示出了在移动终端由哪个功能模块与云端哪个功能模块进行交互,从而实现网址检测。Referring to FIG. 2 , it shows a flowchart of a method for detecting a website address of a mobile terminal browser according to a second embodiment of the present invention. Compared with the first embodiment, this second embodiment specifically shows which functional module in the mobile terminal interacts with which functional module in the cloud, so as to realize website detection.
参见图2,在移动终端(客户端)包括UI线程和checkthread(静态分析工具),其中,UI线程是客户端发起网址检测的功能模块,checkthread是专门进行网址信息分析和处理的模块,也是与云端的网盾服务模块交互的模块;在云端包括网盾服务模块和拦截页面模块,网盾服务模块是处理网址检测的模块,拦截页面模块是生成拦截页面的模块。Referring to Fig. 2, mobile terminal (client) includes UI thread and checkthread (static analysis tool), wherein, UI thread is the function module that client initiates website detection, and checkthread is the module that specially carries out website information analysis and processing, also is with A module that interacts with the network shield service module in the cloud; it includes a network shield service module and an interception page module in the cloud. The network shield service module is a module for processing URL detection, and the interception page module is a module for generating interception pages.
图2包括如下步骤:Figure 2 includes the following steps:
S201:UI线程获取URL;S201: the UI thread obtains the URL;
S202:UI线程进行本地网址安全性检测,如果检测成功,则结束,如果未检测出结果,则进行后续步骤;S202: The UI thread performs local website security detection, if the detection is successful, then end, if no detection result is detected, proceed to the next step;
S203:向checkthread发起开启异地检测线程的指示,其中,指示中携带待检测网址的相关信息,例如网址标识、url信息等;S203: Initiate an instruction to checkthread to start a remote detection thread, wherein the instruction carries relevant information of the website to be checked, such as website identification, url information, etc.;
S204:checkthread对网址的相关信息进行数据格式化处理,并进行加密;S204: checkthread performs data formatting processing on the relevant information of the URL, and encrypts it;
S205:checkthread向网盾服务模块发送网址异步检测请求;S205: checkthread sends a URL asynchronous detection request to the network shield service module;
S206:网盾服务模块进行网址安全性检测,向checkthread返回检测结果;S206: The network shield service module performs the website security detection, and returns the detection result to the checkthread;
S207:checkthread得到检测结果后进行数据解析,并提取出危险级别参数;S207: checkthread performs data analysis after obtaining the detection result, and extracts risk level parameters;
S208:checkthread在本地对网址的检测结果进行存储;S208: the checkthread locally stores the detection result of the URL;
S209:checkthread将检测结果返回给UI线程;S209: checkthread returns the detection result to the UI thread;
S210:UI线程向拦截页面模块请求拦截页面;S210: The UI thread requests an intercepted page from the intercepted page module;
S211:UI线程获取拦截页面;S211: The UI thread obtains the interception page;
S212:根据拦截页面,向用户进行网页显示。S212: Display the webpage to the user according to the intercepted page.
对于上述图2方案有以下几点说明:For the scheme in Figure 2 above, the following points are explained:
1、检测方式1. Detection method
通过浏览器客户端请求数据时,异步开启请求线程检查请求网址状态的方式检测网址安全性。请求时机选择在网页加载百分之八十的时候执行,避免影响原网页的加载速度。异步请求时机包括单页面请求情况、页面内包含重定向的情况、新建Window的情况。无论哪种情况均会在进度达到百分之八十时被监听到,并执行异步检查处理。When requesting data through the browser client, asynchronously open the request thread to check the status of the requested URL to detect the security of the URL. The timing of the request is selected to be executed when 80% of the webpage is loaded, so as to avoid affecting the loading speed of the original webpage. Asynchronous request timing includes single page request, page contains redirection, and new window. In either case, when the progress reaches 80%, it will be listened to and the asynchronous check processing will be performed.
2、提示方式2. Tips
开启异步线程检测过程通过地址栏(Urlbar)检测加载(Loading)状态标识,请求获得网址状态后根据状态更新Urlbar的Icon状态标识。当结果为危险时,拼接请求危险警告页的请求,展示危险提示页。Enable the asynchronous thread detection process to detect the Loading status indicator through the address bar (Urlbar), and update the Icon status indicator of the Urlbar according to the status after requesting the URL status. When the result is dangerous, the request for the dangerous warning page is spliced, and the dangerous prompt page is displayed.
3、危险情况处理3. Handling of dangerous situations
当危险情况时,现有技术使用本地危险警告页方式提示用户,并支持关闭当前页和继续访问功能,提示文案和异常处理较为固定,不便于多种情况的灵活处理;而本实施例考虑危险的多种可能性和多种处理方式进行扩展,使用危险情况下动态请求危险页的方式,展示警告页面。危险警告页展示内容根据危险页的危险类型动态显示不同的警示内容和可支持的后续操作。例如,对危害较大的网址,不支持继续访问。检测到危险页后提示危险并给出关闭当前页按钮。用户点返回后,删除危险页在网页请求中的记录,避免危险页有再次展示的机会;对于危害较小的网址,如内容被篡改,有恶意广告,签名不合法危害不严重的情况,保留继续访问入口,在用户点击继续访问时,可以正常显示危险网页。When a dangerous situation occurs, the existing technology uses a local danger warning page to prompt the user, and supports the function of closing the current page and continuing to visit. The prompt text and exception handling are relatively fixed, which is not convenient for flexible handling of various situations; Expand multiple possibilities and multiple processing methods, use the way of dynamically requesting dangerous pages in dangerous situations, and display warning pages. The display content of the danger warning page dynamically displays different warning content and supported follow-up operations according to the danger type of the danger page. For example, continuing to visit is not supported for more harmful URLs. After a dangerous page is detected, the danger is prompted and the button to close the current page is given. After the user clicks Back, the record of the dangerous page in the web page request is deleted to avoid the chance of the dangerous page being displayed again; Continue to visit the entrance, when the user clicks to continue to visit, the dangerous webpage can be displayed normally.
4、每个网址请求后,都会有对应网址检测记录(WebPageInfo)保存当前请求网页的状态,包含检测状态,网址内容,标题,存储类型,页面类型等。当网址检测后,状态会保存在WebPageInfo对象中。前进后退时,根据读取WebPageInfo中的检测结果控制显示不同的警告状态。4. After each URL request, there will be a corresponding URL detection record (WebPageInfo) to save the state of the currently requested web page, including detection status, URL content, title, storage type, page type, etc. When the URL is detected, the state is saved in the WebPageInfo object. When going forward and backward, control the display of different warning states according to the detection results in WebPageInfo.
5、检测完成的网址在网页对应的WebPageInfo对象中缓存的同时,也会存储在本地数据库中。通过网址作为标识。每次请求网址检测时,会优先查找本地数据库中是否有过检测,如果有直接返回数据库中存储的状态值。5. The detected URL will be stored in the local database while being cached in the WebPageInfo object corresponding to the web page. Identified by URL. Every time a URL detection is requested, it will first check whether there is a detection in the local database, and if so, directly return the status value stored in the database.
6、针对危险情况下,请求警告页同时,会将危险页从本地请求记录中移除。为了减少用户能够再次看到的机会。即对用户的体验是:在请求网页发现该网页为危险网页后,会看到危险警告页,在警告页点返回时直接跳过请求的危险页回到危险页的上一页。6. For dangerous situations, when requesting a warning page, the dangerous page will be removed from the local request record. To reduce the chances that the user will be able to see it again. That is, the user experience is: after the requesting web page finds that the web page is a dangerous web page, a dangerous warning page will be seen, and when the warning page returns, the requested dangerous page is directly skipped and returned to the previous page of the dangerous page.
7、针对警告页中继续访问所做的处理方案是:继续访问情况下对请求的网址不做检测直接请求;可继续访问的必要条件是网址中包含继续访问通行码。其中,通行码通过浏览器和警告页后台约定算法计算得出。在检测出危险时生成;警告页将计算出的通行码拼接到继续访问连接中。7. The processing plan for continued access in the warning page is: in the case of continued access, directly request the requested URL without detection; the necessary condition for continued access is that the URL contains a continued access passcode. Among them, the passcode is calculated through the background agreement algorithm between the browser and the warning page. Generated when a hazard is detected; the warning page splices the calculated passcode into the continuation link.
参见图3,是第二实施例中针对警告网址生成并验证访问通行码的流程图,包括:Referring to Fig. 3, it is a flow chart of generating and verifying the access passcode for the warning website in the second embodiment, including:
S300:checkthread从网盾服务模块接收检测结果;S300: checkthread receives the detection result from the network shield service module;
S301:checkthread得到检测结果后进行数据解析,并提取出危险级别参数;S301: checkthread performs data analysis after obtaining the detection result, and extracts risk level parameters;
S302:checkthread根据解析的数据,利用预先与云端约定的算法,生成访问通行码;S302: checkthread generates an access passcode by using the algorithm pre-agreed with the cloud according to the analyzed data;
S303:checkthread将访问通行码进行缓存;S303: checkthread caches the access passcode;
S304:checkthread向UI线程返回网址检测结果;S304: checkthread returns the URL detection result to the UI thread;
S305:UI线程向拦截页面模块请求拦截页面;S305: The UI thread requests an intercepted page from the intercepted page module;
S306:拦截页面模块根据约定算法计算访问通行码;S306: The intercepting page module calculates the access passcode according to the agreed algorithm;
S307:拦截页面模块向UI线程返回携带有访问通行码的拦截页面;S307: the intercept page module returns the intercept page carrying the access passcode to the UI thread;
S308:UI线程对云端的访问通行码和本地存储的访问通行码进行比对;S308: The UI thread compares the access passcode in the cloud with the access passcode stored locally;
S309:如果比对结果一致,则对待检测网址的页面内容进行显示。S309: If the comparison results are consistent, display the page content of the URL to be detected.
上述实施例是从移动终端角度描述了网址检测的方案,与其对应,本发明本发明还提供一种在云端侧的移动终端浏览器网址检测方法,包括:The above-mentioned embodiment describes the scheme of URL detection from the perspective of a mobile terminal. Correspondingly, the present invention also provides a mobile terminal browser URL detection method on the cloud side, including:
1、接收移动终端发送的网址异步检测请求;1. Receive the URL asynchronous detection request sent by the mobile terminal;
2、根据预置的危险网址库,对所述网址异步检测请求中所针对的网址进行安全性检测;2. According to the preset library of dangerous URLs, perform security checks on the URLs targeted in the URL asynchronous detection request;
3、向移动终端返回的网址检测结果,其中,所述网址检测结果中包含网址的危险级别参数;3. The URL detection result returned to the mobile terminal, wherein the URL detection result includes a risk level parameter of the URL;
4、接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求;4. Receive a request initiated by the mobile terminal to obtain an interception page corresponding to the risk level parameter;
5、根据所述拦截页面的请求,向所述移动终端返回拦截页面。5. According to the request of the intercepted page, return the intercepted page to the mobile terminal.
优选的,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。Preferably, the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
优选的,当所述危险级别参数是所述第一级别参数时,所述根据所述拦截页面的请求,向所述移动终端返回拦截页面,包括:Preferably, when the risk level parameter is the first level parameter, returning the interception page to the mobile terminal according to the request for the interception page includes:
在所述拦截页面中创建包含危险的提示信息,和/或,通过所述拦截页面跳转到其他安全的网页。Create warning information containing danger in the interception page, and/or jump to other safe webpages through the interception page.
优选的,当所述危险级别参数是所述第二级别参数时,在所述接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求之后,还包括:Preferably, when the risk level parameter is the second level parameter, after the request initiated by the receiving mobile terminal to acquire the intercepted page corresponding to the risk level parameter, further includes:
按照与移动终端预先约定算法计算所述网址的访问通行码,并在所述拦截页面中携带所述访问通行码。Calculate the access pass code of the website according to the algorithm pre-agreed with the mobile terminal, and carry the access pass code in the intercepted page.
参见图4,为本发明实施例提供的一种移动终端浏览器网址检测装置,该装置包括:Referring to Fig. 4, a kind of mobile terminal browser URL detection device provided for the embodiment of the present invention, this device comprises:
网址获取单元401,用于获取用户在所述移动终端浏览器的地址栏中输入的网址;A URL obtaining unit 401, configured to obtain the URL input by the user in the address bar of the mobile terminal browser;
检测请求单元402,用于在所述网址对应的页面加载到预定程度时,向云端发起网址异步检测请求;A detection request unit 402, configured to initiate a website asynchronous detection request to the cloud when the page corresponding to the website is loaded to a predetermined level;
检测结果接收单元403,用于接收云端返回的网址检测结果,提取出网址的危险级别参数;The detection result receiving unit 403 is used to receive the website detection result returned by the cloud, and extract the risk level parameter of the website;
拦截页面请求单元404,用于向所述云端请求与所述危险级别参数对应的拦截页面;An interception page request unit 404, configured to request an interception page corresponding to the risk level parameter from the cloud;
网页显示单元405,用于根据所述拦截页面,向用户进行网页显示。The web page display unit 405 is configured to display the web page to the user according to the intercepted page.
优选的,还包括:Preferably, it also includes:
检测记录存储单元406,用于将检测结果中的相关信息存储在移动终端本地,生成网址检测记录。The detection record storage unit 406 is configured to store relevant information in the detection result locally in the mobile terminal, and generate a website detection record.
优选的,还包括:Preferably, it also includes:
本地检测单元407,用于根据本地预先存储的网址检测记录,查找是否包括所述地址栏中输入的网址对应的检测记录,若有,直接从所述检测记录中提取出所述网址的危险级别参数。The local detection unit 407 is configured to find out whether the detection record corresponding to the URL entered in the address bar is included according to the local pre-stored URL detection record, and if so, directly extract the danger level of the URL from the detection record parameter.
优选的,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。Preferably, the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
优选的,当所述危险级别参数是所述第一级别参数时,所述网页显示单元405具体用于:在所述拦截页面中向用户显示所述网址存在危险的提示,和/或,通过所述拦截页面跳转到其他安全的网页。Preferably, when the risk level parameter is the first level parameter, the webpage display unit 405 is specifically configured to: display a warning to the user that the website is dangerous in the interception page, and/or, through The intercepted page jumps to other safe web pages.
优选的,当所述危险级别参数是所述第一级别参数时,所述装置还包括:Preferably, when the risk level parameter is the first level parameter, the device further includes:
记录清除单元408,用于将所述网址的访问请求从本地记录中清除。A record clearing unit 408, configured to clear the access request of the website from local records.
优选的,当所述危险级别参数是所述第二级别参数时,所述装置还包括:Preferably, when the risk level parameter is the second level parameter, the device further includes:
访问通行码计算单元409,用于根据所述网址对应的信息,按照与所述云端预先约定算法,计算得到访问通行码并存储;The access passcode calculation unit 409 is used to calculate and store the access passcode according to the information corresponding to the website and according to the algorithm pre-agreed with the cloud;
访问通行码比对单元410,用于从所述拦截页面中提取出云端按照所述预先约定算法计算的访问通行码,并将云端计算的访问通行码与本地存储的访问通行码进行比对,如果一致,则指示所述网页显示单元在所述拦截页面中进行所述网址对应页面内容的显示。The access pass code comparison unit 410 is configured to extract the access pass code calculated by the cloud according to the pre-agreed algorithm from the intercepted page, and compare the access pass code calculated by the cloud with the locally stored access pass code, If they are consistent, instruct the webpage display unit to display the content of the page corresponding to the URL on the intercepted page.
另外,参见图5,本发明还提供一种移动终端浏览器网址检测装置,包括:In addition, referring to Fig. 5, the present invention also provides a mobile terminal browser URL detection device, including:
检测请求接收单元501,用于接收移动终端发送的网址异步检测请求;A detection request receiving unit 501, configured to receive a website asynchronous detection request sent by the mobile terminal;
检测单元502,用于根据预置的危险网址库,对所述网址异步检测请求中所针对的网址进行安全性检测;The detection unit 502 is configured to perform security detection on the URL targeted in the URL asynchronous detection request according to the preset library of dangerous URLs;
检测结果反馈单元503,用于向移动终端返回的网址检测结果,其中,所述网址检测结果中包含网址的危险级别参数;The detection result feedback unit 503 is used to return the website detection result to the mobile terminal, wherein the website detection result includes the risk level parameter of the website;
拦截页面请求接收单元504,用于接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求;An interception page request receiving unit 504, configured to receive a request initiated by a mobile terminal to obtain an interception page corresponding to the risk level parameter;
拦截页面返回单元505,用于根据所述拦截页面的请求,向所述移动终端返回拦截页面。The intercepted page returning unit 505 is configured to return the intercepted page to the mobile terminal according to the request of the intercepted page.
优选的,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。Preferably, the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
优选的,当所述危险级别参数是所述第一级别参数时,所述拦截页面返回单元505具体用于:在所述拦截页面中创建包含危险的提示信息,和/或,通过所述拦截页面跳转到其他安全的网页。Preferably, when the risk level parameter is the first level parameter, the interception page returning unit 505 is specifically configured to: create a warning message containing danger in the interception page, and/or pass the interception The page redirects to another secure web page.
优选的,当所述危险级别参数是所述第二级别参数时,所述装置还包括:Preferably, when the risk level parameter is the second level parameter, the device further includes:
访问通行码计算单元506,用于按照与移动终端预先约定算法计算所述网址的访问通行码,并在所述拦截页面中携带所述访问通行码。The access passcode calculation unit 506 is configured to calculate the access passcode of the website according to an algorithm pre-agreed with the mobile terminal, and carry the access passcode in the intercepted page.
在此提供的算法和显示不与任何特定计算机、虚拟系统或者其它设备固有相关。各种通用系统也可以与基于在此的示教一起使用。根据上面的描述,构造这类系统所要求的结构是显而易见的。此外,本发明也不针对任何特定编程语言。应当明白,可以利用各种编程语言实现在此描述的本发明的内容,并且上面对特定语言所做的描述是为了披露本发明的最佳实施方式。The algorithms and displays presented herein are not inherently related to any particular computer, virtual system, or other device. Various generic systems can also be used with the teachings based on this. The structure required to construct such a system is apparent from the above description. Furthermore, the present invention is not specific to any particular programming language. It should be understood that various programming languages can be used to implement the content of the present invention described herein, and the above description of specific languages is for disclosing the best mode of the present invention.
在此处所提供的说明书中,说明了大量具体细节。然而,能够理解,本发明的实施例可以在没有这些具体细节的情况下实践。在一些实例中,并未详细示出公知的方法、结构和技术,以便不模糊对本说明书的理解。In the description provided herein, numerous specific details are set forth. However, it is understood that embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure the understanding of this description.
类似地,应当理解,为了精简本公开并帮助理解各个发明方面中的一个或多个,在上面对本发明的示例性实施例的描述中,本发明的各个特征有时被一起分组到单个实施例、图、或者对其的描述中。然而,并不应将该公开的方法解释成反映如下意图:即所要求保护的本发明要求比在每个权利要求中所明确记载的特征更多的特征。更确切地说,如下面的权利要求书所反映的那样,发明方面在于少于前面公开的单个实施例的所有特征。因此,遵循具体实施方式的权利要求书由此明确地并入该具体实施方式,其中每个权利要求本身都作为本发明的单独实施例。Similarly, it should be appreciated that in the foregoing description of exemplary embodiments of the invention, in order to streamline this disclosure and to facilitate an understanding of one or more of the various inventive aspects, various features of the invention are sometimes grouped together in a single embodiment, figure, or its description. This method of disclosure, however, is not to be interpreted as reflecting an intention that the claimed invention requires more features than are expressly recited in each claim. Rather, as the following claims reflect, inventive aspects lie in less than all features of a single foregoing disclosed embodiment. Thus, the claims following the Detailed Description are hereby expressly incorporated into this Detailed Description, with each claim standing on its own as a separate embodiment of this invention.
本领域那些技术人员可以理解,可以对实施例中的设备中的模块进行自适应性地改变并且把它们设置在与该实施例不同的一个或多个设备中。可以把实施例中的模块或单元或组件组合成一个模块或单元或组件,以及此外可以把它们分成多个子模块或子单元或子组件。除了这样的特征和/或过程或者单元中的至少一些是相互排斥之外,可以采用任何组合对本说明书(包括伴随的权利要求、摘要和附图)中公开的所有特征以及如此公开的任何方法或者设备的所有过程或单元进行组合。除非另外明确陈述,本说明书(包括伴随的权利要求、摘要和附图)中公开的每个特征可以由提供相同、等同或相似目的的替代特征来代替。Those skilled in the art can understand that the modules in the device in the embodiment can be adaptively changed and arranged in one or more devices different from the embodiment. Modules or units or components in the embodiments may be combined into one module or unit or component, and furthermore may be divided into a plurality of sub-modules or sub-units or sub-assemblies. All features disclosed in this specification (including accompanying claims, abstract and drawings) and any method or method so disclosed may be used in any combination, except that at least some of such features and/or processes or units are mutually exclusive. All processes or units of equipment are combined. Each feature disclosed in this specification (including accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.
此外,本领域的技术人员能够理解,尽管在此所述的一些实施例包括其它实施例中所包括的某些特征而不是其它特征,但是不同实施例的特征的组合意味着处于本发明的范围之内并且形成不同的实施例。例如,在下面的权利要求书中,所要求保护的实施例的任意之一都可以以任意的组合方式来使用。Furthermore, those skilled in the art will understand that although some embodiments described herein include some features included in other embodiments but not others, combinations of features from different embodiments are meant to be within the scope of the invention. and form different embodiments. For example, in the following claims, any of the claimed embodiments may be used in any combination.
本发明的各个部件实施例可以以硬件实现,或者以在一个或者多个处理器上运行的软件模块实现,或者以它们的组合实现。本领域的技术人员应当理解,可以在实践中使用微处理器或者数字信号处理器(DSP)来实现根据本发明实施例的装置中的一些或者全部部件的一些或者全部功能。本发明还可以实现为用于执行这里所描述的方法的一部分或者全部的设备或者装置程序(例如,计算机程序和计算机程序产品)。这样的实现本发明的程序可以存储在计算机可读介质上,或者可以具有一个或者多个信号的形式。这样的信号可以从因特网网站上下载得到,或者在载体信号上提供,或者以任何其他形式提供。The various component embodiments of the present invention may be implemented in hardware, or in software modules running on one or more processors, or in a combination thereof. Those skilled in the art should understand that a microprocessor or a digital signal processor (DSP) may be used in practice to implement some or all functions of some or all components in the device according to the embodiments of the present invention. The present invention can also be implemented as an apparatus or an apparatus program (for example, a computer program and a computer program product) for performing a part or all of the methods described herein. Such a program for realizing the present invention may be stored on a computer-readable medium, or may be in the form of one or more signals. Such a signal may be downloaded from an Internet site, or provided on a carrier signal, or provided in any other form.
应该注意的是上述实施例对本发明进行说明而不是对本发明进行限制,并且本领域技术人员在不脱离所附权利要求的范围的情况下可设计出替换实施例。在权利要求中,不应将位于括号之间的任何参考符号构造成对权利要求的限制。单词“包含”不排除存在未列在权利要求中的元件或步骤。位于元件之前的单词“一”或“一个”不排除存在多个这样的元件。本发明可以借助于包括有若干不同元件的硬件以及借助于适当编程的计算机来实现。在列举了若干装置的单元权利要求中,这些装置中的若干个可以是通过同一个硬件项来具体体现。单词第一、第二、以及第三等的使用不表示任何顺序。可将这些单词解释为名称。It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention can be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In a unit claim enumerating several means, several of these means can be embodied by one and the same item of hardware. The use of the words first, second, and third, etc. does not indicate any order. These words can be interpreted as names.
可见,本发明至少提供如下方案:It can be seen that the present invention at least provides the following solutions:
A1、一种移动终端浏览器网址检测方法,包括:A1, a mobile terminal browser URL detection method, comprising:
获取所述移动终端浏览器的地址栏中的网址;Obtain the URL in the address bar of the mobile terminal browser;
在所述网址对应的页面加载到预定程度时,向云端发起网址异步检测请求;When the page corresponding to the URL is loaded to a predetermined level, initiate a URL asynchronous detection request to the cloud;
接收云端返回的网址检测结果,提取出网址的危险级别参数;Receive the URL detection result returned by the cloud, and extract the risk level parameters of the URL;
向所述云端请求与所述危险级别参数对应的拦截页面;Request to the cloud for an interception page corresponding to the risk level parameter;
根据所述拦截页面,向用户进行网页显示。According to the intercepted page, the webpage is displayed to the user.
A2、如A1所述的方法,在接收云端返回的网址检测结果之后,还包括:A2. The method as described in A1, after receiving the URL detection result returned by the cloud, further includes:
将检测结果中的相关信息存储在移动终端本地,生成网址检测记录。The relevant information in the detection result is stored locally in the mobile terminal, and a URL detection record is generated.
A3、如A2所述的方法,在所述向云端发起网址异步检测请求之前,还包括:A3. The method as described in A2, before initiating the URL asynchronous detection request to the cloud, further includes:
根据本地预先存储的网址检测记录,查找是否包括所述地址栏中输入的网址对应的检测记录,若有,直接从所述检测记录中提取出所述网址的危险级别参数。According to the website detection records stored in advance locally, it is checked whether the detection records corresponding to the website input in the address bar are included, and if yes, the risk level parameters of the website are directly extracted from the detection records.
A4、如A1所述的方法,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。A4. The method described in A1, wherein the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
A5、如A4所述的方法,当所述危险级别参数是所述第一级别参数时,所述根据所述拦截页面,向用户进行网页显示,包括:A5. The method as described in A4, when the risk level parameter is the first level parameter, displaying the webpage to the user according to the interception page includes:
在所述拦截页面中向用户显示所述网址存在危险的提示,和/或,通过所述拦截页面跳转到其他安全的网页。A warning that the website address is dangerous is displayed to the user on the blocking page, and/or, the blocking page is used to jump to other safe web pages.
A6、如A4所述的方法,当所述危险级别参数是所述第一级别参数时,所述方法还包括:A6. The method as described in A4, when the risk level parameter is the first level parameter, the method further includes:
将所述网址的访问请求从本地记录中清除。Clears access requests for the URL from local records.
A7、如A4所述的方法,当所述危险级别参数是所述第二级别参数时,所述向所述云端请求与所述危险级别参数对应的拦截页面之前,还包括:根据所述网址对应的信息,按照与所述云端预先约定算法,计算得到访问通行码并存储;A7. The method as described in A4, when the risk level parameter is the second level parameter, before requesting to the cloud for an interception page corresponding to the risk level parameter, further includes: according to the URL The corresponding information is calculated and stored according to the pre-agreed algorithm with the cloud;
在向所述云端请求到所述拦截页面之后,还包括:从所述拦截页面中提取出云端按照所述预先约定算法计算的访问通行码,并将云端计算的访问通行码与本地存储的访问通行码进行比对,如果一致,则在所述拦截页面中进行所述网址对应页面内容的显示。After requesting the interception page from the cloud, it also includes: extracting the access passcode calculated by the cloud according to the pre-agreed algorithm from the interception page, and combining the access passcode calculated by the cloud with the access passcode stored locally The passcodes are compared, and if they are consistent, the content of the page corresponding to the URL is displayed on the intercepted page.
B8、一种移动终端浏览器网址检测方法,包括:B8, a mobile terminal browser URL detection method, comprising:
接收移动终端发送的网址异步检测请求;Receive the URL asynchronous detection request sent by the mobile terminal;
根据预置的危险网址库,对所述网址异步检测请求中所针对的网址进行安全性检测;Perform security detection on the URL targeted in the URL asynchronous detection request according to the preset library of dangerous URLs;
向移动终端返回的网址检测结果,其中,所述网址检测结果中包含网址的危险级别参数;The URL detection result returned to the mobile terminal, wherein the URL detection result includes a risk level parameter of the URL;
接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求;Receiving a request initiated by a mobile terminal to obtain an interception page corresponding to the risk level parameter;
根据所述拦截页面的请求,向所述移动终端返回拦截页面。According to the request of the intercepted page, the intercepted page is returned to the mobile terminal.
B9、如B8所述的方法,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。B9. The method described in B8, wherein the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
B10、如B9所述的方法,当所述危险级别参数是所述第一级别参数时,所述根据所述拦截页面的请求,向所述移动终端返回拦截页面,包括:B10. The method as described in B9, when the risk level parameter is the first level parameter, the interception page is returned to the mobile terminal according to the request of the interception page, including:
在所述拦截页面中创建包含危险的提示信息,和/或,通过所述拦截页面跳转到其他安全的网页。Create warning information containing danger in the interception page, and/or jump to other safe webpages through the interception page.
B11、如B9所述的方法,当所述危险级别参数是所述第二级别参数时,在所述接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求之后,还包括:B11, the method as described in B9, when the risk level parameter is the second level parameter, after the receiving mobile terminal initiates the request to obtain the interception page corresponding to the risk level parameter, it also includes:
按照与移动终端预先约定算法计算所述网址的访问通行码,并在所述拦截页面中携带所述访问通行码。Calculate the access pass code of the website according to the algorithm pre-agreed with the mobile terminal, and carry the access pass code in the intercepted page.
C12、一种移动终端浏览器网址检测装置,包括:C12, a mobile terminal browser URL detection device, comprising:
网址获取单元,用于获取所述移动终端浏览器的地址栏中的网址;a URL obtaining unit, configured to obtain the URL in the address bar of the mobile terminal browser;
检测请求单元,用于在所述网址对应的页面加载到预定程度时,向云端发起网址异步检测请求;A detection request unit, configured to initiate a URL asynchronous detection request to the cloud when the page corresponding to the URL is loaded to a predetermined level;
检测结果接收单元,用于接收云端返回的网址检测结果,提取出网址的危险级别参数;The detection result receiving unit is used to receive the URL detection result returned by the cloud, and extract the risk level parameters of the URL;
拦截页面请求单元,用于向所述云端请求与所述危险级别参数对应的拦截页面;An interception page request unit, configured to request an interception page corresponding to the risk level parameter from the cloud;
网页显示单元,用于根据所述拦截页面,向用户进行网页显示。The web page display unit is configured to display the web page to the user according to the intercepted page.
C13、如C12所述的装置,还包括:C13. The device as described in C12, further comprising:
检测记录存储单元,用于将检测结果中的相关信息存储在移动终端本地,生成网址检测记录。The detection record storage unit is configured to store relevant information in the detection result locally in the mobile terminal to generate a website detection record.
C14、如C13所述的装置,还包括:C14. The device as described in C13, further comprising:
本地检测单元,用于根据本地预先存储的网址检测记录,查找是否包括所述地址栏中输入的网址对应的检测记录,若有,直接从所述检测记录中提取出所述网址的危险级别参数。The local detection unit is used to find out whether the detection record corresponding to the URL entered in the address bar is included according to the local pre-stored URL detection record, and if so, directly extract the risk level parameter of the URL from the detection record .
C15、如C12所述的装置,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。C15. The device according to C12, wherein the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
C16、如C15所述的装置,当所述危险级别参数是所述第一级别参数时,所述网页显示单元具体用于:在所述拦截页面中向用户显示所述网址存在危险的提示,和/或,通过所述拦截页面跳转到其他安全的网页。C16. The device as described in C15, when the risk level parameter is the first level parameter, the webpage display unit is specifically used to: display to the user a warning that the website is dangerous in the interception page, And/or, jump to other safe web pages through the blocking page.
C17、如C15所述的装置,当所述危险级别参数是所述第一级别参数时,所述装置还包括:C17. The device as described in C15, when the risk level parameter is the first level parameter, the device further includes:
记录清除单元,用于将所述网址的访问请求从本地记录中清除。The record clearing unit is used for clearing the access request of the URL from the local records.
C18、如C15所述的装置,当所述危险级别参数是所述第二级别参数时,所述装置还包括:C18. The device as described in C15, when the risk level parameter is the second level parameter, the device further includes:
访问通行码计算单元,用于根据所述网址对应的信息,按照与所述云端预先约定算法,计算得到访问通行码并存储;The access passcode calculation unit is used to calculate and store the access passcode according to the information corresponding to the website and according to the algorithm pre-agreed with the cloud;
访问通行码比对单元,用于从所述拦截页面中提取出云端按照所述预先约定算法计算的访问通行码,并将云端计算的访问通行码与本地存储的访问通行码进行比对,如果一致,则指示所述网页显示单元在所述拦截页面中进行所述网址对应页面内容的显示。The access pass code comparison unit is used to extract the access pass code calculated by the cloud according to the pre-agreed algorithm from the intercepted page, and compare the access pass code calculated by the cloud with the locally stored access pass code, if If they are consistent, the web page display unit is instructed to display the content of the page corresponding to the URL on the intercepted page.
D19、一种移动终端浏览器网址检测装置,包括:D19, a mobile terminal browser URL detection device, comprising:
检测请求接收单元,用于接收移动终端发送的网址异步检测请求;The detection request receiving unit is used to receive the URL asynchronous detection request sent by the mobile terminal;
检测单元,用于根据预置的危险网址库,对所述网址异步检测请求中所针对的网址进行安全性检测;A detection unit, configured to perform security detection on the URL targeted in the URL asynchronous detection request according to the preset library of dangerous URLs;
检测结果反馈单元,用于向移动终端返回的网址检测结果,其中,所述网址检测结果中包含网址的危险级别参数;The detection result feedback unit is used to return the website detection result to the mobile terminal, wherein the website detection result includes the risk level parameter of the website;
拦截页面请求接收单元,用于接收移动终端发起的获取与所述危险级别参数对应的拦截页面的请求;An interception page request receiving unit, configured to receive a request initiated by a mobile terminal to obtain an interception page corresponding to the risk level parameter;
拦截页面返回单元,用于根据所述拦截页面的请求,向所述移动终端返回拦截页面。The intercepted page return unit is configured to return the intercepted page to the mobile terminal according to the request of the intercepted page.
D20、如D19所述的装置,所述危险级别参数包括表明所述网址是危险网址的第一级别参数和表明所述网址是警示网址的第二级别参数。D20. The device according to D19, wherein the risk level parameters include a first-level parameter indicating that the website is a dangerous website and a second-level parameter indicating that the website is a warning website.
D21、如D20所述的装置,当所述危险级别参数是所述第一级别参数时,所述拦截页面返回单元具体用于:在所述拦截页面中创建包含危险的提示信息,和/或,通过所述拦截页面跳转到其他安全的网页。D21. The device according to D20, when the risk level parameter is the first level parameter, the interception page returning unit is specifically used to: create a warning message containing danger in the interception page, and/or , and jump to other safe web pages through the blocking page.
D22、如D20所述的装置,当所述危险级别参数是所述第二级别参数时,所述装置还包括:D22. The device as described in D20, when the risk level parameter is the second level parameter, the device further includes:
访问通行码计算单元,用于按照与移动终端预先约定算法计算所述网址的访问通行码,并在所述拦截页面中携带所述访问通行码。An access passcode calculation unit, configured to calculate the access passcode of the website according to an algorithm pre-agreed with the mobile terminal, and carry the access passcode in the intercepted page.
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610505696.2ACN106209798B (en) | 2016-06-30 | 2016-06-30 | Browser of mobile terminal network address detection method and device |
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610505696.2ACN106209798B (en) | 2016-06-30 | 2016-06-30 | Browser of mobile terminal network address detection method and device |
| Publication Number | Publication Date |
|---|---|
| CN106209798Atrue CN106209798A (en) | 2016-12-07 |
| CN106209798B CN106209798B (en) | 2019-05-31 |
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610505696.2AActiveCN106209798B (en) | 2016-06-30 | 2016-06-30 | Browser of mobile terminal network address detection method and device |
| Country | Link |
|---|---|
| CN (1) | CN106209798B (en) |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102467633A (en)* | 2010-11-19 | 2012-05-23 | 奇智软件(北京)有限公司 | Method and system for safely browsing webpage |
| CN103092832A (en)* | 2011-10-27 | 2013-05-08 | 腾讯科技(深圳)有限公司 | Website risk detection processing method and website risk detection processing device |
| CN104052722A (en)* | 2013-03-15 | 2014-09-17 | 腾讯科技(深圳)有限公司 | Web address security detection method, apparatus and system |
| CN104090916A (en)* | 2014-06-12 | 2014-10-08 | 贝壳网际(北京)安全技术有限公司 | Dangerous webpage processing method and device |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102467633A (en)* | 2010-11-19 | 2012-05-23 | 奇智软件(北京)有限公司 | Method and system for safely browsing webpage |
| CN103092832A (en)* | 2011-10-27 | 2013-05-08 | 腾讯科技(深圳)有限公司 | Website risk detection processing method and website risk detection processing device |
| CN104052722A (en)* | 2013-03-15 | 2014-09-17 | 腾讯科技(深圳)有限公司 | Web address security detection method, apparatus and system |
| CN104090916A (en)* | 2014-06-12 | 2014-10-08 | 贝壳网际(北京)安全技术有限公司 | Dangerous webpage processing method and device |
| Publication number | Publication date |
|---|---|
| CN106209798B (en) | 2019-05-31 |
| Publication | Publication Date | Title |
|---|---|---|
| US10079854B1 (en) | Client-side protective script to mitigate server loading | |
| US10164993B2 (en) | Distributed split browser content inspection and analysis | |
| EP3195127B1 (en) | Analyzing client application behavior to detect anomalies and prevent access | |
| CN102333122B (en) | Downloaded resource provision method, device and system | |
| CN103699840B (en) | Detection method and device that webpage is kidnapped | |
| CN106911693B (en) | Method and device for detecting hijacking of webpage content and terminal equipment | |
| JP2018517999A (en) | Malware warning | |
| JP2014203464A (en) | Client based local malware detection method | |
| CN102467633A (en) | Method and system for safely browsing webpage | |
| CN111163095B (en) | Network attack analysis method, network attack analysis device, computing device, and medium | |
| US20140283078A1 (en) | Scanning and filtering of hosted content | |
| US9838418B1 (en) | Detecting malware in mixed content files | |
| CN111163094B (en) | Network attack detection method, network attack detection device, electronic device, and medium | |
| CN108898014B (en) | Virus checking and killing method, server and electronic equipment | |
| US9191392B2 (en) | Security configuration | |
| CN105550596A (en) | Access processing method and apparatus | |
| CN103077349B (en) | A kind of method of browser side prompting access secure information and device | |
| EP3926918A1 (en) | Network attack defense method and apparatus, device, system and storage medium | |
| US10474810B2 (en) | Controlling access to web resources | |
| CN103581321B (en) | A kind of creation method of refer chains, device and safety detection method and client | |
| CN112351009B (en) | A network security protection method, device, electronic device and readable storage medium | |
| WO2021212739A1 (en) | Network attack defense method and apparatus, device, system and storage medium | |
| US20230026599A1 (en) | Method and system for prioritizing web-resources for malicious data assessment | |
| CN106209798A (en) | Browser of mobile terminal network address detection method and device | |
| CN114598546A (en) | Application defense method, device, equipment, medium and program product |
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right | Effective date of registration:20220804 Address after:300450 No. 9-3-401, No. 39, Gaoxin 6th Road, Binhai Science Park, Binhai New Area, Tianjin Patentee after:3600 Technology Group Co.,Ltd. Address before:100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before:BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before:Qizhi software (Beijing) Co.,Ltd. | |
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right | Effective date of registration:20230712 Address after:1765, floor 17, floor 15, building 3, No. 10 Jiuxianqiao Road, Chaoyang District, Beijing 100015 Patentee after:Beijing Hongxiang Technical Service Co.,Ltd. Address before:300450 No. 9-3-401, No. 39, Gaoxin 6th Road, Binhai Science Park, Binhai New Area, Tianjin Patentee before:3600 Technology Group Co.,Ltd. | |
| CP03 | Change of name, title or address | ||
| CP03 | Change of name, title or address | Address after:1765, floor 17, floor 15, building 3, No. 10 Jiuxianqiao Road, Chaoyang District, Beijing 100015 Patentee after:Beijing 360 Zhiling Technology Co.,Ltd. Country or region after:China Address before:1765, floor 17, floor 15, building 3, No. 10 Jiuxianqiao Road, Chaoyang District, Beijing 100015 Patentee before:Beijing Hongxiang Technical Service Co.,Ltd. Country or region before:China |