CN101729492A - Information recording system with client identification and method thereof - Google Patents

Information recording system with client identification and method thereof Download PDF

Info

Publication number
CN101729492A
CN101729492A CN200810168295A CN200810168295A CN101729492A CN 101729492 A CN101729492 A CN 101729492A CN 200810168295 A CN200810168295 A CN 200810168295A CN 200810168295 A CN200810168295 A CN 200810168295A CN 101729492 A CN101729492 A CN 101729492A
Authority
CN
China
Prior art keywords
verification
client
information
data
identification
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN200810168295A
Other languages
Chinese (zh)
Inventor
邱全成
伍俊丞
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Inventec Corp
Original Assignee
Inventec Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Inventec Corp filed Critical Inventec Corp
Priority to CN200810168295A priority Critical patent/CN101729492A/en
Publication of CN101729492A publication Critical patent/CN101729492A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

An information recording system with client identification and a method thereof are used for solving the problem that the client cannot be effectively identified and the information recording cannot be accurately carried out.

Description

具有客户端识别的信息记录系统及其方法 Information recording system with client identification and method thereof

技术领域technical field

本发明涉及一种信息记录系统及其方法,尤其是涉及一种通过识别客户端来确定是否允许记录信息的具有客户端识别的信息记录系统及其方法。The present invention relates to an information recording system and its method, in particular to an information recording system with client identification and its method which determines whether information is allowed to be recorded by identifying the client.

背景技术Background technique

近年来,随着因特网的蓬勃发展,使得因特网无论是在价格、功能还是在应用方面都已被人们广泛接受。因此,架设在因特网上的各种服务例如实时通信、电子邮件及网页服务等如雨后春笋般地产生。In recent years, with the vigorous development of the Internet, the Internet has been widely accepted by people no matter in terms of price, function or application. Therefore, various services set up on the Internet, such as real-time communication, e-mail and web page services, have sprung up like mushrooms after rain.

一般而言,上述服务都应用于主从式网络结构(Client-Server)中,其服务方式是,当客户端(Client)通过网络向服务器(Server)发出服务请求后,接收服务器所响应的数据以完成服务。然而,在某些情况下,使用者并不希望客户端记录服务器所响应的数据,例如当客户端为公用计算机时,因为基于隐私权及安全性的考虑,通常不希望个人信息如实时通信的信息被记录在公用计算机中,以避免遭到他人的窥探。因此,如何有效地将客户端识别为私人计算机或公用计算机,进而确定是否允许记录个人信息,便成为各家厂商急于解决的议题。Generally speaking, the above services are applied in the master-slave network structure (Client-Server). The service method is that when the client (Client) sends a service request to the server (Server) through the network, it receives the data responded by the server. to complete the service. However, in some cases, the user does not want the client to record the data that the server responds to. For example, when the client is a public computer, because of privacy and security considerations, it is usually not desirable for personal information such as real-time communication Information is recorded on public computers to protect it from prying eyes. Therefore, how to effectively identify the client as a private computer or a public computer, and then determine whether to allow recording of personal information, has become an issue that manufacturers are eager to solve.

有鉴于此,便有厂商提出将网络地址的唯一性作为识别客户端的依据。然而,虽然网络地址具有唯一性,但是网络地址并非仅固定地配置于某一个人计算机,尤其是使用动态主机配置协议(Dynamic HostConfiguration Protocol,DHCP)的个人计算机,其个人计算机的网络地址具有动态配置的特性,因此以网络地址作为识别客户端的依据,仍然具有无法有效地识别客户端并精确地进行信息记录的问题。In view of this, some manufacturers propose to use the uniqueness of the network address as the basis for identifying the client. However, although the network address is unique, the network address is not only fixedly configured on a certain personal computer, especially a personal computer using Dynamic Host Configuration Protocol (Dynamic Host Configuration Protocol, DHCP), the network address of the personal computer has a dynamic configuration. Therefore, using the network address as the basis for identifying the client still has the problem of being unable to effectively identify the client and accurately record information.

综上所述,可知先前技术中长期以来一直存在着无法有效地识别客户端并精确地进行信息记录的问题,因此有必要提出改进的技术手段来解决这一问题。To sum up, it can be known that the prior art has long been unable to effectively identify the client and accurately record the information, so it is necessary to propose an improved technical means to solve this problem.

发明内容Contents of the invention

有鉴于先前技术中存在的问题,本发明公开了一种具有客户端识别的信息记录系统及其方法。In view of the problems in the prior art, the invention discloses an information recording system with client identification and a method thereof.

本发明所公开的具有客户端识别的信息记录系统应用于客户端/服务器的网络传输环境中,该信息记录系统包括服务器及客户端。其中,服务器包括用户数据库、接收模块、识别模块及验证模块,所述用户数据库用于储存用户数据,而用户数据分别包括验证数据及验证选择条件;接收模块用于接收登录信息或识别信息;识别模块用于将登录信息与用户数据进行比对,并传送比对符合的用户数据的验证选择条件;验证模块用于将识别信息与验证数据进行比对,且在比对符合时产生并传送授权信息。而客户端则包括登录模块、撷取模块及记录模块,其中,登录模块接收并传送登录信息至服务器,并且接收服务器所回传的验证选择条件;撷取模块根据验证选择条件在需验证的条件下,撷取客户端的硬件数据,用于生成并传送识别信息;记录模块在客户端接收到授权信息时或在验证选择条件为不需验证的条件下,允许记录个人信息。The information recording system with client identification disclosed in the present invention is applied in a client/server network transmission environment, and the information recording system includes a server and a client. Wherein, the server includes a user database, a receiving module, an identification module and a verification module, the user database is used to store user data, and the user data includes verification data and verification selection conditions respectively; the receiving module is used to receive login information or identification information; The module is used to compare the login information with the user data, and transmit the verification selection conditions of the matched user data; the verification module is used to compare the identification information with the verification data, and generate and transmit the authorization when the comparison is met information. The client includes a login module, an extraction module, and a recording module. The login module receives and sends login information to the server, and receives the verification selection conditions returned by the server; Next, the hardware data of the client is captured to generate and transmit identification information; the recording module allows recording of personal information when the client receives the authorization information or when the verification selection condition is no verification.

至于本发明的具有客户端识别的信息记录方法,其应用于客户端/服务器的网络传输环境中,包括步骤:在服务器建立用户数据,此用户数据分别包括验证数据及验证选择条件;在客户端接收并传送登录信息至服务器;服务器接收登录信息,且将登录信息与用户数据进行比对,并传送比对符合的用户数据的验证选择条件;客户端在接收到服务器所回传的验证选择条件后,根据验证选择条件在需验证的条件下,撷取客户端的硬件数据,用于生成并传送识别信息;服务器接收识别信息,并将识别信息与验证数据进行比对,且在比对符合时产生并传送授权信息;当客户端接收到授权信息时或在验证选择条件为不需验证的条件下,允许记录个人信息。As for the information recording method with client identification of the present invention, it is applied in the network transmission environment of client/server, comprising the steps of: establishing user data at the server, and the user data includes verification data and verification selection conditions respectively; Receive and send the login information to the server; the server receives the login information, compares the login information with the user data, and transmits the verification selection conditions of the matched user data; the client receives the verification selection conditions returned by the server Finally, according to the verification selection conditions and under the conditions that require verification, the hardware data of the client is retrieved to generate and transmit identification information; the server receives the identification information and compares the identification information with the verification data, and when the comparison matches Generate and transmit authorization information; when the client receives the authorization information or when the verification selection condition is no verification, it is allowed to record personal information.

如上所述,本发明所公开的系统和方法与先前技术之间的差异在于,本发明通过撷取客户端的硬件数据并在将该硬件数据传送至服务器进行识别后,在成功识别时允许客户端记录信息。As mentioned above, the difference between the system and method disclosed in the present invention and the prior art is that the present invention allows the client to record information.

通过上述技术手段,本发明可以达到提高信息记录安全性的技术功效。Through the above technical means, the present invention can achieve the technical effect of improving the security of information recording.

附图说明Description of drawings

图1为本发明具有客户端识别的信息记录系统的方块图。FIG. 1 is a block diagram of an information recording system with client identification according to the present invention.

图2为本发明具有客户端识别的信息记录方法的流程图。Fig. 2 is a flow chart of the information recording method with client identification in the present invention.

图3为应用本发明进行登录验证的示意图。Fig. 3 is a schematic diagram of applying the present invention for login verification.

图4为应用本发明进行逐级验证的示意图。Fig. 4 is a schematic diagram of step-by-step verification by applying the present invention.

图5为本发明设置窗口的示意图。Fig. 5 is a schematic diagram of the setting window of the present invention.

具体实施方式Detailed ways

以下将配合附图及实施例来详细说明本发明的实施方式,因此可充分理解本发明如何应用技术手段来解决技术问题并达到技术功效的实现过程,并据此实施。The implementation of the present invention will be described in detail below with reference to the accompanying drawings and examples, so that one can fully understand how the present invention uses technical means to solve technical problems and achieve technical effects, and implement accordingly.

首先,在详细说明实施例之前,先对本发明所提出的具有客户端识别的信息记录系统及其方法的应用环境进行说明,本发明应用于客户端/服务器的网络传输环境中,所述客户端例如计算机、手机及个人数字助理等为可以用来执行指令及储存数据的装置;而服务器可以为一台具有用户数据库的计算机主机,用于对客户端进行识别处理,其用户数据库储存有用户数据,该用户数据为使用者的账号、密码及个人数据,且用户数据包括可预先设置的验证数据及验证选择条件,其详细的识别处理过程将在稍后进行说明。First of all, before describing the embodiments in detail, the application environment of the information recording system with client identification and its method proposed by the present invention will be described. The present invention is applied in the network transmission environment of client/server, and the client For example, computers, mobile phones, and personal digital assistants are devices that can be used to execute instructions and store data; and the server can be a computer host with a user database for identifying and processing the client, and its user database stores user data , the user data is the user's account number, password and personal data, and the user data includes verification data and verification selection conditions that can be set in advance, and the detailed identification process will be described later.

接下来,在说明本发明的实施例之前,先配合附图来对本发明具有客户端识别的信息记录系统及其方法作进一步的说明,请参阅“图1”,“图1”为本发明具有客户端识别的信息记录系统的方块图,该信息记录系统包括服务器100、客户端110及网络120,且服务器100包括用户数据库101、接收模块102、识别模块103及验证模块104;而客户端110则包括登录模块111、撷取模块112及记录模块113,并可进一步包括设置模块114;所述服务器100与客户端110之间通过网络120(例如因特网和电信网络中的至少一个)进行传输。Next, before describing the embodiments of the present invention, the information recording system with client identification and its method of the present invention will be further described with reference to the accompanying drawings, please refer to "Fig. 1", "Fig. The block diagram of the information recording system identified by the client, the information recording system includes a server 100, a client 110 and a network 120, and the server 100 includes a user database 101, a receiving module 102, an identification module 103 and a verification module 104; and the client 110 It includes a login module 111, a retrieval module 112, and a recording module 113, and may further include a setting module 114; the server 100 and the client 110 are transmitted through a network 120 (such as at least one of the Internet and a telecommunications network).

其中,在服务器100的部分,用户数据库101用于储存用户数据(例如使用者的账号、密码及个人数据),该用户数据进一步包括验证数据及验证选择条件,所述验证数据可为预设的硬件数据,例如硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个,当客户端110的硬件数据与预设的硬件数据符合时,则表示允许此客户端110记录个人信息(例如,实时通信的信息);而验证选择条件为记录是否进行验证的条件设定,并进一步包括记录验证硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个的条件设定,举例来说,如果验证选择条件记录为字母“Y”则表示需要进行验证,如果记录为字母“N”则表示不需验证,当记录为字母“Y”时,可进一步记录需验证的项目如硬盘序号,如果没有设定需验证的项目则预设全部项目(例如硬盘序号、中央处理器序号、网卡实体地址及计算机名称)都必须验证。Among them, in the part of the server 100, the user database 101 is used to store user data (such as the user's account number, password and personal data), the user data further includes verification data and verification selection conditions, and the verification data can be preset Hardware data, such as at least one of the hard disk serial number, central processing unit serial number, network card physical address and computer name, when the hardware data of the client 110 matches the preset hardware data, it means that the client 110 is allowed to record personal information ( For example, the information of real-time communication); And the verification selection condition is the condition setting of recording whether to verify, and further includes the condition setting of at least one of the record verification hard disk serial number, central processing unit serial number, network card entity address and computer name, For example, if the verification selection condition is recorded as the letter "Y", it means that verification is required; if it is recorded as the letter "N", it means that no verification is required; when it is recorded as the letter "Y", further items to be verified can be recorded such Hard disk serial number, if no item to be verified is set, all items (such as hard disk serial number, CPU serial number, network card physical address and computer name) must be verified by default.

接收模块102用于通过网络120接收客户端110所传送的登录信息,或者在客户端110生成识别信息后接收此识别信息,所述登录信息可为包括使用者的账号及密码的信息,用于登录到服务器100,由于登录服务器100的技术为公知技术,故在此不多作赘述,而识别信息记录客户端110所撷取的硬件数据,并可通过加密算法(例如RSA或MD5)将此硬件数据进行编码而产生,用于避免硬件数据在经由网络120传送的过程中遭到撷取或监听。The receiving module 102 is used to receive the login information sent by the client 110 through the network 120, or receive the identification information after the client 110 generates the identification information. The login information may include the user's account number and password, for Log in to the server 100, because the technology of logging into the server 100 is a known technology, so I won’t go into details here, and the identification information records the hardware data captured by the client 110, and this can be encrypted by an encryption algorithm (such as RSA or MD5). The hardware data is generated by encoding to prevent the hardware data from being captured or intercepted during transmission through the network 120 .

识别模块103用于将登录信息与用户数据进行比对,并将比对符合的用户数据的验证选择条件传送至客户端110,举例来说,将登录信息中的使用者的账号及密码与预设的用户数据中的使用者的账号及密码进行比对,当比对符合时,将符合的用户数据内所记录的验证选择条件(例如,需验证)传送至客户端110;验证模块104用于将接收模块102所接收的识别信息与用户数据库101内的验证数据进行比对,且在比对符合时产生并传送授权信息至客户端110。前面提到,识别信息可通过加密算法将硬件数据进行编码,故验证模块104也可对已编码过的识别信息通过解密算法进行译码,用于将已编码过的识别信息还原成未编码的识别信息。The identification module 103 is used to compare the login information with the user data, and send the verification selection conditions of the matched user data to the client 110, for example, the account number and password of the user in the login information and the preset The account number and the password of the user in the set user data are compared, and when the comparison meets, the verification selection condition (for example, needing verification) recorded in the user data that conforms to is sent to the client 110; the verification module 104 uses Then compare the identification information received by the receiving module 102 with the verification data in the user database 101 , and generate and send authorization information to the client 110 when the comparison is matched. As mentioned above, the identification information can be encoded by hardware data through an encryption algorithm, so the verification module 104 can also decode the encoded identification information through a decryption algorithm to restore the encoded identification information to unencoded identifying information.

另外,在客户端110的部分,客户端110包括登录模块111,其用于接收并传送登录信息(例如使用者的账号及密码)至服务器100,并接收服务器100所回传的验证选择条件,其输入登录信息的方式可为通过按压功能键的方式进行输入(例如,通过键盘键入使用者的账号及密码);撷取模块112根据验证选择条件在需验证的条件下(例如,验证选择条件为字母“Y”),撷取客户端110的硬件数据(例如硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个),用于生成并传送识别信息,该识别信息已在前面进行了说明,故在此不再作赘述;记录模块113在客户端110接收到服务器100所回传的授权信息时或是在验证选择条件为不需验证的条件下(例如,验证选择条件为字母“N”),允许客户端110通过记录模块113记录个人信息(例如,实时通信的信息或是浏览网页所产生的暂存数据)。另外,前面所提及的验证数据及验证选择条件可通过设置窗口进行设定(稍后将配合“图5”进行详细的说明)。In addition, in the part of the client 110, the client 110 includes a login module 111, which is used to receive and transmit login information (such as user account number and password) to the server 100, and receive the verification selection conditions returned by the server 100, The way to input the login information can be by pressing the function key (for example, typing the user's account number and password through the keyboard); is the letter "Y"), retrieve the hardware data of the client 110 (such as at least one of the hard disk serial number, the CPU serial number, the physical address of the network card, and the computer name), and use it to generate and transmit identification information, which has been in It has been described above, so it will not be described in detail here; when the client 110 receives the authorization information sent back by the server 100 or when the verification selection condition is not required to be verified (for example, the verification selection condition is the letter “N”), allowing the client 110 to record personal information (for example, real-time communication information or temporary data generated by browsing webpages) through the recording module 113 . In addition, the verification data and verification selection conditions mentioned above can be set through the setting window (detailed description will be made later in conjunction with "Figure 5").

如“图2”所示,“图2”为本发明具有客户端识别的信息记录方法的流程图,其包括步骤:在服务器100建立用户数据,此用户数据包括验证数据及验证选择条件(步骤201);在客户端110接收并传送登录信息至服务器100(步骤202);服务器100接收登录信息,且将登录信息与用户数据进行比对,并传送比对符合的用户数据的验证选择条件(步骤203);客户端110在接收到服务器100所回传的验证选择条件后,根据验证选择条件在需验证的条件下,撷取客户端的硬件数据,用于生成并传送识别信息(步骤204);服务器100接收识别信息,并将识别信息与验证数据进行比对,且在比对符合时产生并传送授权信息(步骤205);当客户端110接收到授权信息时或在验证选择条件为不需验证的条件下,允许记录个人信息(步骤206)。其中,该方法进一步包括通过设置窗口,用于在建立用户数据时,设定验证数据及验证选择条件。通过上述的步骤即可对客户端110进行识别,用于解决无法限定客户端110来进行信息记录的问题,进而提高信息记录的安全性。As shown in "Fig. 2", "Fig. 2" is a flow chart of the information recording method with client identification in the present invention, which includes the steps of: establishing user data at the server 100, and this user data includes verification data and verification selection conditions (step 201); Receive and transmit the login information to the server 100 (step 202) at the client 110; The server 100 receives the login information, and compares the login information with the user data, and transmits the verification selection condition ( Step 203); After receiving the verification selection condition returned by the server 100, the client 110 retrieves the hardware data of the client according to the verification selection condition under the condition that verification is required, and is used to generate and transmit identification information (step 204) ; The server 100 receives the identification information, and compares the identification information with the verification data, and generates and transmits the authorization information (step 205) when the comparison matches; when the client 110 receives the authorization information or when the verification selection condition is not Under the condition that verification is required, personal information is allowed to be recorded (step 206). Wherein, the method further includes setting verification data and verification selection conditions through a setting window when creating user data. Through the above steps, the client 110 can be identified, which is used to solve the problem that the client 110 cannot be limited to record information, and further improve the security of information record.

以下将配合“图3”至“图5”以实施例方式进行如下说明,请先参阅“图3”,“图3”为应用本发明进行登录验证的示意图,包括登录窗口300、账号输入区块310、密码输入区块311、重新输入元件312、确认送出元件313及登录结果显示区块314,所述登录窗口300的形式和所包括的元件并不以此为限。The following description will be made in conjunction with "Figure 3" to "Figure 5" in the form of an embodiment. Please refer to "Figure 3" first. Block 310 , password input block 311 , re-input element 312 , confirmation sending element 313 , and login result display block 314 , the form and elements included in the login window 300 are not limited thereto.

当在客户端110通过应用本发明的登录窗口300(例如,应用本发明的实时通信软件的登录窗口)进行登录时,可分别通过账号输入区块310及密码输入区块311输入用于进行登录的账号及密码(例如,账号为“abc”,密码为“123”),接着,点选确认送出元件313,用于通过登录模块111将所输入的账号及密码生成为登录信息并将该信息传送至服务器100。When logging in at the client terminal 110 by applying the login window 300 of the present invention (for example, applying the login window of the real-time communication software of the present invention), the account input block 310 and the password input block 311 can be input for logging in respectively. account number and password (for example, the account number is "abc" and the password is "123"), then click the confirmation sending element 313 to generate the input account number and password as login information through the login module 111 and send the information sent to the server 100.

此时,服务器100通过接收模块102接收登录信息,并且通过识别模块103将登录信息与用户数据库101中的用户数据进行比对,其比对方式是以账号(例如,账号为“aaa”)及密码(例如,密码为“123”)作为比对的条件,用于查询账号及密码都符合的用户数据,并且传送比对符合的用户数据的验证选择条件,举例来说,当符合的用户数据的内容所包括的账号为“aaa”、密码为“123”、验证数据为“硬盘序号:aa;中央处理器序号:bb;网卡实体地址:cc;计算机名称:dd”及验证选择条件为字母“Y”时,识别模块103将传送记录字母“Y”的验证选择条件。At this time, the server 100 receives the login information through the receiving module 102, and compares the login information with the user data in the user database 101 through the identification module 103. The comparison method is based on the account (for example, the account is "aaa") and The password (for example, the password is "123") is used as the comparison condition to query the user data that both the account number and the password match, and transmit the verification selection condition for the matching user data. For example, when the matching user data The content includes the account number "aaa", the password "123", the verification data as "hard disk serial number: aa; CPU serial number: bb; network card physical address: cc; computer name: dd" and the verification selection conditions are letters In the case of "Y", the recognition module 103 will transmit the verification selection condition of the record letter "Y".

接着,客户端110的登录模块111在接收到服务器100所回传的验证选择条件(例如,记录字母为“Y”)之后,撷取模块112根据此验证选择条件被确定为需验证(例如,记录字母为“Y”表示需验证;记录字母为“N”表示不需验证),故撷取客户端110的硬件数据(例如,硬盘序号为“aa”;中央处理器序号为“bb”;网卡实体地址为“cc”;计算机名称为“dd”)用于生成识别信息,并且通过网络120传送至服务器100,且在生成识别信息的过程中可进一步经由加密算法进行编码,以避免在通过网络120的传输过程中遭到撷取或监听。Next, after the login module 111 of the client 110 receives the verification selection condition returned by the server 100 (for example, the record letter is "Y"), the retrieval module 112 determines that verification is required according to the verification selection condition (for example, The record letter is "Y" means verification is required; the record letter is "N" means no verification is required), so the hardware data of the client 110 is retrieved (for example, the serial number of the hard disk is "aa"; the serial number of the central processing unit is "bb"; The physical address of the network card is "cc"; the computer name is "dd") is used to generate the identification information, and it is transmitted to the server 100 through the network 120, and in the process of generating the identification information, it can be further encoded by an encryption algorithm to avoid Network 120 transmissions are captured or monitored.

如上所述,当服务器100的接收模块102接收到客户端110所传送的识别信息(即,包括硬盘序号、中央处理器序号、网卡实体地址及计算机名称等数据)后,验证模块104根据此识别信息从用户数据库101中比对该用户数据(例如,用户数据的内容包括账号为“aaa”、密码为“123”、验证数据为“硬盘序号:aa;中央处理器序号:bb;网卡实体地址:cc;计算机名称:dd”及验证选择条件为字母“Y”)的验证数据,由于识别信息中的硬件数据与验证数据相符合,故验证模块104产生并传送授权信息至客户端110,此时,可将验证选择条件及比对结果显示于登录结果显示区块314用于达到提示的效果。最后,客户端110接收到授权信息,因此记录模块113允许记录个人信息(例如,实时通信的信息)。除此之外,客户端110进一步包括设置模块114,用于通过设置窗口设定验证数据及验证选择条件,至于设定验证数据及验证选择条件的方式,将在稍后配合“图5”作详细的说明。As mentioned above, when the receiving module 102 of the server 100 receives the identification information sent by the client 110 (that is, including hard disk serial number, central processing unit serial number, network card physical address and computer name, etc.), the verification module 104 identifies the The information compares the user data from the user database 101 (for example, the content of the user data includes that the account number is "aaa", the password is "123", the verification data is "hard disk serial number: aa; central processing unit serial number: bb; network card entity address : cc; computer name: dd" and the verification selection condition is the letter "Y") verification data, because the hardware data in the identification information matches the verification data, so the verification module 104 generates and transmits the authorization information to the client 110. , the verification selection condition and the comparison result can be displayed in the login result display block 314 to achieve the effect of prompting. Finally, the client 110 receives the authorization information, so the logging module 113 allows logging of personal information (eg, information communicated in real time). In addition, the client 110 further includes a setting module 114, which is used to set verification data and verification selection conditions through the setting window. Detailed explanation.

请参阅“图4”,“图4”为应用本发明进行逐级验证的示意图。以上例而言,验证的过程是比对硬盘序号、中央处理器序号、网卡实体地址及计算机名称,当全部符合时才将授权信息传送至客户端110,由于验证选择条件进一步包括记录验证硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个的条件设定,因此可通过验证窗口400来根据所设定的验证项目(例如硬盘序号及中央处理器序号)作相应的硬件数据撷取并进行验证,举例来说,当验证选择条件为字母“Y”且进一步包括设定验证项目为“硬盘序号及中央处理器序号”时,将通过验证项目显示区块410显示所设定的验证项目,接着,通过撷取项目选择区块420提供进行相应的选择,也就是说,当在撷取项目选择区块420中勾选硬盘序号及中央处理器序号后,通过点选验证数据元件430进行验证,或是通过点选重新验证元件431在验证失败时重新验证,并将验证的结果显示于授权信息显示区块440(例如,以文字的方式显示“成功”)。Please refer to "Fig. 4", "Fig. 4" is a schematic diagram of step-by-step verification by applying the present invention. For the above example, the verification process is to compare the serial number of the hard disk, the serial number of the central processing unit, the physical address of the network card, and the name of the computer. When all of them match, the authorization information is sent to the client 110. Since the verification selection condition further includes recording the verification hard disk serial number , central processing unit serial number, network card physical address and computer name at least one conditional setting, so the corresponding hardware data can be made according to the set verification items (such as hard disk serial number and central processing unit serial number) through the verification window 400 Retrieve and verify, for example, when the verification selection condition is the letter "Y" and further includes setting the verification item as "hard disk serial number and CPU serial number", the set verification item display block 410 will be displayed The verification items, and then provide corresponding selections through the retrieval item selection block 420, that is to say, after checking the hard disk serial number and the CPU serial number in the retrieval item selection block 420, verify the data by clicking The component 430 performs verification, or clicks on the re-authentication component 431 to re-authenticate when the verification fails, and displays the verification result in the authorization information display block 440 (for example, displaying "success" in text).

前面提到,验证数据及验证选择条件可通过设置窗口来进行设定,所以配合“图5”来说明设定的方式,请参阅“图5”,“图5”为本发明设置窗口的示意图。当使用者要设定验证数据及验证选择条件时,可通过如“图5”所示的设置窗口500来进行设定操作。As mentioned above, the verification data and verification selection conditions can be set through the setting window, so the method of setting is described in conjunction with "Figure 5", please refer to "Figure 5", "Figure 5" is a schematic diagram of the setting window of the present invention . When the user wants to set the verification data and verification selection conditions, the setting operation can be performed through the setting window 500 shown in FIG. 5 .

使用者可在登录到服务器100之后通过状态显示区块510得知用户数据库101的连接状态(例如,以文字显示为“已连接”),并且通过点选数据撷取元件501来撷取客户端110的硬件数据,并可将所撷取的硬件数据显示于验证数据显示区块520,或是点选清除撷取502来清除当前所撷取的硬件数据。接着,可通过条件设置区块530设定验证选择条件,例如,勾选需验证并在验证项目中勾选硬盘序号,最后,通过确定传输元件503来将所撷取的硬件数据及所设定的验证选择条件传送至服务器100的用户数据库101中,用于更新对应登录信息的用户数据,以此例而言,用户数据的内容从原本包括账号为“aaa”、密码为“123”、验证数据为“硬盘序号:aa;中央处理器序号:bb;网卡实体地址:cc;计算机名称:dd”及验证选择条件为字母“Y”的验证数据更改为“硬盘序号:ee;中央处理器序号:ff;网卡实体地址:gg;计算机名称:hh”,且验证选择条件除了维持字母“Y”之外,进一步包括设定验证项目为“硬盘序号”的记录。所述设置窗口500所包括的元件以及设定方式并不以此为限。After logging in to the server 100, the user can know the connection status of the user database 101 (for example, displayed as "connected") through the status display block 510, and click the data retrieval component 501 to retrieve the client 110 hardware data, and the captured hardware data can be displayed in the verification data display area 520, or click clear capture 502 to clear the currently captured hardware data. Then, the verification selection condition can be set through the condition setting block 530, for example, check the need to verify and check the hard disk serial number in the verification item, and finally, the captured hardware data and the set The verification selection conditions of the server 100 are sent to the user database 101 of the server 100 to update the user data corresponding to the login information. The data is "hard disk serial number: aa; CPU serial number: bb; network card physical address: cc; computer name: dd" and the verification data whose verification selection condition is the letter "Y" is changed to "hard disk serial number: ee; CPU serial number : ff; physical address of the network card: gg; computer name: hh", and the verification selection condition further includes the record of setting the verification item as "hard disk serial number" in addition to maintaining the letter "Y". The components and setting methods included in the setting window 500 are not limited thereto.

综上所述,可知本发明与先前技术之间的差异在于通过撷取客户端的硬件数据并在将该硬件数据传送至服务器进行识别之后,在成功识别时允许客户端记录信息的技术手段,通过这一技术手段可以解决先前技术无法限定客户端进行信息记录的问题,进而达到提高信息记录安全性的技术功效。In summary, it can be seen that the difference between the present invention and the prior art lies in the technical means of allowing the client to record information when the identification is successful after capturing the hardware data of the client and transmitting the hardware data to the server. This technical means can solve the problem that the previous technology cannot restrict the client to record information, and then achieve the technical effect of improving the security of information recording.

虽然本发明所公开的实施方式如上所述,但所述内容并非用于直接限定本发明的专利保护范围。任何本发明所属技术领域中的普通技术人员在不脱离本发明所公开的精神和范围的前提下,可以在实施形式上及细节上进行变更。本发明的专利保护范围仍须以所附权利要求所限定的为准。Although the embodiments disclosed in the present invention are as described above, the content is not intended to directly limit the patent protection scope of the present invention. Any person skilled in the technical field to which the present invention belongs may make changes in the implementation forms and details without departing from the disclosed spirit and scope of the present invention. The scope of patent protection of the present invention must still be defined by the appended claims as the criterion.

Claims (9)

1.一种具有客户端识别的信息记录系统,其应用于客户端/服务器的网络传输环境中,所述信息记录系统包括:1. An information recording system with client identification, which is applied in a client/server network transmission environment, the information recording system comprising: 服务器,所述服务器包括:server, the server includes: 用户数据库,其用于储存至少一个用户数据,所述用户数据分别包括至少一个验证数据及一个验证选择条件;a user database, which is used to store at least one user data, the user data respectively including at least one verification data and a verification selection condition; 接收模块,其用于接收登录信息或识别信息;A receiving module, which is used to receive login information or identification information; 识别模块,其用于将所述登录信息与所述用户数据进行比对,并传送比对符合的所述用户数据的所述验证选择条件;以及an identification module, configured to compare the login information with the user data, and transmit the verification selection condition of the user data that is matched; and 验证模块,其用于将所述识别信息与所述验证数据进行比对,且在比对符合时产生并传送授权信息;以及a verification module, which is used to compare the identification information with the verification data, and generate and transmit authorization information when the comparison is met; and 客户端,所述客户端包括:client, the client includes: 登录模块,其接收并传送所述登录信息至所述服务器,并且接收所述服务器所回传的所述验证选择条件;a login module, which receives and transmits the login information to the server, and receives the verification selection condition returned by the server; 撷取模块,其根据所述验证选择条件在需验证的条件下,撷取所述客户端的至少一个硬件数据,用于生成并传送所述识别信息;以及A retrieval module, which retrieves at least one piece of hardware data of the client under the condition that authentication is required according to the authentication selection condition, for generating and transmitting the identification information; and 记录模块,其当所述客户端接收到所述授权信息时或在所述验证选择条件为不需验证的条件下,允许记录至少一条个人信息。A recording module, which allows recording at least one piece of personal information when the client receives the authorization information or when the verification selection condition is no verification. 2.如权利要求1所述的具有客户端识别的信息记录系统,其中所述客户端进一步包括设置模块,所述设置模块用于通过设置窗口来设定所述验证数据及所述验证选择条件。2. The information recording system with client identification as claimed in claim 1, wherein said client further comprises a setting module, said setting module is used to set said verification data and said verification selection condition through a setting window . 3.如权利要求1所述的具有客户端识别的信息记录系统,其中所述验证数据及所述硬件数据包括硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个;而所述验证选择条件进一步包括记录验证硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个的条件设定。3. The information recording system with client identification as claimed in claim 1, wherein said verification data and said hardware data include at least one of hard disk serial number, central processing unit serial number, network card physical address and computer name; and said The verification selection condition further includes the condition setting of recording and verifying at least one of the serial number of the hard disk, the serial number of the central processing unit, the physical address of the network card and the name of the computer. 4.如权利要求1所述的具有客户端识别的信息记录系统,其中所述识别信息是所述硬件数据通过加密算法进行编码所产生的,并在需验证的条件下通过所述验证模块的解密算法对已编码的识别码进行译码。4. The information recording system with client identification as claimed in claim 1, wherein the identification information is generated by encoding the hardware data through an encryption algorithm, and passes through the verification module under the condition of verification The decryption algorithm decodes the encoded identification code. 5.一种具有客户端识别的信息记录方法,所述信息记录方法应用于客户端/服务器的网络传输环境中,包括步骤:5. An information recording method with client identification, the information recording method is applied in the network transmission environment of client/server, comprising steps: 在服务器建立至少一个用户数据,所述用户数据包括至少一个验证数据及一个验证选择条件;Establishing at least one user data on the server, the user data including at least one verification data and a verification selection condition; 在客户端接收并传送登录信息至所述服务器;receiving and sending login information to the server at the client; 所述服务器接收所述登录信息,且将所述登录信息与所述用户数据进行比对,并传送比对符合的所述用户数据的所述验证选择条件;The server receives the login information, compares the login information with the user data, and transmits the verification selection condition of the user data that matches the comparison; 所述客户端在接收到所述服务器所回传的所述验证选择条件后,根据所述验证选择条件在需验证的条件下,撷取所述客户端的至少一个硬件数据,用于生成并传送识别信息;After receiving the verification selection condition sent back by the server, the client retrieves at least one piece of hardware data of the client under the condition that verification is required according to the verification selection condition, and is used to generate and transmit identifying information; 所述服务器接收所述识别信息,并将所述识别信息与所述验证数据进行比对,且在比对符合时产生并传送授权信息;以及The server receives the identification information, compares the identification information with the verification data, and generates and transmits authorization information when the comparison matches; and 当所述客户端接收到所述授权信息时或所述验证选择条件为不需验证的条件下,允许记录至少一条个人信息。When the client receives the authorization information or the verification selection condition is that no verification is required, at least one piece of personal information is allowed to be recorded. 6.如权利要求5所述的具有客户端识别的信息记录方法,其中建立所述用户数据的所述步骤进一步包括通过设置窗口来设定所述验证数据及所述验证选择条件。6. The information recording method with client identification as claimed in claim 5, wherein said step of establishing said user data further comprises setting said verification data and said verification selection condition through a setting window. 7.如权利要求5所述的具有客户端识别的信息记录方法,其中所述验证数据及所述硬件数据包括硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个;而所述验证选择条件进一步包括记录验证硬盘序号、中央处理器序号、网卡实体地址及计算机名称中的至少一个的条件设定。7. The information recording method with client identification as claimed in claim 5, wherein said verification data and said hardware data comprise at least one of hard disk serial number, central processing unit serial number, network card entity address and computer name; and said The verification selection condition further includes the condition setting of recording and verifying at least one of the serial number of the hard disk, the serial number of the central processing unit, the physical address of the network card and the name of the computer. 8.如权利要求5所述的具有客户端识别的信息记录方法,其中撷取所述客户端的至少一个硬件数据,用于生成并传送识别信息的所述步骤,进一步包括将所述硬件数据通过加密算法进行编码来产生所述识别信息,并在需验证的条件下通过解密算法对已编码的识别码进行译码。8. The information recording method with client identification as claimed in claim 5, wherein the step of retrieving at least one hardware data of the client for generating and transmitting the identification information further comprises passing the hardware data through An encryption algorithm is used to encode to generate the identification information, and the encoded identification code is decoded by a decryption algorithm under the condition that authentication is required. 9.如权利要求5所述的具有客户端识别的信息记录方法,其中所述个人信息包括实时通信信息及个人化设定中的至少一个。9. The information recording method with client identification as claimed in claim 5, wherein the personal information includes at least one of real-time communication information and personalized settings.
CN200810168295A 2008-10-15 2008-10-15 Information recording system with client identification and method thereof Pending CN101729492A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN200810168295A CN101729492A (en) 2008-10-15 2008-10-15 Information recording system with client identification and method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN200810168295A CN101729492A (en) 2008-10-15 2008-10-15 Information recording system with client identification and method thereof

Publications (1)

Publication Number Publication Date
CN101729492A true CN101729492A (en) 2010-06-09

Family

ID=42449710

Family Applications (1)

Application Number Title Priority Date Filing Date
CN200810168295A Pending CN101729492A (en) 2008-10-15 2008-10-15 Information recording system with client identification and method thereof

Country Status (1)

Country Link
CN (1) CN101729492A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102510369A (en) * 2011-08-23 2012-06-20 潘燕辉 User identity (ID) information recording method of system without registered user
CN105577375A (en) * 2014-10-11 2016-05-11 腾讯科技(深圳)有限公司 Identity authentication method and device

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1818919A (en) * 2006-03-02 2006-08-16 王清华 Permission verification and verifying system for electronic file

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1818919A (en) * 2006-03-02 2006-08-16 王清华 Permission verification and verifying system for electronic file

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102510369A (en) * 2011-08-23 2012-06-20 潘燕辉 User identity (ID) information recording method of system without registered user
CN105577375A (en) * 2014-10-11 2016-05-11 腾讯科技(深圳)有限公司 Identity authentication method and device

Similar Documents

Publication Publication Date Title
US9338155B2 (en) Security device provisioning
US9871805B2 (en) User authentication
EP3937040B1 (en) Systems and methods for securing login access
US9894053B2 (en) Method and system for authenticating service
US20090031405A1 (en) Authentication system and authentication method
JP6538872B2 (en) Common identification data replacement system and method
US8713656B2 (en) Authentication method
CN101389133A (en) Identity verification system and method
US20200196143A1 (en) Public key-based service authentication method and system
US20130104245A1 (en) Authentication system
CN107580002B (en) Double-factor authentication security manager login system and method
CN101729492A (en) Information recording system with client identification and method thereof
US8533802B2 (en) Authentication system and related method
US8505079B2 (en) Authentication system and related method
CN113162772B (en) PIN identity authentication method and system
WO2015060950A1 (en) Method and system for authenticating service
CN102314566A (en) Computer-to-computer authentication and man-to-machine authentication method applied to cloud computing
US20130104209A1 (en) Authentication system
TWM599939U (en) System for identity verification
KR20150104667A (en) Authentication method
TWI755693B (en) Method for identity verification and system using the same
KR20180037169A (en) User authentication method and system using one time password
TWI389535B (en) System and method for validating user identity

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C02 Deemed withdrawal of patent application after publication (patent law 2001)
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20100609