Device and method for checking properties of resources

Abstract

Device, computer program product and method for checking properties of resources, wherein a checking device for checking properties of resources of a web server includes a calculation unit for calculating an identifier identifying a particular resource using the particular resource, a detection unit for detecting a license requirement for the particular resource using the calculated identifier, and a determination unit for determining an existing license for the web server in the case of a license requirement detected for the particular resource using the calculated identifier, such that unauthorized posting of a particular resource to a web server can be easily detected and prevented.

Claims

1. A checking device for checking properties of files of a web server comprising an image file, said properties of the files being checked within a programmable logic controller (PLC) to prevent unauthorized access of a client to the web server, comprising: a calculator for calculating an identifier identifying a particular file of the web server comprising the image file utilizing the particular file comprising the image file; a detector for detecting, within the PLC, a license requirement for the particular file of the web server comprising the image file utilizing the calculated identifier; and a license determiner for determining, within the PLC, an existing license for the web server in cases of a license requirement detected for the particular file of the web server comprising the image file utilizing the calculated identifier; wherein access to the web server associated with the PLC is prevented when a license requirement has been detected and the license for the web server associated with the PLC could not be determined.

2. The checking device as claimed in claim 1, wherein the file is further configured as an executable file.

3. The checking device as claimed in claim 1, wherein the calculator is configured to calculate the identifier identifying the particular file such that the identifying identifier is formed as a hash value.

4. The checking device as claimed in claim 2, wherein the calculator is configured to calculate the identifier identifying the particular file such that the identifying identifier is formed as a hash value.

5. The checking device as claimed in claim 3, wherein the calculator is configured to calculate the hash value as the identifier identifying the particular file utilizing the particular resource.

6. The checking device as claimed in claim 3, wherein the calculator is configured to perform the calculation of the identifier identifying the particular file via a distance method, in which a distance between hash values of files as calculated by the calculator is calculated.

7. The checking device as claimed in claim 5, wherein the calculator is configured to perform the calculation of the identifier identifying the particular file via a distance method, in which a distance between hash values of files as calculated by the calculator is calculated.

8. The checking device as claimed in claim 1, wherein the checker is configured to check properties of files of the web server at different times; and wherein at least one of (i) the check occurs upon an access request at one time, (ii) the check occurs at a defined time at a further time, (iii) the check occurs upon a device startup at the further time and (iv) the check occurs triggered by an event at the further time.

9. The checking device as claimed in claim 1, wherein the checker is configured to perform the check if the request to access the particular file is made by at least one of (i) a further web server and (ii) a client.

10. The checking device as claimed in claim 9, wherein the checker is configured to at least one of (i) perform the check if a request is made by at least one of (i) the further web server and the client, (ii) post the particular file on the web server and (iii) store the particular file on the web server.

11. The checking device as claimed in claim 1, wherein the license determiner is configured to trigger a first action of the web server if an existing license is determined and to trigger a second action of the web server if a non-existing license is determined.

12. A web server having the checking device as claimed in claim 1.

13. The web server as claimed in claim 12, wherein the license determiner is configured to trigger a first action of the web server if an existing license is determined and to trigger a second action of the web server if a non-existing license is determined; and wherein the web server is configured to perform the first action comprising at least one of (i) granting permission to access the particular file, (ii) posting the particular file and (iii) storing the particular file.

14. The web server as claimed in claim 13, wherein the web server is configured to perform the second action; and wherein the second action comprises at least one of (i) not granting permission to access the particular file, (ii) deleting the particular resource and (iii) blocking the particular file.

15. A system having the checking device as claimed in claim 1 and having a web server external to the checking device.

16. A method for checking properties of files of a web server comprising an image file, said properties of the files being checked within a programmable logic controller (PLC) to prevent unauthorized access of a client to the web server, the method comprising: calculating, within the PLC, an identifier identifying a particular file of the web server comprising the image file utilizing the particular file comprising the image file; detecting, within the PLC, a license requirement for the particular file of the web server comprising the image file utilizing the calculated identifier; determining, within the PLC, an existing license for the web server within the PLC in cases of a license requirement detected for the particular file of the web server comprising the image file utilizing the calculated identifier; and preventing access to the web server associated with the PLC when a license requirement has been detected and the license for the web server associated with the PLC could not be determined.

17. A non-transitory computer-readable medium encoded with a computer program having program code instructions which, when executed by a programmable logic controller (PLC), causes checking of properties of files of a web server comprising an image file, said properties of the file being checked within the PLC to prevent unauthorized access of a client to the web server, the computer program comprising: program code for calculating, within the PLC, an identifier identifying a particular file of the web server comprising the image file utilizing the particular file comprising the image file; program code for detecting, within the PLC, a license requirement for the particular file of the web server comprising the image file utilizing the calculated identifier; program code for determining, within the PLC, an existing license for the web server within the PLC in the case of a license requirement detected for the particular file of the web server comprising the image file utilizing the calculated identifier; and program code for preventing access to the web server associated with the PLC when a license requirement has been detected and the license for the web server PLC could not be determined.

Description

BRIEF DESCRIPTION OF THE DRAWINGS

(1) Further advantageous refinements and aspects of the invention are the subject matter of the dependent claims and of the exemplary embodiments, described below, of the invention. The invention is explained in more detail below on the basis of preferred embodiments with reference to the attached figures in which:

(2) FIG. 1 shows a schematic block diagram of one exemplary embodiment of a checking device for checking properties of resources in accordance with the invention;

(3) FIG. 2 shows a schematic block diagram of one exemplary embodiment of a web server having a checking device in accordance with the invention;

(4) FIG. 3 shows a schematic block diagram of one exemplary embodiment of a system having a checking device and a web server in accordance with the invention; and

(5) FIG. 4 shows a schematic flowchart of one exemplary embodiment of a method for checking properties of resources in accordance with the invention.

DETAILED DESCRIPTION OF THE EXEMPLARY EMBODIMENTS

(6) In the figures, identical or functionally identical elements have been provided with the same reference signs, unless indicated otherwise.

(7) FIG. 1 shows a schematic block diagram of one exemplary embodiment of a checking device 10 for checking properties of resources of a web server 1.

(8) The checking device 10 in FIG. 1 comprises a calculation unit 11, a detection unit 12 and a determination unit 13.

(9) The calculation unit 11 is configured so as to calculate an identifier identifying a particular resource using the particular resource.

(10) The detection unit 12 is configured so as to detect a license requirement for the particular resource using the calculated identifier.

(11) The determination unit 13 is furthermore configured so as to determine an existing license for the web server 1 in the case of a license requirement detected for the particular resource using the calculated identifier. Here, the particular resource preferably comprises a file, where the file is configured as an executable file, as an information file and/or as an image file.

(12) The calculation unit 11 is furthermore configured so as to calculate the identifier identifying the particular resource such that the identifying identifier is formed as a hash value.

(13) The calculation unit 11 is furthermore configured so as to calculate the hash value as the identifier identifying the particular resource using the particular resource.

(14) The calculation unit 11 is likewise configured so as to calculate the calculation of the identifier identifying the particular resource via a distance method, in which a distance between hash values of resources as calculated by the calculation unit 11 is calculated.

(15) The checking device 10 is furthermore configured so as to check the properties of resources of the web server 1 at different times, where, at one time, the check occurs upon an access request and/or, at a further time, the check occurs at a defined time and/or, at a further time, the check occurs upon a device startup and/or, at a further time, the check occurs triggered by an event.

(16) The checking device 10 is likewise configured so as to perform the check if the request to access the particular resource is made by a further web server and/or by a client.

(17) The checking device 10 is additionally configured so as to perform the check if a request is made by the further web server and/or by the client to post and/or to store the particular resource on the web server 1.

(18) The determination unit 13 is furthermore configured so as to trigger a first action of the web server 1 if an existing license is determined and to trigger a second action of the web server 1 if a non-existing license is determined.

(19) FIG. 2 shows a schematic block diagram of one exemplary embodiment of a web server 1 having a checking device 10. The web server 1 in this case comprises the checking device 10 from FIG. 1.

(20) The determination unit 13 is in this case configured so as to trigger a first action of the web server 1 if an existing license is determined and to trigger a second action of the web server 1 if a non-existing license is determined, where the web server 1 is configured so as to perform the first action, and where the first action comprises granting permission to access the particular resource, posting and/or storing the particular resource.

(21) The web server 1 is additionally configured so as to perform the second action, where the second action comprises not granting permission to access the particular resource, deleting the particular resource and/or blocking the particular resource.

(22) FIG. 3 shows a schematic block diagram of one exemplary embodiment of a system 2 having a checking device 10 of FIG. 1 and a web server 1.

(23) The system 2 comprises the web server 1, a network 3 and the checking device 10. The web server 1 and the checking device 10 are connected via the network 3. Data can be exchanged between the web server 1 and the checking device 10 via the network 3. The web server 1 of the system 2 is external to the checking device 10.

(24) FIG. 4 shows a schematic flowchart of one exemplary embodiment of a method for checking properties of resources of a web server 1.

(25) The exemplary embodiment of FIG. 4 comprises the method steps S1, S2 and S3.

(26) In step S1, an identifier identifying a particular resource is calculated using the particular resource.

(27) In step S2, a license requirement for the particular resource is detected using the calculated identifier.

(28) In step S3, an existing license for the web server 1 in the case of a license requirement detected for the particular resource is furthermore determined using the calculated identifier.

(29) The calculation unit 11, the detection unit 12 and the determination unit 13 from FIG. 1 are particularly configured so as to execute the method steps S1, S2 and S3 according to FIG. 4.

(30) Thus, while there have been shown, described and pointed out fundamental novel features of the invention as applied to a preferred embodiment thereof, it will be understood that various omissions and substitutions and changes in the form and details of the devices illustrated, and in their operation, may be made by those skilled in the art without departing from the spirit of the invention. For example, it is expressly intended that all combinations of those elements and/or method steps which perform substantially the same function in substantially the same way to achieve the same results are within the scope of the invention. Moreover, it should be recognized that structures and/or elements shown and/or described in connection with any disclosed form or embodiment of the invention may be incorporated in any other disclosed or described or suggested form or embodiment as a general matter of design choice. It is the intention, therefore, to be limited only as indicated by the scope of the claims appended hereto

Device and method for checking properties of resources

Assignee

Inventors

Cpc classification

Classification Explorer

G06F21/10

PHYSICS

Classification Explorer

H04L2463/101

ELECTRICITY

Classification Explorer

G06F21/105

PHYSICS

Classification Explorer

H04L63/108

ELECTRICITY

Classification Explorer

H04L63/10

ELECTRICITY

Classification Explorer

G06F2221/0757

PHYSICS

Classification Explorer

H04L63/20

ELECTRICITY

Classification Explorer

H04L9/0643

ELECTRICITY

Classification Explorer

G06F21/121

PHYSICS

Classification Explorer

H04L63/1408

ELECTRICITY

Classification Explorer

G06F2221/0773

PHYSICS

International classification

Classification Explorer

H04L9/40

ELECTRICITY

Classification Explorer

G06F21/10

PHYSICS

Classification Explorer

H04L9/06

ELECTRICITY

Abstract

Claims

Description