+

WO2017020597A1 - Procédé et appareil pour mémoire cache de ressources - Google Patents

Procédé et appareil pour mémoire cache de ressources Download PDF

Info

Publication number
WO2017020597A1
WO2017020597A1 PCT/CN2016/077876 CN2016077876W WO2017020597A1 WO 2017020597 A1 WO2017020597 A1 WO 2017020597A1 CN 2016077876 W CN2016077876 W CN 2016077876W WO 2017020597 A1 WO2017020597 A1 WO 2017020597A1
Authority
WO
WIPO (PCT)
Prior art keywords
resource
server
terminal device
identifier
cache
Prior art date
Application number
PCT/CN2016/077876
Other languages
English (en)
Chinese (zh)
Inventor
黄凌云
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2017020597A1 publication Critical patent/WO2017020597A1/fr

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • H04L67/568Storing data temporarily at an intermediate stage, e.g. caching
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/40Support for services or applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/45Network directories; Name-to-address mapping
    • H04L61/4505Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols
    • H04L61/4511Network directories; Name-to-address mapping using standardised directories; using standardised directory access protocols using domain name system [DNS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]

Definitions

  • the present invention relates to the field of communications, and in particular, to a resource caching method and apparatus.
  • HTTP Hyper Text Transfer Protocol
  • C/S client/server
  • Web Cache caches hot resources to the local area and directly provides services for terminal device users. This greatly reduces the traffic to the upper-level network and saves network operators' investment, such as network infrastructure. Facilities construction and inter-network settlement fees, etc., also reduce the delay in responding to terminal equipment access and improve the user experience.
  • the transparent cache is an implementation of the Web Cache.
  • the transparent cache technology uses the Web server address to interact with the terminal device and interacts with the Web server using the terminal device address, so that the terminal device and the Web server have no perception of the cache system.
  • the transparent cache determines the source server IP address according to the target Internet Protocol (IP) address in the request packet of the Transmission Control Protocol (TCP) connection, and if the packet is maliciously forged by the terminal device. Or pointing to a malicious website, which may cause Web Cache to cache malicious content locally and provide it as source server content to other terminal device users. For example, after the terminal device establishes a TCP connection with a malicious website through a transparent cache, the access request is accessed.
  • IP Internet Protocol
  • TCP Transmission Control Protocol
  • Pseudo-created Get http://www.baidu.com/20150619qq_setup.exe is sent to the malicious website through the transparent cache, the malicious website returns the Trojan virus to the terminal device through the transparent cache, if the transparent cache determines http://www.baidu
  • the resource indicated by .com/20150619qq_setup.exe is a hot resource, and the Trojan virus returned by the malicious website will be cached locally, and used by other terminals.
  • the transparent cache will return the Trojan virus to other terminal devices.
  • Embodiments of the present invention provide a resource caching method and apparatus, which can prevent an Internet caching device from caching malicious resources, thereby preventing it from providing malicious resources as source server resources to other terminal device users.
  • the first aspect provides a resource caching method, where the method includes: after receiving the resource returned by the resource server to the terminal device, the Internet cache device determines that the resource satisfies the first cache condition; and the Internet cache device sends the parsing Requesting to the resolution server, the parsing request carrying the domain name in the Uniform Resource Locator URL of the resource; the Internet cache device receiving the identifier of the server obtained by the parsing server according to the domain name in the URL of the resource When the identifier of the server obtained by the parsing is an identifier of the resource server, the internet caching device caches the resource, and the caching the resource includes caching the resource in the internet caching device to Provided to the terminal device accessing the resource.
  • the method before the receiving the resource returned by the resource server to the terminal device, the method further includes: the Internet cache device receiving the a connection request sent by the terminal device to establish a connection with the resource server, where the connection request carries an identifier of the terminal device and an identifier of the resource server; and the Internet cache device establishes the terminal device and the resource a connection of the server; the Internet cache device receives an access request for the resource sent by the terminal device, where the access request carries a domain name in a URL of the resource; and the Internet cache device is configured according to the Determining, by the terminal device, a connection with the resource server, sending the access request to the resource server; and the Internet cache device receiving the resource returned by the resource server.
  • the first possible implementation manner of the first aspect in a second possible implementation manner, when the identifier of the server obtained by the parsing is not the identifier of the resource server, the internet cache The device does not cache the resource.
  • the establishing, by the Internet cache device, the connection between the terminal device and the resource server includes: The Internet cache device establishes a connection between the terminal device and the resource server by using an identifier of the terminal device, where the identifier of the terminal device includes an Internet Protocol IP address of the terminal device.
  • the Internet cache device further sends the resource to the terminal device, the Internet The cache device sends the resource to the terminal device by using an identifier of the resource server, where the identifier of the resource server includes an IP address of the resource server.
  • the connection request includes a transmission control protocol TCP connection request, where the resource is
  • the access request includes a hypertext transfer protocol HTTP request, and the resolution server includes a domain name system DNS server.
  • the determining that the resource meets the first cache condition comprises determining that the resource satisfies resource access
  • the resource access heat statistics include statistics on the frequency of accessing the same resource in a certain period of time.
  • the second aspect provides a resource cache device, including a processing module, a sending module, a receiving module, and a cache module: the processing module is configured to determine, after the receiving module receives the resource returned by the resource server to the terminal device, The sending module satisfies a first cache condition; the sending module is configured to send a parsing request to a parsing server, where the parsing request carries a domain name in a uniform resource locator URL of the resource; and the receiving module is configured to receive the The identifier of the server obtained by parsing the server according to the domain name in the URL of the resource; the cache module is configured to cache the resource when the identifier of the server obtained by the parsing is an identifier of the resource server, The caching the resource includes caching the resource in the cache module to provide to a terminal device accessing the resource.
  • the receiving module is further configured to: before receiving the resource that the resource server returns to the terminal device, receive the sending by the terminal device Establishing a connection request for the connection with the resource server, where the connection request carries an identifier of the terminal device and an identifier of the resource server; the processing module is further configured to establish the terminal device and the resource server The receiving module is further configured to receive an access request for the resource sent by the terminal device, where the access request carries a domain name in a URL of the resource; the sending module is further configured to establish according to the The terminal device is connected to the resource server, and sends the access request to the resource server; the receiving module is further configured to receive the resource returned by the resource server.
  • the cache module is further configured to: when the identifier of the server obtained by the parsing is not the resource server The resource is not cached when it is identified.
  • the processing module is further configured to establish a connection between the terminal device and the resource server
  • the processing module is further configured to establish, by using an identifier of the terminal device, a connection between the terminal device and the resource server, where the identifier of the terminal device includes an Internet Protocol IP address of the terminal device.
  • the sending module is further configured to send the resource to the terminal device, The sending module sends the resource to the terminal device by using an identifier of the resource server, where the identifier of the resource server includes an IP address of the resource server.
  • the connection request includes a transmission control protocol TCP connection request, where the resource is
  • the access request includes a hypertext transfer protocol HTTP request, and the resolution server includes a domain name system DNS server.
  • the determining that the resource meets the first cache condition comprises determining that the resource satisfies resource access
  • the resource access heat statistics include statistics on the frequency of accessing the same resource in a certain period of time.
  • the resource server after receiving the resource returned by the resource server to the terminal device, determining that the resource meets the first cache condition, sending the parsing request to the parsing server, where the parsing request carries the resource And the domain name of the server that is obtained by the parsing server according to the domain name of the resource, and when the identifier of the server obtained by the parsing is the identifier of the resource server, the resource is cached.
  • the resource includes caching the resource in the internet cache device to provide a terminal device accessing the resource, and can prevent the internet cache device from caching malicious resources, thereby preventing the malicious resource from being provided as a source server resource to other terminals. user.
  • FIG. 1 is a schematic diagram of a network architecture applied to an embodiment of the present invention
  • FIG. 2 is an exemplary flowchart of a resource caching method according to an embodiment of the present invention
  • FIG. 3 is an exemplary signaling diagram of a resource caching method in accordance with an embodiment of the present invention.
  • FIG. 4 is an exemplary signaling diagram of a resource caching method in accordance with another embodiment of the present invention.
  • FIG. 5 is a schematic diagram showing the hardware structure of a general-purpose computer structure according to an embodiment of the present invention.
  • FIG. 6 is a schematic structural diagram of a resource cache apparatus according to an embodiment of the invention.
  • FIG. 1 is a schematic diagram of a network architecture of a resource caching method according to an embodiment of the invention.
  • the Internet cache device 102 is deployed between the terminal device 101 and the resource server 104, and monitors the resource access request sent by the terminal device 101.
  • the copy of the response returned by the resource server 104 can be saved locally.
  • the response returned by the resource server 104 can be For example, but not limited to, at least one of a Hyper Text Markup Language (HTML) web page, a picture, a video, and a file download.
  • HTML Hyper Text Markup Language
  • the Internet caching device 102 Upon subsequent receipt of a request by the terminal device 101 or other terminal device to access the same resource, the Internet caching device 102 returns the response to the user using the locally saved copy of the response, thereby eliminating the need to request the resource server 104 again.
  • the resolution server 103 may be, for example, but not limited to, a Domain Name System (DNS) server, which is a distributed database that is mapped to each other as a domain name and an IP address on the Internet.
  • DNS Domain Name System
  • the host name is used to obtain the IP address corresponding to the host name.
  • the process is called domain name resolution, or host name resolution.
  • the DNS is described in RFC 2181, RFC 2136, and RFC 2308 documents in the Request For Comments (RFC) with Internet standards.
  • the terminal device 101 sends a resource access request to the Internet cache device 102, and the Internet cache device 102 forwards the resource access request to the corresponding resource server 104, and the resource server 104 returns to the terminal.
  • the device 101 requests the accessed resource to the Internet caching device 102, and the Internet caching device 102 forwards the resource to the terminal device 101.
  • the Internet cache device 102 determines whether the resource needs to be cached. When it is determined that the resource needs to be cached, the request resolution server 103 parses the domain name in the Uniform Resource Locator (URL) of the resource to obtain the server identifier. If the obtained server identifier is the same as the identifier of the resource server 104, the resource is cached; otherwise, the resource is not cached.
  • URL Uniform Resource Locator
  • the Internet cache device is an independent physical device, and may also be set as a functional entity in other devices, and may have other names.
  • FIG. 2 is an exemplary flow diagram of a resource caching method 200 in accordance with an embodiment of the present invention.
  • the resource caching method 200 may be performed by, for example, but not limited to, an internet caching device, which may be, for example, but not limited to, a transparent cache.
  • a resource server is an implementation of a web server.
  • the Internet cache device After receiving the resource returned by the resource server to the terminal device, the Internet cache device determines that the resource meets the first cache condition.
  • the determining that the resource meets the first cache condition comprises determining that the resource meets a resource access heat statistics condition, where the resource access heat statistics include accessing the same resource in a certain period of time. Frequency statistics.
  • the Internet cache device receives a connection request that is established by the terminal device to establish a connection with the resource server, where the connection request carries an identifier of the terminal device and an identifier of the resource server;
  • the internet caching device establishes a connection between the terminal device and the resource server
  • the Internet cache device receives an access request for the resource sent by the terminal device, where the access request carries a domain name in a URL of the resource;
  • the Internet cache device sends the access request to the resource server according to the established connection between the terminal device and the resource server;
  • the internet caching device receives the resource returned by the resource server.
  • connection request may be, for example, but not limited to, a Transmission Control Protocol (TCP) connection request
  • access request for the resource may be, for example, but not limited to, an HTTP request.
  • TCP Transmission Control Protocol
  • the Internet cache device establishes a connection between the terminal device and the resource server by using the identifier of the terminal device, and the Internet cache device sends the access request to the resource by using the identifier of the terminal device.
  • the server wherein the identifier of the terminal device includes an IP address of the terminal device.
  • the Internet cache device sends the resource returned by the resource server to the terminal device by using the identifier of the resource server, where the identifier of the resource server includes an IP address of the resource server.
  • the resource returned by the resource server may be at least one of, for example, but not limited to, an HTML webpage, a picture, a video, and a file download.
  • the Internet cache device sends a parsing request to a parsing server, where the parsing request carries a domain name in a URL of the resource.
  • the Internet cache device receives an identifier of a server that is obtained by the parsing server according to a domain name in a URL of the resource.
  • the resolution server includes a DNS server.
  • the parsing request is used to request the DNS server to resolve the domain name in the URL of the resource.
  • the result of the parsing indicates the IP address of the server.
  • the Internet cache device caches the resource, and the caching the resource includes caching the resource in the Internet cache device. To provide access to the terminal device of the resource.
  • the terminal device provided for accessing the resource includes other terminal devices that are provided for accessing the resource, and the terminal device that is provided for accessing the resource again.
  • the Internet cache device when the identifier of the parsed server is not the identifier of the resource server, the Internet cache device does not cache the resource.
  • the Internet cache device caches the resource locally.
  • the Internet cache device does not cache the resource locally.
  • the Internet cache device caches the resource locally:
  • the server identifier obtained by the parsing is the resource server identifier.
  • the Internet cache device may further determine whether the resource needs to be cached according to the size and type of the resource.
  • the resource after receiving the resource returned by the resource server to the terminal device, after determining that the resource meets the first cache condition, sending the parsing request to the parsing server, where the parsing request carries the The domain name of the resource, the identifier of the server obtained by the parsing server according to the domain name of the resource, and when the identifier of the server obtained by the parsing is the identifier of the resource server, the resource is cached.
  • the resource includes caching the resource in the internet cache device to provide a terminal device accessing the resource, and can prevent the internet cache device from caching malicious resources, thereby preventing the malicious resource from being provided as a source server resource to other resources. End user.
  • the resource caching method 300 can be performed by, for example, but not limited to, an internet caching device.
  • the Internet caching device may be, for example but not limited to, a transparent cache
  • the parsing server may be, for example, but not limited to, a DNS server.
  • a resource server is an implementation of a web server.
  • the terminal device sends a TCP connection request established to the resource server to the transparent cache, where the IP address of the terminal device and the IP address of the resource server are carried.
  • the transparent cache establishes a TCP connection to the resource server by using an IP address of the terminal device.
  • the transparent cache receives an HTTP access request sent by the terminal device to the resource server.
  • the transparent cache sends the HTTP access request to the resource server by using an IP address of the terminal device.
  • the resource server returns a resource that the terminal device requests to access to the transparent cache.
  • the transparent cache returns the resource returned by the resource server to the terminal device by using the IP address of the resource server.
  • the transparent cache determines, according to the resource access popularity statistics, that the resource needs to be cached.
  • the transparent cache request resolution server performs domain name resolution on the domain name in the URL of the resource in the access request.
  • the transparent cache sends a DNS resolution request to the DNS server, where the domain name in the URL of the resource is carried, and the DNS server is requested to resolve the domain name in the URL.
  • the DNS server performs DNS resolution on the domain name in the URL of the resource, and obtains an analysis result indicating the IP address of the server.
  • the DNS server sends the parsing result to the transparent cache.
  • the transparent cache performs server IP address verification. The transparent cache determines whether the IP address of the server is the IP address of the resource server. If yes, the resource is cached locally; otherwise, the resource is not cached.
  • the resource server after receiving the resource returned by the resource server to the terminal device, after determining that the resource meets the first cache condition, sending the parsing request to the parsing server, where the parsing request carries the The domain name of the resource is received by the parsing server according to the domain name of the resource, and when the identifier of the server obtained by the parsing is the identifier of the resource server, the resource is cached.
  • the resource includes buffering the resource in the internet cache device to provide a terminal device accessing the resource, and can prevent the internet cache device from caching malicious resources, thereby preventing the malicious resource from being provided as a source server resource. Other end users.
  • the resource caching method 400 can be performed by, for example, but not limited to, an internet caching device.
  • the Internet caching device may be, for example but not limited to, a transparent cache
  • the parsing server may be, for example, but not limited to, a DNS server.
  • a resource server is an implementation of a web server.
  • the terminal device sends a TCP connection request established to the first resource server to the transparent cache, where the IP address of the terminal device and the IP address of the first resource server are carried.
  • the transparent cache establishes a TCP connection to the first resource server by using an IP address of the terminal device.
  • the transparent cache receives an HTTP access request sent by the terminal device to the first resource server.
  • the transparent cache requests the resolution server to perform domain name resolution on the domain name in the URL of the resource in the access request for each received access request.
  • the transparent cache sends a DNS resolution request to the DNS server, where the domain name in the URL of the resource to be accessed by the HTTP access request is carried, and the DNS server is requested to resolve the domain name in the URL.
  • the DNS server performs DNS resolution on the domain name in the URL of the resource, and obtains an analysis result indicating the IP address of the server.
  • the DNS server sends the parsing result to the transparent cache.
  • the transparent cache performs server IP address verification.
  • the transparent cache determines whether the IP address of the server indicated by the parsing result is the IP address of the first resource server. When the IP address of the server is the IP address of the first resource server, S408 to S410 are performed; when the IP address of the server is the second When the IP address of the resource server is used, S411 to S413 are executed.
  • the transparent cache sends the HTTP access request to the first resource server by using an IP address of the terminal device.
  • the first resource server returns a resource that the terminal device requests to access to the transparent cache.
  • the transparent cache returns the resource returned by the first resource server to the terminal device by using an IP address of the first resource server.
  • the transparent cache disconnects the TCP connection to the first resource server.
  • the transparent cache establishes a TCP connection to the second resource server by using an IP address of the terminal device.
  • the transparent cache sends the HTTP access request to the second resource server by using an IP address of the terminal device.
  • the transparent cache returns the resources returned by the second resource server to the terminal device using the IP address of the first resource server.
  • the transparent cache determines whether the resource needs to be cached, and if necessary, caches the resource locally; otherwise, it does not cache.
  • the transparent cache determines whether the resource needs to be cached before returning the resource to the terminal device, and caches the resource locally if necessary; otherwise, does not cache.
  • the parsing request is sent to the parsing server, where the parsing request carries the domain name in the URL of the resource, and receives the basis returned by the parsing server.
  • the identifier of the server obtained by parsing the domain name in the URL of the resource and when the identifier of the server obtained by the parsing is the identifier of the first resource server, the resource is cached, and the identifier of the server obtained by the parsing is the identifier of the second resource server.
  • connection with the first resource server When the connection with the first resource server is disconnected, the connection with the second resource server is established, and the resource returned by the second resource server is sent to the terminal device, which can prevent the Internet cache device from caching malicious resources, thereby preventing the malicious resource from being treated as a malicious resource.
  • Source server resources are provided to other end users.
  • the technical solutions provided by the embodiment of FIG. 2, the embodiment of FIG. 3, and the embodiment of FIG. 4 can prevent the Internet cache device from caching malicious resources, thereby preventing malicious resources from being provided as source server resources.
  • Other terminal users but the technical solution provided by the embodiment of FIG. 4, when the analysis result is not the first resource server, the Internet cache device needs to re-establish the connection with the second resource server, and this process greatly increases the waiting of the terminal device user. time.
  • the Internet cache device requests the resolution server to perform domain name resolution for each resource access request received, and performs server identity verification, thereby increasing the processing load of the resolution server. And response delay.
  • the technical solution provided by the embodiment of FIG. 2 and the embodiment of FIG. 4 reduces the number of domain name resolutions and the number of server identification verifications by the resolution server, and reduces the number of times.
  • the overhead of the Internet caching device avoids the process of re-establishing the connection after the parsing result is not the target resource server, thereby avoiding the response delay of the terminal device request thus introduced.
  • the Internet cache device after receiving the resource returned by the resource server to the terminal device, the Internet cache device sends the resource to the terminal device, and then determines After the resource satisfies the first cache condition, S204 to S208 are performed.
  • This implementation minimizes the response delay to the terminal device request and minimizes the waiting time of the terminal device user.
  • the Internet cache device may send the resource to the terminal device after performing S202 to S208.
  • the response delay of the terminal device request is increased relative to the previous implementation manner, the technical solution provided by the embodiment of FIG. 4 is only satisfied for the first cache condition.
  • the resource performs domain name resolution, and also avoids the process of re-establishing the connection after the result of the analysis is not the target resource server. Therefore, compared with the technical solution provided by the embodiment of FIG. 4, the number of times of resolving the domain name resolution server and the server are also reduced.
  • the number of times of verification verification reduces the system overhead of the Internet cache device and also reduces the response delay to the terminal device request.
  • FIG. 5 is a block diagram showing the hardware structure of a general purpose computer architecture 500 in accordance with an embodiment of the present invention.
  • a general purpose computer architecture 500 includes a processor 502, a memory 504, a communication interface 506, and a bus 508.
  • the processor 502, the memory 504, and the communication interface 506 implement a communication connection with each other through the bus 508.
  • the processor 502 can be a general-purpose central processing unit (CPU), a microprocessor, an application specific integrated circuit (ASIC), or one or more integrated circuits for executing related programs.
  • CPU central processing unit
  • ASIC application specific integrated circuit
  • the memory 504 may be a read only memory (ROM), a static storage device, a dynamic storage device, or a random access memory (RAM).
  • Memory 504 can store operating system 5041 and other applications 5042.
  • the program code for implementing the technical solution provided by the embodiment of the present invention is saved in the memory 504 and executed by the processor 502.
  • Communication interface 506 implements communication with other devices or communication networks using transceivers such as, but not limited to, transceivers.
  • Bus 508 can include a path for communicating information between various components (e.g., processor 502, memory 504, input and communication interface 506).
  • the general purpose computer architecture 500 further includes a processing module 602 for resource caching, a transmitting module 604, a receiving module 606, and a caching module 608.
  • These modules can be implemented in hardware, software implementation, or software in combination with hardware.
  • the modules, which are software, are stored in the memory 504 of the general purpose computer architecture 500 and may be used together as a separate program or as separate programs. As an optional implementation, these software modules can also be respectively, or one It is part of the application 5042 or is part of the operating system 5041.
  • the processing module 602 is configured to determine, after the receiving module receives the resource returned by the resource server to the terminal device, that the resource meets the first cache condition.
  • the sending module 604 is configured to send a parsing request to the parsing server, where the parsing request carries a domain name in a URL of the resource.
  • the receiving module 606 is configured to receive an identifier of the server that is obtained by the parsing server according to the domain name in the URL of the resource.
  • the cache module 608 is configured to cache the resource when the identifier of the server obtained by the parsing is an identifier of the resource server, where the caching the resource comprises caching the resource in the cache module to provide Give the terminal device accessing the resource.
  • the resource server is an implementation of the web server.
  • the receiving module 606 is further configured to: before the receiving the resource returned by the resource server to the terminal device, receive the connection established by the terminal device and establishing the connection with the resource server. a connection request, where the connection request carries an identifier of the terminal device and an identifier of the resource server;
  • the processing module 602 is further configured to establish a connection between the terminal device and the resource server;
  • the receiving module 606 is further configured to receive an access request for the resource sent by the terminal device, where the access request carries a domain name in a URL of the resource;
  • the sending module 604 is further configured to send the access request to the resource server according to the established connection between the terminal device and the resource server;
  • the receiving module 606 is further configured to receive the resource returned by the resource server.
  • the cache module 608 is further configured to not cache the resource when the identifier of the server obtained by the parsing is not the identifier of the resource server.
  • the processing module 602 is further configured to establish the connection between the terminal device and the resource server, where the processing module 602 is further configured to establish, by using the identifier of the terminal device
  • the terminal device is connected to the resource server, and the identifier of the terminal device includes an internet protocol IP address of the terminal device.
  • the sending module 604 is further configured to send the resource to the terminal device, where the sending module 604 sends the resource to the terminal by using an identifier of the resource server.
  • the device, the identifier of the resource server includes an IP address of the resource server.
  • the terminal device of the resource after receiving the resource returned by the resource server to the terminal device, determining that the resource meets the first cache condition, sending the parsing request to the parsing server, where the parsing request carries the resource
  • the domain name in the URL is received by the resolution server according to the domain name in the URL of the resource. Identifying, when the identifier of the server obtained by the parsing is an identifier of the resource server, caching the resource, and the caching the resource comprises caching the resource in the internet caching device to provide to the access station
  • the terminal device of the resource can prevent the Internet cache device from caching malicious resources, thereby preventing the malicious resource from being provided as a source server resource to other terminal users.
  • the general purpose computer structure 500 shown in FIG. 5 only shows the processor 502, the memory 504, the communication interface 506, and the bus 508, in the specific implementation process, those skilled in the art should understand that the above resource buffer device It also contains other devices necessary to get it running. At the same time, according to specific needs, those skilled in the art should understand that the above resource buffering device may also include hardware devices that implement other additional functions. Moreover, those skilled in the art will appreciate that the above-described resource buffering device may also only include the devices necessary to implement the embodiments of the present invention, and does not necessarily include all of the devices shown in FIG.
  • each functional unit in each embodiment of the present invention may be integrated into one processing unit, or each unit may exist physically separately, or two or more units may be integrated into one unit.
  • the above integrated unit can be implemented in the form of hardware or in the form of a software functional unit.
  • the integrated unit if implemented in the form of a software functional unit and sold or used as a standalone product, may be stored in a computer readable storage medium.
  • the technical solution of the present invention which is essential or contributes to the prior art, or all or part of the technical solution, may be embodied in the form of a software product stored in a storage medium.
  • a number of instructions are included to cause a computer device (which may be a personal computer, server, or network device, etc.) or a processor to perform all or part of the steps of the methods described in various embodiments of the present invention.
  • the foregoing storage medium includes: a U disk, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk, and the like. .

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Multimedia (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

L'invention concerne un procédé pour mémoire cache de ressources. Le procédé comprend les étapes suivantes : après la réception d'une ressource renvoyée par un serveur de ressources à un équipement terminal, un appareil de mémoire cache Web détermine que la ressource satisfait une première condition de mémoire cache ; il envoie une demande d'analyse à un serveur d'analyse, la demande d'analyse portant un nom de domaine dans un URL de la ressource ; il reçoit un identifiant du serveur obtenu par le serveur d'analyse selon le nom de domaine dans l'URL de la ressource ; lorsque l'identifiant analysé du serveur est un identifiant du serveur de ressource, il met en mémoire cache la ressource, la mise en mémoire cache de la ressource consistant à mettre en mémoire cache la ressource dans l'appareil pour mémoire cache Web pour fournir celle-ci à un équipement terminal qui accède à la ressource. La présente invention peut empêcher un appareil pour mémoire cache Web de mettre en mémoire cache une ressource malveillante de manière à empêcher celui-ci de fournir la ressource malveillante, sous la forme d'une ressource de serveur, à d'autres utilisateurs de l'équipement terminal.
PCT/CN2016/077876 2015-07-31 2016-03-30 Procédé et appareil pour mémoire cache de ressources WO2017020597A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510464724.6A CN106411978B (zh) 2015-07-31 2015-07-31 一种资源缓存方法及装置
CN201510464724.6 2015-07-31

Publications (1)

Publication Number Publication Date
WO2017020597A1 true WO2017020597A1 (fr) 2017-02-09

Family

ID=57942383

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/077876 WO2017020597A1 (fr) 2015-07-31 2016-03-30 Procédé et appareil pour mémoire cache de ressources

Country Status (2)

Country Link
CN (1) CN106411978B (fr)
WO (1) WO2017020597A1 (fr)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109586937A (zh) * 2017-09-28 2019-04-05 中兴通讯股份有限公司 一种缓存系统的运维方法、设备和存储介质
CN114422522A (zh) * 2020-10-13 2022-04-29 贵州白山云科技股份有限公司 一种缓存分发方法、装置、介质及设备
CN116634017A (zh) * 2023-05-15 2023-08-22 北京大学 一种基于数字对象的标识解析数据缓存方法与装置

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110572486A (zh) * 2019-08-13 2019-12-13 河北上通云天网络科技有限公司 一种基于mac地址的域名解析系统

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102170479A (zh) * 2011-05-21 2011-08-31 成都市华为赛门铁克科技有限公司 Web缓存的更新方法及Web缓存的更新装置
CN102843437A (zh) * 2012-09-17 2012-12-26 北京星网锐捷网络技术有限公司 网页应用的转换方法、装置和网络设备
WO2013085194A1 (fr) * 2011-12-09 2013-06-13 Samsung Electronics Co., Ltd. Procédé et appareil d'équilibrage de charges dans un système de communication
CN103825919A (zh) * 2012-11-16 2014-05-28 中国移动通信集团北京有限公司 一种缓存数据资源的方法、装置及系统

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101668046B (zh) * 2009-10-13 2012-12-19 成都市华为赛门铁克科技有限公司 资源缓存方法及其装置、系统
CN104079534B (zh) * 2013-03-27 2017-11-03 中国移动通信集团北京有限公司 一种http缓存实现方法和系统
CN103412827B (zh) * 2013-08-05 2016-12-28 广州唯品会信息科技有限公司 图片缓存方法和系统

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102170479A (zh) * 2011-05-21 2011-08-31 成都市华为赛门铁克科技有限公司 Web缓存的更新方法及Web缓存的更新装置
WO2013085194A1 (fr) * 2011-12-09 2013-06-13 Samsung Electronics Co., Ltd. Procédé et appareil d'équilibrage de charges dans un système de communication
CN102843437A (zh) * 2012-09-17 2012-12-26 北京星网锐捷网络技术有限公司 网页应用的转换方法、装置和网络设备
CN103825919A (zh) * 2012-11-16 2014-05-28 中国移动通信集团北京有限公司 一种缓存数据资源的方法、装置及系统

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109586937A (zh) * 2017-09-28 2019-04-05 中兴通讯股份有限公司 一种缓存系统的运维方法、设备和存储介质
CN114422522A (zh) * 2020-10-13 2022-04-29 贵州白山云科技股份有限公司 一种缓存分发方法、装置、介质及设备
CN114422522B (zh) * 2020-10-13 2024-02-13 贵州白山云科技股份有限公司 一种缓存分发方法、装置、介质及设备
CN116634017A (zh) * 2023-05-15 2023-08-22 北京大学 一种基于数字对象的标识解析数据缓存方法与装置
CN116634017B (zh) * 2023-05-15 2024-02-06 北京大学 一种基于数字对象的标识解析数据缓存方法与装置

Also Published As

Publication number Publication date
CN106411978A (zh) 2017-02-15
CN106411978B (zh) 2020-01-21

Similar Documents

Publication Publication Date Title
CN103124263B (zh) 一种广告推送系统及广告推送设备、广告服务器
CN110049022B (zh) 一种域名访问控制方法、装置和计算机可读存储介质
CN107341160B (zh) 一种拦截爬虫的方法及装置
EP3175364B1 (fr) Redirection web pour une mise en cache
CN105930528B (zh) 一种网页缓存的方法及服务器
TWI656772B (zh) 獲取網頁的方法、系統、網路伺服器、瀏覽器和gslb
US10897450B2 (en) Communication method and communication apparatus
US10693858B2 (en) CDN-based access control method and related device
EP3422672B1 (fr) Procédé et dispositif de routage
WO2017080459A1 (fr) Procédé, dispositif et système de mise en cache et de fourniture de contenu de service et support de stockage
CN105530127A (zh) 一种代理服务器处理网络访问请求的方法和代理服务器
CN105635073B (zh) 访问控制方法、装置和网络接入设备
WO2015196442A1 (fr) Dispositif et procédé d'optimisation de page web
CN112003945A (zh) 服务请求响应方法及装置
CN106411978B (zh) 一种资源缓存方法及装置
CN102932473A (zh) 跨运营商网络访问网络内容的方法
WO2018228234A1 (fr) Procédé de mise en cache vidéo et dispositif de mise en cache
CN106911732A (zh) 一种网站访问加速方法及装置
CN107786502B (zh) 一种认证代理方法、装置和设备
US9729650B2 (en) Providing data to a network terminal
CN109698832B (zh) 快速提供Portal认证、快速弹出Portal认证页面的方法及相关设备
CN109005250B (zh) 用于访问服务端的方法和装置
CN106790176B (zh) 一种访问网络的方法及系统
US11962665B2 (en) Automatically redirecting mobile client devices to optimized mobile content
CN106210176A (zh) 信息推送方法、装置及系统

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16832086

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16832086

Country of ref document: EP

Kind code of ref document: A1

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载