CN104426835B - Login detection method, server, login detection device and system - Google Patents
Login detection method, server, login detection device and system Download PDFInfo
- Publication number
- CN104426835B CN104426835B CN201310364257.0A CN201310364257A CN104426835B CN 104426835 B CN104426835 B CN 104426835B CN 201310364257 A CN201310364257 A CN 201310364257A CN 104426835 B CN104426835 B CN 104426835B
- Authority
- CN
- China
- Prior art keywords
- login
- area
- request
- information
- identifier
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1483—Countermeasures against malicious traffic service impersonation, e.g. phishing, pharming or web spoofing
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The embodiment of the invention discloses a login detection method, a server, a login detection device and a system thereof, wherein the method comprises the following steps: when a login server receives a login request corresponding to a login identifier, the login server acquires login information carried by the login request; the login server sends the login identification and login information carried by the login request to a login detection device, so that the login detection device performs login area matching on the login information carried by the login request according to the login identification to generate an area matching result; and the login server receives the region matching result sent by the login detection device, and determines whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user. The safety of the login account can be improved, and the user experience is improved.
Description
Technical Field
The invention relates to the technical field of computers, in particular to the technical field of login detection, and particularly relates to a login detection method, a server, a login detection device and a login detection system.
Background
With the rapid advance of internet technology, people increasingly have networked and informationized lives. The internet generally stores network private information of a user by using a unique login account and a login password, for example, a network hard disk, and the user can login in the hard disk space of the user by using the unique login account and the login password, so as to obtain private data in the hard disk.
At present, the means such as Trojan virus, phishing websites and the like appear, the login account and the login password of the user can be stolen, and the phenomenon that the account is stolen cannot be fundamentally avoided, so that the security of the login environment of the user is difficult to ensure, the security of the private data of the user cannot be well ensured, and the user experience is influenced.
Disclosure of Invention
The embodiment of the invention provides a login detection method, a server, a login detection device and a login detection system, which can improve the security of a login account and improve the experience of a user.
A first aspect of the present invention provides a method for login detection, which may include:
when a login request corresponding to a login identifier is received, login information carried by the login request is acquired;
according to the login identification, login area matching is carried out on login information carried by the login request, and an area matching result is generated;
and determining whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user.
A second aspect of the present invention provides another method for login detection, which may include:
when a login server receives a login request corresponding to a login identifier, the login server acquires login information carried by the login request;
the login server sends the login identification and login information carried by the login request to a login detection device, so that the login detection device performs login area matching on the login information carried by the login request according to the login identification to generate an area matching result;
and the login server receives the region matching result sent by the login detection device, and determines whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user.
A third aspect of the present invention provides a method for login detection, which may include:
the login detection device receives a login identification sent by a login server and login information carried by a login request corresponding to the login identification;
the login detection device carries out login area matching on login information carried by the login request according to the login identification to generate an area matching result;
and the login detection device sends the area matching result to the login server so that the login server determines whether the login request is an abnormal login request according to the area matching result.
A fourth aspect of the present invention provides a login detection apparatus, which may include:
the information acquisition module is used for acquiring login information carried by a login request when the login request corresponding to the login identifier is received;
the matching generation module is used for performing login area matching on login information carried by the login request according to the login identification to generate an area matching result;
and the determination output module is used for determining whether the login request is an abnormal login request according to the region matching result so as to send prompt information to the user.
A fifth aspect of the present invention provides a login server, which may include:
the information acquisition module is used for acquiring login information carried by a login request when the login request corresponding to the login identifier is received;
the information sending module is used for sending the login identification and the login information carried by the login request to a login detection device so that the login detection device can carry out login area matching on the login information carried by the login request according to the login identification to generate an area matching result;
and the receiving and determining module is used for receiving the region matching result sent by the login detection device, and determining whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user.
A sixth aspect of the present invention provides another login detection apparatus, which may include:
the receiving module is used for receiving the login identification sent by the login server and the login information carried by the login request corresponding to the login identification;
the matching generation module is used for performing login area matching on login information carried by the login request according to the login identification to generate an area matching result;
and the result sending module is used for sending the region matching result to the login server so that the login server can determine whether the login request is an abnormal login request according to the region matching result.
A seventh aspect of the present invention provides a system for login detection, which may include the login server provided in the fifth aspect and the login detection apparatus provided in the sixth aspect.
The embodiment of the invention has the following beneficial effects:
when a login request corresponding to the login identification is received, login area matching can be carried out on login information carried in the login request, and due to the fact that the login areas of most users are relatively stable, whether the login request is abnormal or not can be judged according to the login areas, the security of the login environment of the user is guaranteed, the security of private data of the user is further guaranteed, and user experience is improved.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
FIG. 1 is an interaction diagram of login detection according to an embodiment of the present invention;
fig. 2 is a schematic flowchart of a login detection method according to an embodiment of the present invention;
FIG. 3 is a flow chart illustrating another method for login detection according to an embodiment of the present invention;
FIG. 4 is a flowchart illustrating a further method for login detection according to an embodiment of the present invention;
FIG. 5 is an interaction diagram of another login detection provided by an embodiment of the invention;
FIG. 6 is a flowchart illustrating a further method for login detection according to an embodiment of the present invention;
FIG. 7 is a flowchart illustrating a further method for login detection according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of a login server according to an embodiment of the present invention;
fig. 9 is a schematic structural diagram of a login detection apparatus according to an embodiment of the present invention;
FIG. 10 is a schematic structural diagram of another login detection device according to an embodiment of the present invention;
fig. 11 is a schematic structural diagram of a match generation module according to an embodiment of the present invention;
fig. 12 is a schematic structural diagram of another login detection apparatus according to an embodiment of the present invention;
fig. 13 is a schematic structural diagram of another login detection apparatus according to an embodiment of the present invention;
fig. 14 is a schematic structural diagram of another matching generation module according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
In the embodiment of the present invention, the client may include: terminal devices such as a PC (Personal Computer), a tablet Computer, a mobile phone, a smart phone, and a notebook Computer; the client may also be a client module in the terminal device, for example: a web (web) browser client, an instant messaging client, etc.
The login detection method provided by the embodiment of the invention can be applied to a scene that a client sends a login request to a login server, for example: and the client sends a login request to the login server to request a scene authenticated by the user account, and the like. The login server can be used for providing a service of authentication authority for the client, and the login detection device can be used for performing login area matching on login information carried by a login request corresponding to a login identifier sent by the login server.
Referring to fig. 1, an interaction diagram of login detection is provided in the embodiment of the present invention. When a login server receives a login request corresponding to a login identifier sent by a client, the login server obtains login information carried by the login request corresponding to the login identifier, and sends the login identifier and the login information carried by the login request to a login detection device, the login detection device carries out login area matching on the login information carried by the login request according to the login identifier, generates an area matching result, sends the area matching result to the login server, and the login server determines whether the login request is an abnormal login request according to the area matching result and outputs prompt information. The login identifier in this embodiment may be a login account of the user.
The following describes in detail a method for performing login detection by a login server and a login detection apparatus according to an embodiment of the present invention with reference to fig. 2 to 4.
Referring to fig. 2, a flowchart of a login detection method according to an embodiment of the present invention is shown. The embodiment of the present invention describes a specific process of a method for detecting login from a login server side, and the method may include the following steps S101 to S103.
S101, when a login server receives a login request corresponding to a login identifier, the login server acquires login information carried by the login request;
specifically, when the login server receives a login request corresponding to a login identifier sent by a client, if the login server determines that the login request is an abnormal login request, for example: and the login server receives a plurality of login requests corresponding to the login identification within a period of time, and the like. The login server obtains login information carried by the login request, where the login information may include an IP (Internet Protocol) address or LBS (Location Based Service) information.
S102, the login server sends the login identification and login information carried by the login request to a login detection device, so that the login detection device performs login area matching on the login information carried by the login request according to the login identification to generate an area matching result;
specifically, the login server sends the login identification and the obtained login information carried by the login request to a login detection device, and the login detection device performs login area matching on the login information carried by the login request according to the login identification to generate an area matching result.
It should be noted that the region matching result is a result generated by the login detection device obtaining a current login region according to login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
S103, the login server receives the region matching result sent by the login detection device, and determines whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user;
specifically, the login server receives the region matching result sent by the login detection device, and if the current login region is matched with the common login region, the login server determines that the login request is a normal login request; and if the current login area is not matched with the common login area, the login server determines that the login request is an abnormal login request.
It should be noted that, when the login server determines that the login request is an abnormal login request, a prompt message may be sent to the client; or sending an interface of 'input verification code' to the client to request the user to input the verification code; or a suspend identifier may be set for the login identifier until the user authenticates the login identifier, for example: and inputting the bound identity card number, the bound mobile phone number and the like, the login server removes the suspended use identifier, and the user can continue to use the login identifier to perform login operation.
In the embodiment of the invention, when the login request corresponding to the login identification is received, login area matching can be carried out on the login information carried in the login request, and because the login areas of most users are relatively stable, whether the login request is abnormal or not can be judged according to the login areas, so that the security of the login environment of the user is ensured, the security of private data of the user is further ensured, and the user experience is improved.
Referring to fig. 3, a flowchart of another login detection method according to an embodiment of the present invention is provided. The present embodiment describes a specific flow of a method for login detection from a login detection apparatus side, and the method may include the following steps S201 to S203.
S201, a login detection device receives a login identification sent by a login server and login information carried by a login request corresponding to the login identification;
specifically, when the login server receives a login request corresponding to a login identifier sent by a client, if the login server determines that the login request is an abnormal login request, for example: and the login server receives a plurality of login requests corresponding to the login identification within a period of time, and the like. The login server obtains login information carried by the login request, where the login information may include an IP address or LBS information, and the login server sends the login identifier and the login information carried by the login request to a login detection device. And the login detection device receives a login identification sent by the login server and login information carried by the login request.
S202, the login detection device performs login area matching on login information carried by the login request according to the login identification to generate an area matching result;
specifically, the login detection device performs login area matching on login information carried by the login request according to the login identification to generate an area matching result. It should be noted that the region matching result is a result generated by the login detection device obtaining a current login region according to login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
S203, the login detection device sends the area matching result to the login server so that the login server determines whether the login request is an abnormal login request according to the area matching result;
specifically, the login detection device sends the generated region matching result to the login server, the login server receives the region matching result sent by the login detection device, and if the current login region is matched with the common login region, the login server determines that the login request is a normal login request; and if the current login area is not matched with the common login area, the login server determines that the login request is an abnormal login request.
In the embodiment of the invention, when the login server receives the login request corresponding to the login identifier, the login detection device can perform login area matching on login information carried in the login request, and because the login areas of most users are relatively stable, whether the login request is abnormal or not can be judged according to the login areas, so that the security of the login environment of the users is ensured, the security of private data of the users is further ensured, and the user experience is improved.
Referring to fig. 4, a flowchart of another login detection method according to an embodiment of the present invention is provided. The present embodiment describes a specific flow of a method for login detection from a login detection apparatus side, and the method may include the following steps S301 to S308.
S301, the login detection device acquires at least one login message uploaded according to the login identification in a preset time period;
specifically, when logging in a client using a login identifier, the client may report the login identifier and login information corresponding to the login identifier to the login detection device, and within a preset time period, the login detection device obtains at least one login information uploaded according to the login identifier.
The preset time period may be a fixed time period, for example: every 30 days, the login detection device acquires at least one login message uploaded according to the login identification; the at least one login information is determined by the number of times the login identifier requests login within the preset time period, for example: logging in a login server for 10 times through a client within 30 days by using the login identification, wherein the login detection device can acquire 10 login information uploaded according to the login identification; the login information may include an IP address or LBS information.
S302, the login detection device acquires at least one login area information corresponding to the login identification according to the uploaded at least one login information;
specifically, the login detection device searches for login area information matched with each login information according to the uploaded at least one login information, and obtains at least one login area information corresponding to the login identifier.
S303, the login detection device determines a common login area corresponding to the login identification according to the login identification and at least one login area information corresponding to the login identification;
specifically, the login detection device counts at least one login area information corresponding to the acquired login identification, and determines the login area information with the largest frequency as the common login area corresponding to the login identification. For example: and the login detection device acquires 10 login region information corresponding to the login identification, wherein 6 times of the 10 login region information are displayed as Shenzhen city, and 4 times of the 10 login region information are displayed as Guangzhou city, and then the login detection device determines the Shenzhen city as a common login region of the login identification. Of course, the above is merely an example, and the granularity of the login region information may be, but is not limited to, a city-level range, a district-level range, a country-level range, or the like, for example: shenzhen luhu region, Shenzhen futian region, etc., or China, USA, etc.
It should be noted that, if there are at least two types of login area information with the same frequency in the login area information counted by the login detection device, the login detection device selects the login area information closest to the current time from the at least two types of login area information as the common login area corresponding to the login identifier.
Further, the login detection device stores the login identification and the determined common login area corresponding to the login identification.
S304, the login detection device receives a login identification sent by a login server and login information carried by a login request corresponding to the login identification;
s305, the login detection device acquires the current login area according to the login information carried by the login request;
specifically, the login detection device searches for a current login area matched with login information carried by the login request according to the login information carried by the login request, and the login detection device acquires the current login area.
S306, the login detection device searches a corresponding common login area according to the login identification;
specifically, the login detection device searches for a common login area corresponding to the stored login identifier according to the login identifier.
S307, the login detection device matches the current login area with the common login area to generate an area matching result;
specifically, the login detection device matches the current login area with the searched common login area corresponding to the login identifier to generate an area matching result.
S308, the login detection device sends the area matching result to the login server so that the login server can determine whether the login request is an abnormal login request according to the area matching result.
Steps S304 and S308 in the embodiment of the present invention may refer to steps S201 and S203 in the embodiment shown in fig. 3, respectively, and are not described herein again.
In the embodiment of the invention, the login behavior of the user is counted to obtain the common login area of the login identifier used by the user, the login information carried in the current login request is subjected to login area matching, the accuracy of area matching can be improved by counting the login information uploaded during login of the user, and the login areas of most users are relatively stable, so that whether the login request is abnormal or not can be judged according to the login areas, the security of the login environment of the user can be ensured, the security of the private data of the user is ensured, and the experience of the user is improved.
Of course, the process of the login detection of the client executed by the login server and the login detection device may also be executed in a unified manner by a login detection device, that is, the login detection device integrates the login server and the login detection device. Referring to fig. 5, another interaction diagram of login detection is provided in the embodiment of the present invention.
When a login detection device receives a login request corresponding to a login identifier sent by a client, the login detection device obtains login information carried by the login request corresponding to the login identifier, login area matching is carried out on the login information carried by the login request according to the login identifier, an area matching result is generated, and the login detection device determines whether the login request is an abnormal login request according to the area matching result and outputs prompt information. The login identifier in this embodiment may be a login account of the user.
The method for performing login detection by the login detection device according to the embodiment of the present invention will be described in detail with reference to fig. 6 and 7.
Referring to fig. 6, a flowchart of another login detection method according to an embodiment of the present invention is provided. The method of an embodiment of the present invention may include the following steps S401 to S403.
S401, when a login request corresponding to a login identifier is received, login information carried by the login request is obtained;
specifically, when the login detection device receives a login request corresponding to a login identifier sent by a client, if the login detection device determines that the login request is an abnormal login request, for example: and the login detection device receives a plurality of login requests corresponding to the login identification in a period of time, and the like. The login detection device obtains login information carried by the login request, where the login information may include an IP address or LBS information.
S402, according to the login identification, login area matching is carried out on login information carried by the login request, and an area matching result is generated;
specifically, the login detection device performs login area matching on login information carried by the login request according to the login identification to generate an area matching result. It should be noted that the region matching result is a result generated by the login detection device obtaining a current login region according to login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
S403, determining whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user;
specifically, if the current login area is matched with the common login area, the login detection device determines that the login request is a normal login request; and if the current login area and the common login area are not matched, the login detection device determines that the login request is an abnormal login request.
It should be noted that, when the login detection device determines that the login request is an abnormal login request, prompt information may be sent to the client; or sending an interface of 'input verification code' to the client to request the user to input the verification code; or setting a pause use identifier for the login identifier until a user authenticates the login identifier, for example: and the login detection device releases the suspended use identifier only by inputting the bound identity card number, the bound mobile phone number and the like, and the user can continue to use the login identifier to perform login operation.
In the embodiment of the invention, when the login request corresponding to the login identification is received, login area matching can be carried out on the login information carried in the login request, and because the login areas of most users are relatively stable, whether the login request is abnormal or not can be judged according to the login areas, so that the security of the login environment of the user is ensured, the security of private data of the user is further ensured, and the user experience is improved.
Referring to fig. 7, a flowchart of another login detection method according to an embodiment of the present invention is provided. The method of the embodiment of the present invention may include the following steps S501 to S508.
S501, acquiring at least one login message uploaded according to a login identifier in a preset time period;
specifically, when logging in a client using a login identifier, the client may report the login identifier and login information corresponding to the login identifier to the login detection device, and within a preset time period, the login detection device obtains at least one login information uploaded according to the login identifier.
The preset time period may be a fixed time period, for example: every 30 days, the login detection device acquires at least one login message uploaded according to the login identification; the at least one login information is determined by the number of times the login identifier requests login within the preset time period, for example: logging in a login detection device for 10 times by a client within 30 days by using the login identification, wherein the login detection device can acquire 10 login information uploaded according to the login identification; the login information may include an IP address or LBS information.
S502, obtaining at least one login area information corresponding to the login identification according to the uploaded at least one login information;
specifically, the login detection device searches for login area information matched with each login information according to the uploaded at least one login information, and obtains at least one login area information corresponding to the login identifier.
S503, determining a common login area corresponding to the login identification according to the login identification and at least one login area information corresponding to the login identification;
specifically, the login detection device counts at least one login area information corresponding to the acquired login identification, and determines the login area information with the largest frequency as the common login area corresponding to the login identification. For example: and the login detection device acquires 10 login region information corresponding to the login identification, wherein 6 times of the 10 login region information are displayed as Shenzhen city, and 4 times of the 10 login region information are displayed as Guangzhou city, and then the login detection device determines the Shenzhen city as a common login region of the login identification. Of course, the above is merely an example, and the granularity of the login region information may be, but is not limited to, a city-level range, a district-level range, a country-level range, or the like, for example: shenzhen luhu region, Shenzhen futian region, etc., or China, USA, etc.
It should be noted that, if there are at least two types of login area information with the same frequency in the login area information counted by the login detection device, the login detection device selects the login area information closest to the current time from the at least two types of login area information as the common login area corresponding to the login identifier.
Further, the login detection device stores the login identification and the determined common login area corresponding to the login identification.
S504, when a login request corresponding to a login identifier is received, login information carried by the login request is obtained;
s505, acquiring a current login area according to login information carried by the login request;
specifically, the login detection device searches for a current login area matched with login information carried by the login request according to the login information carried by the login request, and the login detection device acquires the current login area.
S506, searching a corresponding common login area according to the login identification;
specifically, the login detection device searches for a common login area corresponding to the stored login identifier according to the login identifier.
S507, matching the current login area with the common login area to generate an area matching result;
specifically, the login detection device matches the current login area with the searched common login area corresponding to the login identifier to generate an area matching result.
S508, determining whether the login request is an abnormal login request according to the region matching result, and sending prompt information to a user.
Steps S504 and S508 in the embodiment of the present invention may refer to steps S401 and S403 in the embodiment shown in fig. 6, respectively, and are not described herein again.
In the embodiment of the invention, the login behavior of the user is counted to obtain the common login area of the login identifier used by the user, the login area matching is carried out on the login information carried in the current login request, the accuracy of the area matching can be improved by counting the login information uploaded during the login of the user, and the login area of most users is relatively stable, so that whether the login request is abnormal or not can be judged according to the login area, the security of the login environment of the user can be ensured, the security of the private data of the user is ensured, and the experience of the user is improved.
The login server provided by the embodiment of the present invention will be described in detail below with reference to fig. 8. It should be noted that the login server shown in fig. 8 is used for executing the method according to the embodiment of the present invention shown in fig. 2, and for convenience of description, only the portion related to the embodiment of the present invention is shown, and details of the technology are not disclosed, please refer to the embodiment of the present invention shown in fig. 2.
Please refer to fig. 8, which provides a schematic structural diagram of a login server according to an embodiment of the present invention. As shown in fig. 8, the login server 1 according to the embodiment of the present invention may include: an information acquisition module 11, an information transmission module 12 and a reception determination module 13.
The information acquisition module 11 is configured to, when a login request corresponding to a login identifier is received, acquire login information carried by the login request;
in a specific implementation, when the login server 1 receives a login request corresponding to a login identifier sent by a client, if the login server 1 determines that the login request is an abnormal login request, for example: and the login server 1 receives a plurality of login requests corresponding to the login identification in a period of time, and the like. The information obtaining module 11 obtains the login information carried by the login request, where the login information may include an IP address or LBS information.
The information sending module 12 is configured to send the login identifier and the login information carried by the login request to a login detection device, so that the login detection device performs login area matching on the login information carried by the login request according to the login identifier, and generates an area matching result;
in a specific implementation, the information sending module 12 sends the login identifier and the obtained login information carried by the login request to a login detection device, and the login detection device performs login area matching on the login information carried by the login request according to the login identifier to generate an area matching result.
It should be noted that the region matching result is a result generated by the login detection device obtaining a current login region according to login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
A receiving and determining module 13, configured to receive the region matching result sent by the login detection device, and determine whether the login request is an abnormal login request according to the region matching result, so as to send a prompt message to a user;
in a specific implementation, the receiving and determining module 13 receives the region matching result sent by the login detection device, and if the current login region matches the common login region, the receiving and determining module 13 determines that the login request is a normal login request; if the current login area and the common login area do not match, the reception determination module 13 determines that the login request is an abnormal login request.
It should be noted that, when the receiving determining module 13 determines that the login request is an abnormal login request, a prompt message may be sent to the client; or sending an interface of 'input verification code' to the client to request the user to input the verification code; or a suspend identifier may be set for the login identifier until the user authenticates the login identifier, for example: the login server 1 releases the suspended use identifier only by inputting the bound identity card number, the bound mobile phone number and the like, and the user can continue to use the login identifier to perform login operation.
In the embodiment of the invention, when the login request corresponding to the login identification is received, login area matching can be carried out on the login information carried in the login request, and because the login areas of most users are relatively stable, whether the login request is abnormal or not can be judged according to the login areas, so that the security of the login environment of the user is ensured, the security of private data of the user is further ensured, and the user experience is improved.
The following describes the registration detection apparatus according to the embodiment of the present invention in detail with reference to fig. 9 to 11. It should be noted that, the login detection apparatus shown in fig. 9-11 is used for executing the method of the embodiment shown in fig. 3 and 4 of the present invention, for convenience of description, only the portion related to the embodiment of the present invention is shown, and details of the specific technology are not disclosed, please refer to the embodiment shown in fig. 3 and 4 of the present invention.
Fig. 9 is a schematic structural diagram of a login detection device according to an embodiment of the present invention. As shown in fig. 9, the login detection apparatus 2 according to the embodiment of the present invention may include: a receiving module 21, a matching generation module 22 and a result sending module 23.
The receiving module 21 is configured to receive a login identifier sent by a login server and login information carried by a login request corresponding to the login identifier;
in a specific implementation, when a login server receives a login request corresponding to a login identifier sent by a client, if the login server determines that the login request is an abnormal login request, for example: and the login server receives a plurality of login requests corresponding to the login identification within a period of time, and the like. The login server obtains login information carried by the login request, where the login information may include an IP address or LBS information, and the login server sends the login identifier and the login information carried by the login request to the login detection apparatus 2. The receiving module 21 receives the login identifier sent by the login server and the login information carried by the login request.
The matching generation module 22 is configured to perform login area matching on login information carried by the login request according to the login identifier, and generate an area matching result;
in a specific implementation, the matching generation module 22 performs login area matching on login information carried by the login request according to the login identifier, and generates an area matching result. It should be noted that the region matching result is a result generated by the matching generation module 22 obtaining a current login region according to the login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
A result sending module 23, configured to send the region matching result to the login server, so that the login server determines whether the login request is an abnormal login request according to the region matching result;
in a specific implementation, the result sending module 23 sends the area matching result generated by the matching generating module 22 to the login server, the login server receives the area matching result sent by the result sending module 23, and if the current login area is matched with the common login area, the login server determines that the login request is a normal login request; and if the current login area is not matched with the common login area, the login server determines that the login request is an abnormal login request.
In the embodiment of the invention, when the login server receives the login request corresponding to the login identifier, the login detection device can perform login area matching on login information carried in the login request, and because the login areas of most users are relatively stable, whether the login request is abnormal or not can be judged according to the login areas, so that the security of the login environment of the users is ensured, the security of private data of the users is further ensured, and the user experience is improved.
Fig. 10 is a schematic structural diagram of another login detection device according to an embodiment of the present invention. The login detection apparatus 2 according to the embodiment of the present invention may include: a receiving module 21, a matching generation module 22, a result sending module 23, an obtaining module 24, a region obtaining module 25 and a region determining module 26; the structures of the receiving module 21 and the result sending module 23 may refer to the description related to the embodiment shown in fig. 9, and are not described herein again.
An obtaining module 24, configured to obtain at least one login information uploaded according to the login identifier within a preset time period;
in a specific implementation, when a login identifier is used to log in a client, the client may report the login identifier and login information corresponding to the login identifier to the login detection device 1, and the obtaining module 24 obtains at least one login information uploaded according to the login identifier within a preset time period.
The preset time period may be a fixed time period, for example: every 30 days, the obtaining module 24 obtains at least one login information uploaded according to the login identification; the at least one login information is determined by the number of times the login identifier requests login within the preset time period, for example: the login identification is used for logging in the login server for 10 times through the client within 30 days, and the acquisition module 24 can acquire 10 login information uploaded according to the login identification; the login information may include an IP address or LBS information.
The area obtaining module 25 is configured to obtain at least one login area information corresponding to the login identifier according to the uploaded at least one login information;
in a specific implementation, the region obtaining module 25 searches for login region information matched with each login information according to the uploaded at least one login information, and obtains at least one login region information corresponding to the login identifier.
A region determining module 26, configured to determine a common login region corresponding to the login identifier according to the login identifier and at least one login region information corresponding to the login identifier;
in a specific implementation, the region determining module 26 performs statistics on at least one login region information corresponding to the obtained login identifier, and determines the login region information with the highest frequency as a common login region corresponding to the login identifier. For example: in the 10 pieces of login region information corresponding to the login identifier, which are obtained by the region obtaining module 25, if 6 times are displayed as shenzhen city and 4 times are displayed as guangzhou city, the region determining module 26 determines the shenzhen city as the common login region of the login identifier. Of course, the above is merely an example, and the granularity of the login region information may be, but is not limited to, a city-level range, a district-level range, a country-level range, or the like, for example: shenzhen luhu region, Shenzhen futian region, etc., or China, USA, etc.
It should be noted that, if there are at least two types of login area information with the same frequency in the login area information counted by the area determination module 26, the area determination module 26 selects the login area information closest to the current time in the at least two types of login area information as the common login area corresponding to the login identifier.
Further, the login detection device 2 stores the login identifier and the common login area corresponding to the login identifier determined by the area determination module 26.
The matching generation module 22 is configured to perform login area matching on login information carried by the login request according to the login identifier, and generate an area matching result;
in a specific implementation, the matching generation module 22 performs login area matching on login information carried by the login request according to the login identifier, and generates an area matching result. It should be noted that the region matching result is a result generated by the matching generation module 22 obtaining a current login region according to the login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
Specifically, please refer to fig. 11, which provides a schematic structural diagram of a matching generation module according to an embodiment of the present invention. The matching generation module 22 includes: a region acquisition unit 221, a region search unit 222, and a matching generation unit 223.
A region obtaining unit 221, configured to obtain a current login region according to login information carried by the login request;
in a specific implementation, the region obtaining unit 221 searches a current login region matching the login information carried by the login request according to the login information carried by the login request, and the region obtaining unit 221 obtains the current login region.
A region searching unit 222, configured to search a corresponding common login region according to the login identifier;
in a specific implementation, the region searching unit 222 searches, according to the login identifier, a common login region corresponding to the login identifier stored in the login detection device 2.
A matching generation unit 223, configured to match the current login area with the common login area, and generate an area matching result;
in a specific implementation, the matching generating unit 223 matches the current login area acquired by the area acquiring unit 221 with the common login area corresponding to the login identifier found by the area searching unit 222, so as to generate an area matching result.
In the embodiment of the invention, the login behavior of the user is counted to obtain the common login area of the login identifier used by the user, the login information carried in the current login request is subjected to login area matching, the accuracy of area matching can be improved by counting the login information uploaded during login of the user, and the login areas of most users are relatively stable, so that whether the login request is abnormal or not can be judged according to the login areas, the security of the private data of the user can be ensured, the security performance of the private data of the user is further protected, and the experience of the user is improved.
The embodiment of the invention also discloses a system for login detection, which comprises a login server 1 in the embodiment shown in fig. 8, and further comprises a login detection device 2 in the embodiments shown in fig. 9-11. It should be noted that the system for detecting login of the present embodiment can be applied to the method described above.
In the embodiment of the invention, the login behavior of the user is counted to obtain the common login area of the login identifier used by the user, the login area matching is carried out on the login information carried in the current login request, the accuracy of the area matching can be improved by counting the login information uploaded during the login of the user, and the login area of most users is relatively stable, so that whether the login request is abnormal or not can be judged according to the login area, the security of the login environment of the user can be ensured, the security of the private data of the user is ensured, and the experience of the user is improved.
Another login detection device provided by the embodiment of the present invention will be described in detail below with reference to fig. 12 to 14. It should be noted that, the server shown in fig. 12-14 is used for executing the method of the embodiment shown in fig. 6 and 7 of the present invention, for convenience of description, only the portion related to the embodiment of the present invention is shown, and details of the specific technology are not disclosed, please refer to the embodiment shown in fig. 6 and 7 of the present invention, wherein, the login detection apparatus 3 shown in fig. 12-14 may integrate the login server 1 shown in fig. 8 and the login detection apparatus 2 shown in fig. 9-11.
Fig. 12 is a schematic structural diagram of another login detection device according to an embodiment of the present invention. As shown in fig. 12, the login detection apparatus 3 according to the embodiment of the present invention may include: an information acquisition module 31, a matching generation module 32, and a determination output module 33.
The information acquisition module 31 is configured to, when a login request corresponding to a login identifier is received, acquire login information carried by the login request;
in a specific implementation, when the login detection device 3 receives a login request corresponding to a login identifier sent by a client, if the login detection device 3 determines that the login request is an abnormal login request, for example: the login detection device 3 receives multiple login requests corresponding to the login identification within a period of time, and the like. The information obtaining module 31 obtains the login information carried by the login request, where the login information may include an IP address or LBS information.
The matching generation module 32 is used for performing login area matching on login information carried by the login request according to the login identification to generate an area matching result;
in a specific implementation, the matching generation module 32 performs login area matching on login information carried by the login request according to the login identifier, and generates an area matching result. It should be noted that the region matching result is a result generated by the matching generation module 32 obtaining a current login region according to login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
A determination output module 33, configured to determine whether the login request is an abnormal login request according to the region matching result, so as to send a prompt message to a user;
in a specific implementation, if the current login area is matched with the common login area, the output module 33 is determined to determine that the login request is a normal login request; if the current login area and the common login area do not match, the determination output module 33 determines that the login request is an abnormal login request.
It should be noted that when the determination output module 33 determines that the login request is an abnormal login request, a prompt message may be sent to the client; or sending an interface of 'input verification code' to the client to request the user to input the verification code; or setting a pause use identifier for the login identifier until a user authenticates the login identifier, for example: the login detection device 3 releases the suspended use identifier only by inputting the bound identity card number, the bound mobile phone number and the like, and the user can continue to use the login identifier to perform login operation.
In the embodiment of the invention, when the login request corresponding to the login identification is received, login area matching can be carried out on the login information carried in the login request, and because the login areas of most users are relatively stable, whether the login request is abnormal or not can be judged according to the login areas, so that the security of the login environment of the user is ensured, the security of private data of the user is further ensured, and the user experience is improved.
Fig. 13 is a schematic structural diagram of another login detection device according to an embodiment of the present invention. The login detection apparatus 3 according to the embodiment of the present invention may include: an information acquisition module 31, a matching generation module 32, a determination output module 33, an acquisition module 34, a region acquisition module 35, and a region determination module 36; the structures of the information obtaining module 31 and the determination output module 33 may refer to the description related to the embodiment shown in fig. 12, and are not described herein again.
An obtaining module 34, configured to obtain at least one login information uploaded according to the login identifier within a preset time period;
in a specific implementation, when a login identifier is used to log in a client, the client may report the login identifier and login information corresponding to the login identifier to the login detection device 3, and the obtaining module 34 obtains at least one piece of login information uploaded according to the login identifier within a preset time period.
The preset time period may be a fixed time period, for example: every 30 days, the obtaining module 34 obtains at least one login information uploaded according to the login identification; the at least one login information is determined by the number of times the login identifier requests login within the preset time period, for example: the login identification is used for logging in the login server for 10 times through the client within 30 days, and the acquisition module 34 can acquire 10 login information uploaded according to the login identification; the login information may include an IP address or LBS information.
The area obtaining module 35 is configured to obtain at least one login area information corresponding to the login identifier according to the uploaded at least one login information;
in a specific implementation, the region obtaining module 35 searches for login region information matched with each login information according to the uploaded at least one login information, and obtains at least one login region information corresponding to the login identifier.
A region determining module 36, configured to determine, according to the login identifier and at least one login region information corresponding to the login identifier, a common login region corresponding to the login identifier;
in a specific implementation, the region determining module 36 performs statistics on at least one login region information corresponding to the obtained login identifier, and determines the login region information with the highest frequency as a common login region corresponding to the login identifier. For example: in the 10 pieces of login region information corresponding to the login identifier, which are obtained by the region obtaining module 35, if 6 times are displayed as shenzhen city and 4 times are displayed as guangzhou city, the region determining module 36 determines that the shenzhen city is used as the common login region of the login identifier. Of course, the above is merely an example, and the granularity of the login region information may be, but is not limited to, a city-level range, a district-level range, a country-level range, or the like, for example: shenzhen luhu region, Shenzhen futian region, etc., or China, USA, etc.
It should be noted that, if at least two types of login area information have the same frequency in the login area information counted by the area determination module 36, the area determination module 36 selects the login area information closest to the current time in the at least two types of login area information as the common login area corresponding to the login identifier.
Further, the login detection apparatus 3 stores the login identifier and the common login area corresponding to the login identifier determined by the area determination module 36.
The matching generation module 32 is used for performing login area matching on login information carried by the login request according to the login identification to generate an area matching result;
in a specific implementation, the matching generation module 32 performs login area matching on login information carried by the login request according to the login identifier, and generates an area matching result. It should be noted that the region matching result is a result generated by the matching generation module 32 obtaining a current login region according to login information carried by the login request, searching for a corresponding common login region according to the login identifier, and matching the current login region and the common login region.
Specifically, please refer to fig. 14, which provides a schematic structural diagram of another matching generation module according to an embodiment of the present invention. The match generation module 32 includes: a region acquisition unit 321, a region search unit 322, and a matching generation unit 323.
A region obtaining unit 321, configured to obtain a current login region according to login information carried by the login request;
in a specific implementation, the region obtaining unit 321 searches a current login region matching the login information carried by the login request according to the login information carried by the login request, and the server obtains the current login region.
A region searching unit 322, configured to search a corresponding common login region according to the login identifier;
in a specific implementation, the area searching unit 322 searches, according to the login identifier, a common login area corresponding to the login identifier stored in the login detection apparatus 3.
A matching generation unit 323, configured to match the current login area and the common login area, and generate an area matching result;
in a specific implementation, the matching generating unit 323 matches the current login area acquired by the area acquiring unit 321 with the common login area corresponding to the login identifier found by the area searching unit 322, so as to generate an area matching result.
In the embodiment of the invention, the login behavior of the user is counted to obtain the common login area of the login identifier used by the user, the login information carried in the current login request is subjected to login area matching, the accuracy of area matching can be improved by counting the login information uploaded during login of the user, and the login areas of most users are relatively stable, so that whether the login request is abnormal or not can be judged according to the login areas, the security of the private data of the user can be ensured, the security performance of the private data of the user is further protected, and the experience of the user is improved.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), or the like.
The above disclosure is only for the purpose of illustrating the preferred embodiments of the present invention, and it is therefore to be understood that the invention is not limited by the scope of the appended claims.
Claims (16)
1. A method of login detection, comprising:
acquiring at least one login information uploaded according to the login identification within a preset time period;
acquiring at least one login area information corresponding to the login identification according to the uploaded at least one login information;
determining login area information with the maximum frequency as a common login area corresponding to the login identification according to the login identification and at least one login area information corresponding to the login identification; if the frequency of at least two login area information is the same in the login area information, selecting the login area information closest to the current time from the at least two login area information as a common login area corresponding to the login identification;
when a login request corresponding to a login identifier is received, if the login request is judged to be an abnormal login request, login information carried by the login request is obtained, wherein when the number of times of receiving the login request corresponding to the login identifier in a preset time period is larger than or equal to a preset number threshold, the login request is determined to be abnormal login;
according to the login identification, login area matching is carried out on login information carried by the login request, and an area matching result is generated;
determining whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user;
and when the login request is an abnormal login request, setting a suspended use identifier for the login identifier, and releasing the suspended use identifier until a user verifies the login identifier.
2. The method according to claim 1, wherein said performing login area matching on login information carried in the login request according to the login identifier to generate an area matching result comprises:
acquiring a current login area according to login information carried by the login request;
searching a corresponding common login area according to the login identification;
and matching the current login area with the common login area to generate an area matching result.
3. The method of claim 1, wherein said determining whether said login request is an abnormal login request according to said region matching result comprises:
and if the current login area is not matched with the common login area, determining that the login request is an abnormal login request.
4. A method of login detection, comprising:
when a login server receives a login request corresponding to a login identifier, if the login request is judged to be an abnormal login request, the login server acquires login information carried by the login request, wherein when the number of times of receiving the login request corresponding to the login identifier in a preset time period is greater than or equal to a preset number threshold, the login request is determined to be abnormal login;
the login server sends the login identification and login information carried by the login request to a login detection device, so that the login detection device performs login area matching on the login information carried by the login request according to the login identification to generate an area matching result; the region matching result is a result generated by the login detection device acquiring a current login region according to login information carried by the login request, searching a corresponding common login region according to the login identification and matching the current login region with the common login region;
wherein the common login area is the login area with the largest frequency; if the frequency of at least two login area information is the same in the login area information, selecting the login area information closest to the current time from the at least two login area information as a common login area corresponding to the login identification;
the login server receives the region matching result sent by the login detection device, and determines whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user; and when the login request is an abnormal login request, setting a pause use identifier for the login identifier, and the login server does not release the pause use identifier until the user verifies the login identifier.
5. The method of claim 4, wherein said determining whether the login request is an abnormal login request according to the region matching result comprises:
and if the current login area is not matched with the common login area, the login server determines that the login request is an abnormal login request.
6. A method of login detection, comprising:
the login detection device acquires at least one login information uploaded according to a login identifier within a preset time period, wherein the login information is acquired when the login request is judged to be an abnormal login request, and when the number of times of receiving the login request corresponding to the login identifier within the preset time period is greater than or equal to a preset number threshold, the login request is determined to be abnormal login;
the login detection device acquires at least one login area information corresponding to the login identification according to the uploaded at least one login information;
the login detection device determines login area information with the maximum frequency as a common login area corresponding to the login identification according to the login identification and at least one login area information corresponding to the login identification; if the frequency of at least two login area information is the same in the login area information, selecting the login area information closest to the current time from the at least two login area information as a common login area corresponding to the login identification;
the login detection device receives a login identification sent by a login server and login information carried by a login request corresponding to the login identification;
the login detection device carries out login area matching on login information carried by the login request according to the login identification to generate an area matching result;
the login detection device sends the area matching result to the login server so that the login server determines whether the login request is an abnormal login request according to the area matching result; and when the login request is an abnormal login request, the login server sets a suspended use identifier for the login identifier, and the suspended use identifier is not released until the user authenticates the login identifier.
7. The method according to claim 6, wherein the login detection device performs login area matching on login information carried by the login request according to the login identifier to generate an area matching result, comprising:
the login detection device acquires the current login area according to login information carried by the login request;
the login detection device searches a corresponding common login area according to the login identification;
and the login detection device matches the current login area with the common login area to generate an area matching result.
8. A login detection device, comprising:
the information acquisition module is used for acquiring login information carried by a login request if the login request is judged to be an abnormal login request when the login request corresponding to the login identifier is received, wherein the login request is determined to be abnormal login when the number of times of receiving the login request corresponding to the login identifier in a preset time period is greater than or equal to a preset number threshold;
the matching generation module is used for performing login area matching on login information carried by the login request according to the login identification to generate an area matching result;
the determination output module is used for determining whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user; when the determination output module determines that the login request is an abnormal login request, setting a pause use identifier for the login identifier, and not releasing the pause use identifier until a user performs user authentication on the login identifier;
the acquisition module is used for acquiring at least one login information uploaded according to the login identification in a preset time period;
the area acquisition module is used for acquiring at least one login area information corresponding to the login identification according to the uploaded at least one login information;
the area determining module is used for determining login area information with the maximum frequency as a common login area corresponding to the login identification according to the login identification and at least one login area information corresponding to the login identification; if the frequency of at least two login area information in the login area information is the same, selecting the login area information closest to the current time from the at least two login area information as a common login area corresponding to the login identification.
9. The apparatus of claim 8, wherein the match generation module comprises:
the area acquisition unit is used for acquiring the current login area according to the login information carried by the login request;
the area searching unit is used for searching a corresponding common login area according to the login identification;
and the matching generation unit is used for matching the current login area with the common login area to generate an area matching result.
10. The apparatus according to claim 8, wherein the determination output module is specifically configured to determine that the login request is an abnormal login request if the current login area and the common login area do not match, so as to send a prompt message to the user.
11. A login server, comprising:
the information acquisition module is used for acquiring login information carried by a login request if the login request is judged to be an abnormal login request when the login request corresponding to the login identifier is received, wherein the login request is determined to be abnormal login when the number of times of receiving the login request corresponding to the login identifier in a preset time period is greater than or equal to a preset number threshold;
the information sending module is used for sending the login identification and the login information carried by the login request to a login detection device so that the login detection device can carry out login area matching on the login information carried by the login request according to the login identification to generate an area matching result; the region matching result is a result generated by the login detection device acquiring a current login region according to login information carried by the login request, searching a corresponding common login region according to the login identification and matching the current login region with the common login region; wherein the common login area is the login area with the largest frequency; if the frequency of at least two login area information is the same in the login area information, selecting the login area information closest to the current time from the at least two login area information as a common login area corresponding to the login identification;
the receiving and determining module is used for receiving the region matching result sent by the login detection device, and determining whether the login request is an abnormal login request according to the region matching result so as to send prompt information to a user; when the receiving and determining module determines that the login request is an abnormal login request, a pause use identifier is set for the login identifier, and the pause use identifier is not released by the login server until a user authenticates the login identifier.
12. The login server according to claim 11, wherein the reception determination module is specifically configured to determine that the login request is an abnormal login request if the current login area and the common login area do not match, so as to send a prompt message to the user.
13. A login detection device, comprising:
the system comprises a receiving module, a login server and a login module, wherein the receiving module is used for receiving a login identifier sent by the login server and login information carried by a login request corresponding to the login identifier, the login information is obtained when the login request is judged to be an abnormal login request, and when the number of times of receiving the login request corresponding to the login identifier in a preset time period is greater than or equal to a preset number threshold, the login request is determined to be abnormal login;
the matching generation module is used for performing login area matching on login information carried by the login request according to the login identification to generate an area matching result;
the result sending module is used for sending the region matching result to the login server so that the login server can determine whether the login request is an abnormal login request according to the region matching result; when the login request is an abnormal login request, the login server sets a suspended use identifier for the login identifier, and the suspended use identifier is not released until the user authenticates the login identifier;
the acquisition module is used for acquiring at least one login information uploaded according to the login identification in a preset time period;
the area acquisition module is used for acquiring at least one login area information corresponding to the login identification according to the uploaded at least one login information;
the area determining module is used for determining login area information with the maximum frequency as a common login area corresponding to the login identification according to the login identification and at least one login area information corresponding to the login identification; if the frequency of at least two login area information in the login area information is the same, selecting the login area information closest to the current time from the at least two login area information as a common login area corresponding to the login identification.
14. The apparatus of claim 13, wherein the match generation module comprises:
the area acquisition unit is used for acquiring the current login area according to the login information carried by the login request;
the area searching unit is used for searching a corresponding common login area according to the login identification;
and the matching generation unit is used for matching the current login area with the common login area to generate an area matching result.
15. A system for login detection, comprising a login server according to claim 11 or 12 and a login detection means according to claim 13 or 14.
16. A computer-readable storage medium, in which a first computer program for executing the login detection method according to any one of claims 1 to 3, a second computer program for executing the login detection method according to claim 4 or 5, and a third computer program for executing the login detection method according to claim 6 or 7 are stored.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310364257.0A CN104426835B (en) | 2013-08-20 | 2013-08-20 | Login detection method, server, login detection device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310364257.0A CN104426835B (en) | 2013-08-20 | 2013-08-20 | Login detection method, server, login detection device and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104426835A CN104426835A (en) | 2015-03-18 |
| CN104426835B true CN104426835B (en) | 2020-03-20 |
Family
ID=52974798
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310364257.0A Active CN104426835B (en) | 2013-08-20 | 2013-08-20 | Login detection method, server, login detection device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104426835B (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106549902B (en) * | 2015-09-16 | 2020-05-19 | 阿里巴巴集团控股有限公司 | Method and device for identifying suspicious users |
| CN106685891A (en) * | 2015-11-06 | 2017-05-17 | 中国移动通信集团设计院有限公司 | Verification method and apparatus for accessing network |
| CN106789855A (en) * | 2015-11-25 | 2017-05-31 | 北京奇虎科技有限公司 | The method and device of user login validation |
| CN106372535A (en) * | 2016-09-29 | 2017-02-01 | 广州鹤互联网科技有限公司 | User management method and system for electronic signature |
| CN106372475A (en) * | 2016-09-29 | 2017-02-01 | 广州鹤互联网科技有限公司 | User management method and system for electronic signature |
| CN107634958A (en) * | 2017-09-30 | 2018-01-26 | 河南职业技术学院 | Computer security login method and computer security entering device |
| CN108810893B (en) * | 2018-05-30 | 2021-09-21 | 厦门盈趣科技股份有限公司 | International version software user login interaction method and system |
| CN110445790A (en) * | 2019-08-12 | 2019-11-12 | 四川长虹电器股份有限公司 | A kind of account method for detecting abnormality logging in behavior based on user |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102325062A (en) * | 2011-09-20 | 2012-01-18 | 北京神州绿盟信息安全科技股份有限公司 | Abnormal login detecting method and device |
| CN102413074A (en) * | 2011-11-30 | 2012-04-11 | 向进轮 | Method for detecting login of instant messenger terminal in another place |
| CN103001826A (en) * | 2012-11-29 | 2013-03-27 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
| CN103023718A (en) * | 2012-11-29 | 2013-04-03 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4894241B2 (en) * | 2005-11-21 | 2012-03-14 | 富士ゼロックス株式会社 | Computer system, authentication control method, program, and server / client system |
| CN103095658A (en) * | 2011-11-03 | 2013-05-08 | 北京神州泰岳软件股份有限公司 | Account login method and system |
| CN102664877A (en) * | 2012-03-30 | 2012-09-12 | 北京千橡网景科技发展有限公司 | Method and device for exception handling in login process |
-
2013
- 2013-08-20 CN CN201310364257.0A patent/CN104426835B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102325062A (en) * | 2011-09-20 | 2012-01-18 | 北京神州绿盟信息安全科技股份有限公司 | Abnormal login detecting method and device |
| CN102413074A (en) * | 2011-11-30 | 2012-04-11 | 向进轮 | Method for detecting login of instant messenger terminal in another place |
| CN103001826A (en) * | 2012-11-29 | 2013-03-27 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
| CN103023718A (en) * | 2012-11-29 | 2013-04-03 | 北京奇虎科技有限公司 | Device and method for monitoring user login |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104426835A (en) | 2015-03-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104426835B (en) | Login detection method, server, login detection device and system | |
| US10554655B2 (en) | Method and system for verifying an account operation | |
| EP3342119B1 (en) | Monitoring the life cycle of a computer network connection | |
| KR101726348B1 (en) | Method and system of login authentication | |
| TWI587672B (en) | Login authentication method, client, server and system | |
| EP2878115B1 (en) | Online user account login method and server system implementing the method | |
| US10419431B2 (en) | Preventing cross-site request forgery using environment fingerprints of a client device | |
| US9887997B2 (en) | Web authentication using client platform root of trust | |
| WO2015035895A1 (en) | Methods, devices, and systems for account login | |
| CN107040518B (en) | Private cloud server login method and system | |
| CN105847245B (en) | Electronic mailbox login authentication method and device | |
| WO2014040479A1 (en) | User identity authenticating method and device for preventing malicious harassment | |
| CN107508822B (en) | Access control method and device | |
| WO2019095856A1 (en) | Network identity authentication method and system, and user agent device used thereby | |
| US8453220B2 (en) | Device association | |
| CN107154935B (en) | Service request method and device | |
| CN108306739B (en) | Method for detecting user identity information, server, computer-readable storage medium and computer equipment | |
| CN105577621B (en) | Business operation verification method, device and system | |
| WO2015055013A1 (en) | Login system based on server, login server, and verification method thereof | |
| CN109302422B (en) | Method for logging in mobile application, mobile terminal, electronic equipment, system and storage medium | |
| US9787658B2 (en) | Login system based on server, login server, and verification method thereof | |
| CN108243148B (en) | Method and apparatus for authentication | |
| KR20150104667A (en) | Authentication method | |
| CN106878274B (en) | Method, device and system for acquiring pre-sale and post-sale problems | |
| CN115622791A (en) | Account management method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |