TW595158B - Method and system for blocking networked limitative information - Google Patents

Method and system for blocking networked limitative information Download PDF

Info

Publication number
TW595158B
TW595158B TW92107477A TW92107477A TW595158B TW 595158 B TW595158 B TW 595158B TW 92107477 A TW92107477 A TW 92107477A TW 92107477 A TW92107477 A TW 92107477A TW 595158 B TW595158 B TW 595158B
Authority
TW
Taiwan
Prior art keywords
blocking
patent application
management information
network management
scope
Prior art date
Application number
TW92107477A
Other languages
Chinese (zh)
Other versions
TW200421772A (en
Inventor
Jin-Lung Chiou
Original Assignee
Jin-Lung Chiou
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jin-Lung Chiou filed Critical Jin-Lung Chiou
Priority to TW92107477A priority Critical patent/TW595158B/en
Application granted granted Critical
Publication of TW595158B publication Critical patent/TW595158B/en
Publication of TW200421772A publication Critical patent/TW200421772A/en

Links

Landscapes

  • Information Transfer Between Computers (AREA)

Abstract

The present invention provides a method and a system for blocking limitative information entering an intranet of a client end, based on on-line remote comparison. An on-line server performs the filtering task regarding networked limitative information, including virus code information, accessed by client end. An on-line database capable of collecting new virus code and website information is updated in real-time with content of the limitative information. The server thus performs the comparison based on the content of the database, and returns the comparing results to the client end for blocking the link of a website or virus data.

Description

595158 五、發明說明(1) 【發明所屬之技術領域】 本發明係有關於一種網路列管資訊的阻絕方法與系 統;特別是指,本發明是一種對於網際網路上列管資訊的 阻絕方法與系統,而該列管資訊的比對與收集於線上遠端 且為即時更新。 【先前技術】 在網際網路的瀏覽中,内容安全(Context Security) 包含了網頁的内容過濾以及病毒過濾。對於企業網路 (Intranet)而言,内容安全更是關係網路運作之安全性以 及員工之工作效率。 隨著企業e化的普遍,寬頻資源亦為企業帶來諸多的 營運便利,但是許多員工卻利用企業的網際網路的寬頻資 _ 源,在上班的時間瀏覽網站與下載或上傳大量私人的圖片 資料等,造成企業的生產效率下降,以及耗用企業的寬頻 資源。因此,企業管理者都希望能有效率的過濾員工在上 班時間所瀏覽的網站或網頁内容,並進一步阻絕企業所列 管之内容進入企業網路。 以網頁内容之過濾技術而言,主要係將收集的網址 (Uniform Resource Locators, URL)儲存於一資料庫,而 所收集的網址可能包括了***、賭博、購物、即時對 談或股票網站等,或者是一些包含企業所希望列管資訊的 網站。企業網路的伺服器則依據資料庫所收集的網址來比0 對員工所瀏覽之網址或網頁的位置,進而加以阻絕和記 錄0595158 V. Description of the invention (1) [Technical field to which the invention belongs] The present invention relates to a method and a system for blocking information managed by a network; in particular, the present invention is a method for blocking information managed on the Internet. And the system, and the management information is compared and collected online and remotely and updated in real time. [Previous Technology] In Internet browsing, Context Security includes content filtering and virus filtering of web pages. For an intranet, content security is more about the security of network operations and the productivity of employees. With the popularization of enterprises, broadband resources have also brought a lot of operational convenience to enterprises, but many employees have taken advantage of the company's Internet broadband resources. Source, browse websites and download or upload a large number of private pictures during work hours Data, etc., causing the company's production efficiency to decline and consume its broadband resources. Therefore, corporate managers want to be able to efficiently filter the content of websites or webpages that employees browse during business hours, and further prevent content listed by companies from entering the corporate network. In terms of webpage content filtering technology, the collected URLs (Uniform Resource Locators) are stored in a database, and the collected URLs may include adult pornography, gambling, shopping, instant chat or stock websites, etc. , Or some websites that contain information that companies want to manage. The server of the corporate network compares 0 to the location of the URL or webpage viewed by the employee according to the URL collected by the database, and then blocks and records the 0.

第5頁 595158 五、發明說明(2) 美國發明專利第6,233,618 號「Access control of n e t w o r k e d d a t a」揭露一種存取控制技術,用以限制網際 網路上資訊内容的存取,此一技術實施於用戶端裝置,例 如:代理伺服器、路由器、交換器、防火牆、橋接器或其 他網路門戶設備。該用戶端裝置執行用戶端的資訊分析, 包含:U R L s、I P位址或其他資源證明資料,並且與資料庫 的内容進行比對。 【發明内容】 依先前技術,過濾技術係以資料庫所收集的網址為比 對基礎,該資料庫一般配置於用戶端的代理伺服器(Proxy S e r v e r ),並由該代理伺服器來執行比對工作以及定時下 ^ 載更新.資料庫的内容,由此可知資料庫所收集的網址成為 過濾技術是否有效的重要因素;而且網際網路的資訊内容 瞬息萬變,随時架設的列管網站應被即時收集,而無效的 列管網站亦應從資料庫移除,所以資料庫的更新問題不但 影響阻絕效率且佔用儲存資源。 此外,先前技術之病毒過濾技術亦存在相同之問題, 用戶端的代理伺服器同樣地需要執行病毒比對工作以及病 毒碼的下載更新,因此為了企業網路的内容安全,新的病 毒碼應被即時收集,使得用戶端裝置必須承擔額外的負載 而成本亦隨之增加。 有鑒於先前技術,執行包含病毒之網路列管資訊的比¥ 對工作與收集工作皆實施於用戶端裝置,因此造成用戶端 儲存資源的佔用,而且比對工作亦增加了用戶端伺服器的Page 5 595158 5. Description of the invention (2) US invention patent No. 6,233,618 "Access control of networked data" discloses an access control technology for restricting access to information content on the Internet. This technology is implemented On client devices, such as proxy servers, routers, switches, firewalls, bridges, or other web portal devices. The client device performs client-side information analysis, including: URLs, IP addresses, or other resource certification data, and compares them with the contents of the database. [Summary of the Invention] According to the prior art, the filtering technology is based on the comparison of the URLs collected by the database. The database is generally configured on the client's proxy server, and the proxy server performs the comparison. Work and download regularly. Update the content of the database. From this, you can know that the URLs collected by the database become an important factor in the effectiveness of the filtering technology; and the information content of the Internet changes rapidly, and the managed website that is set up at any time should be collected in real time. , And the invalid managed website should also be removed from the database, so the problem of updating the database will not only affect the blocking efficiency and occupy storage resources. In addition, the virus filtering technology of the prior art also has the same problem. The proxy server of the client also needs to perform virus comparison work and download and update the virus code. Therefore, for the security of the content of the corporate network, the new virus code should be immediately updated. The collection makes the client device have to bear extra load and the cost increases accordingly. In view of the previous technology, the comparison and execution of network management information containing viruses is performed on the client device, so the storage resources of the client are occupied, and the comparison task also increases the client server ’s

第6頁 595158 五、發明說明(3) 負載。換言之,如何降低用戶端處理網路列管資訊的阻絕 問題,是此一技術領域有待解決的重要課題。 本發明的目的係提供一種遠端線上比對之阻絕方法。 本發明的另一目的係提供一種遠端線上比對之阻絕系 統。 本發明的另一目的係提供一種遠端線上比對之阻絕方 法,其中用戶端處理網路列管資訊的過濾工作可在線上遠 端執行,並即時更新網路列管資訊的内容。 本發明的另一目的係提供一種遠端線上比對之阻絕系 統,其中用戶端處理網路列管資訊的過濾工作可由線上遠 端的伺服器來執行,且該伺服器的資料庫即時更新網路列 管資訊的内容。 本發明的另一目的係提供一種遠端線上病毒比對之阻 絕方法,俾使用戶端處理病毒的過濾工作可在線上遠端執 行,並即時收集病毒碼特徵。 本發明的另一目的係提供一種遠端線上病毒比對之阻 絕系統,俾使用戶端處理病毒的過濾工作可由線上遠端的 伺服器來執行,其中該伺服器的資料庫即時收集病毒碼特 徵。 本發明的另一目的係提供一種可以提升比對效率的遠 端比對之阻絕方法,可在線上遠端有效過濾用戶端的網路 列管資訊。 本發明的另一目的係提供一種可以提升比對效率的遠 端比對之阻絕系統,可由線上遠端的伺服器有效過濾用戶Page 6 595158 V. Description of the invention (3) Load. In other words, how to reduce the resistance of the client to processing network management information is an important issue to be solved in this technical field. The object of the present invention is to provide a method for blocking the comparison on the remote line. Another object of the present invention is to provide a rejection system for comparison on a remote line. Another object of the present invention is to provide a remote online comparison blocking method, in which the filtering work of the client to process the network management information can be performed online and remotely, and the content of the network management information is updated in real time. Another object of the present invention is to provide a remote online comparison and rejection system, in which the filtering work of the client to process network management information can be performed by an online and remote server, and the database of the server updates the network in real time. The contents of the road management information. Another object of the present invention is to provide a method for preventing and comparing virus on the remote line, so that the filtering work of virus processing on the client side can be performed on the remote line and collect virus code characteristics in real time. Another object of the present invention is to provide a remote online virus comparison and rejection system, so that the filtering work of virus processing on the client side can be performed by an online and remote server, wherein the database of the server collects virus signature characteristics in real time . Another object of the present invention is to provide a remote comparison and blocking method that can improve the comparison efficiency, and can effectively filter the network management information of the client on the remote side. Another object of the present invention is to provide a remote comparison and rejection system which can improve the comparison efficiency, and can effectively filter users by online and remote servers.

第7頁 595158 五、發明說明(4) 端的網路列管資訊。 本發明的另一目的係提供一種可以提升比對效率的遠 端病毒比對之阻絕方法,可在線上遠端有效過濾用戶端的 病毒資訊。 本發明的另一目的係提供一種可以提升比對效率的遠 端病毒比對之阻絕系統,可由線上遠端的伺服器有效過濾 用戶端的病毒資訊。 本發明提供一種網路列管資訊的阻絕方法,當用戶端 使用者要經由網際網路連結某一網站或接收一可能包含病 毒之資料時,用戶端裝置會送出一特徵值至遠端的伺服 器,該伺服器的資料庫由一自動搜索引擎線上即時收集網 路列管資訊並收集病毒碼特徵,且該伺服器依據資料庫的1 内容執行比對工作,並將比對結果傳回至用戶端裝置,俾 使用戶端根據比對結果來阻擋該網站的連結或包含病毒之 資料。 本發明提供一種網路列管資訊的阻絕系統,基於本發 明網路列管資訊的阻絕方法,該阻絕系統包含一線上的伺 服器以及一資料庫,該伺服器接收用戶端裝置送出的特徵 值,並依據資料庫的内容執行比對工作,再將比對結果傳 回至用戶端裝置,其中該資料庫由一自動搜索引擎線上即 時收集網路列管資訊並收集病毒碼特徵。 其中,本發明網路列管資訊的阻絕方法與系統係對於0 一具有瀏覽器之用戶端終端機所連結之列管網站、網頁或 接收可能包含病毒之資料進行阻絕,俾使該瀏覽器無法連Page 7 595158 V. Description of the invention (4) Network management information at the end. Another object of the present invention is to provide a remote virus comparison and blocking method that can improve the comparison efficiency, and can effectively filter virus information on the client side online and remotely. Another object of the present invention is to provide a remote virus comparison and rejection system that can improve the comparison efficiency. The online and remote servers can effectively filter virus information on the client side. The invention provides a method for blocking network management information. When a client user wants to connect to a website or receive data that may contain a virus through the Internet, the client device sends a characteristic value to a remote server. Server, the database of the server is collected by an automatic search engine in real time to collect network management information and virus signature characteristics, and the server performs a comparison task based on 1 content of the database, and returns the comparison result to The client device causes the client to block the link to the website or the information containing the virus based on the comparison result. The invention provides a network management information blocking system. Based on the network management information blocking method of the present invention, the blocking system includes an online server and a database, and the server receives the characteristic values sent by the client device. , And perform the comparison work according to the content of the database, and then return the comparison result to the client device, where the database collects network management information and virus signature characteristics online by an automatic search engine online. Among them, the method and system for blocking network management information of the present invention is to block a management website, web page or receiving data that may contain viruses from a client terminal with a browser, so that the browser cannot be used. even

第8頁 595158 五、發明說明(5) 結該列管網站、網頁,或者是無法顯示下載的内容,或是 無法接收。 其中,用戶端裝置可廣泛包含:終端機、代理伺服 器、路由器、交換器、防火牆、橋接器或其他網路門戶設 備,以執行列管網站、網頁或接收可能包含病毒之資料的 阻絕工作。 其中,特徵值可為URLs、IP位址或未知格式之資料屬 性,或是連結網址的一部分,或病毒碼特徵。 根據本發明所實施的網路列管資訊的阻絕方法與系統,對 於用戶端的應用場合將可廣泛地包含但不受限於企業網 路、網咖網路、家庭網路以及學校網路對網際網路的連 結。 ❿ 【實施方式】 雖然本發明將參閱含有本發明較佳實施例之所附圖式 予以充份描述,但在此描述之前應瞭解熟悉本行之人士可 修改在本文中所描述之發明,同時獲致本發明之功效。因 此,須瞭解以下之描述對熟悉本行技藝之人士而言為一廣 泛之揭示,且其内容不在於限制本發明。 首先請參閱第一圖顯示本發明網路列管資訊的阻絕方 法之流程示意圖。本發明網路列管資訊的阻絕方法包含: 用戶端工作與遠端伺服工作,其中用戶端工作係在使用者 要經由網際網路1連結某一網站或接收一可能包含病毒之 $ 資料時,用戶端裝置會擷取一特徵值並經網際網路傳送至 一遠端伺服器,且用戶端裝置會接收該遠端伺服器回傳一Page 8 595158 V. Description of the invention (5) The website, webpage, or download content cannot be displayed or received. Among them, the client device can include a wide range of terminals, proxy servers, routers, switches, firewalls, bridges, or other web portal devices to perform blocking work to manage websites, web pages, or receive information that may contain viruses. Among them, the characteristic value can be URLs, IP addresses, or data attributes of unknown format, or part of the link URL, or virus signature characteristics. The method and system for blocking network management information implemented in accordance with the present invention can widely include, but not limited to, enterprise network, Internet cafe network, home network, and school network to the Internet for client applications. Internet connection.实施 [Embodiment] Although the present invention will be fully described with reference to the accompanying drawings containing preferred embodiments of the present invention, it should be understood that those skilled in the art may modify the invention described in this document before describing this, and The effect of the present invention is obtained. Therefore, it should be understood that the following description is a broad disclosure for those familiar with the art of the Bank, and its content is not intended to limit the present invention. First, please refer to the first figure to show the flow chart of the method for blocking the network management information of the present invention. The method for blocking network management information according to the present invention includes: a client task and a remote server task, wherein the client task is when a user wants to connect to a website or receives a $ data that may contain a virus through the Internet 1, The client device captures a characteristic value and sends it to a remote server via the Internet, and the client device receives the remote server and returns a

第9頁 595158 五、發明說明(6) 比對結果, 或包含病毒 一來源之用 資料 再將 處理 裝置 踏、 特徵 用戶 外, 料庫 指網 械、 病毒 毒碼 統之 戶端 而用 資料 網 12 庫的内 比對結 網路列 在本發 可廣泛 橋接器 值與接 端裝置 遠端词 的内容 站或網 即時對 之電子 資訊。 接著參 示意圖 裝置, 戶端裝 。該用 站或接 可從該 並依 之資 戶端 容比 果傳 管資 明的 包含 或其 收的 可以 服工 為網 頁内 談及 郵件 據該 料; 裝置 對, 回至 訊的 較佳 :代 他網 比對 有效 作尚 路列 容包 或股 或檔 比對結 遠端伺 所傳送 進而得 前述來 過濾工 實施例 理伺服 路門戶 結果僅 地提昇 包含即 管資訊 含成人 票資訊 案之網 果執行是 服工作係 的特徵值 到一比對 源之 作係 中, 器、 設備 數個 遠端 時更 的特 色情 等, 路列 用戶 由一 執行 路由 ,而 位元 比對 新該 徵值 、賭 或者 管資 否阻絕該網 由一遠端伺 ,並將該特 結果,該遠 端裝置,俾 遠端伺服器 用戶端工作 器、交換器 用戶端裝置 組(B y t e s ) 及執行的效 資料庫的内 ,該網路列 博、購物、 是企業所制 訊,其中包 站的連結 服器接收 徵值與一 端伺服器 使用戶端 來執行。 的用戶端 、防火 所傳送的 ,因此使 率。此 容,此資 管資訊泛 毒品、搶 定的包含 含最新病 閱第二圖 。本發明 位於用戶 置與伺服 戶端裝置 收一可能 瀏覽器1 1 ,顯示本發明網路列管資訊的阻絕系 網路列管資訊的阻絕系統包含:一用 端;以及一伺服器,位於伺服器端, 器可藉由網際網路1彼此接收或傳送 包含:瀏覽器1 1 ,提供使用者連結某 包含病毒之資料的介面;一擷取單元 欲連結之網站或可能包含病毒之資料Page 9 595158 V. Description of the invention (6) Comparison results, or data containing a virus-source source, and then the processing device is stepped out, the user is characterized, and the database refers to the network equipment, the virus virus code system, and the data network. The internal comparison network of the 12 database is listed in the content of this website, which can be widely bridged and connected to the remote word of the terminal device. Then refer to the schematic device, installed at the client. The user station or the user can receive the information contained in or received from the combined client account, or the service can be serviced as a web page to talk about the mail according to the material; the device pair, the return message is better: On behalf of the other network comparison, it is effective to make a package or share or file comparison to the remote server, and then to obtain the aforementioned filtering method. The results of the server road portal are only improved, including the management information and adult ticket information. The network fruit execution is to compare the characteristic values of the work system to the source system, which is more special when there are several remote devices, such as devices, devices, and so on. The road users are routed by one, and the bit ratio is compared to the new one. Whether the value, gambling, or management prevents the network from being served by a remote server, and sends the special result, the remote device, the remote server client worker, the switch client device group (Bytes), and the In the effectiveness database, the network is used for blogging, shopping, and enterprise-made messages, and the link server of the charter station receives the levy and a server at the end for the client to execute. The client, fire, and therefore the rate of transmission. Here, the information on this drug is pan-drug, and it contains the latest diseases. See the second picture. The present invention is located in a client device and a server client device receives a possible browser 11 and displays the network management information blocking system of the present invention. The network blocking information blocking system includes: a user end; and a server located in the server On the server side, the servers can receive or send each other through the Internet 1. The browser 1 1 provides the user with an interface for linking to a piece of data that contains a virus; a website that the capture unit wants to link to or data that may contain a virus

第10頁 595158 五、發明說明⑺ 擷取一特徵值 石馬特徵,例如 傳送單元13, 的伺服器提出 元1 4,從網際 巧覽器1 1欲連 絕;以及一執 果,並依據比 站或接收可能 時’允許該瀏 料。 繼續參考 列管資訊的特 博、鱗物、即 網路列管資訊 21,從網際網 並接收特徵值 2 4的網路列管 端裝置所傳送 f端裴置所傳 示為阻擋,若 徵值不相同, 料庫24,則比 比對結果經網 ’而該特徵值可能為資料的一部份或是病毒 •URLs、IP位址或未知格式之資料屬性;一 m 2並經由網際網路1向词服器端 μ求,並將特徵值傳送至伺服器;一 :路1:上一比對結果,胃比對結果指示該 結”站或:能包含病毒之資料是否應該阻 =為阻;:來ί接收單元14的比對結 ” ’阻絕該瀏覽器"連結該網 hd:::依據比對結果為允許 U11連結g網站或接收可能包含病毒之資 第二圖,伺服器包含一咨也L由〇 , ^ m ^ - 貝枓庫24,儲存網路 Π ΐ = f資訊包含***、賭 或者是企業所制定的 路1接收-來源之用戶端農妾收早: U單元22 ’接收該特徵值並出:資-未 貝讯的特徵值比對以產生比對結 的特徵值與資料庫24的特徵值㈣, :的特徵值存在於資料庫2 ^用 ^果傳ίΓϊ。存在於資 際網路1傳回至前述來源之用戶达端早裝〜23。’將 595158 五、發明說明(8) 在本發明的進一步的實施例中,伺服器包含一自動搜 索引擎,該自動搜索引擎連結網際網路以即時收集最新的 網路列管資訊,進而更新資料庫的網路列管資訊,俾使用 戶端裝置可以阻絕網際網路上最新之列管網站或最新病毒 碼特徵。 請參閱第三圖A為本發明阻絕方法第一實施例之流程 圖。在本發明此一具體實施例揭示用戶端工作的流程與遠 端伺服工作的流程。用戶端工作的流程,包含以下步驟: 瀏覽資料 使用者操作瀏覽器經由網際網路欲 連結某一網站或接收一可能包含病毒之資料。 擷取特徵值 從該連結的網站或可能包含病毒 之資料擷取一特徵值,該特徵值可以為URLs、IP位址或資 料格式,並向遠端伺服器提出一請求(R e q u e s t),將特徵 值傳送至遠端伺服器。 判斷回傳結果 從遠端伺服器接收一比對結 果,並且判斷該比對結果係指示為阻絕或允許。 阻絕網頁連結根據比對結果指示為阻絕,執行網頁連 結的阻絕,即阻絕瀏覽器連結該網站或接收一可能包含病 毒之資料、網頁等,並繼續擷取瀏覽器欲連結另一網站或 接收另一可能包含病毒之資料的特徵值。 完成網頁連結 根據比對結果指示為允許,執 行網頁連結的程序,即允許瀏覽器連結該網站或接收資 料、網頁等,並繼續擷取瀏覽器欲連結另一網站或接收另 一可能包含病毒之資料的特徵值。Page 10 595158 V. Description of the invention ⑺ Extracting a characteristic value of a horse-horse feature, for example, the server of the transmission unit 13, proposes element 1 4 from the Internet browser 11 1; and an execution result based on the ratio Stand or receive when possible 'allow this feed. Continue to refer to the blog, scale, or network management information 21 of the network management information. The network terminal management device that receives the characteristic value 2 4 from the Internet and receives the f-end transmission signal is blocked. The values are not the same. If the database 24 is compared, the comparison result is transmitted through the Internet. The characteristic value may be part of the data or data attributes of viruses, URLs, IP addresses, or unknown formats. One m 2 is transmitted through the Internet. 1 Request to the server end μ, and send the characteristic value to the server; 1: Road 1: The previous comparison result, the gastric comparison result indicates the node "station or: whether the data that can contain virus should be blocked = is Blocking: Come to the comparison of the receiving unit 14 "" Block the browser "and link to the network hd ::: According to the comparison result, U11 is allowed to link to the g website or receive funds that may contain viruses. The second picture, server Contains a reference from L, 0, ^ m ^-枓 枓 24, storage network Π ΐ = f The information contains adult pornography, gambling, or road 1 received by the enterprise-the source of the client's farm 妾 receives early: U Unit 22 'Receive the feature value and output: a feature-value comparison of the Zi-Wei-bun to generate a comparison result The eigenvalues of 与 and the eigenvalues of database 24, and the eigenvalues of: exist in database 2 ^ 用 ^ 果 传 ίΓϊ. Existing users on the Internet 1 return to the aforementioned sources, reaching the pre-installed ~ 23. 'Would 595158 V. Description of the invention (8) In a further embodiment of the present invention, the server includes an automatic search engine that connects to the Internet to collect the latest network management information in real time, and then update the data The library's network management information allows client devices to block the latest managed websites or the latest virus signatures on the Internet. Please refer to FIG. 3 for a flowchart of the first embodiment of the blocking method of the present invention. In this specific embodiment of the present invention, the flow of work on the client side and the flow of work on the remote end are disclosed. The flow of work on the client side includes the following steps: Browse data The user operates the browser via the Internet to connect to a website or receive information that may contain a virus. Retrieve feature value Extract a feature value from the linked website or data that may contain a virus. The feature value can be URLs, IP addresses, or data format, and submit a request to the remote server. The characteristic value is transmitted to the remote server. Judging the return result A comparison result is received from the remote server, and the comparison result is indicated as being blocked or allowed. Blocking web links is indicated as blocking based on the result of the comparison. Blocking of web links is performed, that is, blocking the browser from linking to the website or receiving data, web pages, etc. that may contain viruses, and continuing to retrieve the browser's desire to link to another website or receive another A characteristic value that may contain information about the virus. Completing the web link according to the comparison result indicates that it is allowed to execute the web link process, that is, to allow the browser to link to the website or receive data, web pages, etc., and continue to retrieve the browser intending to link to another website or receive another one that may contain viruses The characteristic value of the data.

第12頁 595158 五、發明說明(9) 繼績參考第三圖A ’遠端祠服工作的流程,包含以下 步驟: 是否具有權限? 接收一來源之用戶端裝置所 提出的請求,判斷該來源是否具有權限,即判斷是否執行 比對工作。 拒絕提供服務 根據該來源不具有權限,伺服 器拒絕執行比對工作,並將此來源之要求棄置。 資料運算 根據該來源係具有權限,伺服器接 收該來源之用戶端裝置所傳送的特徵值,並執行資料運算 且將運算結果傳回至前述來源之用戶端裝置;在具體實施 例中,資料運算包含比對用戶端裝置所傳送的特徵值是否 存在於資料庫中之運算,而資料運算獲得用戶端裝置所傳〇 送的特徵值存在於資料庫中,則產生指示為阻絕的比對結 果,反之資料運算獲得用戶端裝置所傳送的特徵值不存在 於資料庫中,則產生指示為允許的比對結果。 之後請參閱第三圖B為本發明阻絕方法第二實施例之 流程圖。在本發明此一具體實施例進一步揭示用戶端工作 的流程中包含快取單元的處理。為了進一步提昇用戶端處 理網路列管資訊的效率,在特徵值傳送之前,可在用戶端 進一步執行一初步比對,以快速允許用戶端經常連結之非 列管網站與網頁内容,或快速阻擋企業既定的列管網站與 網頁内容。用戶端裝置進一步包含一快取單元1 6,該快取0 單元1 6包含快取記憶體,而該快取記憶體用儲存一部份網 路資訊的特徵值,俾使用戶端裝置向遠端伺服器提出請求Page 12 595158 V. Description of the invention (9) Refer to the third figure A for the follow-up process. The process of the remote temple service includes the following steps: Do you have authority? After receiving a request from a client device of a source, it is determined whether the source has authority, that is, whether to perform a comparison task. Refuse to provide service According to the source does not have permission, the server refuses to perform the matching task and discards the request from this source. The data operation has authority according to the source. The server receives the feature value sent by the client device of the source, and performs data calculation and returns the operation result to the client device of the aforementioned source. In a specific embodiment, the data operation Contains an operation that compares whether the feature values sent by the client device exist in the database, and the data operation obtains the feature values sent by the client device that exist in the database, and generates a comparison result indicating an obstruction, On the other hand, if the feature value sent by the client device from the data operation does not exist in the database, the comparison result indicating that it is allowed is generated. Please refer to FIG. 3B for a flowchart of the second embodiment of the blocking method of the present invention. In this specific embodiment of the present invention, it is further disclosed that the process of the work of the client includes processing of the cache unit. In order to further improve the client's efficiency in processing network management information, before the feature value is transmitted, a preliminary comparison can be performed on the client to quickly allow non-managed websites and webpage content that the client frequently links to, or quickly block The company manages the website and webpage content. The client device further includes a cache unit 16, the cache 0 unit 16 includes a cache memory, and the cache memory stores a part of the network information feature value, so that the client device moves farther away Server requests

第13頁 595158 五、發明說明(ίο) 之前,可以先判斷擷取的特徵值是否已存在於用戶端的快 取記憶體中,而獲得更快執行阻絕網路列管資訊的處理。 在本發明此一具體實施例中,用戶端工作的流程除了包含 第三圖A所示的步驟外,進一步包含以下步驟: 特徵值是否存在快取? 當擷取特徵值後,先 判斷該擷取的特徵值是否已存在快取記憶體中,並根據該 擷取的特徵值已存在於快取記憶體中,產生指示為阻絕或 允許的比對結果並執行判斷回傳結果的步驟,且根據該擷 取的特徵值不存在於快取記憶體中,向遠端伺服器提出一 請求,將該擷取的特徵值傳送至遠端伺服器。 將結果寫入快取 當遠端伺服器傳回比對結 果,將該網站、網頁的比對結果存入快取單元1 6,即記錄 於快取記憶體中,可提供上述步驟的初步比對之依據。俾 使用戶端經常連結之非列管網站與網頁内容,將直接決定 允許連結或顯示該非列管網站與網頁内容而無須傳送特徵 值至遠端伺服器;或者用戶端所連結之列管網站與網頁内 容,亦可直接阻擋連結或顯示該非列管網站與網頁内容而 無須傳送特徵值至遠端伺服器。 請參閱第四圖,顯示本發明網路列管資訊的阻絕系統 關於網址比對之系統方塊圖。在本發明此一具體實施例 中,本發明網路列管資訊的阻絕系統係執行包含網路列管 資訊的網址與網頁之阻絕,該阻絕系統包含··用戶端裝 置,位於用戶端;以及一伺服器,位於伺服器端,而用戶 端裝置與伺服器可藉由網際網路1彼此接收或傳送資料。Page 13 595158 5. Before the description of the invention (ίο), you can first determine whether the extracted feature value already exists in the user's cache memory, and get faster processing to block network traffic information. In this specific embodiment of the present invention, in addition to the steps shown in FIG. 3A, the work flow of the client further includes the following steps: Is there a cache of feature values? After capturing the feature value, first determine whether the captured feature value already exists in the cache memory, and based on the captured feature value already exists in the cache memory, generate an indication as a block or allow comparison The result and the step of judging the return result are executed, and according to the extracted feature value does not exist in the cache memory, a request is made to the remote server, and the retrieved feature value is transmitted to the remote server. Write the result to the cache. When the remote server returns the comparison result, the comparison result of the website and the web page is stored in the cache unit 16, which is recorded in the cache memory, which can provide the preliminary comparison of the above steps. On the basis.俾 Unmanaged websites and webpage content that clients often link to will directly decide to allow linking or displaying the unmanaged websites and webpage content without sending characteristic values to remote servers; or managed websites and webpages linked to clients The content of the webpage can also directly block the link or display of the unmanaged website and webpage content without sending characteristic values to the remote server. Please refer to the fourth figure, which shows a block diagram of the system for blocking the network management information according to the present invention. In this specific embodiment of the present invention, the network management information blocking system of the present invention implements a blocking of a website and a web page including the network management information. The blocking system includes a client device located at the client; and A server is located on the server side, and the client device and the server can receive or transmit data to each other through the Internet 1.

第14頁 595158 五、發明說明(11) β亥用戶裝置包含:複數個瀏覽器1 1 ,這些 1 別在用w :端農置的終端機上執行;-擷取單元1 2,可從這 Π, 1 1欲連結之網站或網頁中擷取特徵值,例如: _』, 一傳送單元1 3,接收該特徵值並經由網際 :路扣向·柯服裔端的伺服器提出請求,並將特徵值傳送至 伺服器;一接收單元1 4,從網際網路1接收一比對紝果, Ϊ =結Ϊ Ϊ示某一劉覽器1 1欲連結之網站或網頁是否應 m二ί :剔ϋ一執行單元15,接收該比對結果並確定係對 …Ρ 瀏蹩窃1 1 ,並依據比對結果為阻擋時,阻絕該對岸Page 14 595158 V. Description of the invention (11) The beta Haier user device includes: a plurality of browsers 1 1, these 1 do not execute on a terminal using a w: farm;-capture unit 12 can be obtained from Π, 1 1 Extract feature values from the website or webpage to be linked, for example: _ 』, a transmission unit 1 3, receive the feature value and make a request to the server at the Ke server through the Internet: Road buckle, and send the feature value Send to the server; a receiving unit 14 receives a comparison result from the Internet 1, Ϊ = Ϊ Ϊ indicates whether a website or web page to be linked by a certain browser 1 1 should be m 2: tick An execution unit 15 receives the comparison result and determines that the comparison is performed ... P Liu plagiarizes 1 1 and blocks the opposite bank based on the comparison result when it is blocked

的瀏覽器1 1連結嗲锏让七祕w π此白八广主 ^ 7M it μμ #4- ^ a ^ β亥網站或接收可此包3病毋之資料’且依 H對、、Ό果為允許時,允許該對應的瀏覽器1 1連結該網站 或接收可能包含病毒之資料。 在本發明的具體實施例中,執行單元1 5的實施包含數 種t式’ f Γ方式係依據比對結果使用戶端的代理伺服器 阻擋,允許該對應的瀏覽器丨丨連結網站或下載網頁;另一 f式係依據比對結果使用戶端的終端機無法顯示下載的内 容’或$無法接收開啟可能包含病毒之資料。 *,續參考第四圖,伺服器包含一資料庫24,儲存網路 列官資訊的特徵值,該網路列管資訊包含***、賭 ,、購,二即時對談或股票網站等,或者是企業所制定的 、、’罔路列官資訊;一接收單元2 1 ,從網際網路1接收一來源 ί的請求,並確認該請求具有權限後接 =特被值,一運异早元22,接收該特徵值並與資料 列管資訊的特徵值比對,而基於一運算原則產生比對結Browser 1 1 link, let the seven secrets w π this Bai Baguang master ^ 7M it μμ # 4- ^ a ^ β Hai website or receive information that can be used for this package 3 disease, and according to H, When permitted, the corresponding browser 11 is allowed to link to the website or receive information that may contain viruses. In a specific embodiment of the present invention, the implementation of the execution unit 15 includes several t-style 'f Γ modes, which block the proxy server of the client based on the comparison result, and allow the corresponding browser to link to the website or download the web page. Another f-type is based on the comparison result that the terminal of the client cannot display the downloaded content 'or $ cannot receive the information that may contain a virus. *, Continuing to refer to the fourth figure, the server contains a database 24, which stores the characteristic values of the online listing information. The online listing information includes adult pornography, gambling, buying, two real-time chat or stock websites, etc. Or it is the information formulated by the enterprise, and the information of Kushiro is official; a receiving unit 2 1 receives a request from a source ί from the Internet 1 and confirms that the request has the permission followed by the special value. Element 22, receiving the feature value and comparing it with the feature value of the data management information, and generating a comparison result based on an operation principle

第15頁 595158 五、發明說明(12) 1 : ί運算1則包含快速檢索資料庫之特徵值以進行比 = 戶端裝置所傳送的特徵值與資料庫的特徵值相 Ϊ ί用C端裝置所傳送的特徵值存在於資料庫,則tl: 在、、、口呆才日不為阻擋,若用戶裝置所傳送的 f的特徵值不相同,或是用戶端裝置所傳送的特ί值^ 在於資料4 ’則比對結果指示為允許;以及一傳送存 2 3 ’將比對結果經網際網路1傳回至前述來源之用戶端带 最後參考第五圖,顯示本發明網路列管資訊的阻 於病毒碼特徵比對之系統方塊圖。在本發明此一具^ ^施例中’本發明網路列管資訊的阻絕系統係執行包&广 毒碼之阻絕,該阻絕系統包含:用戶端裝置,位於用^, ^及一伺服器,位於伺服器端,而用戶端裝置與伺服 器可藉由網際網路彼此接收或傳送資料,其中相較^第四 圖所示的實施例,用戶端裝置進一步包含:一快取單元 ^,快取單元1 6包含:一記錄單元2 0 ’用於儲存網路列 管資sfl以及病毒碼的特徵值,可由快取記憶體實施;一評 估單元1 7,接收擷取的特徵值並執行一評估原則,該評估 原則包含確認特徵值是否已存在於記錄單元2 〇中,並且提 供列管資訊的定義改變,使用戶端可改變記錄單元2〇所 集的内容;一決策單元1 8,接收評估單元丨6的結果決 否由傳送單元1 3提出請求並送出特徵值,且接&由^收: 元1 4所傳來的比對結果,並為該特徵值對應的病主 = 應該阻絕或允許做出決定而指示執行單元丨5來 ^ 了疋否 595158 五、發明說明(13) 及,一更新單元1 9,接受決策單元1 8的指示,將更新或最 新的病毒碼之特徵值寫入記錄單元2 0。 在詳細說明本發明的較佳實施例之後,熟悉該項技術 人士可清楚的瞭解,在不脫離下述申請專利範圍與精神下 可進行各種變化與改變,而本發明亦不受限於說明書之實 施例的實施方式。Page 15 595158 V. Description of the invention (12) 1: Calculating 1 includes quickly searching the characteristic value of the database for comparison = the characteristic value transmitted by the client device is relative to the characteristic value of the database ί using a C terminal device The transmitted feature values exist in the database, then tl: is not blocked in the presence of verbal, verbal, and verbal. If the feature values of f transmitted by the user device are different, or the special values transmitted by the client device ^ The data 4 'indicates that the comparison result is allowed; and a transmission memory 2 3' returns the comparison result to the client end of the aforementioned source via the Internet 1 and finally refers to the fifth figure, which shows the network management of the present invention. The block diagram of information is the system block diagram of virus pattern feature comparison. In this ^^ embodiment of the present invention, the 'blocking system of the network management information of the present invention is an implementation package & wide virus code blocking, the blocking system includes: a client device, which is located on a ^, ^ and a servo The server is located on the server side, and the client device and the server can receive or transmit data to each other through the Internet. Compared with the embodiment shown in the fourth figure, the client device further includes: a cache unit ^ The cache unit 16 includes: a recording unit 20 ′ for storing the characteristic values of network management resources sfl and virus codes, which can be implemented by the cache memory; and an evaluation unit 17 which receives the extracted characteristic values and An evaluation principle is implemented, which includes confirming whether the characteristic value already exists in the recording unit 20 and providing a change in the definition of the management information so that the client can change the content of the recording unit 20; a decision unit 18 , Receive the result of the evaluation unit 丨 6 Whether the request is sent by the transmission unit 13 and the characteristic value is received, and the comparison result transmitted by the ^ receive: yuan 1 4 is the patient corresponding to the characteristic value. = Should be blocked or allowed Make a decision and instruct the execution unit 丨 5 to come ^ No 595158 V. Description of the invention (13) And, an update unit 19 accepts the instruction of the decision unit 18 to write the updated or latest feature value of the virus code to the record Unit 2 0. After explaining the preferred embodiment of the present invention in detail, those skilled in the art can clearly understand that various changes and modifications can be made without departing from the scope and spirit of the patent application described below, and the present invention is not limited to the description Examples of implementation.

595158 圖式簡單說明 【圖式簡單說明】 第一圖為本發明網路列管資訊的阻絕方法之流程示意 圖。 第二圖為本發明網路列管資訊的阻絕系統之示意圖。 第三圖A為本發明阻絕方法第一實施例之流程圖。 第三圖B為本發明阻絕方法第二實施例之流程圖。 第四圖為本發明網路列管資訊的阻絕系統關於網址比 對之系統方塊圖。 第五圖為本發明網路列管資訊的阻絕系統關於病毒碼 特徵比對之系統方塊圖。 [主要元件符號對照說明] 1——網際網路 11 ---劉覽器 12 ---操取單元 13---傳送單元 1 4 ---接收單元 1 5 - - _執行單元 16——快取單元 1 7 - --評估單元 18---決策單元 1 9 ---更新單元 20---記錄单元 2卜--接收單元 22---運算單元595158 Brief description of the diagram [Simplified description of the diagram] The first diagram is a schematic flowchart of a method for blocking network management information according to the present invention. The second figure is a schematic diagram of a network blocking information blocking system according to the present invention. The third figure A is a flowchart of the first embodiment of the blocking method of the present invention. The third figure B is a flowchart of the second embodiment of the blocking method of the present invention. The fourth figure is a block diagram of a system for comparing information on the Internet with respect to URLs. The fifth figure is a system block diagram of virus code feature comparison of the network management information blocking system of the present invention. [Comparison of main component symbols] 1——Internet 11 --- Liu Lan 12 --- Operation unit 13 --- Transmission unit 1 4 --- Receiving unit 1 5--_ Execution unit 16- Cache unit 1 7 --- Evaluation unit 18 --- Decision unit 1 9 --- Update unit 20 --- Recording unit 2-Receiving unit 22 --- Operation unit

第18頁 595158 圖式簡單說明 23---傳送單元 24---資料庫 ( 讀 I·· 第19頁Page 18 595158 Brief description of the drawings 23 --- Transmission unit 24 --- Database (read I ... page 19

Claims (1)

595158 六、申請專利範圍 1. 一種網路列管資訊的阻絕方法,包括: 在用戶端擷取資料之特徵值,並傳送至一伺服器; 該伺服器執行前述特徵值與一資料庫的内容比對, 獲得阻擋或允許之比對結果; 將前述比對結果傳回用戶端;及 用戶端根據前述比對結果,阻擋含有該特徵值之資 料的顯示,或允許含有該特徵值之資料的顯示; 其特徵在於前述伺服器及資料庫均位於用戶端之遠 端,且該資料庫的内容為即時更新。 2 .如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,進一步包含:前述特徵值傳送之前,在用戶端進行 一初步比對。 3. 如申請專利範圍第2項所述之網路列管資訊的阻絕方 法,其中前述初步比對至少包含:執行前述特徵值與一 快取單元所記錄的内容比對。 4. 如申請專利範圍第2項所述之網路列管資訊的阻絕方 法,其中前述初步比對至少包含:決定前述特徵值是否 傳送至該伺服器。 5 .如申請專利範圍第3項所述之網路列管資訊的阻絕方 法,其中前述初步比對進一步包含:根據前述伺服器傳 回之比對結果,更新該快取單元所記錄的内容。 6 .如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,其中該資料庫的内容為網路列管資訊之特徵值,該 網路列管資訊為包含***、賭博、購物、毒品、槍595158 6. Scope of patent application 1. A method for blocking network management information, including: acquiring characteristic values of data on a client side and transmitting the characteristic values to a server; the server executing the foregoing characteristic values and the contents of a database Compare, obtain the result of blocking or allowing; return the above-mentioned comparison result to the client; and, based on the above-mentioned comparison result, the client blocks the display of the data containing the characteristic value, or allows the data containing the characteristic value to be allowed Display; characterized in that the aforementioned server and database are located remotely from the client, and the content of the database is updated in real time. 2. The method for blocking network management information as described in item 1 of the scope of the patent application, further comprising: performing a preliminary comparison on the client side before transmitting the aforementioned characteristic value. 3. The method for blocking network management information as described in item 2 of the scope of patent application, wherein the preliminary comparison includes at least: performing a comparison between the aforementioned feature value and the content recorded by a cache unit. 4. The method for blocking network management information according to item 2 of the scope of patent application, wherein the preliminary comparison at least includes: determining whether the aforementioned characteristic value is transmitted to the server. 5. The method for blocking network management information as described in item 3 of the scope of patent application, wherein the preliminary comparison further includes: updating the content recorded by the cache unit according to the comparison result returned by the server. 6. The method for blocking network management information as described in item 1 of the scope of patent application, wherein the content of the database is the characteristic value of network management information, and the network management information includes adult pornography, gambling, Shopping, drugs, guns 第20頁 595158 六、申請專利範圍 械、即時對談及或股票資訊之網站或網頁内容,或是企 業所列管之網站或網頁。 7. 如申請專利範圍第6項所述之網路列管資訊的阻絕方 法,其中前述特徵值為網址的一部分、U R L s或I P位址。 8. 如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,其中該資料庫的内容為網路列管資訊之特徵值,該 網路列管資訊為包含病毒之電子郵件或檔案。 9. 如申請專利範圍第8項所述之網路列管資訊的阻絕方 法,其中前述特徵值為病毒碼特徵。 1 0.如申請專利範圍第1項所述之網路列管資訊的阻絕方 法,包含:由一自動搜索引擎從網際網路收集網路列管 資訊,以即時更新該資料庫的内容。 1 1. 一種實施申請專利範圍第1項所述之網路列管資訊的阻 絕方法之阻絕系統,包括: 一用戶端裝置,用以擷取資料之特徵值,並傳送該 特徵值;以及接收一阻擋或允許之比對結果,以決定是 否阻擋含有該特徵值之資料的顯示;以及 一伺服器,包括一資料庫,該伺服器接收前述特徵 值並與該資料庫的内容比對,以獲得前述阻擋或允許之 比對結果,並將前述比對結果傳回該用戶端裝置; 其特徵在於前述伺服器及資料庫均位於用戶端裝置 之遠端,且該資料庫的内容為即時更新。 1 2.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置至少包含:一擷取單元,該擷取單元用以擷取資Page 20 595158 VI. Scope of patent application Machinery, real-time chat or stock information website or webpage content, or websites or webpages managed by the company. 7. The method for blocking network management information as described in item 6 of the scope of patent application, wherein the aforementioned characteristic value is part of a web address, a URL or IP address. 8. The method for blocking network management information as described in item 1 of the scope of patent application, wherein the content of the database is the characteristic value of network management information, and the network management information is an email or a virus file. 9. The method for blocking network management information as described in item 8 of the scope of patent application, wherein the aforementioned characteristic value is a virus code characteristic. 10. The method for blocking network management information as described in item 1 of the scope of patent application, which includes: collecting network management information from the Internet by an automatic search engine to update the content of the database in real time. 1 1. A blocking system for implementing a method for blocking network management information described in item 1 of the scope of patent application, comprising: a client device for acquiring a characteristic value of data and transmitting the characteristic value; and receiving A blocking or allowing comparison result to determine whether to block the display of the data containing the characteristic value; and a server, including a database, which receives the foregoing characteristic value and compares with the content of the database to Obtain the aforementioned blocking or allowing comparison result, and return the aforementioned comparison result to the client device; characterized in that the aforementioned server and database are located at the far end of the client device, and the content of the database is updated in real time . 1 2. The blocking system as described in item 11 of the scope of patent application, wherein the client device includes at least: an acquisition unit for acquiring funds 第21頁 595158 六、申請專利範圍 料之特徵值。 1 3.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置進一步包含:一傳送單元,該傳送單元向該伺服 器提出請求,並傳送該特徵值。 1 4.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置進一步包含:一接收單元,該接收單元用以接收 一阻擔或允許之比對結果。 1 5.如申請專利範圍第1 1項所述之阻絕系統,其中該用戶 端裝置進一步包含:一執行單元,該執行單元根據前述 阻擋之比對結果,則阻擋含有該特徵值之資料的顯示, 且根據前述允許之比對結果,則允許含有該特徵值之資 料的顯示。 1 6.如申請專利範圍第1 1項所述之阻絕系統,其中該資料 庫的内容為網路列管資訊之特徵值,該網路列管資訊為 包含***、賭博、購物、毒品、槍械、即時對談及 或股票資訊之網站或網頁内容,或是企業所列管之網站 或網頁。 1 7.如申請專利範圍第1 6項所述之阻絕系統,其中前述特 徵值為網址的一部分、U R L s或I P位址。 1 8.如申請專利範圍第1 1項所述之阻絕系統,其中該資料 庫的内容為網路列管資訊之特徵值,該網路列管資訊為 包含病毒之電子郵件或檔案。 1 9.如申請專利範圍第1 8項所述之阻絕系統,其中前述特 徵值為病毒碼特徵。Page 21 595158 6. Scope of patent application Characteristic value of materials. 13. The blocking system according to item 11 of the scope of patent application, wherein the client device further comprises: a transmitting unit, the transmitting unit makes a request to the server, and transmits the characteristic value. 14. The blocking system according to item 11 of the scope of patent application, wherein the client device further comprises: a receiving unit for receiving a comparison result that is blocked or allowed. 15. The blocking system as described in item 11 of the scope of patent application, wherein the client device further includes: an execution unit, which blocks the display of the data containing the characteristic value according to the comparison result of the foregoing blocking. , And according to the above-mentioned allowed comparison result, the display of data containing the characteristic value is allowed. 16. The blocking system as described in item 11 of the scope of patent application, wherein the content of the database is the characteristic value of the online management information, which includes adult pornography, gambling, shopping, drugs, Content of a website or web page for firearms, live chat or stock information, or a website or web page controlled by a business. 1 7. The blocking system as described in item 16 of the scope of patent application, wherein the aforementioned characteristic value is part of a web address, a URL or IP address. 1 8. The blocking system as described in item 11 of the scope of patent application, wherein the content of the database is the characteristic value of network management information, and the network management information is an email or file containing a virus. 19. The blocking system according to item 18 of the scope of patent application, wherein the aforementioned characteristic value is a virus code feature. 第22頁 595158 六、申請專利範圍 2 0.如申請專利範圍第1 1項所述之阻絕系統,其中該伺服 器至少包含:一接收單元,該接收單元用以接收該用戶 端裝置所傳送之特徵值。 2 1 .如申請專利範圍第1 1項所述之阻絕系統,其中該伺服 器進一步包含:一傳送單元,該傳送單元將該阻擋或允 許之比對結果傳回該用戶端裝置。 2 2.如申請專利範圍第1 1項所述之阻絕系統,其中該伺服 器進一步包含:一運算單元,該運算單元比對前述特徵 值與該資料庫的内容,並產生前述阻擋或允許之比對結 果。 2 3. —種網路列管資訊的阻絕系統,包括: 一用戶端裝置,包含: 一或複數個瀏覽器,可由網際網路連結資料; 一擷取單元,用以擷取資料之特徵值; 一用戶端傳送單元,用以傳送該特徵值;一用戶端 接收單元,用以接收一阻擋或允許之比對結果;以及 一執行單元,根據前述比對結果,阻擋瀏覽器連結 含有該特徵值之資料,或允許瀏覽器連結含有該特徵值 之資料;以及 一伺服器,包含: 一資料庫,儲存網路列管資訊的特徵值; 一伺服器端接收單元,用以接收該用戶端傳送單元f 所傳送之特徵值; 一伺服器端傳送單元,將該阻擋或允許之比對結果Page 22 595158 VI. Patent application scope 20. The blocking system as described in item 11 of the patent application scope, wherein the server includes at least: a receiving unit for receiving the data transmitted by the client device. Eigenvalues. 2 1. The blocking system according to item 11 of the scope of patent application, wherein the server further comprises: a transmitting unit, the transmitting unit returns the result of the blocking or permitting comparison to the client device. 2 2. The blocking system as described in item 11 of the scope of patent application, wherein the server further comprises: an arithmetic unit that compares the aforementioned characteristic value with the content of the database and generates the aforementioned blocking or allowing Compare the results. 2 3. —A system for blocking information from network management, including: a client device, including: one or more browsers, which can connect to the Internet, and an acquisition unit, which is used to retrieve the characteristic values of the data A client transmitting unit to transmit the characteristic value; a client receiving unit to receive a blocking or allowing comparison result; and an executing unit to block the browser link from containing the characteristic according to the aforementioned comparison result Value data, or allowing the browser to link data containing the characteristic value; and a server including: a database storing characteristic values of network management information; a server-side receiving unit for receiving the client The characteristic value transmitted by the transmission unit f; a server-side transmission unit that compares the result of the block or allow 第23頁 595158 六、申請專利範圍 傳回該用戶端接收單元;以及 一運算單元,比對該用戶端傳送單元所傳送之特徵 值與該資料庫的網路列管資訊的特徵值,並產生前述阻 擋或允許之比對結果; 其特徵在於前述伺服器及資料庫均位於用戶端裝置 之遠端,且該資料庫的内容為即時更新。 2 4.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該網路列管資訊為包含病毒之電子郵件或檔 案。 2 5.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該網路列管資訊為包含***、賭博、購 物、毒品、槍械、即時對談及或股票資訊之網站或網頁 内容,或是企業所列管之網站或網頁。 2 6.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該特徵值為網址或病毒碼特徵。 2 7.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該特徵值為URL或IP位址。 2 8.如申請專利範圍第2 3項所述之網路列管資訊的阻絕系 統,其中該用戶端裝置進一步包含:一快取單元,在前 述用戶端傳送單元傳送該特徵值之前,該快取單元在用 戶端進行一初步比對,並根據初步比對以決定是否由該 用戶端傳送單元傳送特徵值至該伺服器,或是指示該執# 行單位阻擋瀏覽器連結含有該特徵值之資料。 2 9.如申請專利範圍第2 8項所述之網路列管資訊的阻絕系Page 23 595158 6. The patent application scope returns the client receiving unit; and an arithmetic unit compares the characteristic value transmitted by the client transmitting unit with the characteristic value of the network management information of the database, and generates The comparison result of the foregoing blocking or allowing; it is characterized in that the aforementioned server and database are located at the far end of the client device, and the content of the database is updated in real time. 2 4. The network management information blocking system as described in item 23 of the scope of patent application, wherein the network management information is an email or file containing a virus. 2 5. The network management information blocking system described in item 23 of the scope of patent application, wherein the network management information includes adult pornography, gambling, shopping, drugs, firearms, real-time talk or stock information Website or webpage content, or websites or webpages managed by the company. 2 6. The network management information blocking system described in item 23 of the scope of patent application, wherein the characteristic value is a URL or a virus code characteristic. 2 7. The network management information blocking system described in item 23 of the scope of patent application, wherein the characteristic value is a URL or an IP address. 2 8. The network management information blocking system as described in item 23 of the scope of patent application, wherein the client device further includes: a cache unit, and before the aforementioned client transmission unit transmits the feature value, the cache The taking unit performs a preliminary comparison on the client side, and according to the preliminary comparison, it is determined whether the client side sends the feature value to the server, or instructs the execution unit to block the browser link from containing the feature value. data. 2 9. The blocking of network management information as described in item 28 of the scope of patent application 第24頁 595158 六、申請專利範圍 統,其中該快取單元至少包含:一記錄單元,該記錄單 元用於儲存網路列管資訊以及病毒碼的特徵值,可由快 取記憶體實施。 3 0.如申請專利範圍第2 9項所述之網路列管資訊的阻絕系 統,其中該快取單元進一步包含:一評估單元,該評估 單元確認擷取的特徵值是否已存在於該記錄單元中。 3 1.如申請專利範圍第3 0項所述之網路列管資訊的阻絕系 統,其中該快取單元進一步包含:一決策單元,該決策 單元依據該評估單元的確認結果決定是否由用戶端傳送 單元送出特徵值至該伺服器,或是指示該執行單位阻擋 瀏覽器連結含有該特徵值之資料。 3 2.如申請專利範圍第3 1項所述之網路列管資訊的阻絕系 統,其中該快取單元進一步包含:一更新單元,該更新Page 24 595158 6. The scope of patent application system, where the cache unit includes at least: a recording unit, which is used to store network management information and the characteristic values of virus codes, which can be implemented by cache memory. 30. The network management information blocking system as described in item 29 of the scope of patent application, wherein the cache unit further includes: an evaluation unit that confirms whether the extracted feature value already exists in the record Unit. 3 1. The network management information blocking system as described in item 30 of the scope of patent application, wherein the cache unit further includes: a decision unit, which decides whether to be determined by the client based on the confirmation result of the evaluation unit The sending unit sends the characteristic value to the server, or instructs the execution unit to block the browser from linking the data containing the characteristic value. 3 2. The network management information blocking system according to item 31 of the scope of patent application, wherein the cache unit further includes: an update unit, the update
TW92107477A 2003-04-02 2003-04-02 Method and system for blocking networked limitative information TW595158B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW92107477A TW595158B (en) 2003-04-02 2003-04-02 Method and system for blocking networked limitative information

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW92107477A TW595158B (en) 2003-04-02 2003-04-02 Method and system for blocking networked limitative information

Publications (2)

Publication Number Publication Date
TW595158B true TW595158B (en) 2004-06-21
TW200421772A TW200421772A (en) 2004-10-16

Family

ID=34076062

Family Applications (1)

Application Number Title Priority Date Filing Date
TW92107477A TW595158B (en) 2003-04-02 2003-04-02 Method and system for blocking networked limitative information

Country Status (1)

Country Link
TW (1) TW595158B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102984020B (en) * 2011-09-07 2015-06-17 天讯天网(福建)网络科技有限公司 Cloud-computation-based net surfing monitoring method and monitoring system and monitoring server

Also Published As

Publication number Publication date
TW200421772A (en) 2004-10-16

Similar Documents

Publication Publication Date Title
US9888089B2 (en) Client side cache management
JP3935986B2 (en) Network information resource monitoring system for notifying changes in information resources in a network
US20140032519A1 (en) Method and system for recording search trails across one or more search engines in a communications network
CN110430188B (en) Rapid URL filtering method and device
KR20140022464A (en) Sharing control system and method for network resources download information
WO2011116696A1 (en) Method and system for providing network resources
US20020032781A1 (en) Intermediary server apparatus and an information providing method
WO2022057525A1 (en) Method and device for data retrieval, electronic device, and storage medium
JP2002049570A (en) Client-server system, server device, data relaying method, and recording medium recorded with program thereof
US10412076B2 (en) Identifying users based on federated user identifiers
JP2008158695A (en) Information processing system and program for providing online service
TW595158B (en) Method and system for blocking networked limitative information
JP2003044346A (en) Contents providing method and network connecting device
CN111314407B (en) Communication device and communication method for processing metadata
JP2005234655A (en) File distribution management apparatus and method and program
JP2004318308A (en) Access management system, and information communication terminal used for access management device and access management system
JP5851251B2 (en) Communication packet storage device
KR20050096422A (en) System and method for interlocking instant messaging services and web services
JP3133764U (en) SEO automatic mutual link system
JP5801218B2 (en) URL filtering system
JP2010238199A (en) Communication system, communication device and communication management method
JP5279601B2 (en) Server apparatus, data processing system, form processing method, and program
JP2010066994A (en) Shared album service device, method of managing shared album, and program and recording medium therefor
JP4159530B2 (en) Update history notification system, update history notification method and program
US20040014469A1 (en) Method and device or re-using information received previously in a telecommunication network such as the internet

Legal Events

Date Code Title Description
GD4A Issue of patent certificate for granted invention patent
MM4A Annulment or lapse of patent due to non-payment of fees