CN104426835A - Login detection method, login server, and login detection device and system thereof - Google Patents
Login detection method, login server, and login detection device and system thereof Download PDFInfo
- Publication number
- CN104426835A CN104426835A CN201310364257.0A CN201310364257A CN104426835A CN 104426835 A CN104426835 A CN 104426835A CN 201310364257 A CN201310364257 A CN 201310364257A CN 104426835 A CN104426835 A CN 104426835A
- Authority
- CN
- China
- Prior art keywords
- login
- area
- log
- banner
- logging request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1483—Countermeasures against malicious traffic service impersonation, e.g. phishing, pharming or web spoofing
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The embodiment of the invention discloses a login detection method, a login server, and a login detection device and a system thereof. The method may includes the following steps: when the login server receives a login request corresponding to a login identification, the login server obtains login information carried by the login request; the login server sends the login identification and the login information carried by the login request to the login detection device so that the login detection device carries out login area matching on the login information carried by the login request according to the login identification and thus an area matching result is generated; and the login server receives the area matching result sent by the login detection device and determining whether the login request is an abnormal login request according to the area matching result so as to send prompt information to a user. The security of a login account can be improved and user experience can be improved.
Description
Technical field
The present invention relates to field of computer technology, be specifically related to log in detection technique field, particularly relate to a kind of method, server, login checkout gear and the system thereof that log in detection.
Background technology
Along with burning the wind of Internet technology, the life networking day by day of people, informationization.The Internet adopts unique login account and login password to carry out keeping for the network personal information of user usually, such as network hard disc, user can adopt the hard drive space of unique login account and login password login user self, thus obtains the private data in hard disk.
Nowadays the means such as trojan horse, fishing website occur, login account and the login password of user can be stolen, and owing to cannot stop from root the phenomenon that account steals, the fail safe of the login environment of user is caused to be difficult to be guaranteed, thus well cannot ensure the fail safe of the private data of user, have impact on the experience of user.
Summary of the invention
The embodiment of the present invention provides a kind of method, server, login checkout gear and the system thereof that log in detection, can improve the fail safe of login account, promote the experience of user.
First aspect present invention provides a kind of method logging in detection, can comprise:
When receiving logging request corresponding to login banner, obtain the log-on message that described logging request is carried;
According to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
Determine whether described logging request is abnormal login request, to send information to user according to described regional matching result.
Second aspect present invention provides the another kind of method logging in detection, can comprise:
When logon server receives logging request corresponding to login banner, described logon server obtains the log-on message that described logging request is carried;
The log-on message that described login banner and described logging request carry is sent to login checkout gear by described logon server, to make described login checkout gear according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
Described logon server receives the described regional matching result that described login checkout gear sends, and determines whether described logging request is abnormal login request, to send information to user according to described regional matching result.
Third aspect present invention provides another and logs in the method detected, and can comprise:
Log in checkout gear and receive the login banner and the log-on message entrained by logging request corresponding to described login banner that logon server sends;
Described login checkout gear, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
Described regional matching result is sent to described logon server by described login checkout gear, determines whether described logging request is abnormal login request to make described logon server according to described regional matching result.
Fourth aspect present invention provides a kind of login checkout gear, can comprise:
Data obtaining module, for when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
Coupling generation module, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
Determine output module, for determining according to described regional matching result whether described logging request is abnormal login request, to send information to user.
Fifth aspect present invention provides a kind of logon server, can comprise:
Data obtaining module, for when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
Information sending module, log-on message for described login banner and described logging request being carried is sent to login checkout gear, to make described login checkout gear according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
Receiving determination module, for receiving the described regional matching result that described login checkout gear sends, and determining whether described logging request is abnormal login request, to send information to user according to described regional matching result.
Sixth aspect present invention provides another kind of login checkout gear, can comprise:
Receiver module, the log-on message entrained by the logging request that login banner and described login banner for receiving logon server transmission are corresponding;
Coupling generation module, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
According to described regional matching result, result sending module, for described regional matching result is sent to described logon server, determines whether described logging request is abnormal login request to make described logon server.
Seventh aspect present invention provides a kind of system logging in detection, can comprise logon server that above-mentioned 5th aspect provides and the login checkout gear that above-mentioned 6th aspect provides.
Implement the embodiment of the present invention, there is following beneficial effect:
When receiving logging request corresponding to login banner, area coupling can be logged in the log-on message of carrying in logging request, because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, ensure the fail safe of the login environment of user, and then ensure that the fail safe of private data of user, improve the experience of user.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is a kind of mutual schematic diagram logging in detection that the embodiment of the present invention provides;
Fig. 2 is a kind of schematic flow sheet logging in the method for detection that the embodiment of the present invention provides;
Fig. 3 is the schematic flow sheet of the method for the another kind login detection that the embodiment of the present invention provides;
Fig. 4 is the schematic flow sheet of the method for another login detection that the embodiment of the present invention provides;
Fig. 5 is that the another kind that the embodiment of the present invention provides logs in the mutual schematic diagram detected;
Fig. 6 is the schematic flow sheet of the method for another login detection that the embodiment of the present invention provides;
Fig. 7 is the schematic flow sheet of the method for another login detection that the embodiment of the present invention provides;
Fig. 8 is the structural representation of a kind of logon server that the embodiment of the present invention provides;
Fig. 9 is a kind of structural representation logging in checkout gear that the embodiment of the present invention provides;
Figure 10 is the structural representation of the another kind login checkout gear that the embodiment of the present invention provides;
Figure 11 is a kind of structural representation mating generation module that the embodiment of the present invention provides;
Figure 12 is the structural representation of another login checkout gear that the embodiment of the present invention provides;
Figure 13 is the structural representation of another login checkout gear that the embodiment of the present invention provides;
Figure 14 is the structural representation of the another kind coupling generation module that the embodiment of the present invention provides.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.
In embodiments of the present invention, client can comprise: PC(Personal Computer, personal computer), the terminal equipment such as panel computer, mobile phone, smart mobile phone, notebook computer; Client also can be the client modules in terminal equipment, such as: web(webpage) browser client, instant communication client etc.
The method that the login that the embodiment of the present invention provides detects can be applied to client sends scene from logging request to logon server, such as: client sends logging request to logon server, asks the scene etc. by user account certification.The log-on message entrained by logging request that the login banner that described logon server can be used for providing the service of certification authority, described login checkout gear to can be used for sending for described logon server for client is corresponding carries out logging in area coupling.
Refer to Fig. 1, for embodiments providing a kind of mutual schematic diagram logging in detection.When logon server receives logging request corresponding to login banner that client sends, described logon server obtains the log-on message entrained by logging request corresponding to described login banner, and the log-on message that described login banner and described logging request carry is sent to described login checkout gear, described login checkout gear is according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generate regional matching result, and described regional matching result is sent to described logon server, according to described regional matching result, described logon server determines whether described logging request is abnormal login request, and export information.The login banner related in the present embodiment can be the login account of user.
The logon server provided below in conjunction with accompanying drawing 2-accompanying drawing 4 pairs of embodiment of the present invention and login checkout gear perform the method logging in detection and describe in detail.
Refer to Fig. 2, for embodiments providing a kind of schematic flow sheet logging in the method for detection.The embodiment of the present invention sets forth the idiographic flow logging in the method detected from logon server side, the method can comprise the following steps S101-step S103.
S101, when logon server receives logging request corresponding to login banner, described logon server obtains the log-on message that described logging request is carried;
Concrete, when logon server receives logging request corresponding to login banner that client sends, if described logon server judges that described logging request is abnormal login request, such as: described logon server receives repeatedly logging request etc. corresponding to described login banner within a period of time.Then described logon server obtains the log-on message entrained by described logging request, and described log-on message can comprise IP(InternetProtocol, network interconnection agreement) address or LBS(Location Based Service, position-based service) information.
S102, the log-on message that described login banner and described logging request carry is sent to login checkout gear by described logon server, to make described login checkout gear according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
Concrete, the log-on message that described login banner and the described logging request obtained are carried is sent to login checkout gear by described logon server, described login checkout gear is according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result.
It should be noted that, described regional matching result is the log-on message that described login checkout gear carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
S103, described logon server receives the described regional matching result that described login checkout gear sends, and determines whether described logging request is abnormal login request, to send information to user according to described regional matching result;
Concrete, described logon server receives the described regional matching result that described login checkout gear sends, if described current login area and described conventional login area match, then described logon server determines that described logging request is normal logging request; If described current login area and described conventional login area are not mated, then described logon server determines that described logging request is abnormal login request.
It should be noted that, when described logon server determines that described logging request is abnormal login request, information can be sent to described client; Or the interface of " input validation code " can be sent to described client, request user input validation code; Or can arrange to suspend to described login banner and use mark, until user carries out user rs authentication to described login banner, such as: the ID card No. of input binding, the phone number etc. of input binding, described logon server is just removed described time-out and is used mark, and user can continue to use described login banner to carry out register.
In embodiments of the present invention, when receiving logging request corresponding to login banner, area coupling can be logged in the log-on message of carrying in logging request, because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, ensure the fail safe of login environment of user, and then ensure that the fail safe of private data of user, improve the experience of user.
Refer to Fig. 3, for embodiments providing the another kind of schematic flow sheet logging in the method detected.The present embodiment sets forth from logging in checkout gear side the idiographic flow logging in the method detected, and the method can comprise the following steps S201-step S203.
S201, logs in checkout gear and receives the login banner and the log-on message entrained by logging request corresponding to described login banner that logon server sends;
Concrete, when logon server receives logging request corresponding to login banner that client sends, if described logon server judges that described logging request is abnormal login request, such as: described logon server receives repeatedly logging request etc. corresponding to described login banner within a period of time.Then described logon server obtains the log-on message entrained by described logging request, described log-on message can comprise IP address or LBS information, and the log-on message entrained by described login banner and described logging request is sent to login checkout gear by described logon server.Described login checkout gear receives the login banner of described logon server transmission and the log-on message entrained by described logging request.
S202, described login checkout gear, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
Concrete, described login checkout gear, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result.It should be noted that, described regional matching result is the log-on message that described login checkout gear carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
S203, described regional matching result is sent to described logon server by described login checkout gear, determines whether described logging request is abnormal login request to make described logon server according to described regional matching result;
Concrete, generated described regional matching result is sent to described logon server by described login checkout gear, described logon server receives the described regional matching result that described login checkout gear sends, if described current login area and described conventional login area match, then described logon server determines that described logging request is normal logging request; If described current login area and described conventional login area are not mated, then described logon server determines that described logging request is abnormal login request.
In embodiments of the present invention, when logon server receives logging request corresponding to login banner, log in checkout gear and can log in area coupling to the log-on message of carrying in logging request, because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, ensure the fail safe of login environment of user, and then ensure that the fail safe of private data of user, improve the experience of user.
Refer to Fig. 4, for embodiments providing the schematic flow sheet that another logs in the method detected.The present embodiment sets forth from logging in checkout gear side the idiographic flow logging in the method detected, and the method can comprise the following steps S301-step S308.
S301, logs in checkout gear in preset time period, obtains at least one log-on message uploaded according to login banner;
Concrete, when using login banner to log in the client, described client can report described login banner and log-on message corresponding to described login banner to described login checkout gear, in preset time period, described login checkout gear obtains at least one log-on message uploaded according to login banner.
Wherein, described preset time period can be cycle regular time, and such as: every 30 days, described login checkout gear obtains at least one log-on message uploaded according to login banner; At least one log-on message described asks the number of times logged in determine by described login banner in described preset time period, such as: use described login banner in 30 days by client logs to logon server 10 times, described login checkout gear can get uploads 10 log-on messages according to described login banner; Described log-on message can comprise IP address or LBS information.
S302, described login checkout gear according to described at least one log-on message of uploading, obtain at least one corresponding with described login banner and log in regional information;
Concrete, described login checkout gear according to described at least one log-on message of uploading, search the login regional information mated with each log-on message, obtain at least one corresponding with described login banner and log in regional information.
S303, described login checkout gear logs in regional information according to described login banner and at least one corresponding with described login banner, determines the conventional login area that described login banner is corresponding;
Concrete, described login checkout gear logs in regional information to corresponding at least one of obtained described login banner and adds up, and determines that the maximum login regional information of the frequency is regional as conventional logins that described login banner is corresponding.Such as: described login checkout gear obtains in 10 login regional informations corresponding to login banner, has and is shown as Shenzhen 6 times, have and be shown as Guangzhou 4 times, then described login checkout gear determines the conventional login area of Shenzhen as described login banner.Certainly, these are only and illustrate, log in regional information granularity can but be not restricted to city-level scope, can also be district's level scope or range of countries etc., such as: In Luohu District of Shenzhen Municipal, Enterprises of Futian District etc., or, China, the U.S. etc.
It should be noted that, if in the login regional information that described login checkout gear is added up, there are at least two kinds of frequencys logging in regional information identical, then described login checkout gear choose described at least two kinds log in regional informations, the nearest login regional information of distance current time is regional as conventional logins that login banner is corresponding.
Further, described login banner and conventional login area corresponding to determined described login banner are preserved by described login checkout gear.
S304, logs in checkout gear and receives the login banner and the log-on message entrained by logging request corresponding to described login banner that logon server sends;
S305, the log-on message that described login checkout gear carries according to described logging request, obtains current login area;
Concrete, the log-on message of described login checkout gear entrained by described logging request, search the current login area matched with the log-on message entrained by described logging request, described login checkout gear obtains described current login area.
S306, described login checkout gear searches corresponding conventional login area according to described login banner;
Concrete, described login checkout gear, according to described login banner, searches the conventional login area that preserved described login banner is corresponding.
S307, described login checkout gear mates described current login area and described conventional login area, generates regional matching result;
Concrete, the conventional login area that described login checkout gear is corresponding with the described login banner found to described current login area is mated, and generates regional matching result.
S308, described regional matching result is sent to described logon server by described login checkout gear, determines whether described logging request is abnormal login request to make described logon server according to described regional matching result.
Wherein, the step S304 of the embodiment of the present invention and S308 can distinguish step S201 and the S203 of embodiment shown in Figure 3, does not repeat at this.
In embodiments of the present invention, by adding up the login behavior of user, obtain the conventional login area that user uses login banner, area coupling is logged in the log-on message of carrying in current logging request, the log-on message uploaded when adopting user to log in carries out adding up the accuracy that can improve area coupling, and because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, the fail safe of the login environment of user can be ensured, and then ensure that the fail safe of private data of user, improve the experience of user.
Certainly, the process that the login that above-mentioned logon server and above-mentioned login checkout gear perform client detects, also can log in checkout gear by one and seek unity of action, namely this login checkout gear is integrated with above-mentioned logon server and above-mentioned login checkout gear.Refer to Fig. 5, for embodiments providing the another kind of mutual schematic diagram logging in detection.
When logging in checkout gear and receiving logging request corresponding to login banner that client sends, described login checkout gear obtains the log-on message entrained by logging request corresponding to described login banner, according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generate regional matching result, according to described regional matching result, described login checkout gear determines whether described logging request is abnormal login request, and export information.The login banner related in the present embodiment can be the login account of user.
The login checkout gear provided below in conjunction with accompanying drawing 6 and accompanying drawing 7 pairs of embodiment of the present invention performs the method logging in detection and describes in detail.
Refer to Fig. 6, for embodiments providing the schematic flow sheet that another logs in the method detected.The described method of the embodiment of the present invention can comprise the following steps S401-step S403.
S401, when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
Concrete, when logging in checkout gear and receiving logging request corresponding to login banner that client sends, if described login checkout gear judges that described logging request is abnormal login request, such as: described login checkout gear receives repeatedly logging request etc. corresponding to described login banner within a period of time.Then described login checkout gear obtains the log-on message entrained by described logging request, and described log-on message can comprise IP address or LBS information.
S402, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
Concrete, described login checkout gear, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result.It should be noted that, described regional matching result is the log-on message that described login checkout gear carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
According to described regional matching result, S403, determines whether described logging request is abnormal login request, to send information to user;
Concrete, if described current login area and described conventional login area match, then described login checkout gear determines that described logging request is normal logging request; If described current login area and described conventional login area are not mated, then described login checkout gear determines that described logging request is abnormal login request.
It should be noted that, when described login checkout gear determines that described logging request is abnormal login request, information can be sent to described client; Or the interface of " input validation code " can be sent to described client, request user input validation code; Or arrange to suspend to described login banner and use mark, until user carries out user rs authentication to described login banner, such as: the ID card No. of input binding, the phone number etc. of input binding, described login checkout gear is just removed described time-out and is used mark, and user can continue to use described login banner to carry out register.
In embodiments of the present invention, when receiving logging request corresponding to login banner, area coupling can be logged in the log-on message of carrying in logging request, because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, ensure the fail safe of login environment of user, and then ensure that the fail safe of private data of user, improve the experience of user.
Refer to Fig. 7, for embodiments providing the schematic flow sheet that another logs in the method detected.The described method of the embodiment of the present invention can comprise the following steps S501-step S508.
S501, obtains at least one log-on message uploaded according to login banner in preset time period;
Concrete, when using login banner to log in the client, described client can report described login banner and log-on message corresponding to described login banner to described login checkout gear, in preset time period, described login checkout gear obtains at least one log-on message uploaded according to login banner.
Wherein, described preset time period can be cycle regular time, and such as: every 30 days, described login checkout gear obtains at least one log-on message uploaded according to login banner; At least one log-on message described asks the number of times logged in determine by described login banner in described preset time period, such as: use described login banner to log in checkout gear 10 times by client logs to login in 30 days, described login checkout gear can get uploads 10 log-on messages according to described login banner; Described log-on message can comprise IP address or LBS information.
S502, according to described at least one log-on message uploaded, obtains at least one corresponding with described login banner and logs in regional information;
Concrete, described login checkout gear according to described at least one log-on message of uploading, search the login regional information mated with each log-on message, obtain at least one corresponding with described login banner and log in regional information.
S503, logs in regional information according to described login banner and at least one corresponding with described login banner, determines the conventional login area that described login banner is corresponding;
Concrete, described login checkout gear logs in regional information to corresponding at least one of obtained described login banner and adds up, and determines that the maximum login regional information of the frequency is regional as conventional logins that described login banner is corresponding.Such as: described login checkout gear obtains in 10 login regional informations corresponding to login banner, has and is shown as Shenzhen 6 times, have and be shown as Guangzhou 4 times, then described login checkout gear determines the conventional login area of Shenzhen as described login banner.Certainly, these are only and illustrate, log in regional information granularity can but be not restricted to city-level scope, can also be district's level scope or range of countries etc., such as: In Luohu District of Shenzhen Municipal, Enterprises of Futian District etc., or, China, the U.S. etc.
It should be noted that, if in the login regional information that described login checkout gear is added up, there are at least two kinds of frequencys logging in regional information identical, then described login checkout gear choose described at least two kinds log in regional informations, the nearest login regional information of distance current time is regional as conventional logins that login banner is corresponding.
Further, described login banner and conventional login area corresponding to determined described login banner are preserved by described login checkout gear.
S504, when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
S505, according to the log-on message that described logging request is carried, obtains current login area;
Concrete, the log-on message of described login checkout gear entrained by described logging request, search the current login area matched with the log-on message entrained by described logging request, described login checkout gear obtains described current login area.
S506, searches corresponding conventional login area according to described login banner;
Concrete, described login checkout gear, according to described login banner, searches the conventional login area that preserved described login banner is corresponding.
S507, mates described current login area and described conventional login area, generates regional matching result;
Concrete, the conventional login area that described login checkout gear is corresponding with the described login banner found to described current login area is mated, and generates regional matching result.
According to described regional matching result, S508, determines whether described logging request is abnormal login request, to send information to user.
Wherein, the step S504 of the embodiment of the present invention and S508 can distinguish step S401 and the S403 of embodiment shown in Figure 6, does not repeat at this.
In embodiments of the present invention, by adding up the login behavior of user, obtain the conventional login area that user uses login banner, area coupling is logged in the log-on message of carrying in current logging request, the log-on message uploaded when adopting user to log in carries out adding up the accuracy that can improve area coupling, and because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, the fail safe of the login environment of user can be ensured, and then ensure that the fail safe of private data of user, improve the experience of user.
Below in conjunction with accompanying drawing 8, the logon server that the embodiment of the present invention provides is described in detail.It should be noted that, the logon server shown in accompanying drawing 8, for performing the present invention's method embodiment illustrated in fig. 2, for convenience of explanation, illustrate only the part relevant to the embodiment of the present invention, concrete ins and outs do not disclose, and please refer to the embodiment shown in Fig. 2 of the present invention.
Refer to Fig. 8, for embodiments providing a kind of structural representation of logon server.As shown in Figure 8, the described logon server 1 of the embodiment of the present invention can comprise: data obtaining module 11, information sending module 12 and reception determination module 13.
Data obtaining module 11, for when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
In specific implementation, when logon server 1 receives logging request corresponding to login banner that client sends, if described logon server 1 judges that described logging request is abnormal login request, such as: described logon server 1 receives repeatedly logging request etc. corresponding to described login banner within a period of time.Then described data obtaining module 11 obtains the log-on message entrained by described logging request, and described log-on message can comprise IP address or LBS information.
Information sending module 12, log-on message for described login banner and described logging request being carried is sent to login checkout gear, to make described login checkout gear according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
In specific implementation, the log-on message that described login banner and the described logging request obtained are carried is sent to login checkout gear by described information sending module 12, described login checkout gear is according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result.
It should be noted that, described regional matching result is the log-on message that described login checkout gear carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
Receiving determination module 13, for receiving the described regional matching result that described login checkout gear sends, and determining whether described logging request is abnormal login request, to send information to user according to described regional matching result;
In specific implementation, described reception determination module 13 receives the described regional matching result that described login checkout gear sends, if described current login area and described conventional login area match, then described reception determination module 13 determines that described logging request is normal logging request; If described current login area and described conventional login area are not mated, then described reception determination module 13 determines that described logging request is abnormal login request.
It should be noted that, when described reception determination module 13 determines that described logging request is abnormal login request, information can be sent to described client; Or the interface of " input validation code " can be sent to described client, request user input validation code; Or can arrange to suspend to described login banner and use mark, until user carries out user rs authentication to described login banner, such as: the ID card No. of input binding, the phone number etc. of input binding, described logon server 1 is just removed described time-out and is used mark, and user can continue to use described login banner to carry out register.
In embodiments of the present invention, when receiving logging request corresponding to login banner, area coupling can be logged in the log-on message of carrying in logging request, because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, ensure the fail safe of login environment of user, and then ensure that the fail safe of private data of user, improve the experience of user.
Below in conjunction with accompanying drawing 9-accompanying drawing 11, the login checkout gear that the embodiment of the present invention provides is described in detail.It should be noted that, login checkout gear shown in accompanying drawing 9-accompanying drawing 11, for performing Fig. 3 of the present invention and method embodiment illustrated in fig. 4, for convenience of explanation, illustrate only the part relevant to the embodiment of the present invention, concrete ins and outs do not disclose, and please refer to the embodiment shown in Fig. 3 and Fig. 4 of the present invention.
Refer to Fig. 9, for embodiments providing a kind of structural representation logging in checkout gear.As shown in Figure 9, the described login checkout gear 2 of the embodiment of the present invention can comprise: receiver module 21, coupling generation module 22 and result sending module 23.
Receiver module 21, the log-on message entrained by the logging request that login banner and described login banner for receiving logon server transmission are corresponding;
In specific implementation, when logon server receives logging request corresponding to login banner that client sends, if described logon server judges that described logging request is abnormal login request, such as: described logon server receives repeatedly logging request etc. corresponding to described login banner within a period of time.Then described logon server obtains the log-on message entrained by described logging request, described log-on message can comprise IP address or LBS information, and the log-on message entrained by described login banner and described logging request is sent to and logs in checkout gear 2 by described logon server.Described receiver module 21 receives the login banner of described logon server transmission and the log-on message entrained by described logging request.
Coupling generation module 22, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
In specific implementation, described coupling generation module 22, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result.It should be noted that, described regional matching result is the log-on message that described coupling generation module 22 carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
According to described regional matching result, result sending module 23, for described regional matching result is sent to described logon server, determines whether described logging request is abnormal login request to make described logon server;
In specific implementation, the described regional matching result that described coupling generation module 22 generates is sent to described logon server by described result sending module 23, described logon server receives the described regional matching result that described result sending module 23 sends, if described current login area and described conventional login area match, then described logon server determines that described logging request is normal logging request; If described current login area and described conventional login area are not mated, then described logon server determines that described logging request is abnormal login request.
In embodiments of the present invention, when logon server receives logging request corresponding to login banner, log in checkout gear and can log in area coupling to the log-on message of carrying in logging request, because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, ensure the fail safe of login environment of user, and then ensure that the fail safe of private data of user, improve the experience of user.
Refer to Figure 10, for embodiments providing the another kind of structural representation logging in checkout gear.The described login checkout gear 2 of the embodiment of the present invention can comprise: receiver module 21, coupling generation module 22, result sending module 23, acquisition module 24, regional acquisition module 25 and regional determination module 26; Wherein, the structure of receiver module 21 and result sending module 23 can the associated description of embodiment shown in Figure 9, does not repeat at this.
Acquisition module 24, for obtaining at least one log-on message uploaded according to login banner in preset time period;
In specific implementation, when using login banner to log in the client, described client can report described login banner and log-on message corresponding to described login banner to described login checkout gear 1, in preset time period, described acquisition module 24 obtains at least one log-on message uploaded according to login banner.
Wherein, described preset time period can be cycle regular time, and such as: every 30 days, described acquisition module 24 obtains at least one log-on message uploaded according to login banner; At least one log-on message described asks the number of times logged in determine by described login banner in described preset time period, such as: use described login banner in 30 days by client logs to logon server 10 times, described acquisition module 24 can get uploads 10 log-on messages according to described login banner; Described log-on message can comprise IP address or LBS information.
Area acquisition module 25, at least one log-on message uploaded described in basis, obtains at least one corresponding with described login banner and logs in regional information;
In specific implementation, described regional acquisition module 25, according to described at least one log-on message uploaded, searches the login regional information mated with each log-on message, obtains at least one corresponding with described login banner and logs in regional information.
Area determination module 26, for logging in regional information according to described login banner and at least one corresponding with described login banner, determines the conventional login area that described login banner is corresponding;
In specific implementation, described regional determination module 26 logs in regional information to corresponding at least one of obtained described login banner and adds up, and determines that the maximum login regional information of the frequency is regional as conventional logins that described login banner is corresponding.Such as: described regional acquisition module 25 obtains in 10 login regional informations corresponding to login banner, have and be shown as Shenzhen 6 times, have and be shown as Guangzhou 4 times, then described regional determination module 26 determines the conventional login area of Shenzhen as described login banner.Certainly, these are only and illustrate, log in regional information granularity can but be not restricted to city-level scope, can also be district's level scope or range of countries etc., such as: In Luohu District of Shenzhen Municipal, Enterprises of Futian District etc., or, China, the U.S. etc.
It should be noted that, if in the login regional information that described regional determination module 26 is added up, there are at least two kinds of frequencys logging in regional information identical, then described regional determination module 26 choose described at least two kinds log in regional informations, the nearest login regional information of distance current time is regional as conventional logins that login banner is corresponding.
Further, the conventional login area that the described login banner described login banner and described regional determination module 26 determined of described login checkout gear 2 is corresponding is preserved.
Coupling generation module 22, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
In specific implementation, described coupling generation module 22, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result.It should be noted that, described regional matching result is the log-on message that described coupling generation module 22 carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
Concrete, please also refer to Figure 11, for embodiments providing a kind of structural representation mating generation module.Described coupling generation module 22 comprises: regional acquiring unit 221, area search unit 222 and coupling generation unit 223.
Area acquiring unit 221, for the log-on message of carrying according to described logging request, obtains current login area;
In specific implementation, the log-on message of described regional acquiring unit 221 entrained by described logging request, search the current login area matched with the log-on message entrained by described logging request, described regional acquiring unit 221 obtains described current login area.
Unit 222 is searched in area, for searching corresponding conventional login area according to described login banner;
In specific implementation, unit 222 is searched according to described login banner in described area, searches the conventional login area that the described login banner of described login checkout gear 2 preservation is corresponding.
Coupling generation unit 223, for mating described current login area and described conventional login area, generates regional matching result;
In specific implementation, the conventional login area that described login banner that unit 222 finds is searched corresponding in the current login area that described coupling generation unit 223 obtains described regional acquiring unit 221 and described area is mated, and generates regional matching result.
In embodiments of the present invention, by adding up the login behavior of user, obtain the conventional login area that user uses login banner, area coupling is logged in the log-on message of carrying in current logging request, the log-on message uploaded when adopting user to log in carries out adding up the accuracy that can improve area coupling, and because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, the fail safe of the private data of user can be ensure that, and then the security performance of the private data of protection user, improve the experience of user.
The embodiment of the invention also discloses a kind of system logging in detection, comprise embodiment illustrated in fig. 8 in logon server 1, also comprise the login checkout gear 2 in Fig. 9-embodiment illustrated in fig. 11.It should be noted that, the system that the login of the present embodiment detects can be applied in said method.
In embodiments of the present invention, by adding up the login behavior of user, obtain the conventional login area that user uses login banner, area coupling is logged in the log-on message of carrying in current logging request, the log-on message uploaded when adopting user to log in carries out adding up the accuracy that can improve area coupling, and because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, the fail safe of the login environment of user can be ensured, and then ensure that the fail safe of private data of user, improve the experience of user.
Below in conjunction with accompanying drawing 12-accompanying drawing 14, the another kind login checkout gear that the embodiment of the present invention provides is described in detail.It should be noted that, server shown in accompanying drawing 12-accompanying drawing 14, for performing Fig. 6 of the present invention and method embodiment illustrated in fig. 7, for convenience of explanation, illustrate only the part relevant to the embodiment of the present invention, concrete ins and outs do not disclose, and please refer to the embodiment shown in Fig. 6 and Fig. 7 of the present invention, wherein, the login checkout gear 3 shown in accompanying drawing 12-accompanying drawing 14 can be integrated with the login checkout gear 2 shown in the logon server 1 shown in accompanying drawing 8 and accompanying drawing 9-accompanying drawing 11.
Refer to Figure 12, for embodiments providing the structural representation that another logs in checkout gear.As shown in figure 12, the described login checkout gear 3 of the embodiment of the present invention can comprise: data obtaining module 31, coupling generation module 32 and determine output module 33.
Data obtaining module 31, for when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
In specific implementation, when logging in checkout gear 3 and receiving logging request corresponding to login banner that client sends, if described login checkout gear 3 judges that described logging request is abnormal login request, such as: described login checkout gear 3 receives repeatedly logging request etc. corresponding to described login banner within a period of time.Then described data obtaining module 31 obtains the log-on message entrained by described logging request, and described log-on message can comprise IP address or LBS information.
Coupling generation module 32, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
In specific implementation, described coupling generation module 32, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result.It should be noted that, described regional matching result is the log-on message that described coupling generation module 32 carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
Determine output module 33, for determining according to described regional matching result whether described logging request is abnormal login request, to send information to user;
In specific implementation, if described current login area and described conventional login area match, then determine that output module 33 determines that described logging request is normal logging request; If described current login area and described conventional login area are not mated, then determine that output module 33 determines that described logging request is abnormal login request.
It should be noted that, when determining that output module 33 determines that described logging request is abnormal login request, information can be sent to described client; Or the interface of " input validation code " can be sent to described client, request user input validation code; Or arrange to suspend to described login banner and use mark, until user carries out user rs authentication to described login banner, such as: the ID card No. of input binding, the phone number etc. of input binding, described login checkout gear 3 is just removed described time-out and is used mark, and user can continue to use described login banner to carry out register.
In embodiments of the present invention, when receiving logging request corresponding to login banner, area coupling can be logged in the log-on message of carrying in logging request, because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, ensure the fail safe of login environment of user, and then ensure that the fail safe of private data of user, improve the experience of user.
Refer to Figure 13, for embodiments providing the structural representation that another logs in checkout gear.The described login checkout gear 3 of the embodiment of the present invention can comprise: data obtaining module 31, coupling generation module 32, determine output module 33, acquisition module 34, regional acquisition module 35 and regional determination module 36; Wherein, data obtaining module 31 and determine that the structure of output module 33 can the associated description of embodiment shown in Figure 12, does not repeat at this.
Acquisition module 34, for obtaining at least one log-on message uploaded according to login banner in preset time period;
In specific implementation, when using login banner to log in the client, described client can report described login banner and log-on message corresponding to described login banner to described login checkout gear 3, in preset time period, described acquisition module 34 obtains at least one log-on message uploaded according to login banner.
Wherein, described preset time period can be cycle regular time, and such as: every 30 days, described acquisition module 34 obtains at least one log-on message uploaded according to login banner; At least one log-on message described asks the number of times logged in determine by described login banner in described preset time period, such as: use described login banner in 30 days by client logs to logon server 10 times, described acquisition module 34 can get uploads 10 log-on messages according to described login banner; Described log-on message can comprise IP address or LBS information.
Area acquisition module 35, at least one log-on message uploaded described in basis, obtains at least one corresponding with described login banner and logs in regional information;
In specific implementation, described regional acquisition module 35, according to described at least one log-on message uploaded, searches the login regional information mated with each log-on message, obtains at least one corresponding with described login banner and logs in regional information.
Area determination module 36, for logging in regional information according to described login banner and at least one corresponding with described login banner, determines the conventional login area that described login banner is corresponding;
In specific implementation, described regional determination module 36 logs in regional information to corresponding at least one of obtained described login banner and adds up, and determines that the maximum login regional information of the frequency is regional as conventional logins that described login banner is corresponding.Such as: described regional acquisition module 35 obtains in 10 login regional informations corresponding to login banner, have and be shown as Shenzhen 6 times, have and be shown as Guangzhou 4 times, then described regional determination module 36 determines the conventional login area of Shenzhen as described login banner.Certainly, these are only and illustrate, log in regional information granularity can but be not restricted to city-level scope, can also be district's level scope or range of countries etc., such as: In Luohu District of Shenzhen Municipal, Enterprises of Futian District etc., or, China, the U.S. etc.
It should be noted that, if in the login regional information that described regional determination module 36 is added up, there are at least two kinds of frequencys logging in regional information identical, then described regional determination module 36 choose described at least two kinds log in regional informations, the nearest login regional information of distance current time is regional as conventional logins that login banner is corresponding.
Further, described login banner and conventional login area corresponding to the determined described login banner of described regional determination module 36 are preserved by described login checkout gear 3.
Coupling generation module 32, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
In specific implementation, described coupling generation module 32, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result.It should be noted that, described regional matching result is the log-on message that described coupling generation module 32 carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
Concrete, please also refer to Figure 14, for embodiments providing the structural representation of another kind of coupling generation module.Described coupling generation module 32 comprises: regional acquiring unit 321, area search unit 322 and coupling generation unit 323.
Area acquiring unit 321, for the log-on message of carrying according to described logging request, obtains current login area;
In specific implementation, the log-on message of described regional acquiring unit 321 entrained by described logging request, search the current login area matched with the log-on message entrained by described logging request, described server obtains described current login area.
Unit 322 is searched in area, for searching corresponding conventional login area according to described login banner;
In specific implementation, unit 322 is searched according to described login banner in described area, searches the conventional login area that the described login banner of described login checkout gear 3 preservation is corresponding.
Coupling generation unit 323, for mating described current login area and described conventional login area, generates regional matching result;
In specific implementation, described coupling generation unit 323 obtains the conventional login area of current login area and described area searching described login banner that unit 322 finds corresponding to described regional acquiring unit 321 and mates, and generates regional matching result.
In embodiments of the present invention, by adding up the login behavior of user, obtain the conventional login area that user uses login banner, area coupling is logged in the log-on message of carrying in current logging request, the log-on message uploaded when adopting user to log in carries out adding up the accuracy that can improve area coupling, and because the login area of most of user is relatively stable, can judge that whether this logging request is abnormal according to login area, the fail safe of the private data of user can be ensure that, and then the security performance of the private data of protection user, improve the experience of user.
One of ordinary skill in the art will appreciate that all or part of flow process realized in above-described embodiment method, that the hardware that can carry out instruction relevant by computer program has come, described program can be stored in a computer read/write memory medium, this program, when performing, can comprise the flow process of the embodiment as above-mentioned each side method.Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-Only Memory, ROM) or random store-memory body (Random Access Memory, RAM) etc.
Above disclosedly be only present pre-ferred embodiments, certainly can not limit the interest field of the present invention with this, therefore according to the equivalent variations that the claims in the present invention are done, still belong to the scope that the present invention is contained.
Claims (21)
1. log in a method for detection, it is characterized in that, comprising:
When receiving logging request corresponding to login banner, obtain the log-on message that described logging request is carried;
According to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
Determine whether described logging request is abnormal login request, to send information to user according to described regional matching result.
2. method according to claim 1, is characterized in that, described before receiving logging request corresponding to login banner, also comprises:
At least one log-on message uploaded according to login banner is obtained in preset time period;
According to described at least one log-on message uploaded, obtain at least one corresponding with described login banner and log in regional information;
Log in regional information according to described login banner and at least one corresponding with described login banner, determine the conventional login area that described login banner is corresponding.
3. method according to claim 1, is characterized in that, described according to described login banner, logs in area coupling, generate regional matching result, comprising the log-on message that described logging request is carried:
According to the log-on message that described logging request is carried, obtain current login area;
Corresponding conventional login area is searched according to described login banner;
Described current login area and described conventional login area are mated, generates regional matching result.
4. method according to claim 1, is characterized in that, describedly determines whether described logging request is abnormal login request, comprising according to described regional matching result:
If described current login area and described conventional login area are not mated, then determine that described logging request is abnormal login request.
5. log in a method for detection, it is characterized in that, comprising:
When logon server receives logging request corresponding to login banner, described logon server obtains the log-on message that described logging request is carried;
The log-on message that described login banner and described logging request carry is sent to login checkout gear by described logon server, to make described login checkout gear according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
Described logon server receives the described regional matching result that described login checkout gear sends, and determines whether described logging request is abnormal login request, to send information to user according to described regional matching result.
6. method according to claim 5, it is characterized in that, described regional matching result is the log-on message that described login checkout gear carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
7. method according to claim 5, is characterized in that, describedly determines whether described logging request is abnormal login request, comprising according to described regional matching result:
If described current login area and described conventional login area are not mated, then described logon server determines that described logging request is abnormal login request.
8. log in a method for detection, it is characterized in that, comprising:
Log in checkout gear and receive the login banner and the log-on message entrained by logging request corresponding to described login banner that logon server sends;
Described login checkout gear, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
Described regional matching result is sent to described logon server by described login checkout gear, determines whether described logging request is abnormal login request to make described logon server according to described regional matching result.
9. method according to claim 8, is characterized in that, described login checkout gear also comprises before receiving login banner that logon server sends and the log-on message entrained by logging request corresponding to described login banner:
Log in checkout gear in preset time period, obtain at least one log-on message uploaded according to login banner;
Described login checkout gear according to described at least one log-on message of uploading, obtain at least one corresponding with described login banner and log in regional information;
Described login checkout gear logs in regional information according to described login banner and at least one corresponding with described login banner, determines the conventional login area that described login banner is corresponding.
10. method according to claim 8, is characterized in that, described login checkout gear, according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result, comprising:
The log-on message that described login checkout gear carries according to described logging request, obtains current login area;
Described login checkout gear searches corresponding conventional login area according to described login banner;
Described login checkout gear mates described current login area and described conventional login area, generates regional matching result.
11. 1 kinds log in checkout gear, it is characterized in that, comprising:
Data obtaining module, for when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
Coupling generation module, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
Determine output module, for determining according to described regional matching result whether described logging request is abnormal login request, to send information to user.
12. devices according to claim 11, is characterized in that, also comprise:
Acquisition module, for obtaining at least one log-on message uploaded according to login banner in preset time period;
Area acquisition module, at least one log-on message uploaded described in basis, obtains at least one corresponding with described login banner and logs in regional information;
Area determination module, for logging in regional information according to described login banner and at least one corresponding with described login banner, determines the conventional login area that described login banner is corresponding.
13. devices according to claim 11, is characterized in that, described coupling generation module comprises:
Area acquiring unit, for the log-on message of carrying according to described logging request, obtains current login area;
Unit is searched in area, for searching corresponding conventional login area according to described login banner;
Coupling generation unit, for mating described current login area and described conventional login area, generates regional matching result.
14. devices according to claim 11, it is characterized in that, determine that described if output module does not mate specifically for described current login area and described conventional login area, then described server determines that described logging request is abnormal login request, to send information to user.
15. 1 kinds of logon servers, is characterized in that, comprising:
Data obtaining module, for when receiving logging request corresponding to login banner, obtains the log-on message that described logging request is carried;
Information sending module, log-on message for described login banner and described logging request being carried is sent to login checkout gear, to make described login checkout gear according to described login banner, area coupling is logged in the log-on message that described logging request is carried, generates regional matching result;
Receiving determination module, for receiving the described regional matching result that described login checkout gear sends, and determining whether described logging request is abnormal login request, to send information to user according to described regional matching result.
16. logon servers according to claim 15, it is characterized in that, described regional matching result is the log-on message that described login checkout gear carries according to described logging request, obtain current login area, and search corresponding conventional login area according to described login banner, generated result is mated to described current login area and described conventional login area.
17. logon servers according to claim 25, it is characterized in that, if described reception determination module does not mate specifically for described current login area and described conventional login area, then determine that described logging request is abnormal login request, to send information to user.
18. 1 kinds log in checkout gear, it is characterized in that, comprising:
Receiver module, the log-on message entrained by the logging request that login banner and described login banner for receiving logon server transmission are corresponding;
Coupling generation module, for according to described login banner, logs in area coupling to the log-on message that described logging request is carried, generates regional matching result;
According to described regional matching result, result sending module, for described regional matching result is sent to described logon server, determines whether described logging request is abnormal login request to make described logon server.
19. devices according to claim 18, is characterized in that, also comprise:
Acquisition module, for obtaining at least one log-on message uploaded according to login banner in preset time period;
Area acquisition module, at least one log-on message uploaded described in basis, obtains at least one corresponding with described login banner and logs in regional information;
Area determination module, for logging in regional information according to described login banner and at least one corresponding with described login banner, determines the conventional login area that described login banner is corresponding.
20. devices according to claim 18, is characterized in that, described coupling generation module comprises:
Area acquiring unit, for the log-on message of carrying according to described logging request, obtains current login area;
Unit is searched in area, for searching corresponding conventional login area according to described login banner;
Coupling generation unit, for mating described current login area and described conventional login area, generates regional matching result.
21. 1 kinds of systems logging in detection, is characterized in that, comprise the logon server as described in any one of claim 15-17 and the login checkout gear as described in any one of claim 18-20.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310364257.0A CN104426835B (en) | 2013-08-20 | 2013-08-20 | Login detection method, server, login detection device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310364257.0A CN104426835B (en) | 2013-08-20 | 2013-08-20 | Login detection method, server, login detection device and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104426835A true CN104426835A (en) | 2015-03-18 |
| CN104426835B CN104426835B (en) | 2020-03-20 |
Family
ID=52974798
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310364257.0A Active CN104426835B (en) | 2013-08-20 | 2013-08-20 | Login detection method, server, login detection device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104426835B (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106372475A (en) * | 2016-09-29 | 2017-02-01 | 广州鹤互联网科技有限公司 | User management method and system for electronic signature |
| CN106372535A (en) * | 2016-09-29 | 2017-02-01 | 广州鹤互联网科技有限公司 | User management method and system for electronic signature |
| CN106549902A (en) * | 2015-09-16 | 2017-03-29 | 阿里巴巴集团控股有限公司 | A kind of recognition methods of suspicious user and equipment |
| CN106685891A (en) * | 2015-11-06 | 2017-05-17 | 中国移动通信集团设计院有限公司 | Verification method and apparatus for accessing network |
| CN106789855A (en) * | 2015-11-25 | 2017-05-31 | 北京奇虎科技有限公司 | The method and device of user login validation |
| CN107634958A (en) * | 2017-09-30 | 2018-01-26 | 河南职业技术学院 | Computer security login method and computer security entering device |
| CN108810893A (en) * | 2018-05-30 | 2018-11-13 | 厦门盈趣科技股份有限公司 | A kind of internationalization version software user logs in exchange method and system |
| CN110445790A (en) * | 2019-08-12 | 2019-11-12 | 四川长虹电器股份有限公司 | A kind of account method for detecting abnormality logging in behavior based on user |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2007141085A (en) * | 2005-11-21 | 2007-06-07 | Fuji Xerox Co Ltd | Computer system, authentication control method, program and server-client system |
| CN102325062A (en) * | 2011-09-20 | 2012-01-18 | 北京神州绿盟信息安全科技股份有限公司 | Abnormal login detecting method and device |
| CN102413074A (en) * | 2011-11-30 | 2012-04-11 | 向进轮 | Method for detecting login of instant messenger terminal in another place |
| CN102664877A (en) * | 2012-03-30 | 2012-09-12 | 北京千橡网景科技发展有限公司 | Method and device for exception handling in login process |
| CN103001826A (en) * | 2012-11-29 | 2013-03-27 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
| CN103023718A (en) * | 2012-11-29 | 2013-04-03 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
| CN103095658A (en) * | 2011-11-03 | 2013-05-08 | 北京神州泰岳软件股份有限公司 | Account login method and system |
-
2013
- 2013-08-20 CN CN201310364257.0A patent/CN104426835B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2007141085A (en) * | 2005-11-21 | 2007-06-07 | Fuji Xerox Co Ltd | Computer system, authentication control method, program and server-client system |
| CN102325062A (en) * | 2011-09-20 | 2012-01-18 | 北京神州绿盟信息安全科技股份有限公司 | Abnormal login detecting method and device |
| CN103095658A (en) * | 2011-11-03 | 2013-05-08 | 北京神州泰岳软件股份有限公司 | Account login method and system |
| CN102413074A (en) * | 2011-11-30 | 2012-04-11 | 向进轮 | Method for detecting login of instant messenger terminal in another place |
| CN102664877A (en) * | 2012-03-30 | 2012-09-12 | 北京千橡网景科技发展有限公司 | Method and device for exception handling in login process |
| CN103001826A (en) * | 2012-11-29 | 2013-03-27 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
| CN103023718A (en) * | 2012-11-29 | 2013-04-03 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106549902A (en) * | 2015-09-16 | 2017-03-29 | 阿里巴巴集团控股有限公司 | A kind of recognition methods of suspicious user and equipment |
| CN106685891A (en) * | 2015-11-06 | 2017-05-17 | 中国移动通信集团设计院有限公司 | Verification method and apparatus for accessing network |
| CN106789855A (en) * | 2015-11-25 | 2017-05-31 | 北京奇虎科技有限公司 | The method and device of user login validation |
| CN106372475A (en) * | 2016-09-29 | 2017-02-01 | 广州鹤互联网科技有限公司 | User management method and system for electronic signature |
| CN106372535A (en) * | 2016-09-29 | 2017-02-01 | 广州鹤互联网科技有限公司 | User management method and system for electronic signature |
| CN107634958A (en) * | 2017-09-30 | 2018-01-26 | 河南职业技术学院 | Computer security login method and computer security entering device |
| CN108810893A (en) * | 2018-05-30 | 2018-11-13 | 厦门盈趣科技股份有限公司 | A kind of internationalization version software user logs in exchange method and system |
| CN110445790A (en) * | 2019-08-12 | 2019-11-12 | 四川长虹电器股份有限公司 | A kind of account method for detecting abnormality logging in behavior based on user |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104426835B (en) | 2020-03-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104426835A (en) | Login detection method, login server, and login detection device and system thereof | |
| CN106682028B (en) | Method, device and system for acquiring webpage application | |
| US9894052B2 (en) | Location service for user authentication | |
| EP3044987B1 (en) | Method and system for verifying an account operation | |
| CN102438000B (en) | A kind of many account logon methods and equipment | |
| EP3203709B1 (en) | Cloud service server and method for managing cloud service server | |
| CN104636924B (en) | Secure payment method, server and system | |
| CN101764819A (en) | methods and systems for detecting man-in-the-browser attacks | |
| CN107040518B (en) | Private cloud server login method and system | |
| CN104767775A (en) | Webpage application information push method and webpage application information push system | |
| CN103581108A (en) | Login authentication method, login authentication client, login authentication server and login authentication system | |
| CN103607284A (en) | Identity authentication method and equipment and server | |
| CN102413074A (en) | Method for detecting login of instant messenger terminal in another place | |
| CN102682009A (en) | Method and system for logging in webpage | |
| CN105323210A (en) | Method, apparatus and cloud server for detecting website security | |
| CN105516133A (en) | User identity verification method, server and client | |
| CN104967597A (en) | Third-party application message authentication method and system based on secure channel | |
| CN103281192B (en) | Method, device and system for retrieving data | |
| EP3068105A1 (en) | Synchronization method, terminal and server | |
| CN104901924A (en) | Internet account verifying method and device | |
| CN110445615A (en) | Network request security verification method, device, medium and electronic equipment | |
| CN104601440A (en) | Trace meeting based user recommendation method, related device and system | |
| CN105812413B (en) | Communication method and device | |
| CN103259818A (en) | Distributed data access system and distributed data access method | |
| CN102882686A (en) | Authentication method and authentication device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |