US 11,956,128 B2
Test method and device for simulating customer series deployment environment
Wanyan Shao, Hangzhou (CN); Yuan Fan, Hangzhou (CN); and Bo Liu, Hangzhou (CN)
Assigned to DBAPPSECURITY CO., LTD, Hangzhou (CN)
Appl. No. 18/025,874
Filed by DBAPPSECURITY CO., LTD, Hangzhou (CN)
PCT Filed Apr. 28, 2021, PCT No. PCT/CN2021/090407
§ 371(c)(1), (2) Date Mar. 10, 2023,
PCT Pub. No. WO2022/057265, PCT Pub. Date Mar. 24, 2022.
Claims priority of application No. 202010972362.2 (CN), filed on Sep. 16, 2020.
Prior Publication US 2023/0353459 A1, Nov. 2, 2023
Int. Cl. H04L 41/14 (2022.01); H04L 67/1095 (2022.01)
CPC H04L 41/145 (2013.01) [H04L 67/1095 (2013.01)] 13 Claims
OG exemplary drawing
 
1. A test method for simulating a customer series deployment environment, comprising:
obtaining traffic data of an on-site protected host;
obtaining session data between the on-site protected host and a server on the basis of the traffic data, and extracting application layer data from the session data; and
transmitting and receiving the application layer data in a local test environment to carry out a simulation test;
the obtaining session data between the on-site protected host and the server on the basis of the traffic data, and extracting application layer data from the session data further comprises:
filtering the traffic data to obtain session packets between the on-site protected host and the server;
determining at least one complete TCP session from the session packets; and
extracting the application layer data from the TCP session;
the extracting the application layer data from the TCP session further comprises:
searching for a data sender IP, a data sender port, a data receiver IP, and a data receiver port of an application layer at a network layer, according to a communication protocol format between the on-site protected host and the server;
obtaining data content of the TCP session at the application layer according to the data sender IP, the data sender port, the data receiver IP, and the data receiver port which have been searched; and
marking a distribution sequence of the data content of the TCP session at the application layer to obtain the application layer data;
the transmitting and receiving the application layer data in the local test environment to carry out the simulation test further comprises:
distributing the application layer data to a client end and a server end in the local test environment in sequence according to the distribution sequence;
distributing the application layer data to the server end for simulation when the data sender port in the local test environment coincides with the port of the protected host; and
distributing the application layer data to the client end for simulation when the data receiver port in the local test environment coincides with the port of the protected host.