The content of the invention
The purpose of the embodiment of the present invention is to provide a kind of security of WiFi access points to determine method and device,
It is whether safe with the WiFi access points for determining terminal connection.Technical scheme is as follows:
A kind of security of WiFi access points determines method, is applied to terminal, including:
The domain name system DNS information of target WiFi access point is obtained, the target WiFi access point is the end
The access point of the current connection in end;
Search whether that presence is consistent with the DNS information of the target WiFi access point in viral DNS storehouses
DNS information;
If it is present determining that the target WiFi access point is non-security access point;
Otherwise, it determines the target WiFi access point is secure entry point.
In a kind of specific embodiment of the present invention, it is determined that the target WiFi access point connects for non-security
In the case of access point, methods described also includes:
Output is the first related information of non-security access point to the target WiFi access point.
In a kind of specific embodiment of the present invention, it is determined that the target WiFi access point is secure accessing
In the case of point, methods described also includes:
It is the second related information of secure entry point to export to the target WiFi access point.
In a kind of specific embodiment of the present invention, the domain name system for obtaining target WiFi access point
DNS information, including:
When the detection for receiving the security to target WiFi access point is asked, obtain target WiFi and access
The domain name system DNS information of point;
Or,
When target WiFi access point is itself coupled to, the domain name system of the target WiFi access point is obtained
DNS information.
It is described to search whether exist and institute in viral DNS storehouses in a kind of specific embodiment of the present invention
The consistent DNS information of the DNS information of target WiFi access point is stated, including:
Search whether to exist in the viral DNS storehouses that itself is preserved and believe with the DNS of the target WiFi access point
The consistent DNS information of breath;
Or,
The DNS information of the target WiFi access point is sent to into server, is preserved at it by the server
Viral DNS storehouses in search whether there is consistent with the DNS information of target WiFi access point DNS letters
Breath.
A kind of security determining device of WiFi access points, is applied to terminal, including:
DNS information acquisition module, it is described for obtaining the domain name system DNS information of target WiFi access point
Target WiFi access point is the access point of the terminal currently connection;
DNS information searching modul, connects for searching whether to exist in viral DNS storehouses with target WiFi
The consistent DNS information of the DNS information of access point, if it is present the first determining module of triggering, otherwise, touches
Send out the second determining module;
First determining module, for determining that the target WiFi access point is non-security access point;
Second determining module, for determining that the target WiFi access point is secure entry point.
In a kind of specific embodiment of the present invention, described device also includes:
First information output module, for it is determined that the target WiFi access point is non-security access point
In the case of, it is the first related information of non-security access point to export to the target WiFi access point.
In a kind of specific embodiment of the present invention, described device also includes:
Second information output module, for it is determined that the target WiFi access point is secure entry point
In the case of, it is the second related information of secure entry point to export to the target WiFi access point.
In a kind of specific embodiment of the present invention, the DNS information acquisition module, specifically for:
When the detection for receiving the security to target WiFi access point is asked, obtain target WiFi and access
The domain name system DNS information of point;
Or,
When target WiFi access point is itself coupled to, the domain name system of the target WiFi access point is obtained
DNS information.
In a kind of specific embodiment of the present invention, the DNS information searching modul, specifically for:
Search whether to exist in the viral DNS storehouses that itself is preserved and believe with the DNS of the target WiFi access point
The consistent DNS information of breath;
Or,
The DNS information of the target WiFi access point is sent to into server, is preserved at it by the server
Viral DNS storehouses in search whether there is consistent with the DNS information of target WiFi access point DNS letters
Breath.
The technical scheme provided using the embodiment of the present invention, terminal gets target WiFi of current connection and connects
The DNS information of access point, if find in viral DNS storehouses believed with the DNS of target WiFi access point
The consistent DNS information of breath, then can determine that target WiFi access point is non-security access point, otherwise, can
To determine target WiFi access point as secure entry point, as such, it is possible to determine target WiFi access point in time
Security, it is to avoid cause because terminal is connected to non-security WiFi access points user loss.
Specific embodiment
In order that those skilled in the art more fully understand the technical scheme in the embodiment of the present invention, below will knot
The accompanying drawing in the embodiment of the present invention is closed, the technical scheme in the embodiment of the present invention is clearly and completely retouched
State, it is clear that described embodiment is only a part of embodiment of the invention, rather than the embodiment of whole.
Based on the embodiment in the present invention, those of ordinary skill in the art institute under the premise of creative work is not made
The every other embodiment for obtaining, belongs to the scope of protection of the invention.
A kind of security of WiFi access points provided in an embodiment of the present invention determines that method is applied to terminal, terminal
The including but not limited to terminal such as mobile phone, panel computer, the terminal can utilize WiFi technology, by WiFi
Router is set up with WiFi access points and is connected.Terminal can be by a certain application program in terminal to WiFi
The security of access point is determined, and such as the security of WiFi access points is carried out by class application program of killing virus
It is determined that.
Shown in Figure 1, a kind of security of the WiFi access points provided by the embodiment of the present invention determines method
Implementing procedure figure, the method may comprise steps of:
S110:Obtain the domain name system DNS information of target WiFi access point.
Wherein, the target WiFi access point is the access point of the terminal currently connection.
In actual applications, terminal is opened after WiFi function, by according in setting cycle scanning surrounding environment
WiFi access points, and the WiFi access points for scanning are showed into user in WiFi accesses point list.User
In WiFi accesses point list certain WiFi access point can be selected to be connected manually, can also be preset
The WiFi access points of acquiescence connection, when terminal scanning is to the WiFi access points, automatically with the WiFi access points
Set up connection.
In embodiments of the present invention, target WiFi access point is the access point of terminal currently connection.Terminal with
Target WiFi access point is set up after connection, can get the domain name system DNS letter of the target WiFi access point
Breath.
DNS, English full name is Domain Name System, and Chinese is domain name system.In internet
On, the distributed data base that DNS mutually maps as domain name and IP address can make user more easily
Access internet.
S120:The DNS information one for having with the target WiFi access point is searched whether in viral DNS storehouses
The DNS information of cause, if it is present execution step S130, otherwise, execution step S140.
In actual applications, malefactor attacks WiFi routes often through virus is thrown in terminal after operation
Device, by the DNS information of WiFi routers the dns server address of oneself is modified as, and reaches monitoring user's row
For purpose.
Operation personnel by collecting virus behavior, and can be analyzed to virus behavior, set up virus DNS
Storehouse, is the DNS information for confirming as virus in viral DNS storehouses, can be updated according to actual conditions.
Viral DNS storehouses can be stored in server.
In a kind of specific embodiment of the present invention, terminal can be by the DNS of the target WiFi access point
Information is sent to server, searches whether exist and institute in its viral DNS storehouse for preserving by the server
State the consistent DNS information of the DNS information of target WiFi access point.
Terminal is got after the DNS information of target WiFi access point, can send inquiry request to server,
In inquiry request carry target WiFi access point DNS information, will target WiFi access point DNS information
It is sent to server.Server searches whether exist and the DNS information one in its viral DNS storehouse for preserving
The DNS information of cause.The viral DNS storehouses of server maintenance are constantly updated according to actual conditions, in service
Device side carries out the lookup of corresponding DNS information, can improve lookup accuracy rate, more accurately to confirm target
Whether WiFi access points are safe.
In another kind of specific embodiment of the present invention, terminal can be in the viral DNS storehouses that itself is preserved
Search whether there is the DNS information consistent with the DNS information of the target WiFi access point.
Terminal periodically or aperiodically can obtain virus by being communicated with server from server
DNS information, and by these information records to the local viral DNS storehouses for preserving.The viral DNS that terminal is obtained
Information can be that terminal is actively obtained from server, can also be that server is having viral DNS information to update
When active push to terminal.Certainly, terminal can be selected when network environment is preferable with the communication of server
Carry out.
Terminal is got after the DNS information of target WiFi access point, can be in the local viral DNS storehouses for preserving
In search whether there is the DNS information consistent with the DNS information.So, when terminal is needed to target WiFi
When the security of access point is determined, terminal can determine that target WiFi connects without the need for being communicated with server
Whether the DNS information of access point is viral DNS information, can be looked into saving network flow and the network bandwidth, raising
Look for efficiency.
If finding the DNS consistent with the DNS information of the target WiFi access point in viral DNS storehouses
Information, then can be with the operation of execution step S130, otherwise, can be with the operation of execution step S140.
S130:Determine that the target WiFi access point is non-security access point.
If finding the DNS information consistent with the DNS information of target WiFi access point in viral DNS storehouses,
The DNS information for showing the target WiFi access point is tampered, it may be determined that the target WiFi access point is non-
Secure entry point.
Further, in the case of it is determined that the target WiFi access point is non-security access point, terminal can
It is the first related information of non-security access point to export to the target WiFi access point.First prompting letter
Breath schematic diagram reminds user to work as shown in Fig. 2 the information can be exported to user in tray icon mode
The target WiFi access point of front connection is non-security access point, provides the suggestion for needing user further to operate,
Such as advise disconnecting, and " disconnecting " button is provided, to facilitate user further to be operated.
S140:Determine that the target WiFi access point is secure entry point.
If not finding the DNS letter consistent with the DNS information of target WiFi access point in viral DNS storehouses
Breath, shows that the target DNS information not recorded in viral DNS storehouses as viral DNS information, can be true
The fixed target WiFi access point is secure entry point, and user can be with safe to use.
Further, in the case of it is determined that the target WiFi access point is secure entry point, terminal can be with
It is the second related information of secure entry point to export to target WiFi.Second information schematic diagram is such as
Shown in Fig. 3, the information can be exported to user in tray icon mode, remind the mesh of user's currently connection
Mark WiFi access points are secure entry point, and user can be with safe to use, there is provided " checking details " button, with
User is facilitated to check the related details information of the target WiFi access point.Another schematic diagram of the second information
As shown in Figure 4.
The technical scheme provided using the embodiment of the present invention, terminal gets target WiFi of current connection and connects
The DNS information of access point, if finding the DNS information one with target WiFi access point in viral DNS storehouses
The DNS information of cause, then can determine that target WiFi access point is non-security access point, otherwise, it may be determined that
Target WiFi access point is secure entry point, as such, it is possible to the security of target WiFi access point is determined in time,
The user caused because terminal is connected to non-security WiFi access points is avoided to lose.
In one embodiment of the invention, step S110 specifically can include:When being itself coupled to target WiFi
During access point, the domain name system DNS information of the target WiFi access point is obtained.
When terminal is connected to target WiFi access point, it can be automatically triggered to the target WiFi access point
Security is detected, to determine whether the target WiFi access point is safe, in this case, obtaining should
The DNS information of target WiFi access point.
Terminal is set up at the beginning of being connected with WiFi access points, can be to the safety of the WiFi access points of current connection
Property is detected, is that the network security of user provides safeguard.
In another embodiment of the present invention, step S110 specifically can include:When receiving to target WiFi
When the detection of the security of access point is asked, the domain name system DNS information of the target WiFi access point is obtained.
When terminal is connected to target WiFi access point, can export carries out safety to the target WiFi access point
Property detection the 3rd information.3rd information schematic diagram is as shown in figure 5, the information can be with support
Tray icon mode is exported to user, reminds the security of the target WiFi access point of the current connection of user unknown,
And " scanning immediately " button is provided, target WiFi is accessed with facilitating user to click on when needed
The security of point is detected.When user clicks on, you can be considered as user according to the 3rd information
Have issued the detection request of the security to the target WiFi access point.Terminal receives and target WiFi is accessed
When the detection of the security of point is asked, the domain name system DNS information of the target WiFi access point can be obtained.
When triggering terminal is determined to the security of target WiFi access point, can be opened by application program
The personnel of sending out carry out default setting, can also provide setting option and are configured by user.
Such as, user could be arranged to:Terminal is connected to after WiFi access points i.e. automatically to the WiFi access points
Security detected.Under this configuration, when terminal is connected to a WiFi access point, that is, trigger
Detection to the security of the WiFi access points.
Or, user could be arranged to:Terminal is connected to after WiFi access points, to the WiFi access points
Security detected before, ask the user whether to be detected.Under this configuration, user can be with root
Choose whether that the security of the WiFi access points to current connection is detected according to actual conditions.
When the security of terminal-pair target WiFi access point is determined, detection progress circle can be exported to user
Face, as shown in fig. 6, facilitating user to understand detection progress.
It should be noted that different informations can be distinguish between with different colors, such as, and first
Information is shown with red glyphs, and the second information is shown with green character, the 3rd prompting
Information is shown with yellow character, to the attention for attracting user.
Corresponding to above method embodiment, the embodiment of the present invention additionally provides a kind of safety of WiFi access points
Property determining device, the device is applied to terminal, shown in Figure 7, and the device can be included with lower module:
DNS information acquisition module 210, for obtaining the domain name system DNS information of target WiFi access point, institute
State the access point that target WiFi access point is the terminal currently connection;
DNS information searching modul 220, for searching whether to exist and target WiFi in viral DNS storehouses
The consistent DNS information of the DNS information of access point, if it is present the first determining module 230 of triggering, otherwise,
Trigger the second determining module 240;
First determining module 230, for determining that the target WiFi access point is non-security access point;
Second determining module 240, for determining that the target WiFi access point is secure entry point.
The device provided using the embodiment of the present invention, terminal gets the target WiFi access point of current connection
DNS information, if found in viral DNS storehouses consistent with the DNS information of target WiFi access point
DNS information, then can determine that target WiFi access point is non-security access point, otherwise, it may be determined that target
WiFi access points are secure entry point, as such, it is possible to determine the security of target WiFi access point in time, are kept away
Exempt from the user's loss caused because terminal is connected to non-security WiFi access points
In one embodiment of the invention, the device can also be included with lower module:
First information output module, for it is determined that the target WiFi access point is non-security access point
In the case of, it is the first related information of non-security access point to export to the target WiFi access point.
In another embodiment of the present invention, the device can also be included with lower module:
Second information output module, for it is determined that the target WiFi access point is secure entry point
In the case of, it is the second related information of secure entry point to export to the target WiFi access point.
In a kind of specific embodiment of the present invention, the DNS information acquisition module 210 can be used specifically
In:
When the detection for receiving the security to target WiFi access point is asked, obtain target WiFi and access
The domain name system DNS information of point;
Or,
When target WiFi access point is itself coupled to, the domain name system of the target WiFi access point is obtained
DNS information.
In a kind of specific embodiment of the present invention, the DNS information searching modul 220 can be used specifically
In:
Search whether to exist in the viral DNS storehouses that itself is preserved and believe with the DNS of the target WiFi access point
The consistent DNS information of breath;
Or,
The DNS information of the target WiFi access point is sent to into server, is protected at it by the server
Search whether that presence is consistent with the DNS information of the target WiFi access point in the viral DNS storehouses deposited
DNS information.
It should be noted that herein, such as first and second or the like relational terms be used merely to by
One entity or operation make a distinction with another entity or operation, and not necessarily require or imply these
There is any this actual relation or order between entity or operation.And, term " including ", " bag
Containing " or its any other variant be intended to including for nonexcludability so that including a series of key elements
Process, method, article or equipment not only include those key elements, but also including being not expressly set out
Other key elements, or also include the key element intrinsic for this process, method, article or equipment.
In the case of without more restrictions, the key element limited by sentence "including a ...", it is not excluded that in bag
Also there is other identical element in the process, method, article or the equipment that include the key element.
Each embodiment in this specification is described by the way of correlation, phase homophase between each embodiment
As part mutually referring to what each embodiment was stressed is the difference with other embodiment.
For especially for device embodiment, because it is substantially similar to embodiment of the method, so the comparison of description
Simply, related part is illustrated referring to the part of embodiment of the method.
One of ordinary skill in the art will appreciate that realizing all or part of step in said method embodiment
Program be can be by instruct the hardware of correlation to complete, described program can be stored in computer-readable
In taking storage medium, the storage medium for obtaining designated herein, such as:ROM/RAM, magnetic disc, CD etc..
Presently preferred embodiments of the present invention is the foregoing is only, protection scope of the present invention is not intended to limit.
All any modification, equivalent substitution and improvements made within the spirit and principles in the present invention etc., are all contained in
In protection scope of the present invention.