CN110650143A - Integrated platform multiple authorization authentication method and system integrated platform - Google Patents
Integrated platform multiple authorization authentication method and system integrated platform Download PDFInfo
- Publication number
- CN110650143A CN110650143A CN201910914202.XA CN201910914202A CN110650143A CN 110650143 A CN110650143 A CN 110650143A CN 201910914202 A CN201910914202 A CN 201910914202A CN 110650143 A CN110650143 A CN 110650143A
- Authority
- CN
- China
- Prior art keywords
- authorization
- platform
- control module
- user account
- platform control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0861—Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/108—Network architectures or network communication protocols for network security for controlling access to devices or network resources when the policy decisions are valid for a limited amount of time
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- Biomedical Technology (AREA)
- General Health & Medical Sciences (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention discloses an integrated platform multiple authorization authentication method and a system integrated platform, wherein the method is applied to the system integrated platform and provides a permission management list, the permission management list comprises a plurality of user accounts, and each user account corresponds to the operation permission of a plurality of platform control modules; each user account is used for the user to carry out identity authentication and obtain the operation authority of the system integration platform after the authentication is passed; each user account comprises the combination of at least two of user name and password information, face information and voiceprint information. The integrated platform multiple authorization authentication method and the system integrated platform have the advantages that the authentication authority is convenient and simple to operate, and the defects that the authentication authorization of the operation authority of the platform control module is unsafe and inconvenient in the prior art are overcome.
Description
Technical Field
The invention belongs to the field of voice recognition, and particularly relates to an intelligent voice interaction operation platform and an interaction method.
Background
The intelligent system integration platform integrates various security systems such as monitoring, alarming and the like, and is a platform-based extension for the safety and operability of the security system, so that the safety of the platform is particularly important. The security verification of the traditional intelligent system integration platform is generally realized through hierarchical authorization of login accounts, the defect is obvious, anyone can obtain the operation authority of the whole platform as long as the account password is stolen, and once the account password is stolen, the security consequence of the whole platform is disastrous.
Disclosure of Invention
The purpose of the invention is as follows: aiming at the defects in the prior art, the invention provides an integrated platform multiple authorization authentication method and a system integrated platform, the authentication authority is convenient and simple to operate, and the defects that the authentication authorization of the operation authority of a platform control module is unsafe and inconvenient in the prior art are overcome.
The technical scheme is as follows: the invention relates to an integrated platform multiple authorization authentication method, which is applied to a system integrated platform and provides an authority management list, wherein the authority management list comprises a plurality of user accounts, and each user account corresponds to the operation authority of a plurality of platform control modules; each user account is used for the user to carry out identity authentication and obtain the operation authority of the system integration platform after the authentication is passed; each user account comprises the combination of at least two of user name and password information, face information and voiceprint information;
the authorization authentication method for the authority of the platform control module comprises the following steps:
step S1, the user starts the platform control module in the system integration platform with any user account, and determines whether the user account has the operation right corresponding to the platform control module, if yes, the platform control module executes the operation;
step S2, providing an authentication interface, wherein at least two authorization ways corresponding to the operation authority are provided in the authentication interface, and the user can select the authorization way in the authentication interface;
and step S3, obtaining authorization information corresponding to the platform control module according to the selected authorization path, and granting the operation authority corresponding to the platform control module according to the authorization information.
Further, the authority management list further includes a main user account, and before step S1, the operation authority corresponding to the platform control module is set for each user account through the main user account.
Further, in step S3, the authorization path includes:
a local authorization path, which grants the operation authority of the platform control module corresponding to the user account after the user inputs the authorization information corresponding to the platform control module through the user account; the authorization information is user name and password information, face information and voiceprint information corresponding to the user account.
Further, in the step S3, after the local authorization path is selected, at least two authorization manners corresponding to the platform control module are provided, so that the user account obtains the operation right of the platform control module corresponding to the authorization manner after the user account user inputs the authorization information.
Further, in step S3, the authorization path includes:
and the network path is used for sending an authorization request to a remote management terminal through the system integration platform, the remote management terminal correspondingly returns the authorization information to the system integration platform according to the request, and the system integration platform grants the operation permission corresponding to the platform control module to the user account according to the authorization information.
Further, in step S3, the remote management terminal provides at least two authorization manners corresponding to the platform control module according to the request, and returns the authorization manner and the authorization information to the system integration platform, so that the user account obtains the operation permission of the platform control module corresponding to the authorization manner.
Further, the authorization method includes: and the single authorization mode is used for granting the operation authority of the platform control module corresponding to the user account once.
Further, the authorization method includes: and the time period authorization mode is used for granting the operation authority of the user account corresponding to the platform control module in a preset time.
The invention also discloses a system integration platform and a multiple authorization authentication method applying the integration platform.
Has the advantages that: the integrated platform multiple authorization authentication method and the system integrated platform have the advantages that the authentication authority is convenient and simple to operate, and the defects that the authentication authorization of the operation authority of the platform control module is unsafe and inconvenient in the prior art are overcome.
Detailed Description
The invention will be further illustrated with reference to specific examples:
example 1
The invention discloses an integrated platform multiple authorization authentication method, which is applied to a system integrated platform and provides an authority management list, wherein the authority management list comprises a plurality of user accounts, and each user account corresponds to the operation authority of a plurality of platform control modules; each user account is used for the user to carry out identity authentication and obtain the operation authority of the system integration platform after the authentication is passed; each user account comprises the combination of at least two of user name and password information, face information and voiceprint information, and the safety is improved by adopting at least two kinds of user account information.
The authorization authentication method for the authority of the platform control module comprises the following steps:
step S1, the user starts the platform control module in the system integration platform with any user account, and determines whether the user account has the operation right corresponding to the platform control module, if yes, the platform control module executes the operation;
step S2, providing an authentication interface, wherein at least two authorization ways corresponding to the operation authority are provided in the authentication interface, and the user can select the authorization way in the authentication interface;
and step S3, obtaining authorization information corresponding to the platform control module according to the selected authorization path, and granting the operation authority corresponding to the platform control module according to the authorization information.
In the technical scheme, a user obtains the operation authority of the system integration platform through a user account to enter the system integration platform to start program application, wherein each platform control module comprises a unique identity, after the platform control module is started, the corresponding platform control module is searched in an authority management list according to the obtained unique identity, whether the current user account has the operation authority of the platform control module is judged, if the user account has the operation authority of the platform control module, the platform control module can be directly operated, wherein when the platform control module is called to start startActivity, the authority operation problem (execution and effective access time) of the current user account to the platform control module is judged through AppOpsservice class, and the calling execution of a stack waiting program which adds the related platform control module into ActivityThread class is checked, if the user account currently used by the user does not have the operation authority of the platform control module, the user can select the platform control module by displaying an authentication interface and providing at least two authorization ways for obtaining the platform control module, and after the user selects one authorization way, the authorization information of the corresponding platform control module is obtained according to the selected authorization way, and then the operation authority corresponding to the current application program of the user account currently used by the user is granted according to the authorization information.
In a preferred embodiment, the authority management list further includes a main user account, and before step S1, the operation authority of the corresponding platform control module is set for each user account through the main user account.
In the technical scheme, each platform control module comprises a unique identity identifier in an authority management list, wherein a main user account is represented as a user account with the highest authority, a user can click a setting function of the user account to be managed, a detailed list of executable platform control modules is obtained through a manager application class, and an AppOpsManager class and a SystemUI interactively manage the authority setting of each Item. And the operation authority can be set for the platform control module corresponding to each user account in the authority management list through the main user account so as to limit the operation of the user account on the platform control module.
The operation authority is set for the platform control module in the user account, so that private data can be prevented from being acquired by other users at will, the safety of the system integration platform is improved, and users in certain age groups can be limited purposefully to acquire the platform control module which is not suitable for the users to access the platform in the system integration platform.
In a preferred embodiment, in step S3, the authorization path includes:
a local authorization path, which grants the operation authority of the platform control module corresponding to the user account after the user inputs the authorization information corresponding to the platform control module through the user account; the authorization information is user name and password information, face information and voiceprint information corresponding to the user account.
In the above technical solution, the system integration platform provides a storage module for storing preset standard authorization information, and when the user selects a local authorization path in the authentication interface, an operation interface is provided for the user to input authorization information, and compare the authorization information with the standard verification information, and if the comparison result is consistent, the user is granted an operation right of the user account currently used by the user corresponding to the platform control module.
In a preferred embodiment, in step S3, the authorization path includes:
and the network approach is used for sending an authorization request to a remote management terminal through the system integration platform, the remote management terminal correspondingly returns authorization information to the system integration platform according to the request, and the system integration platform grants the operation authority of the platform control module corresponding to the user account according to the authorization information.
In the above technical solution, the system integration platform provides a storage module for storing preset standard authorization information, when the system integration platform sends an authorization request to the remote management terminal, where the authorization request includes information of a platform control module that needs to acquire an operation authority, the remote management terminal returns authorization information corresponding to the request after receiving the request sent by the system integration platform, the system integration platform receives the corresponding authorization information, and if the comparison result of the authorization information and the standard authorization information is consistent, then grants the user account currently used corresponding to the operation authority of the platform control module. The remote management terminal can be a computer or a mobile terminal controlled by a user of a main user account associated with the system integration platform.
In a preferred embodiment, in step S3, after the local authorization path is selected, at least two authorization manners corresponding to the platform control modules are provided, so that the user account obtains the operation authority of the platform control module corresponding to the authorization manner after the user inputs the authorization information.
In a preferred embodiment, in step S3, the remote management terminal provides at least two authorization manners corresponding to the platform control module according to the request, and returns the authorization manner and the authorization information to the system integration platform, so that the user account obtains the operation authority of the platform control module corresponding to the authorization manner.
In a preferred embodiment, the authorization means comprises:
and the single authorization mode is used for granting the operation authority of the platform control module corresponding to the primary user account.
In a preferred embodiment, the authorization means comprises:
and the time period authorization mode is used for granting the operation authority of the corresponding platform control module to the user account within the preset time.
In a specific embodiment, the authorization manner may include two manners, that is, a single authorization manner and a time period authorization manner, and is described below as a local authorization manner, after the user selects the local authorization manner on the authentication interface, the single authorization manner and the time period authorization manner appear on the operation interface, the user inputs authorization information after selecting one of the authorization manners, if the authorization is selected, the platform control module correspondingly acquires the current operation permission after the authorization information passes verification, and if the platform control module quits in the use process, the current user account loses the operation permission corresponding to the platform control module, and if the platform control module is to be operated, the operation permission of the platform control module needs to be acquired again;
if the user selects a time period authorization mode, after the user inputs authorization information and passes verification, the user has the operation authority of the platform control module within a preset time, if the operation authority exceeds the preset time, the current user account loses the operation authority corresponding to the application program, and if the platform control module is to be operated, the operation authority of the platform control module needs to be acquired again;
the authorization mode in the network authorization path is distributed through a remote management terminal, and is different from the user self-selection in the local authorization.
The technical scheme of the invention also comprises a system integration platform, wherein the platform control module authority authentication method is applied.
Although the present invention has been described with reference to a preferred embodiment, it should be understood that various changes, substitutions and alterations can be made herein without departing from the spirit and scope of the invention as defined by the appended claims.
Claims (9)
1. An integrated platform multiple authorization authentication method is characterized in that: the method is applied to a system integration platform and provides an authority management list, wherein the authority management list comprises a plurality of user accounts, and each user account corresponds to the operation authority of a plurality of platform control modules; each user account is used for the user to carry out identity authentication and obtain the operation authority of the system integration platform after the authentication is passed; each user account comprises the combination of at least two of user name and password information, face information and voiceprint information;
the authorization authentication method for the authority of the platform control module comprises the following steps:
step S1, the user starts the platform control module in the system integration platform with any user account, and determines whether the user account has the operation right corresponding to the platform control module, if yes, the platform control module executes the operation;
step S2, providing an authentication interface, wherein at least two authorization ways corresponding to the operation authority are provided in the authentication interface, and the user can select the authorization way in the authentication interface;
and step S3, obtaining authorization information corresponding to the platform control module according to the selected authorization path, and granting the operation authority corresponding to the platform control module according to the authorization information.
2. The integrated platform multiple authorization authentication method according to claim 1, wherein: the authority management list further includes a main user account, and before step S1, the operation authority corresponding to the platform control module is set for each user account through the main user account.
3. The integrated platform multiple authorization authentication method according to claim 1, wherein: in step S3, the authorization path includes:
a local authorization path, which grants the operation authority of the platform control module corresponding to the user account after the user inputs the authorization information corresponding to the platform control module through the user account; the authorization information is user name and password information, face information and voiceprint information corresponding to the user account.
4. The integrated platform multiple authorization authentication method according to claim 3, wherein: in step S3, after the local authorization path is selected, at least two authorization manners corresponding to the platform control module are provided, so that the user account obtains the operation right of the platform control module corresponding to the authorization manner after the user of the user account inputs the authorization information.
5. The integrated platform multiple authorization authentication method according to claim 1, wherein: in step S3, the authorization path includes:
and the network path is used for sending an authorization request to a remote management terminal through the system integration platform, the remote management terminal correspondingly returns the authorization information to the system integration platform according to the request, and the system integration platform grants the operation permission corresponding to the platform control module to the user account according to the authorization information.
6. The integrated platform multiple authorization authentication method according to claim 5, wherein: in step S3, the remote management terminal provides at least two authorization manners corresponding to the platform control module according to the request, and returns the authorization manner and the authorization information to the system integration platform, so that the user account obtains the operation permission of the platform control module corresponding to the authorization manner.
7. The integrated platform multiple authorization authentication method according to claim 4 or 6, wherein: the authorization mode comprises the following steps: and the single authorization mode is used for granting the operation authority of the platform control module corresponding to the user account once.
8. The integrated platform multiple authorization authentication method according to claim 4 or 6, wherein: the authorization mode comprises the following steps: and the time period authorization mode is used for granting the operation authority of the user account corresponding to the platform control module in a preset time.
9. A system integration platform is characterized in that: the integrated platform multiple authorization authentication method according to any one of claims 1 to 8.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910914202.XA CN110650143A (en) | 2019-09-26 | 2019-09-26 | Integrated platform multiple authorization authentication method and system integrated platform |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910914202.XA CN110650143A (en) | 2019-09-26 | 2019-09-26 | Integrated platform multiple authorization authentication method and system integrated platform |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN110650143A true CN110650143A (en) | 2020-01-03 |
Family
ID=69011209
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910914202.XA Pending CN110650143A (en) | 2019-09-26 | 2019-09-26 | Integrated platform multiple authorization authentication method and system integrated platform |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110650143A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101262474A (en) * | 2008-04-22 | 2008-09-10 | 武汉理工大学 | A cross-domain access control system for realizing role and group mapping based on cross-domain authorization |
| US20090158395A1 (en) * | 2007-12-17 | 2009-06-18 | Jeong Young Ho | Method and apparatus for detecting downloadable conditional access system host with duplicated secure micro |
| CN105956426A (en) * | 2016-04-26 | 2016-09-21 | 上海斐讯数据通信技术有限公司 | Application program authority authentication and authorization method and intelligent equipment |
| CN107749855A (en) * | 2017-10-30 | 2018-03-02 | 武汉烽火信息集成技术有限公司 | Client-based single-sign-on identity identifying method and system |
-
2019
- 2019-09-26 CN CN201910914202.XA patent/CN110650143A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090158395A1 (en) * | 2007-12-17 | 2009-06-18 | Jeong Young Ho | Method and apparatus for detecting downloadable conditional access system host with duplicated secure micro |
| CN101262474A (en) * | 2008-04-22 | 2008-09-10 | 武汉理工大学 | A cross-domain access control system for realizing role and group mapping based on cross-domain authorization |
| CN105956426A (en) * | 2016-04-26 | 2016-09-21 | 上海斐讯数据通信技术有限公司 | Application program authority authentication and authorization method and intelligent equipment |
| CN107749855A (en) * | 2017-10-30 | 2018-03-02 | 武汉烽火信息集成技术有限公司 | Client-based single-sign-on identity identifying method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8756704B2 (en) | User impersonation and authentication | |
| US8336091B2 (en) | Multi-level authentication | |
| CN110851274B (en) | Resource access control method, device, equipment and storage medium | |
| US9589397B1 (en) | Securing internet of things (IoT) based entrance/exit with multi-factor authentication | |
| US5774650A (en) | Control of access to a networked system | |
| CN100583114C (en) | System and method for remote security enablement | |
| CN109474632B (en) | Method, apparatus, system, and medium for authenticating and managing rights of user | |
| WO2017016064A1 (en) | Operation system switching method, operation system switching apparatus and terminal | |
| US20200053561A1 (en) | Systems and methods for providing a secured password and authentication mechanism for programming and updating software or firmware | |
| US10629012B1 (en) | Multi-factor authentication for vehicles | |
| US9509672B1 (en) | Providing seamless and automatic access to shared accounts | |
| US20130290534A1 (en) | Method for Setting Network Device with Wireless Area Network and Controller, Network Device and Communication Platform | |
| KR101668550B1 (en) | Apparatus and Method for Allocating Role and Permission based on Password | |
| CN112528251B (en) | User account authority management method, device, equipment and readable medium | |
| CN107767509B (en) | Authorization method, server, authorization system and storage medium | |
| US7512971B2 (en) | Method and system for enabling remote access to a computer system | |
| WO2016112578A1 (en) | Method and device for establishing communication connection based on plurality of system terminals | |
| CN112613020A (en) | Identity verification method and device | |
| CN106131045A (en) | Authentication method and GPON OLT system to ONU in GPON OLT system | |
| CN108920919A (en) | Control method, the device and system of interactive intelligence equipment | |
| KR102027326B1 (en) | Security system and method for smart terminal device | |
| JP2011086012A (en) | Monitoring control system | |
| CN106933605A (en) | A kind of intelligent progress recognizing control method and system | |
| CN110650143A (en) | Integrated platform multiple authorization authentication method and system integrated platform | |
| KR102208139B1 (en) | Approval system and approval method for connecting bio recognition device and cloud server |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20200103 |
|
| WD01 | Invention patent application deemed withdrawn after publication |