CN116738086A - Page processing method and device, electronic equipment and storage medium - Google Patents

Page processing method and device, electronic equipment and storage medium Download PDF

Info

Publication number
CN116738086A
CN116738086A CN202310715807.2A CN202310715807A CN116738086A CN 116738086 A CN116738086 A CN 116738086A CN 202310715807 A CN202310715807 A CN 202310715807A CN 116738086 A CN116738086 A CN 116738086A
Authority
CN
China
Prior art keywords
link
page
link information
list
preset
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310715807.2A
Other languages
Chinese (zh)
Inventor
孙华强
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Bank of China Financial Technology Co Ltd
Original Assignee
Bank of China Financial Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Bank of China Financial Technology Co Ltd filed Critical Bank of China Financial Technology Co Ltd
Priority to CN202310715807.2A priority Critical patent/CN116738086A/en
Publication of CN116738086A publication Critical patent/CN116738086A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/955Retrieval from the web using information identifiers, e.g. uniform resource locators [URL]
    • G06F16/9558Details of hyperlinks; Management of linked annotations
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/95Retrieval from the web
    • G06F16/958Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/577Assessing vulnerabilities and evaluating computer system security
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2119Authenticating web pages, e.g. with suspicious links

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Databases & Information Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Mining & Analysis (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The application discloses a page processing method, a page processing device, electronic equipment and a storage medium, which can be applied to the field of network security or the field of finance. When the nested page is detected in the running process of the current system, the nested page is analyzed to obtain link information, and when the link information exists in a preset link access list, the link information is processed safely according to a preset link processing rule. Because the preset link access list is a set of link access rights determined based on the link pointing page attribute and the current system attribute, the link access rights corresponding to the link information can be determined by matching the link information obtained by analyzing the nested page with the preset link access list, so that whether the link information has potential safety hazards can be determined, the condition that a user clicks an unsafe link hidden on the nested page by mistake can be effectively avoided by processing the link information according to the preset link processing rule, and the safety of an application system and network equipment is improved.

Description

Page processing method and device, electronic equipment and storage medium
Technical Field
The present application relates to the field of computer technologies, and in particular, to a page processing method, apparatus, electronic device, and storage medium.
Background
In the development process of an application system, there is a general need to display the page content of the third party system in the current system, and at this time, the page content of the third party system can be displayed in the current system by means of webview (webpage view), iframe tag and the like, that is, the nested page is displayed in the current system.
However, the page content of the third party system may involve numerous clickable links, so that a certain potential safety hazard exists in the existing manner of displaying the page content of the third party system, and behaviors such as mistakenly clicking the hidden illegal website link address on the page of the third party system, downloading files with larger security risks and the like easily occur, so that the page of the current system jumps to other external link addresses or downloads illegal resources, thereby causing hackers to attack the application system, and even causing the application system and network equipment to be unable to normally use.
Disclosure of Invention
In view of the above, the application discloses a page processing method, a device, an electronic device and a storage medium, so as to effectively avoid the situation that a user clicks an unsafe link hidden on a nested page by mistake, and improve the safety of an application system and network equipment.
A method of page processing, comprising:
detecting whether a nested page exists in the running process of the current system;
if the nested page exists, analyzing the nested page to obtain link information, wherein the link information comprises: mapping relation between link elements and link addresses;
judging whether the link information exists in a preset link access list or not, wherein the preset link access list is a set of link access rights determined based on a link pointing page attribute and a current system attribute;
and if the link information exists, carrying out security processing on the link information according to a preset link processing rule.
Optionally, the preset link access list includes: a linked blacklist, a linked whitelist, a linked gray list, and a linked red list;
the linked blacklist is recorded with a website list forbidden to be accessed;
the link white list is recorded with a website list which is allowed to be accessed;
the link gray list is recorded with a website list which is allowed to be accessed and has a first access requirement;
and the link red list is recorded with a website list which is allowed to be accessed and has second access requirements.
Optionally, the performing security processing on the link information according to a preset link processing rule includes:
if the link information meets the preset list matching condition, deleting the link information and replacing the link element in the link information with a plain text element;
the preset list matching conditions comprise: the link information is matched with the link blacklist, or the link information is matched with the link gray list and the current system or the login user does not meet the first access requirement, or the link information is matched with the link red list and the current system or the login user does not meet the second access requirement.
Optionally, the performing security processing on the link information according to a preset link processing rule includes:
if the link information is matched with the link white list and the link information points to a changed or moved page, redirecting the link information to the position of the changed or moved latest page;
and if the link information is matched with the link white list and points to a changed or moved resource, redirecting the link information to the updated or moved latest page resource.
Optionally, the performing security processing on the link information according to a preset link processing rule includes:
and if a click event exists in the nested page and the pointed link of the click event is matched with the link blacklist, removing the click event.
Optionally, the performing security processing on the link information according to a preset link processing rule includes:
backfilling the page element carrying the link address to the original position of the document flow, and redrawing the page;
or removing the page element carrying the link address from the page document stream and reacquiring the link address.
Optionally, the method further comprises:
if the link information does not exist in the preset link access list and the link information points to a non-existing page or resource, repairing the link information;
or if the link information does not exist in the preset link access list and the condition that the link information points to the content and causes injury to the user or violates legal regulation exists, alarm information is added to the link information, and the link information added with the alarm information is added to a link blacklist.
A page processing apparatus comprising:
the detection unit is used for detecting whether nested pages exist in the current system operation process;
the parsing unit is configured to parse the nested page to obtain link information if the nested page exists, where the link information includes: mapping relation between link elements and link addresses;
the judging unit is used for judging whether the link information exists in a preset link access list or not, wherein the preset link access list is a set of link access authorities determined based on the link pointing page attribute and the current system attribute;
and the processing unit is used for carrying out security processing on the link information according to a preset link processing rule under the condition that the judging unit judges that the link information is yes.
An electronic device, the electronic device comprising: a memory and a processor;
the memory is used for storing at least one instruction;
the processor is configured to execute the at least one instruction to implement the page processing method described above.
A computer readable storage medium storing at least one instruction that when executed by a processor implements the page processing method described above.
According to the technical scheme, the page processing method, the device, the electronic equipment and the storage medium disclosed by the application are capable of analyzing the nested page to obtain the link information when the nested page is detected in the running process of the current system, and performing security processing on the link information according to the preset link processing rule when the link information exists in the preset link access list. Because the preset link access list is a set of link access rights determined based on the link pointing page attribute and the current system attribute, the link access rights corresponding to the link information can be determined by matching the link information obtained by analyzing the nested page with the preset link access list, so that whether the link information has potential safety hazards can be determined, and the situation that a user clicks an unsafe link hidden on the nested page by mistake can be effectively avoided by processing the link information according to the preset link processing rule, thereby improving the safety of an application system and network equipment.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings that are required in the embodiments or the description of the prior art will be briefly described, and it is obvious that the drawings in the following description are only embodiments of the present application, and that other drawings can be obtained according to the disclosed drawings without inventive effort for a person skilled in the art.
FIG. 1 is a flow chart of a page processing method disclosed in an embodiment of the application;
fig. 2 is a schematic structural diagram of a page processing apparatus according to an embodiment of the present application;
fig. 3 is a schematic structural diagram of an electronic device according to an embodiment of the present application.
Detailed Description
It should be noted that the page processing method, the device, the electronic equipment and the storage medium provided by the application can be used in the network security field or the financial field. The foregoing is merely an example, and the application fields of the page processing method, the device, the electronic device and the storage medium provided by the present application are not limited.
The following description of the embodiments of the present application will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present application, but not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the application without making any inventive effort, are intended to be within the scope of the application.
The embodiment of the application discloses a page processing method, a device, electronic equipment and a storage medium, wherein when a nested page is detected in the running process of a current system, the nested page is analyzed to obtain link information, and when the link information exists in a preset link access list, the link information is processed safely according to a preset link processing rule. Because the preset link access list is a set of link access rights determined based on the link pointing page attribute and the current system attribute, the link access rights corresponding to the link information can be determined by matching the link information obtained by analyzing the nested page with the preset link access list, so that whether the link information has potential safety hazards can be determined, and the situation that a user clicks an unsafe link hidden on the nested page by mistake can be effectively avoided by processing the link information according to the preset link processing rule, thereby improving the safety of an application system and network equipment.
Referring to fig. 1, a flow chart of a page processing method disclosed in an embodiment of the present application includes:
step S101, detecting whether a nested page exists or not in the running process of the current system.
The nested page in this embodiment refers to a third party system page embedded and displayed in the current system.
Step S102, if the nested page exists, analyzing the nested page to obtain link information.
Wherein the link information includes: mapping relationship of link elements and link addresses.
In order to improve the flexibility and the expandability of the system, the link address is expressed by adopting a regular expression, and the format is as follows:
urlIntercept:{
mode:allow/reject
match:urlRegex
}
mode represents the intercept mode, and can take on the values of allowances and reject. The allow indicates that the target url is allowed to be jumped according to the set match jumped rule, and the reject indicates that the target url is prohibited from being jumped according to the set match jumped rule.
The match sets a jump rule, and urlRegex is the target url represented by the regular expression.
In practical applications, the link address includes: an inner link address and an outer link address, for example, the outer link address is as follows:
link names External link address
A http://www.***.com
B https:// www.boc.cn/
C https://blog.csdn.net/sunhuaqiang1
Step S103, judging whether the link information exists in a preset link access list, and if so, executing step S104.
The preset link access list is a set of link access authorities determined based on the link pointing page attribute and the current system attribute.
In this embodiment, the preset link access list includes: a linked blacklist, a linked whitelist, a linked gray list, and a linked red list;
the website list forbidden to be accessed is recorded in the link blacklist, so that the user can be prevented from accessing the website in the link blacklist.
The link white list is recorded with a website list which is allowed to be accessed, and only the user is allowed to access the websites in the link white list.
The linked gray list records a list of websites which are allowed to be accessed and have a first access requirement, such as social networking websites or game websites, and the user can access the websites, but may be limited by certain limitations, namely, have the first access requirement, such as time limitation or network bandwidth limitation;
the linked red list has recorded therein a list of web sites that are allowed to be accessed and have a second access requirement, such as financial or government web sites, that the user can access, but that are required to meet the second access requirement, such as for additional authentication or security measures, etc.
And step S104, carrying out security processing on the link information according to a preset link processing rule.
The preset link processing rules are corresponding processing rules when the link information matches different link lists (including a link blacklist, a link whitelist, a link gray list and a link red list).
The security processing of the link information refers to whether the application system is allowed to jump to a third party system page, for example:
example 1, the target url jump rule set by the application system is as follows:
urlIntercept:{
mode:‘allow’
match:‘https://www.boc.cn/.*’
}
the above rule represents allowing the application system to jump to a third party system page that satisfies https:// www.boc.cn/. Regular expression.
For example 2, the target url jump rule set by the application system is as follows:
urlIntercept:{
mode:‘reject
match:‘https://www.b0c.cn/.*’
}
the above rule indicates that the application is prohibited from jumping to third party system pages that satisfy https:// www.b0c.cn/. Regular expressions.
As can be seen from the above, the present application discloses a page processing method, in the current system operation process, when a nested page is detected, the nested page is parsed to obtain link information, and when the link information exists in a preset link access list, security processing is performed on the link information according to a preset link processing rule. Because the preset link access list is a set of link access rights determined based on the link pointing page attribute and the current system attribute, the link access rights corresponding to the link information can be determined by matching the link information obtained by analyzing the nested page with the preset link access list, so that whether the link information has potential safety hazards can be determined, and the situation that a user clicks an unsafe link hidden on the nested page by mistake can be effectively avoided by processing the link information according to the preset link processing rule, thereby improving the safety of an application system and network equipment.
When the preset link access list comprises the following steps: in order to further optimize the above embodiments, step S104 may specifically include:
if the link information meets the preset list matching condition, deleting the link information and replacing the link element in the link information with a plain text element;
the preset list matching conditions comprise: the link information is matched with the link blacklist, or the link information is matched with the link gray list and the current system or the login user does not meet the first access requirement, or the link information is matched with the link red list and the current system or the login user does not meet the second access requirement.
Specifically, if the link information is within the detection range of the link blacklist (i.e., the link information is matched with the link blacklist), it indicates that the link information points to illegal, harmful or unsafe content, and at this time, the link information is deleted, and the link element in the link information is replaced by a plain text element.
If the link information is in the link gray list detection range and the current system or login user does not meet the first access requirement corresponding to the link gray list, the link information is deleted as well, and the link element in the link information is replaced by a plain text element.
If the link information is within the detection range of the link red list and the current system or the login user does not meet the second access requirement corresponding to the link red list, the link information is deleted, and the link element in the link information is replaced by a plain text element, for example, the < a > hyperlink label is replaced by a < text > text label.
The substitution rules are illustrated as follows:
to further optimize the above embodiment, step S104 may specifically include:
if the link information is matched with the link white list and points to a page which is changed or moved, redirecting the link information to the position of the latest page after being changed or moved;
and if the link information is matched with the link white list and points to a changed or moved resource, redirecting the link information to the updated or moved latest page resource.
Specifically, when the link information matches with the link white list, the link information is indicated to be safe, the user can access the link information, and if the page or the resource pointed by the link information is changed or moved, the link information needs to be redirected to the latest page position or page resource after the change or the movement so as to find the required information.
To further optimize the above embodiment, step S104 may specifically include:
and if a click event exists in the nested page and the pointed link of the click event is matched with the link blacklist, removing the click event.
Click events in the nested page refer to events corresponding to when a user clicks on any one or more links on the nested page.
When the click event pointing to the link matches with the link blacklist, it indicates that the user clicks the website link prohibited from accessing, and in order to improve the security of the application system and the network device, this embodiment may remove the click event.
To further optimize the above embodiment, step S104 may specifically include:
backfilling the page element carrying the link address to the original position of the document flow, and redrawing the page;
or removing the page element carrying the link address from the page document stream and reacquiring the link address.
According to the embodiment, the page element carrying the link address is backfilled to the original position of the document flow and the page redrawing is carried out, so that the page redrawing frequency is reduced, and the page rendering performance is improved.
To further optimize the above embodiment, the page processing method may further include:
if the link information does not exist in the preset link access list and the link information points to a non-existing page or resource, repairing the link information;
or if the link information does not exist in the preset link access list and the condition that the link information points to the content and causes injury to the user or violates legal regulation exists, alarm information is added to the link information, and the link information added with the alarm information is added to a link blacklist.
Specifically, if the link information is not in the detection range of the link blacklist, the link whitelist, the link gray list and the link red list and points to a non-existing page or resource, repairing the link by checking the link spelling, the link format and other methods to ensure that the link can correctly point to an effective page or resource, if the link repairing is successful, continuing to process the link according to the link processing rule, if the link repairing is failed, deleting the link, and replacing the link element with a plain text element.
If the link information is not in the detection range of the link blacklist, the link whitelist, the link gray list and the link red list, and the pointed content of the link information possibly hurts the user or violates legal regulations, warning information is added to remind the user of paying attention to risks, and the warning information is added to the link blacklist.
Corresponding to the embodiment of the method, the application also discloses a page processing device.
Referring to fig. 2, a schematic structural diagram of a page processing apparatus according to an embodiment of the present application is disclosed, where the apparatus includes:
the detecting unit 201 is configured to detect whether a nested page exists in a current system operation process.
The nested page in this embodiment refers to a third party system page embedded and displayed in the current system.
And the parsing unit 202 is configured to parse the nested page to obtain link information if the nested page exists.
The link information includes: mapping relationship of link elements and link addresses.
In order to improve the flexibility and the expandability of the system, the link address is expressed by adopting a regular expression, and the format is as follows:
urlIntercept:{
mode:allow/reject
match:urlRegex
}
mode represents the intercept mode, and can take on the values of allowances and reject. The allow indicates that the target url is allowed to be jumped according to the set match jumped rule, and the reject indicates that the target url is prohibited from being jumped according to the set match jumped rule.
The match sets a jump rule, and urlRegex is the target url represented by the regular expression.
A judging unit 203, configured to judge whether the link information exists in a preset link access list.
The preset link access list is a set of link access authorities determined based on the link pointing page attribute and the current system attribute.
In this embodiment, the preset link access list includes: a linked blacklist, a linked whitelist, a linked gray list, and a linked red list;
the website list forbidden to be accessed is recorded in the link blacklist, so that the user can be prevented from accessing the website in the link blacklist.
The link white list is recorded with a website list which is allowed to be accessed, and only the user is allowed to access the websites in the link white list.
The linked gray list records a list of websites which are allowed to be accessed and have a first access requirement, such as social networking websites or game websites, and the user can access the websites, but may be limited by certain limitations, namely, have the first access requirement, such as time limitation or network bandwidth limitation;
the linked red list has recorded therein a list of web sites that are allowed to be accessed and have a second access requirement, such as financial or government web sites, that the user can access, but that are required to meet the second access requirement, such as for additional authentication or security measures, etc.
And a processing unit 204, configured to perform security processing on the link information according to a preset link processing rule if the determination unit 203 determines that the link information is yes.
The preset link processing rules are corresponding processing rules when the link information matches different link lists (including a link blacklist, a link whitelist, a link gray list and a link red list).
As can be seen from the above, the present application discloses a page processing device, which analyzes a nested page to obtain link information when the nested page is detected in the current system operation process, and performs security processing on the link information according to a preset link processing rule when the link information exists in a preset link access list. Because the preset link access list is a set of link access rights determined based on the link pointing page attribute and the current system attribute, the link access rights corresponding to the link information can be determined by matching the link information obtained by analyzing the nested page with the preset link access list, so that whether the link information has potential safety hazards can be determined, and the situation that a user clicks an unsafe link hidden on the nested page by mistake can be effectively avoided by processing the link information according to the preset link processing rule, thereby improving the safety of an application system and network equipment.
When the preset link access list comprises the following steps: to further optimize the above embodiments, the processing unit 204 may specifically be configured to:
if the link information meets the preset list matching condition, deleting the link information and replacing the link element in the link information with a plain text element;
the preset list matching conditions comprise: the link information is matched with the link blacklist, or the link information is matched with the link gray list and the current system or the login user does not meet the first access requirement, or the link information is matched with the link red list and the current system or the login user does not meet the second access requirement.
Specifically, if the link information is within the detection range of the link blacklist (i.e., the link information is matched with the link blacklist), it indicates that the link information points to illegal, harmful or unsafe content, and at this time, the link information is deleted, and the link element in the link information is replaced by a plain text element.
If the link information is in the link gray list detection range and the current system or login user does not meet the first access requirement corresponding to the link gray list, the link information is deleted as well, and the link element in the link information is replaced by a plain text element.
If the link information is within the detection range of the link red list and the current system or the login user does not meet the second access requirement corresponding to the link red list, the link information is deleted, and the link element in the link information is replaced by a plain text element, for example, the < a > hyperlink label is replaced by a < text > text label.
To further optimize the above embodiments, the processing unit 204 may specifically be configured to:
if the link information is matched with the link white list and points to a page which is changed or moved, redirecting the link information to the position of the latest page after being changed or moved;
and if the link information is matched with the link white list and points to a changed or moved resource, redirecting the link information to the updated or moved latest page resource.
Specifically, when the link information matches with the link white list, the link information is indicated to be safe, the user can access the link information, and if the page or the resource pointed by the link information is changed or moved, the link information needs to be redirected to the latest page position or page resource after the change or the movement so as to find the required information.
To further optimize the above embodiments, the processing unit 204 may specifically be configured to:
and if a click event exists in the nested page and the pointed link of the click event is matched with the link blacklist, removing the click event.
Click events in the nested page refer to events corresponding to when a user clicks on any one or more links on the nested page.
When the click event pointing to the link matches with the link blacklist, it indicates that the user clicks the website link prohibited from accessing, and in order to improve the security of the application system and the network device, this embodiment may remove the click event.
To further optimize the above embodiments, the processing unit 204 may specifically be configured to:
backfilling the page element carrying the link address to the original position of the document flow, and redrawing the page;
or removing the page element carrying the link address from the page document stream and reacquiring the link address.
According to the embodiment, the page element carrying the link address is backfilled to the original position of the document flow and the page redrawing is carried out, so that the page redrawing frequency is reduced, and the page rendering performance is improved.
To further optimize the above embodiment, the page processing apparatus may further include:
the restoring unit is used for restoring the link information if the link information does not exist in the preset link access list and the link information points to a non-existing page or resource;
or, an alarm unit, configured to add alarm information to the link information if the link information does not exist in the preset link access list and the link information points to a situation that the content causes injury to the user or violates legal regulations, and add the link information to which the alarm information has been added to a link blacklist.
Specifically, if the link information is not in the detection range of the link blacklist, the link whitelist, the link gray list and the link red list and points to a non-existing page or resource, repairing the link by checking the link spelling, the link format and other methods to ensure that the link can correctly point to an effective page or resource, if the link repairing is successful, continuing to process the link according to the link processing rule, if the link repairing is failed, deleting the link, and replacing the link element with a plain text element.
If the link information is not in the detection range of the link blacklist, the link whitelist, the link gray list and the link red list, and the pointed content of the link information possibly hurts the user or violates legal regulations, warning information is added to remind the user of paying attention to risks, and the warning information is added to the link blacklist.
Corresponding to the above embodiment, as shown in fig. 3, the present application further provides an electronic device, where the electronic device may include: a processor 1 and a memory 2;
wherein the processor 1 and the memory 2 complete communication with each other through the communication bus 3;
a processor 1 for executing at least one instruction;
a memory 2 for storing at least one instruction;
the processor 1 may be a central processing unit CPU or a specific integrated circuit ASIC (Application Specific Integrated Circuit) or one or more integrated circuits configured to implement embodiments of the present application.
The memory 2 may comprise a high-speed RAM memory or may further comprise a non-volatile memory (non-volatile memory), such as at least one disk memory.
Wherein execution of at least one instruction by the processor performs the following functions:
detecting whether a nested page exists in the running process of the current system;
if the nested page exists, analyzing the nested page to obtain link information, wherein the link information comprises: mapping relation between link elements and link addresses;
judging whether the link information exists in a preset link access list or not, wherein the preset link access list is a set of link access rights determined based on a link pointing page attribute and a current system attribute;
and if the link information exists, carrying out security processing on the link information according to a preset link processing rule.
Corresponding to the above embodiment, the present application also discloses a computer readable storage medium storing at least one instruction, which when executed by a processor, performs the following functions:
detecting whether a nested page exists in the running process of the current system;
if the nested page exists, analyzing the nested page to obtain link information, wherein the link information comprises: mapping relation between link elements and link addresses;
judging whether the link information exists in a preset link access list or not, wherein the preset link access list is a set of link access rights determined based on a link pointing page attribute and a current system attribute;
and if the link information exists, carrying out security processing on the link information according to a preset link processing rule.
As can be seen from the above, the present application discloses an electronic device and a computer readable storage medium, which are configured to parse a nested page to obtain link information when the nested page is detected in a current system operation process, and perform security processing on the link information according to a preset link processing rule when the link information exists in a preset link access list. Because the preset link access list is a set of link access rights determined based on the link pointing page attribute and the current system attribute, the link access rights corresponding to the link information can be determined by matching the link information obtained by analyzing the nested page with the preset link access list, so that whether the link information has potential safety hazards can be determined, and the situation that a user clicks an unsafe link hidden on the nested page by mistake can be effectively avoided by processing the link information according to the preset link processing rule, thereby improving the safety of an application system and network equipment.
Finally, it is further noted that relational terms such as first and second, and the like are used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Moreover, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
In the present specification, each embodiment is described in a progressive manner, and each embodiment is mainly described in a different point from other embodiments, and identical and similar parts between the embodiments are all enough to refer to each other.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present application. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the application. Thus, the present application is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (10)

1. A method of processing a page, comprising:
detecting whether a nested page exists in the running process of the current system;
if the nested page exists, analyzing the nested page to obtain link information, wherein the link information comprises: mapping relation between link elements and link addresses;
judging whether the link information exists in a preset link access list or not, wherein the preset link access list is a set of link access rights determined based on a link pointing page attribute and a current system attribute;
and if the link information exists, carrying out security processing on the link information according to a preset link processing rule.
2. The page processing method according to claim 1, wherein the preset link access list includes: a linked blacklist, a linked whitelist, a linked gray list, and a linked red list;
the linked blacklist is recorded with a website list forbidden to be accessed;
the link white list is recorded with a website list which is allowed to be accessed;
the link gray list is recorded with a website list which is allowed to be accessed and has a first access requirement;
and the link red list is recorded with a website list which is allowed to be accessed and has second access requirements.
3. The page processing method according to claim 2, wherein the security processing of the link information according to a preset link processing rule includes:
if the link information meets the preset list matching condition, deleting the link information and replacing the link element in the link information with a plain text element;
the preset list matching conditions comprise: the link information is matched with the link blacklist, or the link information is matched with the link gray list and the current system or the login user does not meet the first access requirement, or the link information is matched with the link red list and the current system or the login user does not meet the second access requirement.
4. The page processing method according to claim 2, wherein the security processing of the link information according to a preset link processing rule includes:
if the link information is matched with the link white list and the link information points to a changed or moved page, redirecting the link information to the position of the changed or moved latest page;
and if the link information is matched with the link white list and points to a changed or moved resource, redirecting the link information to the updated or moved latest page resource.
5. The page processing method according to claim 2, wherein the security processing of the link information according to a preset link processing rule includes:
and if a click event exists in the nested page and the pointed link of the click event is matched with the link blacklist, removing the click event.
6. The page processing method according to claim 1, wherein the security processing of the link information according to a preset link processing rule includes:
backfilling the page element carrying the link address to the original position of the document flow, and redrawing the page;
or removing the page element carrying the link address from the page document stream and reacquiring the link address.
7. The page processing method according to claim 1, characterized by further comprising:
if the link information does not exist in the preset link access list and the link information points to a non-existing page or resource, repairing the link information;
or if the link information does not exist in the preset link access list and the condition that the link information points to the content and causes injury to the user or violates legal regulation exists, alarm information is added to the link information, and the link information added with the alarm information is added to a link blacklist.
8. A page processing apparatus, comprising:
the detection unit is used for detecting whether nested pages exist in the current system operation process;
the parsing unit is configured to parse the nested page to obtain link information if the nested page exists, where the link information includes: mapping relation between link elements and link addresses;
the judging unit is used for judging whether the link information exists in a preset link access list or not, wherein the preset link access list is a set of link access authorities determined based on the link pointing page attribute and the current system attribute;
and the processing unit is used for carrying out security processing on the link information according to a preset link processing rule under the condition that the judging unit judges that the link information is yes.
9. An electronic device, the electronic device comprising: a memory and a processor;
the memory is used for storing at least one instruction;
the processor is configured to execute the at least one instruction to implement the page processing method according to any one of claims 1 to 7.
10. A computer readable storage medium storing at least one instruction which when executed by a processor implements a page processing method as claimed in any one of claims 1 to 7.
CN202310715807.2A 2023-06-15 2023-06-15 Page processing method and device, electronic equipment and storage medium Pending CN116738086A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310715807.2A CN116738086A (en) 2023-06-15 2023-06-15 Page processing method and device, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310715807.2A CN116738086A (en) 2023-06-15 2023-06-15 Page processing method and device, electronic equipment and storage medium

Publications (1)

Publication Number Publication Date
CN116738086A true CN116738086A (en) 2023-09-12

Family

ID=87900743

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310715807.2A Pending CN116738086A (en) 2023-06-15 2023-06-15 Page processing method and device, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN116738086A (en)

Similar Documents

Publication Publication Date Title
EP1716480B1 (en) User interface accorded to tiered object related trust decisions
US8448245B2 (en) Automated identification of phishing, phony and malicious web sites
US8474048B2 (en) Website content regulation
JP5702470B2 (en) Method and system for protecting against unknown malicious activity by determining link ratings
US7966553B2 (en) Accessible content reputation lookup
US8955126B2 (en) Tiered object-related trust decisions
US8126866B1 (en) Identification of possible scumware sites by a search engine
US20130283375A1 (en) Browser System and Method for Warning Users of Potentially Fraudulent Websites
RU2658878C1 (en) Method and server for web-resource classification
JP2015504542A (en) Detect and prevent illegal purchases of content on the Internet
US20140283078A1 (en) Scanning and filtering of hosted content
US9838418B1 (en) Detecting malware in mixed content files
JP2012088803A (en) Malignant web code determination system, malignant web code determination method, and program for malignant web code determination
CN116738086A (en) Page processing method and device, electronic equipment and storage medium
US20230026599A1 (en) Method and system for prioritizing web-resources for malicious data assessment
Stephen et al. Prevention of cross site scripting with E-Guard algorithm
US8627099B2 (en) System, method and computer program product for removing null values during scanning
JP2007133488A (en) Information transmission source verification method and device
Dalai et al. XSS attack prevention using DOM-based filter
EP2178009A1 (en) Method for filtering a webpage
CN111737624B (en) Page redirection protection method and device and electronic equipment
GB2418500A (en) Detection, quarantine and modification of dangerous web pages
CN117454368A (en) Malicious software detection method, device, equipment and medium
Ragkhitwetsagul Foxbeacon: Web bug detector implementing p3p compact policy for mozilla firefox

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination