Method, system and apparatus for improving security level of a terminal when surfing internet

US 9,479,537 B2
Filed: 03/15/2013
Issued: 10/25/2016
Est. Priority Date: 02/23/2011
Status: Active Grant

First Claim

Patent Images

1. A method for improving security level of a terminal when the terminal surfs the Internet, comprising:

receiving, by a network side, characteristic code information of a file reported by the terminal, wherein the characteristic code information of the file is collected by the terminal using a first collecting algorithm;

comparing, by the network side, the characteristic code information reported by the terminal with a characteristic code of a safe file, and comparing the characteristic code information reported by the terminal with a characteristic code of an unsafe file,if compared results conflict with each other, transmitting an indication to the terminal indicating the terminal to collect the characteristic code information of the file again, wherein if the characteristic code information of the file matches both the characteristic code of the safe file and the characteristic code of the unsafe file, the compared results conflict with each other;

otherwise, generating a network security policy, and transmitting a security indication according to the network security policy to the terminal such that the terminal provides a security prompt for the file according to the security indication;

the method further comprising;

the terminal receiving a first website address inputted by a user, displaying locally-stored relevant addresses which are obtained through a fuzzy matching according to the first website address inputted by the user;

comparing the relevant addresses with addresses in a black list and/or white list;

for each of the relevant addresses, displaying a safe icon if the relevant address matches an address in the white list;

wherein the indication transmitted by the network side to the terminal indicates a second collecting algorithm, wherein the terminal collects the characteristic code information of the file using the second collecting algorithm indicated by the network side, wherein the terminal collects the characteristic code of a first part of the file according to the first collecting algorithm and collects the characteristic code of a second part of the file according to the second collecting algorithm, the first part is different from the second part.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system, and apparatus for improving security level of a terminal when it surfs the Internet. The method includes receiving, by a network side, network security information reported by a terminal, generating a network security policy according to the network security information reported by each terminal, and transmitting a security indication to the network security policy to the terminal; providing, by the terminal, a security prompt for network information to be obtained or having been obtained according to the security indication. Various embodiments can improve the security level of the terminal when it surfs the Internet and save resources of the terminal.

7 Citations

10 Claims

1. A method for improving security level of a terminal when the terminal surfs the Internet, comprising:
- receiving, by a network side, characteristic code information of a file reported by the terminal, wherein the characteristic code information of the file is collected by the terminal using a first collecting algorithm;
  
  comparing, by the network side, the characteristic code information reported by the terminal with a characteristic code of a safe file, and comparing the characteristic code information reported by the terminal with a characteristic code of an unsafe file,if compared results conflict with each other, transmitting an indication to the terminal indicating the terminal to collect the characteristic code information of the file again, wherein if the characteristic code information of the file matches both the characteristic code of the safe file and the characteristic code of the unsafe file, the compared results conflict with each other;
  
  otherwise, generating a network security policy, and transmitting a security indication according to the network security policy to the terminal such that the terminal provides a security prompt for the file according to the security indication;
  
  the method further comprising;
  
  the terminal receiving a first website address inputted by a user, displaying locally-stored relevant addresses which are obtained through a fuzzy matching according to the first website address inputted by the user;
  
  comparing the relevant addresses with addresses in a black list and/or white list;
  
  for each of the relevant addresses, displaying a safe icon if the relevant address matches an address in the white list;
  
  wherein the indication transmitted by the network side to the terminal indicates a second collecting algorithm, wherein the terminal collects the characteristic code information of the file using the second collecting algorithm indicated by the network side, wherein the terminal collects the characteristic code of a first part of the file according to the first collecting algorithm and collects the characteristic code of a second part of the file according to the second collecting algorithm, the first part is different from the second part.
- View Dependent Claims (2)
- - 2. The method of claim 1, further comprising:
    - the terminal transmitting a second website address to be checked to the network side in real-time, the network side checking the second website address according to the network security policy and returning the security indication to the terminal according to a checked result;
      
      the second website address to be checked comprises;
      
      a website address of a link in a webpage currently browsed by the terminal.

3. A system for improving security level of a terminal when the terminal surfs the Internet, comprising:
- a security server and a hardware terminal;
  
  the security server is adapted to receive characteristic code information of a file reported by the hardware terminal, wherein the characteristic code information of the file is collected by the hardware terminal using a first collecting algorithm, compare the characteristic code information reported by the hardware terminal with a characteristic code of a safe file, and compare the characteristic code information reported by the hardware terminal with a characteristic code of an unsafe file, if compared results conflict with each other, transmit an indication to the hardware terminal indicating the hardware terminal to collect the characteristic code information of the file again;
  
  otherwise, generate a network security policy, and transmit a security indication to the hardware terminal according to the network security policy, wherein if the characteristic code information of the file matches both the characteristic code of the safe file and the characteristic code of the unsafe file, the compared results conflict with each other; and
  
  the hardware terminal is adapted to receive the security indication transmitted by the security server, provide a security prompt for the file according to the security indication;
  
  the hardware terminal is further to receive a first website address inputted by a user, display locally-stored relevant addresses which are obtained through a fuzzy matching according to the first website address inputted by the user;
  
  compare the relevant addresses with addresses in a black list and/or white list; and
  
  for each of the relevant addresses, display a safe icon if the relevant address matches an address in the white list;
  
  wherein the indication transmitted by the security server to the hardware terminal indicates a second collecting algorithm, wherein the hardware terminal collects the characteristic code information of the file using the second collecting algorithm indicated by the security server, wherein the hardware terminal collects the characteristic code of a first part of the file according to the first collecting algorithm and collects the characteristic code of a second part of the file according to the second collecting algorithm, the first part is different from the second part.
- View Dependent Claims (4, 5, 6)
- - 4. The system of claim 3, wherein the hardware terminal comprises a plug-in platform, the plug-in platform comprises an interface for installing a network security plug-in;
    - the network security plug-in is adapted to report the characteristic code information to the security server, and provide the security prompt for the file according to the security indication returned by the security server.
  - 5. The system of claim 4, wherein the hardware terminal comprises a processor and a memory;
    - wherein a browsing module is stored in the memory and executable by the processor;
      
      the browsing module is adapted to receive the first website address and browse a webpage;
      
      the network security plug-in is adapted to obtain the black list and/or white list from the security server and store the black list and/or white list, compare the first website address received by the browsing module and/or a second website address of a link in a currently browsed webpage with security information of the black list and/or white list, and display the security prompt according to a compared result;
      
      the security server comprises a first module, adapted to generate the black list and/or white list.
  - 6. The system of claim 5, wherein the network security plug-in further comprises a module, adapted to transmit, if the second website address to be checked does not match the security information of the black list and/or white list, the second website address to be checked to the security server, and provide the security prompt for the file according to a checked result returned by the security server;
    - the security server comprises a second module, adapted to check the second website address to be checked according to the network security policy, and transmit the checked result to the network security plug-in.

7. A terminal, comprising:
- a processor and a memory;
  
  wherein one or more program modules stored in the memory and to be executed by the processor, the one or more program modules comprise;
  
  a downloading module, a reporting module and a security prompting module;
  
  whereinthe downloading module is adapted to download a file;
  
  the reporting module is adapted to obtain characteristic code information of the file downloaded by the downloading module using a first collecting algorithm, and report the characteristic code information of the file to a security server, such that the security server compares the characteristic code information reported by the reporting module with a characteristic code of a safe file, and compares the characteristic code information reported by the reporting module with a characteristic code of an unsafe file, if compared results conflict with each other, the security server transmits an indication to the terminal indicating the terminal to collect the characteristic code information of the file again, and generate a network security policy and transmits a security indication to the hardware terminal according to the network security policy if otherwise, wherein if the characteristic code information of the file matches both the characteristic code of the safe file and the characteristic code of the unsafe file, the compared results conflict with each other; and
  
  the security prompting module is adapted to receive the security indication returned by the security server, and provide a security prompt for the file according to the security indication;
  
  wherein the security prompting module is further adapted to receive a first website address inputted by a user, display locally-stored relevant addresses which are obtained through a fuzzy matching according to the first website address inputted by the user, compare the relevant addresses with addresses in a black list and/or white list; and
  
  for each of the relevant addresses, display a safe icon if the relevant address matches an address in the white list;
  
  wherein the indication transmitted by the network side to the terminal indicates a second collecting algorithm, wherein the terminal collects the characteristic code information of the file using the second collecting algorithm indicated by the network side, wherein the terminal collects the characteristic code of a first part of the file according to the first collecting algorithm and collects the characteristic code of a second part of the file according to the second collecting algorithm, the first part is different from the second part.
- View Dependent Claims (8, 9, 10)
- - 8. The terminal of claim 7, wherein the terminal comprises a plug-in platform, the plug-in platform comprises an interface for installing a network security plug-in, the network security plug-in comprises the downloading module, the reporting module and the security prompting module.
  - 9. The terminal of claim 8, wherein the security prompting module is adapted to obtain the black list and/or white list from the security server and store the black list and/or white list, compare the first website address received by the terminal and/or a second website address of a link in a currently browsed webpage with security information in the black list and/or white list, and display the security prompt according to a compared result.
  - 10. The terminal of claim 9, wherein the security prompting module further comprises a module, adapted to transmit, if the second website address to be checked does not match the security information of the black list and/or white list, the second website address to be checked to the security server, and provide the security prompt for the network information to be obtained or having been obtained according to a check result returned by the security server.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Tencent Technology Company Limited (Tencent Holdings Limited)
Original Assignee
Tencent Technology Company Limited (Tencent Holdings Limited)
Inventors
Qi, Fei, Song, Dan, Zhao, Feng
Primary Examiner(s)
POTRATZ, DANIEL B

Application Number

US13/832,596
Publication Number

US 20130212639A1
Time in Patent Office

1,320 Days
Field of Search

726/1, 726 22- 24, 726/27, 726/30, 713/187, 713/188
US Class Current

1/1
CPC Class Codes

G06F 21/567   using dedicated hardware

G06F 21/577   Assessing vulnerabilities a...

G06F 2221/2115   Third party

G06F 2221/2119   Authenticating web pages, e...

H04L 63/101   Access control lists [ACL]

H04L 63/14   for detecting or protecting...

H04L 63/1483   service impersonation, e.g....

H04L 63/20   for managing network securi...

H04L 67/02   based on web technology, e....

H04W 12/12   Detection or prevention of ...

Method, system and apparatus for improving security level of a terminal when surfing internet

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

7 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Method, system and apparatus for improving security level of a terminal when surfing internet

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

7 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links