[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CN103986691B - The retransmission method and device of terminal network request data - Google Patents

The retransmission method and device of terminal network request data Download PDF

Info

Publication number
CN103986691B
CN103986691B CN201410149166.XA CN201410149166A CN103986691B CN 103986691 B CN103986691 B CN 103986691B CN 201410149166 A CN201410149166 A CN 201410149166A CN 103986691 B CN103986691 B CN 103986691B
Authority
CN
China
Prior art keywords
network request
terminal
request packet
safety certification
specific identifier
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410149166.XA
Other languages
Chinese (zh)
Other versions
CN103986691A (en
Inventor
张武健
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Sangfor Technologies Co Ltd
Original Assignee
Sangfor Network Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sangfor Network Technology Shenzhen Co Ltd filed Critical Sangfor Network Technology Shenzhen Co Ltd
Priority to CN201410149166.XA priority Critical patent/CN103986691B/en
Publication of CN103986691A publication Critical patent/CN103986691A/en
Application granted granted Critical
Publication of CN103986691B publication Critical patent/CN103986691B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The present invention relates to a kind of retransmission method and device of terminal network request data, when receiving the network request packet of terminal transmission, whether the proofing state for first determining whether terminal is to pass through safety verification, terminal authentication state for not through safety certification and network request packet when containing specific identifier for receiving, the authentication state of terminal is arranged to through safety certification, and the network request packet received is forwarded to corresponding server, if the authentication state of terminal is not through safety certification and when the network request packet that receives does not include specific identifier, intercept the network request packet, the network data of terminal through safety certification is only allowed to be forwarded to server, to ensure the safety of data transfer.

Description

The retransmission method and device of terminal network request data
Technical field
The present invention relates to communication technical field, more particularly to a kind of retransmission method and device of terminal network request data.
Background technology
With the development of science and technology, the application of wireless network in people's daily life is more and more extensive, people are passing through After the login name and login password of wifi hotspot log in wifi hotspot, the network that directly can often be provided by the wifi hotspot Carry out data transmission, but due to can directly carry out data transmission not recognizing the terminal progress safety for sending data after login Card, it is threat data to cause the data that terminal is sent(Such as attack data)When, damage gateway or server, danger coefficient compared with It is high.
The content of the invention
The main object of the present invention is to provide a kind of retransmission method and device of terminal network request data, improves data and passes Defeated security.
The present invention proposes a kind of retransmission method of terminal network request data, including:
The network request packet for forwarding end receiving terminal to send;
The terminal authentication state for not through safety certification when, the forwarding end judges the network request number that receives According to whether including specific identifier;
When the specific identifier is included in the network request packet received, the forwarding end sets recognizing for the terminal The network request packet received is forwarded to corresponding server for through safety certification by card state;
When not including the specific identifier in the network request packet received, the forwarding end intercepts the net received Network request data.
Preferably, after the step of network request packet that the forwarding end receiving terminal is sent, this method also includes:
When the terminal authentication state is through safety certification, the forwarding end determines to receive the network request number According to time point, be arranged to the time interval between the through safety certification time point of state with the authentication state of the terminal;
It is determined that time interval be less than prefixed time interval when, it is described forwarding end by the network request packet received turn It is sent to corresponding server.
Preferably, the authentication state for setting the terminal is through safety certification, and the network request that will be received After data forwarding to the step of corresponding server, this method also includes:
In the prefixed time interval that the authentication state of the terminal is arranged to after through safety certification state, the forwarding When end does not receive the network request packet with the specific identifier, the forwarding end sets the authentication state of the terminal For not through safety certification state.
Preferably, after the step of network request packet that the forwarding end receiving terminal is sent, this method also includes:
Whether the network request packet that the forwarding end judges to receive includes specific identifier;
If including the specific identifier in the network request packet received, the forwarding end please by the network received Data forwarding is sought to corresponding server;
If not including the specific identifier in the network request packet received, the network for forwarding end to receive Request data intercepts.
Preferably, after the step of network request packet that the forwarding end receiving terminal is sent, this method also includes:
If by the safety certification to the terminal, the network request packet received is forwarded to corresponding service Device.
A kind of retransmission unit of terminal network request data of the present invention, including:
Receiving module, the network request packet sent for receiving terminal;
Judge module, for the terminal authentication state for not through safety certification when, it is described forwarding end judge receive Whether the network request packet arrived includes specific identifier;
Authentication module, for being not through safety certification, and in the network request received in the terminal authentication state When the specific identifier is included in data, the authentication state of the terminal is set for through safety certification;
Forwarding module, please by the network received for setting the authentication state of the terminal as after through safety certification Data forwarding is sought to corresponding server;
Blocking module, for the terminal authentication state for not through safety certification when, and the network request received When not including the specific identifier in data, the network request packet received is intercepted.
Preferably, the system also includes determining module, for the terminal authentication state for through safety certification when, really Surely the time point of the network request packet is received, through safety certification state is arranged to the authentication state of the terminal Time interval between time point;The forwarding module be additionally operable to it is determined that time interval be less than prefixed time interval when, will The network request packet received is forwarded to corresponding server.
Preferably, the authentication module is additionally operable to after the authentication state of the terminal is arranged to through safety certification state Prefixed time interval in, when not receiving the network request packet with the specific identifier, by the certification shape of the terminal State is arranged to not through safety certification state.
Preferably, whether the network request packet that the judge module is additionally operable to judge to receive includes specific identifier;Institute If including the specific identifier in stating the network request packet that forwarding module is additionally operable to receive, the forwarding end will receive Network request packet be forwarded to corresponding server;If the blocking module is additionally operable in the network request packet that receives not Comprising the specific identifier, then the network request packet received is intercepted.
Preferably, the forwarding module is additionally operable to, and when the terminal authentication state is through safety certification, will be received Network request packet be forwarded to corresponding server.
The retransmission method and device of terminal network request data proposed by the present invention, this method are receiving terminal transmission During network request packet, whether the proofing state for first determining whether terminal is by safety verification, is not in the authentication state of terminal Through safety certification and network request packet when containing specific identifier for receiving, the authentication state of terminal is arranged to pass through peace Full certification, and the network request packet received is forwarded to corresponding server, if the authentication state of terminal is not pass through peace Full certification and when the network request packet received does not include specific identifier, intercepts the network request packet, only allows to pass through The network data of the terminal of safety certification is forwarded to server, to ensure the safety of data transfer.
Brief description of the drawings
Fig. 1 is the schematic flow sheet of the retransmission method first embodiment of terminal network request data of the present invention;
Fig. 2 is the schematic flow sheet of the retransmission method second embodiment of terminal network request data of the present invention;
Fig. 3 is the schematic flow sheet of the retransmission method 3rd embodiment of terminal network request data of the present invention;
Fig. 4 is the schematic flow sheet of the retransmission method fourth embodiment of terminal network request data of the present invention;
Fig. 5 is the schematic flow sheet of the embodiment of retransmission method the 5th of terminal network request data of the present invention;
Fig. 6 is the high-level schematic functional block diagram of the retransmission unit preferred embodiment of terminal network request data of the present invention.
The realization, functional characteristics and advantage of the object of the invention will be described further referring to the drawings in conjunction with the embodiments.
Embodiment
Below in conjunction with the accompanying drawings and specific embodiment is described further with regard to technical scheme.It should be appreciated that this The specific embodiment of place description is not intended to limit the present invention only to explain the present invention.
Reference picture 1, Fig. 1 are the schematic flow sheet of the retransmission method first embodiment of terminal network request data of the present invention.
The present embodiment proposes a kind of retransmission method of terminal network request data, including:
Step S10, the network request packet that forwarding end receiving terminal is sent;
Step S20, the terminal authentication state for not through safety certification when, the forwarding end judges the net that receives Whether network request data includes specific identifier;
In the present embodiment, the network environment provided at access forwarding end, and use the unlatching software or operation in user During the function items of specific software, the application software in terminal sends network request packet, the network request packet to forwarding end In can include specific identifier, the specific identifier can be port information corresponding to application software, server info, application software Title etc. can identify network request packet and be sent by specific application software.Authentication state can be set at forwarding end to pass through The IP lists of the terminal of safety certification, when receiving the network request packet of terminal transmission, the network that can send terminal please The IP address of the terminal included in data is asked to be compared with the IP address through safety certification to prestore, when the IP address of terminal When being matched with the authentication state to prestore for IP address through safety certification, the authentication state for illustrating the terminal is by recognizing safely Card.
In the present embodiment, terminal can push corresponding prompt message in the network residing for access forwarding end to terminal, To prompt the download of user corresponding application software.
Step S30, when the specific identifier is included in the network request packet received, described in the setting of the forwarding end The network request packet received is forwarded to corresponding server for through safety certification by the authentication state of terminal;
The terminal authentication state for not through safety certification when, forwarding end judges that the network request packet that receives is It is no to include specific identifier, if including the specific identifier in the network request packet received, then it is assumed that the data are by specific Application software is sent, and illustrates that user has turned on or certification software safe to use, then forwards end to set the authentication state of the terminal For through safety certification, for example, can by the IP address of terminal added to authentication state in IP address table through safety certification, During to receive the network request packet of the terminal transmission next time, directly the network request packet received is forwarded to correspondingly Server.
Step S40, when not including the specific identifier in the network request packet received, the forwarding end, which intercepts, to be connect The network request packet received.
In the terminal authentication state for not through safety certification, and the network request packet received does not include specific mark During knowledge, illustrate that terminal does not open specific application software, then forward end to intercept the network request packet received, now forward End can push prompt message to terminal, and the prompt message may include the download link address of application specific software.
In the present embodiment, to save the flow of terminal, terminal can send checking request when opening to forwarding end, and It is by safety verification that forwarding end, which sets the proofing state of the terminal when receiving checking request, does not forward the checking please Ask.The retransmission method for the terminal network request data that the present embodiment proposes, not merely by terminal installation specifically using soft Part is realized adds specific identifier to the data that terminal is sent, also can be in the specific network address of terminal access, to the net of terminal transmission Specific identifier is added in network request data, when including specific identifier in the network request packet that forwarding termination receives, passes through terminal Checking.
The retransmission method for the terminal network request data that the present embodiment proposes, the application software that can also be applied to businessman push away Extensively, the biography of network data in the network environment that terminal provides, can be just realized only when installing the specific software that businessman specifies It is defeated.
The retransmission method for the terminal network request data that the present embodiment proposes, this method are receiving the network of terminal transmission During request data, whether the proofing state for first determining whether terminal is by safety verification, is not pass through in the authentication state of terminal Safety certification and the network request packet when containing specific identifier received, the authentication state of terminal is arranged to by recognizing safely Card, and the network request packet received is forwarded to corresponding server, if the authentication state of terminal is not by recognizing safely When the network request packet demonstrate,proved and received does not include specific identifier, the network request packet is intercepted, only allows to pass through safety The network data of the terminal of certification is forwarded to server, to ensure the safety of data transfer.
Reference picture 2, Fig. 2 are the schematic flow sheet of the retransmission method second embodiment of terminal network request data of the present invention.
The retransmission method second embodiment of terminal network request data of the present invention is proposed based on first embodiment, in this implementation Also include after step S10 in example:
Step S50, when the terminal authentication state is through safety certification, the forwarding end determines to receive the net The time point of network request data, with the authentication state of the terminal be arranged between the through safety certification time point of state when Between be spaced;
Step S60, it is determined that time interval be less than prefixed time interval when, it is described forwarding end by the network received please Data forwarding is sought to corresponding server.
Because user can not possibly be always on or uses specific application software, user may move back after through safety certification Go out application software, default time interval now can be set, through safety certification shape is arranged in the authentication state of the terminal After state in default time interval, to save energy consumption, it may not be necessary to carry out safety certification real-time to terminal, directly send terminal Network request packet be forwarded to corresponding server;After the arrival of default time interval, forwarding end intercepts terminal and sent Network request packet, until when receiving the network request packet with specific identifier that terminal is resend, setting terminal Authentication state for through safety certification, now user can be by operating specific application software or restarting specific application software Realize.
Reference picture 3, Fig. 3 are the schematic flow sheet of the retransmission method 3rd embodiment of terminal network request data of the present invention.
The retransmission method 3rd embodiment of terminal network request data of the present invention is proposed based on the first and second embodiments, Also include after step S30 in the present embodiment:
Step S70, in the prefixed time interval that is arranged to after through safety certification state of authentication state of the terminal, It is described to forward end by the certification of the terminal when forwarding end does not receive the network request packet with the specific identifier State is arranged to not through safety certification state.
After at forwarding end, the authentication state of terminal is arranged to through safety certification, forwarding end detecting real-time terminal is sent Network request packet, if forwarding end not receive the network request packet with the specific identifier in default time interval, Then the forwarding end thinks that terminal is turned off or unloaded the specific software, then forwards end to set the authentication state of the terminal For not through safety certification, such as can be by the IP of terminal by being rejected in terminal IP lists through safety certification.
Reference picture 4, Fig. 4 are the schematic flow sheet of the retransmission method fourth embodiment of terminal network request data of the present invention.
The retransmission method fourth embodiment of terminal network request data of the present invention is proposed based on first embodiment, in step This method also includes after S10:
Whether step S80, the network request packet that the forwarding end judges to receive include specific identifier;
Step S90, if including the specific identifier in the network request packet received, the forwarding end will receive Network request packet be forwarded to corresponding server;
Step S100, if not including the specific identifier in the network request packet received, the forwarding end will connect The network request packet received intercepts.
In the present embodiment, the specific identifier be the terminal to forwarding end send network request packet when, it is specific The mark data that software adds in the network request packet.Forwarding end can be by judging in the network request packet that receives Whether specific identifier is included to judge whether terminal opens specific software, only terminal is in the software of access opening feature, forwarding The network request packet received is just forwarded to corresponding server by end so that the process that terminal is transmitted in data network data Middle security performance is more preferable.When not including the specific identifier in the network request packet received, forwarding end will receive After network request packet intercepts, prompt message can be pushed to terminal, so that prompt terminal opens specific software or specific The download address of software.
The retransmission method for the terminal network request data that the present embodiment proposes, the application software that can also be applied to businessman push away Extensively, the biography of network data in the network environment that terminal provides, can be just realized only when installing the specific software that businessman specifies It is defeated.
Reference picture 5, Fig. 5 are the schematic flow sheet of the embodiment of retransmission method the 5th of terminal network request data of the present invention.
The embodiment of retransmission method the 5th of terminal network request data of the present invention is proposed based on any of the above embodiment, at this Also include after step S10 in embodiment:
Step S110, the forwarding end judge whether the terminal authentication state is through safety certification;
Step S120, when the terminal authentication state is through safety certification, the network for forwarding end to receive Request data is forwarded to corresponding server;
Step S20, the terminal authentication state for not through safety certification when, the forwarding end judges the net that receives Whether network request data includes specific identifier;
Step S30, when the specific identifier is included in the network request packet received, described in the setting of the forwarding end The network request packet received is forwarded to corresponding server for through safety certification by the authentication state of terminal;
Step S40, when not including the specific identifier in the network request packet received, the forwarding end, which intercepts, to be connect The network request packet received.
When the authentication state of terminal is arranged to through safety certification, no matter which kind of the network request packet that terminal is sent is The data of type, the network request packet directly can be forwarded to corresponding server to save overhead.
Reference picture 6, Fig. 6 are the functional module signal of the retransmission unit preferred embodiment of terminal network request data of the present invention Figure.
The present embodiment proposes a kind of retransmission unit of terminal network request data, including:
Receiving module 10, the network request packet sent for receiving terminal;
Judge module 20, for the terminal authentication state for not through safety certification when, it is described forwarding end judge connect Whether the network request packet received includes specific identifier;
In the present embodiment, the network environment provided at access forwarding end, and use the unlatching software or operation in user During the function items of specific software, the application software in terminal sends network request packet, the network request packet to forwarding end In can include specific identifier, the specific identifier can be port information corresponding to application software, server info, application software Title etc. can identify network request packet and be sent by specific application software.Authentication state can be set at forwarding end to pass through The IP lists of the terminal of safety certification, when receiving the network request packet of terminal transmission, the network that can send terminal please The IP address of the terminal included in data is asked to be compared with the IP address through safety certification to prestore, when the IP address of terminal When being matched with the authentication state to prestore for IP address through safety certification, the authentication state for illustrating the terminal is by recognizing safely Card.
Authentication module 30, for being not through safety certification, and please in the network received in the terminal authentication state Ask when the specific identifier is included in data, the authentication state of the terminal is set for through safety certification;
In the present embodiment, terminal can push corresponding prompt message in the network residing for access forwarding end to terminal, To prompt the download of user corresponding application software.
Forwarding module 40, for setting the authentication state of the terminal as the network that after through safety certification, will receive Request data is forwarded to corresponding server;
The terminal authentication state for not through safety certification when, forwarding end judges that the network request packet that receives is It is no to include specific identifier, if including the specific identifier in the network request packet received, then it is assumed that the data are by specific Application software is sent, and illustrates that user has turned on or certification software safe to use, then forwards end to set the authentication state of the terminal For through safety certification, for example, can by the IP address of terminal added to authentication state in IP address table through safety certification, During to receive the network request packet of the terminal transmission next time, directly the network request packet received is forwarded to correspondingly Server.
Blocking module 50, for the terminal authentication state for not through safety certification when, and the network received please Ask when not including the specific identifier in data, intercept the network request packet received.
In the terminal authentication state for not through safety certification, and the network request packet received does not include specific mark During knowledge, illustrate that terminal does not open specific application software, then forward end to intercept the network request packet received, now forward End can push prompt message to terminal, and the prompt message may include the download link address of application specific software.
In the present embodiment, to save the flow of terminal, terminal can send checking request when opening to forwarding end, and It is by safety verification that forwarding end, which sets the proofing state of the terminal when receiving checking request, does not forward the checking please Ask.The retransmission method for the terminal network request data that the present embodiment proposes, not merely by terminal installation specifically using soft Part is realized adds specific identifier to the data that terminal is sent, also can be in the specific network address of terminal access, to the net of terminal transmission Specific identifier is added in network request data, when including specific identifier in the network request packet that forwarding termination receives, passes through terminal Checking.
The retransmission method for the terminal network request data that the present embodiment proposes, the application software that can also be applied to businessman push away Extensively, the biography of network data in the network environment that terminal provides, can be just realized only when installing the specific software that businessman specifies It is defeated.
The retransmission unit for the terminal network request data that the present embodiment proposes, the device are receiving the network of terminal transmission During request data, whether the proofing state for first determining whether terminal is by safety verification, is not pass through in the authentication state of terminal Safety certification and the network request packet when containing specific identifier received, the authentication state of terminal is arranged to by recognizing safely Card, and the network request packet received is forwarded to corresponding server, if the authentication state of terminal is not by recognizing safely When the network request packet demonstrate,proved and received does not include specific identifier, the network request packet is intercepted, only allows to pass through safety The network data of the terminal of certification is forwarded to server, to ensure the safety of data transfer.
Further, the system also includes determining module, for the terminal authentication state for through safety certification when, It is determined that receiving the time point of the network request packet, through safety certification state is arranged to the authentication state of the terminal Time point between time interval;The forwarding module 40 be additionally operable to it is determined that time interval be less than prefixed time interval When, the network request packet received is forwarded to corresponding server.
Because user can not possibly be always on or uses specific application software, user may move back after through safety certification Go out application software, default time interval now can be set, user through safety certification after in default time interval, be Save energy consumption, it may not be necessary to carry out safety certification real-time to terminal, be directly forwarded to the network request packet that terminal is sent correspondingly Server;After the arrival of default time interval, forwarding end intercepts the network request packet that terminal is sent, until receiving During the network request packet with specific identifier that terminal is resend, the authentication state of terminal is set for through safety certification, Now user can be realized by operating specific application software or restarting specific application software.
Further, the authentication module 30 is additionally operable to be arranged to through safety certification shape in the authentication state of the terminal It is described when the forwarding end does not receive the network request packet with the specific identifier in prefixed time interval after state The authentication state of the terminal is arranged to not through safety certification state by forwarding end.
After at forwarding end, the authentication state of terminal is arranged to through safety certification, forwarding end detecting real-time terminal is sent Network request packet, if forwarding end not receive the network request packet with the specific identifier in default time interval, Then the forwarding end thinks that terminal is turned off the specific software, then it is not pass through to forward end to set the authentication state of the terminal Safety certification, such as can be by the IP of terminal by being rejected in terminal IP lists through safety certification.
Further, whether the network request packet that the judge module 20 is additionally operable to judge to receive includes specific mark Know;If include the specific identifier, the forwarding end in the network request packet that the forwarding module 40 is additionally operable to receive The network request packet received is forwarded to corresponding server;If the network that the blocking module 50 is additionally operable to receive please Ask and do not include the specific identifier in data, then intercept the network request packet received.
In the present embodiment, the specific identifier be the terminal to forwarding end send network request packet when, it is specific The mark data that software adds in the network request packet.Forwarding end can be by judging in the network request packet that receives Whether specific identifier is included to judge whether terminal opens specific software, only terminal is in the software of access opening feature, forwarding The network request packet received is just forwarded to corresponding server by end so that the process that terminal is transmitted in data network data Middle security performance is more preferable.When not including the specific identifier in the network request packet received, forwarding end will receive After network request packet intercepts, prompt message can be pushed to terminal, so that prompt terminal opens specific software or specific The download address of software.
The retransmission method for the terminal network request data that the present embodiment proposes, the application software that can also be applied to businessman push away Extensively, the biography of network data in the network environment that terminal provides, can be just realized only when installing the specific software that businessman specifies It is defeated.
Further, if the forwarding module 40 is additionally operable to by the safety certification to the terminal, by what is received Network request packet is forwarded to corresponding server.
When the authentication state of terminal is arranged to through safety certification, no matter which kind of the network request packet that terminal is sent is The data of type, the network request packet directly can be forwarded to corresponding server to save overhead.
The preferred embodiments of the present invention are the foregoing is only, are not intended to limit the scope of the invention, every utilization The equivalent structure transformation that description of the invention and accompanying drawing content are made, or directly or indirectly it is used in other related technology necks Domain, it is included within the scope of the present invention.

Claims (8)

  1. A kind of 1. retransmission method of terminal network request data, it is characterised in that including:
    The network request packet for forwarding end receiving terminal to send;
    The terminal authentication state for not through safety certification when, the forwarding end judges that the network request packet that receives is No to include specific identifier, the specific identifier is sent for identifying network request packet by specific application software;
    When the specific identifier is included in the network request packet received, the forwarding end sets the certification shape of the terminal The network request packet received is forwarded to corresponding server for through safety certification by state;
    When not including the specific identifier in the network request packet received, the forwarding end intercepts the network received please Seek data;
    When the terminal authentication state is through safety certification, the forwarding end determines to receive the network request packet At time point, the time interval between the through safety certification time point of state is arranged to the authentication state of the terminal;
    It is determined that time interval be less than prefixed time interval when, it is described forwarding end the network request packet received is forwarded to Corresponding server.
  2. 2. according to the method for claim 1, it is characterised in that the authentication state for setting the terminal is by recognizing safely After the step of demonstrate,proving, and the network request packet received is forwarded into corresponding server, this method also includes:
    In the prefixed time interval that the authentication state of the terminal is arranged to after through safety certification state, the forwarding end is not When receiving the network request packet with the specific identifier, the authentication state of the terminal is arranged to not by the forwarding end Through safety certification state.
  3. 3. according to the method for claim 1, it is characterised in that the network request packet that the forwarding end receiving terminal is sent The step of after, this method also includes:
    Whether the network request packet that the forwarding end judges to receive includes specific identifier;
    If including the specific identifier in the network request packet received, the network request number for forwarding end to receive According to being forwarded to corresponding server;
    If not including the specific identifier in the network request packet received, the network request for forwarding end to receive Data interception.
  4. 4. according to the method for claim 1, it is characterised in that the network request packet that the forwarding end receiving terminal is sent The step of after, this method also includes:
    When the terminal authentication state is through safety certification, the network request packet received is forwarded to by the forwarding end Corresponding server.
  5. A kind of 5. retransmission unit of terminal network request data, it is characterised in that including:
    Receiving module, the network request packet sent for receiving terminal;
    Judge module, for the terminal authentication state for not through safety certification when, the forwarding end judges to receive Whether network request packet includes specific identifier, and the specific identifier is used to identify network request packet by specific application software Send;
    Authentication module, for being not through safety certification, and in the network request packet received in the terminal authentication state In when including the specific identifier, the authentication state of the terminal is set for through safety certification;
    Forwarding module, for setting the authentication state of the terminal as the network request number that after through safety certification, will receive According to being forwarded to corresponding server;
    Blocking module, for the terminal authentication state for not through safety certification when, and the network request packet received In when not including the specific identifier, intercept the network request packet received;
    Determining module, for the terminal authentication state for through safety certification when, it is determined that receiving the network request number According to time point, be arranged to the time interval between the through safety certification time point of state with the authentication state of the terminal; The forwarding module be additionally operable to it is determined that time interval be less than prefixed time interval when, by the network request packet received turn It is sent to corresponding server.
  6. 6. device according to claim 5, it is characterised in that the authentication module is additionally operable to the certification shape in the terminal State is arranged in the prefixed time interval after through safety certification state, does not receive the network request with the specific identifier During data, the authentication state of the terminal is arranged to not through safety certification state.
  7. 7. device according to claim 5, it is characterised in that the network that the judge module is additionally operable to judge to receive please Ask whether data include specific identifier;If comprising described specific in the network request packet that the forwarding module is additionally operable to receive Mark, then it is described to forward end that the network request packet received is forwarded into corresponding server;The blocking module is additionally operable to If not including the specific identifier in the network request packet received, the network request packet received is intercepted.
  8. 8. device according to claim 5, it is characterised in that the forwarding module is additionally operable to, in the terminal authentication shape When state is through safety certification, the network request packet received is forwarded to corresponding server.
CN201410149166.XA 2014-04-14 2014-04-14 The retransmission method and device of terminal network request data Active CN103986691B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410149166.XA CN103986691B (en) 2014-04-14 2014-04-14 The retransmission method and device of terminal network request data

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410149166.XA CN103986691B (en) 2014-04-14 2014-04-14 The retransmission method and device of terminal network request data

Publications (2)

Publication Number Publication Date
CN103986691A CN103986691A (en) 2014-08-13
CN103986691B true CN103986691B (en) 2017-11-21

Family

ID=51278516

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410149166.XA Active CN103986691B (en) 2014-04-14 2014-04-14 The retransmission method and device of terminal network request data

Country Status (1)

Country Link
CN (1) CN103986691B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101655892A (en) * 2009-09-22 2010-02-24 成都市华为赛门铁克科技有限公司 Mobile terminal and access control method
CN101656777A (en) * 2009-09-01 2010-02-24 大唐微电子技术有限公司 Cassette type security authentication module and authentication method for carrying out terminal authentication
CN102801688A (en) * 2011-05-23 2012-11-28 联想(北京)有限公司 Data access method, device and terminal supporting data access
CN103297437A (en) * 2013-06-20 2013-09-11 中国软件与技术服务股份有限公司 Safety server access method for mobile intelligent terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101656777A (en) * 2009-09-01 2010-02-24 大唐微电子技术有限公司 Cassette type security authentication module and authentication method for carrying out terminal authentication
CN101655892A (en) * 2009-09-22 2010-02-24 成都市华为赛门铁克科技有限公司 Mobile terminal and access control method
CN102801688A (en) * 2011-05-23 2012-11-28 联想(北京)有限公司 Data access method, device and terminal supporting data access
CN103297437A (en) * 2013-06-20 2013-09-11 中国软件与技术服务股份有限公司 Safety server access method for mobile intelligent terminal

Also Published As

Publication number Publication date
CN103986691A (en) 2014-08-13

Similar Documents

Publication Publication Date Title
CN104412640B (en) High layer compression is carried out using low layer signaling
US9954737B2 (en) Policy formulating method, policy server, and gateway
KR20090031778A (en) Method and apparatus for executing policy in wireless communication system
JP2019526980A (en) System and method for waking up a station safely and quickly
EP2237587A1 (en) Radio communication system, base station device, gateway device, and radio communication method
RU2012136123A (en) METHOD AND DEVICE FOR PROTECTING WIRELESS RELAY NODES
US9055099B2 (en) Method of preventing TCP-based denial-of-service attacks on mobile devices
CN113366800B (en) Integrity protection with message authentication codes having different lengths
CN102137073B (en) Method and access equipment for preventing imitating internet protocol (IP) address to attack
CN105245695B (en) A kind of method and system improving wechat AirKiss compatibility
CN107370746A (en) Authentication method and system based on application-specific authentication service set identifier
CN103986691B (en) The retransmission method and device of terminal network request data
JP2005309974A (en) Network system, authentication method using network system, authentication program, and recording medium
CN108882235A (en) A kind of network verification method and device
CN101667947B (en) Mobile station, basement station and attack detecting method
CN101827377A (en) False alarm information detection method and user equipment
JP6126062B2 (en) Network device and MAC address authentication method for network device
CN104427497A (en) Handset verification method, handset and handset verification system
WO2014201771A1 (en) Method for releasing wireless link resource and user equipment
EP4181554A1 (en) Traffic control server and method
WO2010078724A1 (en) Local authentication method in mobile communication system
TWI713793B (en) IOT SYSTEM USING IPv6 AND OPERATING METHOD THEREOF
CN116806023A (en) A method and device for business legality verification under heterogeneous network architecture
CN105812416A (en) Method and system for transmitting files between different networks
KR100954348B1 (en) Packet monitoring system and method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20200611

Address after: Nanshan District Xueyuan Road in Shenzhen city of Guangdong province 518000 No. 1001 Nanshan Chi Park building A1 layer

Patentee after: SANGFOR TECHNOLOGIES Inc.

Address before: 518000 Nanshan Science and Technology Pioneering service center, No. 1 Qilin Road, Guangdong, Shenzhen 418, 419,

Patentee before: Shenxin network technology (Shenzhen) Co.,Ltd.

TR01 Transfer of patent right