CN103905431B - A kind of user authen method and subscriber authentication server - Google Patents
A kind of user authen method and subscriber authentication server Download PDFInfo
- Publication number
- CN103905431B CN103905431B CN201410080839.0A CN201410080839A CN103905431B CN 103905431 B CN103905431 B CN 103905431B CN 201410080839 A CN201410080839 A CN 201410080839A CN 103905431 B CN103905431 B CN 103905431B
- Authority
- CN
- China
- Prior art keywords
- user
- server
- type
- login
- typing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Telephonic Communication Services (AREA)
Abstract
The present invention provides a kind of user authen method and subscriber authentication server, and method comprises the following steps:Server returns to login page when receiving the logging request of user to user;Server receives user profile of the user by login page typing, and judges whether user profile is correct, and user authentication success is judged if correct;Server further detects whether to receive current location venue type of the user by login page typing after user authentication success is judged;If receiving the current location venue type of user's typing, server is safely or jeopardously to call corresponding attack protection mode to protect the information of user according to current location venue type.The present invention can not only limit network traffics at network peak period and improve network quality and network utilization, while the degree of safety and Consumer's Experience of user profile can be improved.
Description
Technical field
The present invention relates to technical field of network security, more particularly to a kind of user authen method and subscriber authentication server.
Background technology
As network application is deep into the every aspect in people's life, if network security is increasingly concerned about as people
Topic, the certification to user identity also turns into a kind of required measure.But existing authentication mode is all to use username and password
Pattern, this mode can only ensure the login of validated user, but can not be carried out according to the environment of User logs in Internet resources and
The adjustment of network security, causes the Experience Degree and degree of safety of user not good.
The content of the invention
It is an object of the invention to provide a kind of user authen method, from the angle of the experience of user, and the time and
Spatially further refinement, network traffics can not only be limited at network peak period and improved network quality and network utilization,
The degree of safety and Consumer's Experience of user profile can be improved simultaneously.
Embodiments of the invention provide a kind of user authen method, comprise the following steps:
Server returns to login page when receiving the logging request of the user to the user;
The server receives user profile of the user by the login page typing, and judges user's letter
Whether breath correct, and the user authentication success is judged if correct, wherein, the user profile include user name and with it is described
The corresponding password of user name;
The server further determines whether that receive user is stepped on by described after the user authentication success is judged
Record the current location venue type of page typing;
If receiving the current location venue type of user's typing, the server is according to the current location
Venue type is safely or jeopardously to call corresponding attack protection mode to protect the information of the user.
According to an aspect of the present invention, if not receiving the current location venue type of user's typing, institute
Server is stated to judge the current location venue type of the user safely, to call and the safely corresponding attack protection side
Formula is protected to the information of the user.
According to another aspect of the present invention, after the server judges the user authentication success, in addition to such as
Lower step:
The user profile judge module is additionally operable to obtain current time, and judges current time type according to current time
For busy or idle;The measure calling module is additionally operable to be that busy or idle are called according to the current time type corresponding
Bandwidth resources limit use of the mode to application program and are controlled.
According to another aspect of the invention, after the server judges the user authentication success, in addition to it is as follows
Step:
The server judges whether to receive current device type of the user by the login page typing, wherein,
The current device type includes mobile terminal or computer;
If the server receives the current device type of user's typing, the server is worked as according to described
Preceding device type is that mobile terminal or computer call corresponding page presentation mode to be controlled the size of the page;
If the server does not receive the current device type of user's typing, the server judges described
Current device type is computer, and calls page presentation mode corresponding with the computer to control the size of the page
System.
In accordance with a further aspect of the present invention, after the server judges the user authentication success, in addition to it is as follows
Step:The server after the User logs in, receive when the login record that the user sends checks request there is provided
The login record of the user, when the login record includes login place, login time and the login of each login of the user
It is long.
The user authen method that the present invention is provided adds the types such as place on the basis of original username and password,
From the angle of the experience of user, and time and spatially further refinement, it is possible to increase the degree of safety of user profile and
Consumer's Experience.
It is a further object to provide a kind of subscriber authentication server, from the angle of the experience of user, and
And time and spatially further refinement, network traffics can not only be limited at network peak period and improved network quality and network
Utilization rate, while the degree of safety and Consumer's Experience of user profile can be improved.
Embodiments of the invention provide a kind of user authentication such as weapon, including:User asks and information receiving module, is used for
The logging request of user is received, and login page is returned to the user, and is logged in for receiving the user by described
The user profile of page typing, wherein, the user profile includes user name and password corresponding with the user name;User believes
Judge module is ceased, the user profile judge module is connected to user's request and information receiving module, described for judging
Whether user profile is correct, the user authentication success is judged if correct, and after user authentication success, judge
Whether user's request and information receiving module receive current location location category of the user by the login page typing
Type simultaneously judges the current location venue type for safely or jeopardously;Measure calling module, the measure calling module connects
The user profile judge module is connected to, for safely or jeopardously calling correspondence according to the current location venue type
Attack protection mode the information of the user is protected.
According to an aspect of the present invention, the user profile judge module is additionally operable to connect in user request and information
The current location venue type that module does not receive user's typing is received, judges the current location venue type for safety
Ground, and called the information of the user is protected by the measure calling module with the safely corresponding attack protection mode
Shield.
According to another aspect of the present invention, the user profile judge module be additionally operable to judge user request and
Whether information receiving module receives current time type of the user by the login page typing, and when judging described current
Between type be busy or idle;It is that busy or idle are called that the measure calling module, which is additionally operable to according to the current time type,
Use of the corresponding bandwidth resources limitation mode to application program is controlled.
According to a further aspect of the invention, the user profile judge module is additionally operable to judge user's request and believed
Whether breath receiving module receives current device type of the user by the login page typing, if it is judges described work as
Preceding device type is mobile terminal or computer, otherwise judges the current device type for computer;The measure calling module is also
For being that mobile terminal or computer call corresponding page presentation mode to enter the size of the page according to the current device type
Row control.
According to a further aspect of the invention, the subscriber authentication server also includes:Login record checks module, described to step on
Record record checks that module is connected to user's request and information receiving module, for receiving mould in user request and information
Block receives when the login record that the user sends checks request that there is provided the login record of the user, the login record bag
Include login place, login time and the log duration of each login of the user.
The subscriber authentication server that the present invention is provided adds the classes such as place on the basis of original username and password
Type, from the angle of the experience of user, and time and spatially further refinement, it is possible to increase the degree of safety of user profile
And Consumer's Experience.
Brief description of the drawings
Fig. 1 is User logs in page schematic diagram of the prior art;
Fig. 2 is the flow chart of the user authen method according to first embodiment of the invention;
Fig. 3 is the flow chart of the user authen method according to second embodiment of the invention;
Fig. 4 is the flow chart of the user authen method according to third embodiment of the invention;
Fig. 5 is the flow chart of the user authen method according to four embodiment of the invention;
Fig. 6 schematically shows the schematic diagram for the login page that the present invention is provided;
Fig. 7 is the schematic diagram of the subscriber authentication server according to first embodiment of the invention;
Fig. 8 is the schematic diagram of the subscriber authentication server according to second embodiment of the invention.
Embodiment
To make the object, technical solutions and advantages of the present invention of greater clarity, with reference to embodiment and join
According to accompanying drawing, the present invention is described in more detail.It should be understood that these descriptions are merely illustrative, and it is not intended to limit this hair
Bright scope.In addition, in the following description, the description to known features and technology is eliminated, to avoid unnecessarily obscuring this
The concept of invention.
Fig. 1 is the schematic diagram of prior art user login page.
As shown in figure 1, being provided with user name typing frame, password typing frame on the User logs in page of prior art and " stepping on
Record " control.User's typing username and password in user name typing frame and password typing frame, then clicks on " login " control,
Username and password information is sent to server.Server is after judging that username and password information is correct, it is allowed to User logs in
Access.This mode can only be to user profile before User logs in security verify, and can not be right after the user logs
User profile carries out safeguard protection, when the public place such as user is in Internet bar is logged in, it is understood that there may be certain potential safety hazard.But
It is that server can not know the login environment of user, so that corresponding safeguard measure can not be provided a user.
In addition, busy-idle condition and user when server can not know User logs in by existing user's login page
The device type used is logged in, so that rational network bandwidth resources and page presentation form can not be provided the user, causes to use
Family physical examination is not good.
To solve above mentioned problem of the prior art, the invention provides a kind of user authen method and user authentication service
Device, can improve the Experience Degree of user and the security of user profile.
Fig. 2 is the flow chart of the user authen method according to first embodiment of the invention.
As shown in Fig. 2 the user authen method of first embodiment of the invention, comprises the following steps:
Step S1, server returns to login page when receiving the logging request of user to user.Wherein, log in page
User name typing frame, password typing frame, place options and " login " control are provided with face.Venue type options includes peace
Full ground option and jeopardously option.
Specifically, user inputs username and password information, and pass through by user name typing frame and password typing frame
The venue type of venue type options selection current location is safely or jeopardously.Wherein, it is safely by user
The place of trust.Conversely, being jeopardously the place for being not affected by users to trust.For example, being safely the home location and public affairs of user
Take charge of place, the place in hotel or railway station when jeopardously being gone on business for user.
It should be noted that venue type options is can selection operation.If user does not enter to the venue type options
Row operation, i.e., do not selected safely and jeopardously, then the venue type of default user current location is safely.
Just whether step S2, server receives user profile of the user by login page typing, and judge user profile
Really, user authentication success is judged if correct.Wherein, user profile includes user name and password corresponding with user name.
After user is by login page typing user profile, user profile returns to server.Server is on receiving
After the user profile for stating user's return, judge whether the user profile is correct, that is, first determine whether whether user name is correct, judging
After username good, determine whether whether the password of typing matches with the user name.If the match is successful, judge that user records
The user profile entered is correct, and user authentication success, server allows User logs in and accessed.
It should be noted that server judges whether user authentication succeeds, only pass through the username and password of user's typing
, it is not necessary to certain typing venue type options, it is not required that judge the venue type of selection.
Step S3, server further determines whether that receiving user passes through log in page after user authentication success is judged
The current location venue type of face typing, if it is, performing step S4, otherwise performs step S5.
Server further determines whether that receiving user passes through login page typing after user authentication success is judged
Current location venue type, that is, judge whether user carries out selection operation to venue type options.
Step S4, if receiving the current location venue type of user's typing, server is according to current location place
Type is safely or jeopardously to call corresponding attack protection mode to protect the information of user.
Server is safely or dangerous according to user's selection after the current location venue type of user's typing is received
Ground, calls corresponding attack protection mode to protect user profile respectively, that is, starts the corresponding measure for resisting attack protection,
Protect the information security of user account.
It should be noted that server will not be obtained to the particular location of user site, but according to user
Selection judged.In other words, even if the current location of user is Internet bar, if user's selection is " safely ", to service
As long as device judging user selection " safely ", then call safely corresponding attack protection mode the information of user is protected
Shield.
Step S5, if not receiving the current location venue type of user's typing, server judges that user's is current
Position venue type is safely, i.e. it is safely, to call and prevent attacking with safely corresponding that place is given tacit consent to when user does not select
Mode is hit to protect the information of user.
Fig. 3 shows the flow chart of the user authen method according to second embodiment of the invention.
Identical step is used the same reference numerals to represent in Fig. 3 and in Fig. 2, for not being related to improvement of the present invention
Existing step, will simply introduce or not introduce, and introduce the composition step made improvements relative to prior art.
In an embodiment of the present invention, current time is further provided with the login page that server is returned and current
Time type is reminded.
Upon step s 2, after server judges user authentication success, also comprise the following steps:
Step S6, server obtains current time, and judges current time type for busy or idle according to current time.
In an embodiment of the present invention, server is after judging current time type for busy or idle, in login page
Upper display current time, and the type of user's current time is reminded, in order to which the network state of user's period to this is done some preparations.
Step S7, server is that busy or idle call corresponding bandwidth resources to limit mode pair according to current time type
The use of application program is controlled.
Specifically, it is busy when the time that user logs in, then server is limited user bandwidth resource.For example,
Forbid user to open the application program that sudden peal of thunder etc. expends flow, so as to reduce network congestion, user's sensenet will not be allowed to block very much,
Improve Consumer's Experience.It is idle when the time that user logs in, then server is not limited to the bandwidth resources of user, so that will not
Influence the experience of user.
Fig. 4 shows the flow chart of the user authen method according to third embodiment of the invention.
The step identical with Fig. 2 and Fig. 3 is used the same reference numerals to represent in Fig. 4, for not being related to the present invention
The existing step of improvement, will simply introduce or not introduce, and introduce the composition made improvements relative to prior art
Step.
In an embodiment of the present invention, device type selection is further provided with the login page that server is returned
, device type options includes mobile terminal option and computer option.User is currently made by the selection of device type options
It is mobile terminal or computer with the type of equipment.Wherein, mobile terminal is, for example, mobile phone or tablet personal computer.
It should be noted that device type options is can selection operation.If user does not enter to the device type options
Row operation, i.e., do not carry out selection mobile terminal or computer, then the venue type of default user current location is computer.
Upon step s 2, after server judges user authentication success, also comprise the following steps:
Step S8, server judges whether to receive current device type of the user by login page typing.Wherein, when
Preceding device type includes mobile terminal or computer.If it is, performing step S9, step S10 is otherwise performed.
Server further determines whether that receiving user passes through login page typing after user authentication success is judged
Current device type, that is, judge whether user carries out selection operation to device type options.
Step S9, is shifting according to current device type if server receives the current device type of user's typing
Dynamic terminal or computer call corresponding page presentation mode to be controlled the size of the page.
Server after the current device type of user's typing is received, according to user selection be mobile terminal or computer,
Corresponding page presentation mode is called to be controlled the size of the page respectively.
For example, when user's mobile phone or tablet personal computer are surfed the Net, if logging in Taobao with webpage, webpage greatly can not very much
All mirror in the sight of user, so as to influence Consumer's Experience.Therefore server receive user selection device type be
It is automatic by the adaptive size that should be terminal screen of page size by adaptive technique after mobile terminal, so that user is without dragging
The dynamic page is with regard to that can see the full content of the page.If the device type that server receives user's selection is computer, not right
The size of the page is handled.Thus, the size of the page is adjusted according to user's currently used terminal equipment type, can
To improve Consumer's Experience, and the eyesight of user can be protected.
It should be noted that server will not be currently used to user specific device type obtain, but according to
The selection of user is judged.In other words, even if the current device that user uses is mobile phone, if user's selection is computer,
Server is not handled the size of the page.
Step S10, if server does not receive the current device type of user's typing, judges that current device type is
Computer, i.e. Default device type is computer when user does not select, and page presentation mode corresponding with computer is called to the page
Size be controlled.
Fig. 5 shows the flow chart of the user authen method according to four embodiment of the invention.
The step identical into Fig. 4 with Fig. 2 is used the same reference numerals to represent in Fig. 5, for not being related to the present invention
The existing step of improvement, will simply introduce or not introduce, and introduce the composition made improvements relative to prior art
Step.
As shown in figure 5, the security of the information in order to further improve user, invention increases evidence obtaining record.In clothes
Business device is judged after user authentication success, is also comprised the following steps:
Step S11, server after the user logs, receive user transmission login record check request when there is provided
The login record of the user.Wherein, when login record includes login place, login time and the login of each login of the user
It is long, so as to improve the security of user account.
It should be noted that the user name, password, venue type options and device type options in login page are equal
By user to be filled in or selected before User logs in, current time is shown and current time type to remind be also in User logs in
Shown before by server, then user clicks on " login " control, and corresponding information is returned into server.Wherein, venue type
Options and device type options are can selection operation.Server enters to username and password first after above- mentioned information is obtained
Row checking, is judged venue type, device type and time type and calls countermeasure again after being verified.
The identifying procedure of the user authen method of the present invention is described below with reference to Fig. 6.
As shown in fig. 6, user is by login page typing user name, password, and the venue type of current location is selected to be
Safely, current device type is computer.Server shows current time, and reminds user's current time type to be busy.So
Afterwards, user clicks on " login " control, and above-mentioned user profile is sent to server.
Server is verified to username and password first after above-mentioned user profile is received, then verifies above-mentioned use
After name in an account book and password match, user authentication success is judged, it is allowed to which User logs in is simultaneously accessed.Then server further obtains user
Select current location venue type for safely, current time type be busy, current device type computer, phase is called respectively
Attack protection mode, Internet resources limitation mode and the page display way answered.Specifically, server selects current according to user
The venue type of position is safely to call the corresponding measure for resisting attack protection, protects the information security of user account.And
And, server is busy according to preceding time type, and user bandwidth resource is limited, including forbids user to open consuming flow
Application program, so as to reduce network congestion, user's sensenet will not be allowed to block very much, improve Consumer's Experience.Further, server
According to current device type computer, page presentation mode is not dealt with, so as to improve Consumer's Experience and protect the eyesight of user.
In addition, server receive user transmission login record check request when logged in every time there is provided the user login place,
Login time and log duration, so as to improve the security of user account.
It is contemplated that protect a kind of user authen method, this method provide a kind of can improve the new of Consumer's Experience
User authentication model.The present invention on the basis of original username and password, add place, time and device type, from
The angle of the experience at family is set out, and time and spatially further refinement, can not only limit network at network peak period
Flow is improved network quality and network utilization, while the degree of safety and Consumer's Experience of user profile can be improved.
Fig. 7 is the schematic diagram of the subscriber authentication server according to first embodiment of the invention.
As shown in fig. 7, the subscriber authentication server that first embodiment of the invention is provided, including:User asks and information
Receiving module 1, user profile judge module 2 and measure calling module 3, wherein, user profile judge module 2 is connected to user please
Ask and information receiving module 1, measure calling module 3 is connected to user profile judge module 2.
Specifically, user's request and information receiving module 1 are used for the logging request for receiving user, and are returned to the user
Login page, and user's request and information receiving module 1 are additionally operable to reception user profile of the user by login page typing.
In an embodiment of the present invention, user profile includes user name and password corresponding with the user name.
Specifically, user name typing frame, password typing frame, place options and " login " control are provided with login page
Part.Venue type options includes safely option and jeopardously option.
Specifically, user inputs username and password information, and pass through by user name typing frame and password typing frame
The venue type of venue type options selection current location is safely or jeopardously.Wherein, it is safely by user
The place of trust.Conversely, being jeopardously the place for being not affected by users to trust.For example, being safely the home location and public affairs of user
Take charge of place, the place in hotel or railway station when jeopardously being gone on business for user.
It should be noted that venue type options is can selection operation.If user does not enter to the venue type options
Row operation, i.e., do not selected safely and jeopardously, then the venue type of default user current location is safely.
User profile judge module 2 is used to judge whether user profile is correct, and user authentication success is judged if correct.
After user is by login page typing user profile, user profile returns to user's request and information receiving module 1.User asks
And information receiving module 1 sends above-mentioned user profile to user profile after the user profile that above-mentioned user returns is received
Judge module 2.User profile judge module 2 judges whether the user profile is correct, that is, first determines whether whether user name is correct,
Judge after username good, determine whether whether the password of typing matches with the user name.If the match is successful, judge to use
The user profile of family typing is correct, user authentication success, it is allowed to which User logs in is simultaneously accessed.
It should be noted that user profile judge module 2 judges whether user authentication succeeds, only pass through the use of user's typing
Name in an account book and password, it is not necessary to certain typing venue type options, it is not required that judge the venue type of selection.
User profile judge module 2 is additionally operable to after user authentication success, judges that user's request and information receiving module 1 are
It is no to receive user by the current location venue type of login page typing and judge current location venue type for safely
Or jeopardously.
User profile judge module 2 further determines whether to receive user by stepping on after user authentication success is judged
The current location venue type of page typing is recorded, that is, judges whether user carries out selection operation to venue type options.
Measure calling module 3 passes through the current of login page typing for receiving user in user profile judge module 2
It is safely or jeopardously to call corresponding attack protection mode to user according to current location venue type after the venue type of position
Information protected, that is, start the corresponding measure for resisting attack protection, protect the information security of user account.
User profile judge module 2 is additionally operable to ask in user and information receiving module 1 does not receive working as user's typing
Front position venue type, judges current location venue type for safely, and by measure calling module 3 call with it is safely corresponding
Attack protection mode the information of user is protected.
It should be noted that user profile judge module 2 will not be obtained to the particular location of user site, and
It is to be judged according to the selection of user.In other words, even if the current location of user is Internet bar, if user's selection is " safety
Ground ", as long as then user profile judge module 2 is judging user's selection " safely ", then measure calling module 3 calls safely right
The attack protection mode answered is protected to the information of user.
In one embodiment of the invention, current time and current time type are further provided with login page
Remind.User profile judge module 2 is additionally operable to obtain current time, and judges current time type for busy according to current time
Or idle.In an embodiment of the present invention, user profile judge module 2 is after judging current time type for busy or idle,
Show current time on login page, and remind the type of user's current time, it is network-like in order to user's period to this
State is done some preparations.
It is that busy or idle call corresponding bandwidth resources to limit that measure calling module 3, which is additionally operable to according to current time type,
Use of the mode to application program is controlled.
Specifically, it is busy when the time that user logs in, then measure calling module 3 is limited user bandwidth resource
System.For example, forbidding user to open the application program that sudden peal of thunder etc. expends flow, so as to reduce network congestion, user will not be allowed to feel
Network blocks very much, improves Consumer's Experience.The time logged in as user is idle, then bandwidth resources of the measure calling module 3 to user
It is not limited, so as to not interfere with the experience of user.
In another embodiment of the present invention, device type options, equipment are further provided with login page
Type selecting includes mobile terminal option and computer option.User selects currently used equipment by device type options
Type is mobile terminal or computer.Wherein, mobile terminal is, for example, mobile phone or tablet personal computer.
It should be noted that device type options is can selection operation.If user does not enter to the device type options
Row operation, i.e., do not carry out selection mobile terminal or computer, then the venue type of default user current location is computer.
User profile judge module 2 is additionally operable to judge whether user's request and information receiving module 1 receive user and pass through
The current device type of login page typing, if it is judges that current device type, for mobile terminal or computer, otherwise judges
Current device type is computer.It is that mobile terminal or computer are called pair that measure calling module 3, which is additionally operable to according to current device type,
The page presentation mode answered is controlled to the size of the page.For example, when user's mobile phone or tablet personal computer are surfed the Net, if
Taobao is logged in webpage, then webpage can not all be mirrored in the sight of user greatly very much, so as to influence Consumer's Experience.Therefore user believes
Breath judge module 2 receive user selection device type be mobile terminal after, measure calling module 3 passes through adaptive technique
Automatically by the adaptive size that should be terminal screen of page size, so that user is without dragging the page with regard to that can see all interior of the page
Hold.If the device type that family signal judgement module 2 receives user's selection is computer, measure calling module 3 is not to the page
Size handled.Thus, measure calling module 3 enters according to the currently used terminal equipment type of user to the size of the page
Row adjustment, can improve Consumer's Experience, and can protect the eyesight of user.
It should be noted that user profile judge module 2 will not be currently used to user specific device type obtain
Take, but judged according to the selection of user.In other words, even if the current device that user uses is mobile phone, if user selects
Computer is selected as, then size of the measure calling module 3 not to the page is handled.
If user profile judge module 2 does not receive the current device type of user's typing, current device class is judged
Type is computer, i.e. when user does not select, Default device type is computer, and measure calling module 3 calls page corresponding with computer
Face exhibition method is controlled to the size of the page.
Fig. 8 shows the schematic diagram of the subscriber authentication server according to second embodiment of the invention.
Used the same reference numerals to represent with identical part in Fig. 7 in Fig. 8, for not being related to improvement of the present invention
Existing part, will simply introduce or not introduce, and introduce the building block made improvements relative to prior art.
The subscriber authentication server of the embodiment of the present invention also checks module 4 including login record, and the login record checks mould
Block 4 is connected to user's request and information receiving module 1, is sent for receiving user in user's request and information receiving module 1
Login record there is provided the login record of the user when checking request.
In an embodiment of the present invention, the login place of each login of login record including the user, login time and
Log duration.
It is contemplated that protecting a kind of subscriber authentication server, the server can provide a kind of the new of raising Consumer's Experience
Type user authentication model.The present invention adds place, time and device type on the basis of original username and password, from
The angle of the experience of user is set out, and time and spatially further refinement, can not only limit net at network peak period
Network flow is improved network quality and network utilization, while the degree of safety and Consumer's Experience of user profile can be improved.
It should be appreciated that the above-mentioned embodiment of the present invention is used only for exemplary illustration or explains the present invention's
Principle, without being construed as limiting the invention.Therefore, that is done without departing from the spirit and scope of the present invention is any
Modification, equivalent substitution, improvement etc., should be included in the scope of the protection.In addition, appended claims purport of the present invention
Covering the whole changes fallen into scope and border or this scope and the equivalents on border and repairing
Change example.
Claims (8)
1. a kind of user authen method, comprises the following steps:
Server returns to login page when receiving the logging request of the user to the user;
The server receives user profile of the user by the login page typing, and judges that the user profile is
It is no correct, the user authentication success is judged if correct, wherein, the user profile include user name and with the user
The corresponding password of name;
The server further determines whether that receiving user passes through the log in page after the user authentication success is judged
The current location venue type of face typing;
If receiving the current location venue type of user's typing, the server is according to the current location place
Type is for safely or jeopardously to call corresponding attack protection mode to protect the information of the user;
Venue type options for can selection operation, the venue type of current location is selected for safely by venue type options
Or jeopardously;The venue type options includes safely option and jeopardously option;
Wherein, after the server judges the user authentication success, also comprise the following steps:
The server judges whether to receive current device type of the user by the login page typing, wherein, it is described
Current device type includes mobile terminal or computer;
If the server receives the current device type of user's typing, the server is currently set according to described
Standby type is that mobile terminal or computer call corresponding page presentation mode to be controlled the size of the page;
If the server does not receive the current device type of user's typing, the server judges described current
Device type is computer, and calls page presentation mode corresponding with the computer to be controlled the size of the page.
2. user authen method according to claim 1, wherein, if not receiving the current location of user's typing
Venue type, then the server judge the current location venue type of the user for safely, call with it is described safely
Corresponding attack protection mode is protected to the information of the user.
3. user authen method according to claim 1, wherein, judge the user authentication success in the server
Afterwards, also comprise the following steps:
The server obtains current time, and judges current time type for busy or idle according to current time;
The server is that busy or idle call corresponding bandwidth resources limitation mode correspondence according to the current time type
It is controlled with the use of program.
4. the user authen method according to claim any one of 1-3, wherein, judge that the user recognizes in the server
After demonstrate,proving successfully, also comprise the following steps:
The server after the User logs in, receive when the login record that the user sends checks request there is provided
The login record of the user, when the login record includes login place, login time and the login of each login of the user
It is long.
5. a kind of subscriber authentication server, including:
User asks and information receiving module, the logging request for receiving user, and returns to login page to the user, with
And for receiving user profile of the user by the login page typing, wherein, the user profile includes user name
Password corresponding with the user name;
User profile judge module, the user profile judge module is connected to user's request and information receiving module, uses
In judging whether the user profile is correct, the user authentication success is judged if correct, and in the user authentication
After success, judge whether user's request and information receiving module receive user and pass through the current of the login page typing
Position venue type simultaneously judges the current location venue type for safely or jeopardously;
Measure calling module, the measure calling module is connected to the user profile judge module, for according to described current
Position venue type is for safely or jeopardously to call corresponding attack protection mode to protect the information of the user;
Venue type options for can selection operation, the venue type of current location is selected for safely by venue type options
Or jeopardously;The venue type options includes safely option and jeopardously option;
Wherein, the user profile judge module is additionally operable to judge whether user's request and information receiving module receive use
Family by the current device type of the login page typing, if it is judge the current device type for mobile terminal or
Computer, otherwise judges the current device type for computer;
It is that mobile terminal or computer call the corresponding page that the measure calling module, which is additionally operable to according to the current device type,
Exhibition method is controlled to the size of the page.
6. subscriber authentication server according to claim 5, wherein, the user profile judge module is additionally operable to described
User's request and information receiving module do not receive the current location venue type of user's typing, judge the current location
Venue type is called by the measure calling module and used with the safely corresponding attack protection mode described for safely
The information at family is protected.
7. subscriber authentication server according to claim 5, wherein, the user profile judge module, which is additionally operable to obtain, works as
The preceding time, and judge current time type for busy or idle according to current time;
It is that busy or idle call corresponding bandwidth resources that the measure calling module, which is additionally operable to according to the current time type,
Use of the limitation mode to application program is controlled.
8. the subscriber authentication server according to claim any one of 5-7, wherein, in addition to:Login record checks module,
The login record checks that module is connected to user's request and information receiving module, in user request and information
Receiving module receives when the login record that the user sends checks request that there is provided the login record of the user, the login
Record includes login place, login time and the log duration of each login of the user.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410080839.0A CN103905431B (en) | 2014-03-07 | 2014-03-07 | A kind of user authen method and subscriber authentication server |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410080839.0A CN103905431B (en) | 2014-03-07 | 2014-03-07 | A kind of user authen method and subscriber authentication server |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103905431A CN103905431A (en) | 2014-07-02 |
CN103905431B true CN103905431B (en) | 2017-08-08 |
Family
ID=50996585
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410080839.0A Active CN103905431B (en) | 2014-03-07 | 2014-03-07 | A kind of user authen method and subscriber authentication server |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103905431B (en) |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101068183A (en) * | 2007-06-28 | 2007-11-07 | 杭州华三通信技术有限公司 | Network invitation to enter controlling method and network invitation to enter controlling system |
CN101582769A (en) * | 2009-07-03 | 2009-11-18 | 杭州华三通信技术有限公司 | Authority setting method of user access network and equipment |
CN101902721A (en) * | 2010-07-30 | 2010-12-01 | 中国联合网络通信集团有限公司 | Time-based strategy control implementing method and device thereof |
CN102487378A (en) * | 2010-12-01 | 2012-06-06 | 中铁信息工程集团有限公司 | Front safety system for guaranteeing information safety |
-
2014
- 2014-03-07 CN CN201410080839.0A patent/CN103905431B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101068183A (en) * | 2007-06-28 | 2007-11-07 | 杭州华三通信技术有限公司 | Network invitation to enter controlling method and network invitation to enter controlling system |
CN101582769A (en) * | 2009-07-03 | 2009-11-18 | 杭州华三通信技术有限公司 | Authority setting method of user access network and equipment |
CN101902721A (en) * | 2010-07-30 | 2010-12-01 | 中国联合网络通信集团有限公司 | Time-based strategy control implementing method and device thereof |
CN102487378A (en) * | 2010-12-01 | 2012-06-06 | 中铁信息工程集团有限公司 | Front safety system for guaranteeing information safety |
Also Published As
Publication number | Publication date |
---|---|
CN103905431A (en) | 2014-07-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104158824B (en) | Genuine cyber identification authentication method and system | |
CN104184705B (en) | Verification method, device, server, subscriber data center and system | |
EP3133767B1 (en) | Authorization control method, client and server | |
CN106911687B (en) | Page construction control method and device | |
WO2015035895A1 (en) | Methods, devices, and systems for account login | |
WO2016062002A1 (en) | Connection management method and apparatus, electrical device | |
US10554667B2 (en) | Methods, apparatus, and systems for resource access permission management | |
CN104767713B (en) | Account binding method, server and system | |
CN113536258A (en) | Terminal access control method and device, storage medium and electronic equipment | |
CN105472610A (en) | Logging-in management method and apparatus of wireless router | |
CN105898743B (en) | A kind of method for connecting network, apparatus and system | |
US20090216795A1 (en) | System and method for detecting and blocking phishing attacks | |
US20220029882A1 (en) | Systems, methods, and media for monitoring cloud configuration settings | |
CN103686651B (en) | A kind of authentication method based on urgent call, equipment and system | |
CN106453266A (en) | Abnormal networking request detection method and apparatus | |
CN105429943B (en) | Information processing method and terminal thereof | |
CN111131235B (en) | Safety maintenance method, device, equipment and storage medium of business system | |
CN104598836A (en) | Method and device for managing communication content on mobile terminal as well as mobile terminal | |
CN105101191B (en) | The method and device of wlan security mechanism setting | |
US20140173707A1 (en) | Disabling Unauthorized Access To Online Services | |
CN105828322B (en) | A kind of method, mobile terminal and security centre that user logs in | |
CN103905431B (en) | A kind of user authen method and subscriber authentication server | |
CN101854357A (en) | Method and system for monitoring network authentication | |
CN104540183B (en) | A kind of control method and device of hotspot | |
CN110502896A (en) | A kind of leakage monitoring method, system and the relevant apparatus of site information |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
PP01 | Preservation of patent right | ||
PP01 | Preservation of patent right |
Effective date of registration: 20180528 Granted publication date: 20170808 |