公开(公告)号：US20140331306A1

公开(公告)日：2014-11-06

申请号：US14333788

申请日：2014-07-17

Applicant: Huawei Technologies Co., Ltd.

Inventor： Jiwei Zhao ,  Wu Jiang ,  Shiguang Li ,  Zhigang Chen

IPC: H04L29/06

CPC classification number: H04L63/1408 ,  H04L63/02 ,  H04L63/1416 ,  H04L63/145

Abstract: An anti-virus method which includes receiving, by a first thread, data packets belonging to the same data stream, and sequentially buffering payload data of data packets bearing file content among the received data packets into a first queue, reading, by a second thread, payload data of at least one data packet from a start position of the first queue, and determining whether payload data in the first queue is file content of a compressed file. If yes, identifying a compressed format of the compressed file, querying a decompression algorithm from a mapping between a compressed format and a decompression algorithm, by using the queried decompression algorithm, reading payload data of data packets one by one from the first queue, and performing decompression processing separately on payload data that is read each time, and performing anti-virus detection separately on file content that is obtained.

Abstract translation: 一种防病毒方法，包括由第一线程接收属于相同数据流的数据分组，并且将接收到的数据分组中承载文件内容的数据分组的有效载荷数据顺序地缓存到第一队列中，由第二线程 来自第一队列的开始位置的至少一个数据分组的有效载荷数据，以及确定第一队列中的有效载荷数据是否是压缩文件的文件内容。 如果是，则通过使用查询解压缩算法，从第一队列逐个读取数据包的有效载荷数据，识别压缩文件的压缩格式，从压缩格式和解压缩算法之间的映射查询解压缩算法，以及 对每次读取的有效载荷数据分别进行解压缩处理，并对获得的文件内容分别进行防病毒检测。