CN106850517A - A kind of method, apparatus and system for solving intranet and extranet repeat logon - Google Patents
A kind of method, apparatus and system for solving intranet and extranet repeat logon Download PDFInfo
- Publication number
- CN106850517A CN106850517A CN201510892170.XA CN201510892170A CN106850517A CN 106850517 A CN106850517 A CN 106850517A CN 201510892170 A CN201510892170 A CN 201510892170A CN 106850517 A CN106850517 A CN 106850517A
- Authority
- CN
- China
- Prior art keywords
- intranet
- user
- user information
- module
- outer net
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
Abstract
The invention provides a kind of method, apparatus and system for solving intranet and extranet repeat logon, the method comprises the following steps:First user information to having logged in Intranet is packaged and encrypts, and obtains second user information, and second user information is sent to caching server;The second user information is decrypted, the 3rd user profile is obtained;3rd user profile is verified;If verified successfully, outer net application system is directly entered;If verification failure, carries out outer net unified login certification.The method and system of the solution intranet and extranet repeat logon provided by the present invention, only other systems once need to can be just accessed in order to user in Intranet or outer net login authentication, so that without because of intranet and extranet authentication mode difference, being operated by login authentication twice.
Description
Technical field
The present invention relates to the communications field, and in particular to a kind of method of solution intranet and extranet repeat logon,
Apparatus and system.
Background technology
With the fast development of computer and network technologies and widely available, about the production of enterprise
Business activities are more and more, and incident operation system is also constantly increasing.These systems
The weave under SOA architectures, calls constitute more huge system mutually.SSO
Although can solve the problem that in numerous system applications, as long as enterprise customer logs in once can just visit
The application system of all mutual trusts is asked, but all of system is not to be deployed in identical net
Under network environment, even if all of system is deployed under intranet environment and is unpractical.If institute
Some systems are deployed under outer network environment and can bury major hidden danger in secure context.
As a rule, in enterprises, system just has two sets of independent security systems and identity
Verification System.The problem so brought is to be unable to free access, it is necessary to log in twice between system,
Consumer's Experience is poor.
The content of the invention
The present invention provides a kind of method, apparatus and system for solving intranet and extranet repeat logon, so as to
Only need to once just can directly log in other application system in Intranet or outer net login authentication in user
System.
The technical scheme is that providing a kind of method for solving intranet and extranet repeat logon, the party
Method comprises the following steps:First user information to having logged in Intranet is packaged and encrypts, and obtains
Second user information is obtained, and the second user information is sent to caching server;As the user
When logging in outer net application system, the second user information is decrypted, obtain the 3rd user profile;It is right
3rd user profile is verified;If verified successfully, outer net application system is directly entered;
If verification failure, carries out outer net unified login certification
Alternatively, the first user information for having logged in Intranet is packaged and is encrypted, obtain the
Two user profile also include:
It is the data object of specific format by the first user Information encapsulation, and to the data object
It is digitally signed treatment.
Alternatively, the verification comprises the following steps:Decryption verification, empty verification and term of validity verification,
Wherein,
The decryption is verified, for judging whether maliciously illegally to log in and verifying the 3rd user profile
Whether it is tampered;
The sky is verified, for verifying that the caching server whether there is the second user information;
The term of validity verify, for judge logged in Intranet user whether over-time threshold value.
Alternatively, the verification also includes:
If the decryption is verified successfully, sky verification is carried out;If decryption verification failure,
Then carry out outer net unified login certification;
If the sky is verified successfully, the term of validity verification is carried out;If sky verification failure,
Then carry out outer net unified login certification;
If the term of validity is verified successfully, outer net application system is directly entered;If this is effective
Phase verification failure, then carry out outer net unified login certification.
Alternatively, the method also includes:If outer net unified login certification success, by user
Information is packaged and encrypts, and obtains fourth user information, and the fourth user information is sent
To the caching server.
The present invention also provides a kind of device of the method for solving intranet and extranet repeat logon, the device bag
Include:Encapsulation encrypting module, the first user information to having logged in Intranet is packaged and encrypts,
Obtain second user information;Cache module, for storing the second user information and encapsulation and adding
External user information after close;Deciphering module, for when the User logs in outer net application system,
The second user information is decrypted, the 3rd user profile is obtained;Correction verification module, for the 3rd
User profile is verified;If verified successfully, outer net application system is directly entered;If
Verification failure, then carry out reunifying login authentication.
Alternatively, the encapsulation encrypting module also includes:
It is the data object of specific format by the first user Information encapsulation, and to the data object
It is digitally signed treatment.
Alternatively, the correction verification module also includes:
Decryption correction verification module, empty correction verification module and term of validity correction verification module, wherein,
The decryption correction verification module, for judging whether maliciously illegally to log in and verifying the 3rd user
Whether information is tampered;
The sky correction verification module, for verifying that the caching server whether there is the second user information;
The term of validity correction verification module, for judge logged in Intranet user whether over-time threshold
Value.
The present invention provides a kind of system for solving intranet and extranet repeat logon again, and the system includes being located at
Caching server and the first authentication device and in outer network environment second in intranet environment
Authentication device;
Wherein, the system includes caching server and the first authentication device in intranet environment
And the second authentication device in outer network environment;
Wherein, first authentication device, for being verified to the Intranet user information, and will
The Intranet user information is encrypted in encapsulation to the caching server;
Second authentication device, for obtaining the Intranet user information from the caching server
It is decrypted, and the Intranet user information after decryption is verified.
Alternatively, the second authentication device is additionally operable to verify external user, and will be after checking
The encryption encapsulation of external user information to the caching server.
Alternatively, first authentication device includes:
Intranet authentication module, for verifying Intranet user information;
Security Encryption module, for the Intranet user information to be encrypted into encapsulation to the caching
In server.
Alternatively, second authentication module includes:
Secure decryption module, for entering to the Intranet user information obtained from caching server
Row decryption;
Outer net authentication module, for being verified to external user information;
Certification parsing module, for carrying out school to the Intranet after decryption and/or external user information
Test;
Second Security Encryption module, for that will verify successfully after the external user information encryption
Encapsulate to the caching server.
Method, the apparatus and system of the solution intranet and extranet repeat logon provided by the present invention, with
Be easy to user only once need to can just access other application system in Intranet or outer net login authentication
System, so that without because of intranet and extranet authentication mode difference, being operated by login authentication twice.
Brief description of the drawings
Technical scheme in order to illustrate more clearly the embodiments of the present invention, below will be to embodiment
The accompanying drawing to be used needed for description is briefly described, it should be apparent that, in describing below
Accompanying drawing is only some embodiments of the present invention, for those of ordinary skill in the art,
On the premise of not paying creative work, other accompanying drawings can also be obtained according to these accompanying drawings.
In the accompanying drawings:
Fig. 1 is the method flow diagram of solution intranet and extranet repeat logon of the invention;
Fig. 2 is the data message checking process figure of solution intranet and extranet repeat logon of the invention;
Fig. 3 is the schematic device for being applied to solve intranet and extranet repeat logon method of the invention;
Fig. 4 is the system structure diagram of solution intranet and extranet repeat logon of the invention.
Specific embodiment
For the purpose, technical scheme and advantage for making the embodiment of the present invention become more apparent, below
The embodiment of the present invention is described in further details with reference to accompanying drawing.Here, of the invention schematic
Embodiment and its illustrate for explaining the present invention but not as a limitation of the invention.
Herein, it is to be understood that in involved term:
SSO(Single Sign-ON):It is a kind of unified certification and licensing scheme, refers to that access is same
The same user of the locked resource in server different application, it is only necessary to log in once, that is, lead to
After the safety verification crossed in an application, when visiting again the locked resource in other application, no
Login authentication again is needed again.
JSON(JavaScript Object Notation):It is a kind of data interchange format of lightweight.
Fig. 1 is the method flow diagram of solution intranet and extranet repeat logon of the invention.The method includes
The following steps:S101:First user information to having logged in Intranet is packaged and encrypts, and obtains
Second user information is obtained, and second user information is sent to caching server;S102:When this
During User logs in outer net application system, the second user information is decrypted, obtain the 3rd user profile;
S103:3rd user profile is verified;If verified successfully, outer net is directly entered
Application system;If verification failure, carries out outer net unified login certification.
Alternatively, the method is packaged and encrypts in the first user information to having logged in Intranet,
Obtaining second user information also includes:It is the data of specific format by the first user Information encapsulation
Object, and treatment is digitally signed to the data object.
Alternatively, the verification comprises the following steps:Decryption verification, empty verification and term of validity verification,
Wherein, decryption verification, believes for judging whether that malice illegally logs in and verify the 3rd user
Whether breath is tampered;The sky is verified, for verifying the caching server with the presence or absence of second use
Family information;The term of validity verify, for judge logged in Intranet user whether over-time threshold
Value.
Alternatively, the verification also includes:If the decryption is verified successfully, sky verification is carried out;
If decryption verification failure, carries out outer net unified login certification;If the sky is verified successfully,
Then carry out the term of validity verification;If sky verification failure, carries out outer net unified login certification;
If the term of validity is verified successfully, outer net application system is directly entered;If the term of validity school
Failure is tested, then carries out outer net unified login certification.
Alternatively, this reunifies login authentication and also includes:Intranet login authentication or outer net are unified
Login authentication.
Alternatively, the method also includes:External user carries out outer net unified login certification success
Afterwards, then the external user information is packaged and is encrypted, obtain the fourth user information, and
The fourth user information is sent to the caching server.
The present invention is the skill proposed on the basis of enterprise customer has had intranet and extranet unified certification
Art scheme, so that user's certification in the middle of Intranet or outer net once, is directly entered operation system.
The present invention is specifically described with reference to a specific embodiment, but is worth note
Meaning is the specific embodiment merely to preferably describing the present invention, is not constituted to the present invention
Improper restriction.
In embodiments of the invention, first, the original user Information encapsulation that Intranet has been logged in is
Customized LoginContext data objects, wherein, the customized LoginContext numbers
Include according to object:User name, password, whether log in successfully, certificate server title, create
Time, expired time, log in unique mark, digital signature.LoginContext data objects are adopted
Form is to be connected with comma between data item, is connected with equal sign between data item and value.Root
The data to be transmitted are done with digital signature (HMAC-SHA1) according to certificate server title to process,
Des encryption is carried out to LoginContext transmission data again, while by the user profile after encryption
Send to caching server (Redis) and preserved.
Secondly, when the User logs in outer net application system, after being encrypted from caching server
User profile, the user profile after encryption is decrypted, be reduced to the data of same format
Object.Especially, in an embodiment of the present invention, JSON can be also encapsulated as to user profile encapsulation
The data object of form, therefore the user login information form of reduction can also be JSON forms
Data object.
Finally, if data message is verified successfully and has been reduced to the number of LoginContext forms
According to object, then skip outer net and log in, being directly entered application system carries out business operation.If number
Fail according to information checking, then return to the outer net debarkation authentication page.
Fig. 2 is the data message checking process figure of solution intranet and extranet repeat logon of the invention.Tool
Volume data information checking flow is as follows:
S201:Decryption verification.The step is to ensure data transmission security, user being logged in
The data message of encryption be decrypted verification, prevent from being tampered in transmission data procedures or disliking
Meaning is illegally logged in.If the decryption is verified successfully, step S102 is carried out;If the decryption school
Failure is tested, then carries out outer net unified login certification.
S202:Sky verification.The step be for verify the caching server with the presence or absence of encryption after
User profile.If there is the user profile in caching server, then it is assumed that the user is that have
Log in the user of the operation system authority or be once allowed to log in.If the sky is verified into
Work(, then carry out step S103;If sky verification failure, carries out outer net unified login certification;
S203:The term of validity is verified.Whether the step is surpassed for the user for judging to have logged in Intranet
Cross time threshold.If user has logged in Intranet system but long-time (beyond a period of time scope)
Without any operation, then it is assumed that this logs in out of date, it is necessary to re-start login.
Especially, this reunifies login authentication and also includes:Intranet login authentication or outer net are unified
Login authentication.If user is logged in outer net, the unified debarkation authentication of outer net is called to connect
Mouth starts authentication procedure, after treating that the unified debarkation authentication of outer net is successful, the application system of outer net
Just receive the logging request of user, it is allowed to all business operations of the user to outer net application system.
At the same time, the data item creation time of LoginContext objects is updated, again to by outer
The user profile that net logs in application system is packaged and encrypting and transmitting to caching server guarantor
Deposit, will there is the user profile that application system is logged in from outer net in such caching server, treat
The next user only needs to obtain user by caching server, so that it may enters system, is grasped
Make.
The method of the solution intranet and extranet repeat logon provided by the present invention, is only needed in order to user
Will Intranet or outer net login authentication once can login system, and without because of intranet and extranet authenticating party
Formula is different, and login authentication is twice.
Fig. 3 is the schematic device of the method that the present invention is applied to solution intranet and extranet repeat logon.
As shown in figure 3, the device 1 includes:
Encapsulation encrypting module 10, for being packaged to the first user information for having logged in Intranet and
Encryption, obtains second user information;Cache module 20, for store the second user information and
External user information after encapsulation and encryption;Deciphering module 30, for when the User logs in outer net
During application system, the second user information is decrypted, obtain the 3rd user profile;Correction verification module 40,
For being verified to the 3rd user profile;If verified successfully, being directly entered outer net should
Use system;If verification failure, carries out outer net unified login certification.
Alternatively, the encapsulation encrypting module 10 also includes:It is spy by the first user Information encapsulation
The data object of the formula that fixes, and treatment is digitally signed to the data object.
Alternatively, the correction verification module 40 also includes:Decryption correction verification module 401, empty correction verification module
402 and term of validity correction verification module 403, wherein, the decryption correction verification module 401, for judging to be
No malice is illegally logged in and verifies whether the 3rd user profile is tampered;The sky correction verification module
402, for verifying that the cache module 20 whether there is the second user information;The term of validity school
Module 403 is tested, for judging whether the user for having logged in Intranet exceedes threshold value.
The present invention is specifically described with reference to a specific embodiment, but is worth noting
Be the specific embodiment merely to preferably describing the present invention, do not constitute to of the invention
Improper restriction.
The original user Information encapsulation that encapsulation encrypting module 10 has logged in Intranet is customized
LoginContext data objects simultaneously carry out des encryption to LoginContext transmission data, together
When the user profile after encryption sent to cache module 20 (Redis) preserved.When the use
When family logs in outer net application system, deciphering module 30 obtains the user of preservation from cache module 20
Information, the user profile of the encryption to preserving is decrypted, and is reduced to the data pair of same format
As.User profile after 40 pairs of decryption of correction verification module.If data message is verified successfully and gone back
Originally it was the data object of LoginContext forms, then skips outer net and log in, Intranet user could
Business operation is carried out to be directly entered application system.If data message verification failure, returns
The outer net debarkation authentication page, user must be logged in by outer net.
Specifically, correction verification module 40 includes:Decryption correction verification module 401, empty correction verification module 402
With term of validity correction verification module 403.Wherein, decryption correction verification module 401 is for adding for being logged in user
Close data message is decrypted verification, prevents from being tampered or maliciously non-in transmission data procedures
Method is logged in.Empty correction verification module 402 is used to verify the cache module 20 with the presence or absence of the use after encryption
Family information.When term of validity correction verification module 403 is used to judge whether the user for having logged in Intranet exceedes
Between threshold value.If user has logged in Intranet system but long-time (beyond a period of time scope) no
Operate the application system of Intranet, then it is assumed that this logs in out of date, it is necessary to re-start login.With
This updates the data item creation time of LoginContext objects, again to by outer net simultaneously
The user profile of login application system is packaged and is preserved with encrypting and transmitting to cache module 20,
Will there is the user profile that application system is logged in from outer net so in cache module 20, treat next time
After the user is only needed to by the acquisition user profile of cache module 20, system just can be directly entered,
Carry out related service operation.
Fig. 4 is the system structure diagram of solution intranet and extranet repeat logon of the invention.Such as Fig. 4
Shown, the system includes:The authentication device of caching server 51 and first in intranet environment
50 and the second authentication device 52 in outer network environment.Wherein the first authentication device 50 with
And second authentication device 52 can be by the way that intranet and extranet weight will be solved according to of the invention as described above
The multiple device 1 for logging in is specifically applicable to be able to reality in intranet environment and in outer network environment respectively
Existing;
Wherein, first authentication device 50, for being verified to the Intranet user information,
And the Intranet user information is encrypted in encapsulation to the caching server 51;
Second authentication device 52, for obtaining described from the caching server 51
Intranet user information is decrypted, and the Intranet user information after decryption is verified and/or
External user is verified, and the external user information encryption encapsulation after checking is delayed to described
Deposit server 51.
Alternatively, first authentication device 50 includes:Intranet authentication module 501, for verifying
Intranet user information;First Security Encryption module 502, for the Intranet user information to be added
Sealing dress.
Alternatively, second authentication device 52 includes:Secure decryption module 520, for postponing
The Intranet user information obtained in server 51 is deposited to be decrypted;Outer net authentication module 521,
For being verified to external user information;Certification parsing module 522, in after decryption
Net and/or external user information are verified;Second Security Encryption module 523, for that will verify
External user information encryption after success is encapsulated to the caching server 51.
The present invention is specifically described with reference to a specific embodiment, but is worth noting
Be the specific embodiment merely to preferably describing the present invention, do not constitute to of the invention
Improper restriction.
User after the authentication of Intranet authentication module 501 success by logging in Intranet application system
System, then the first Security Encryption module 502 is sealed the user profile for having logged on Intranet
Fill and encrypt and preserve to caching server 51 subscriber identity information after encapsulation and encryption
In.When the User logs in outer net application system, secure decryption module 520 is from caching server
The Intranet user information is obtained in 51 and is decrypted, 522 pairs of Intranets of authenticated parsing module
After subscriber identity information is proved to be successful, the user may log onto outer net application system and carry out
Related service is operated.
In an alternative embodiment of the invention, if the logged Intranet application system of the user not yet certification,
Do not have the identity information of the user i.e. in caching server 51.When the User logs in outer net application
During system, outer net authentication module 521 needs directly to verify the identity information of the user, to be certified
Afterwards, the external user information after the decryption of authenticated parsing module 522 pairs verify successfully it
Just can directly log in outer net application system afterwards carries out related service operation.Then the second safety adds
Close module 523 can be preserved in caching server 51 user profile encryption encapsulation, with treat by
Carrying out the user can directly log in outer net application system after Intranet application system by logging in, and
And without verifying again.
The present invention is built upon on the basis of Intranet logs in outer net unified certification, user only need to including
Net or outer net are logged in once, you can enter other operation systems, are adapted to the visit of large-scale consumer
Task is asked, Consumer's Experience is effectively increased.Further, since application system only needs to deployment once,
Disposed respectively without intranet and extranet, on the basis of security is guaranteed, it is easy to management and maintenance,
Also reduce hardware cost.
The specific embodiment being more than somebody's turn to do, enters to the purpose of the present invention, technical scheme and beneficial effect
Further description is gone, should be understood that and the foregoing is only specific reality of the invention
Example is applied, the protection domain being not intended to limit the present invention is all in spirit of the invention and former
Within then, any modification, equivalent substitution and improvements done etc. should be included in of the invention
Within protection domain.
Claims (12)
1. it is a kind of solve intranet and extranet repeat logon method, it is characterised in that methods described includes
The following steps:
First user information to having logged in Intranet is packaged and encrypts, and obtains second user letter
Breath, and the second user information is sent to caching server;
When the User logs in outer net application system, the second user information is decrypted, obtain the
Three user profile;
3rd user profile is verified;If verified successfully, outer net is directly entered
Application system;If verification failure, carries out outer net unified login certification.
2. method according to claim 1, it is characterised in that to having logged in Intranet
One user profile is packaged and encrypts, and obtaining second user information also includes:
It is the data object of specific format by the first user Information encapsulation, and to the data
Object is digitally signed treatment.
3. method according to claim 1, it is characterised in that the verification includes as follows
Step:
Decryption verification, empty verification and term of validity verification, wherein,
The decryption verification, for judging whether maliciously illegally to log in and verifying the 3rd user
Whether information is tampered;
The empty verification, for verifying that the caching server is believed with the presence or absence of the second user
Breath;
Term of validity verification, for judge to have logged in Intranet user whether over-time threshold value.
4. the method stated according to claim 3, it is characterised in that the verification also includes:
If the decryption is verified successfully, the empty verification is carried out;If the decryption verification
Failure, then carry out outer net unified login certification;
If the sky is verified successfully, the term of validity verification is carried out;If the empty verification
Failure, then carry out outer net unified login certification;
If the term of validity is verified successfully, outer net application system is directly entered;If described
Term of validity verification failure, then carry out outer net unified login certification.
5. method according to claim 4, it is characterised in that methods described also includes:
If outer net unified login certification success, user profile is packaged and encrypted, obtain
Fourth user information is obtained, and the fourth user information is sent to the caching server.
6. it is a kind of solve intranet and extranet repeat logon device, it is characterised in that described device includes:
Encapsulation encrypting module, for the first user information for having logged in Intranet to be packaged and added
It is close, obtain second user information;
Cache module, uses for storing the outer net after the second user information and encapsulation and encryption
Family information;
Deciphering module, uses for when the User logs in outer net application system, decrypting described second
Family information, obtains the 3rd user profile;
Correction verification module, for being verified to the 3rd user profile;If verified successfully,
Then it is directly entered outer net application system;If verification failure, carries out outer net unified login certification.
7. device according to claim 6, it is characterised in that the encapsulation encrypting module
Also include:
It is the data object of specific format by the first user Information encapsulation, and to the data
Object is digitally signed treatment.
8. device according to claim 6, it is characterised in that the correction verification module is also wrapped
Include:
Decryption correction verification module, empty correction verification module and term of validity correction verification module, wherein,
The decryption correction verification module, for judging whether that malice illegally logs in and verify the described 3rd
Whether user profile is tampered;
The empty correction verification module, for verifying that the caching server is used with the presence or absence of described second
Family information;
The term of validity correction verification module, for judge logged in Intranet user whether over-time
Threshold value.
9. it is a kind of solve intranet and extranet repeat logon system, it is characterised in that the system includes
Caching server and the first authentication device in intranet environment and in outer network environment
Second authentication device;
Wherein, first authentication device, for being verified to the Intranet user information,
And the Intranet user information is encrypted in encapsulation to the caching server;
Second authentication device, for using obtaining the Intranet from the caching server
Family information is decrypted, and the Intranet user information after decryption is verified.
10. system according to claim 9, it is characterised in that the second certification dress
Put and be additionally operable to verify external user, and the external user information after checking is encrypted into encapsulation
To the caching server.
11. systems according to claim 9, it is characterised in that the first certification dress
Put including:
Intranet authentication module, for verifying Intranet user information;
First Security Encryption module, for the Intranet user information to be encrypted into encapsulation to institute
In stating caching server.
12. systems according to claim 10, it is characterised in that the second certification dress
Put including:
Secure decryption module, for the Intranet user to being obtained from the caching server
Information is decrypted;
Outer net authentication module, for being verified to external user information;
Certification parsing module, for testing the Intranet after decryption and/or external user information
Card;
Second Security Encryption module, for that will be proved to be successful after the external user information encryption
Encapsulate to the caching server.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510892170.XA CN106850517A (en) | 2015-12-04 | 2015-12-04 | A kind of method, apparatus and system for solving intranet and extranet repeat logon |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510892170.XA CN106850517A (en) | 2015-12-04 | 2015-12-04 | A kind of method, apparatus and system for solving intranet and extranet repeat logon |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106850517A true CN106850517A (en) | 2017-06-13 |
Family
ID=59151770
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510892170.XA Pending CN106850517A (en) | 2015-12-04 | 2015-12-04 | A kind of method, apparatus and system for solving intranet and extranet repeat logon |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106850517A (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107547568A (en) * | 2017-09-29 | 2018-01-05 | 新华三技术有限公司 | Authentication method and device |
CN110198325A (en) * | 2018-02-26 | 2019-09-03 | 北京京东尚科信息技术有限公司 | Communication means, device and system, network server and storage medium |
CN110855639A (en) * | 2019-10-29 | 2020-02-28 | 云深互联(北京)科技有限公司 | Method, device and equipment for controlling login of intranet and extranet of browser |
CN113922982A (en) * | 2021-08-31 | 2022-01-11 | 网宿科技股份有限公司 | Login method, electronic device and computer-readable storage medium |
CN114189527A (en) * | 2021-10-28 | 2022-03-15 | 海南视联通信技术有限公司 | Information synchronization method and device, electronic equipment and storage medium |
CN114666147A (en) * | 2022-03-31 | 2022-06-24 | 深信服科技股份有限公司 | Identity authentication method, device, equipment and readable storage medium |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101388774A (en) * | 2008-10-24 | 2009-03-18 | 焦点科技股份有限公司 | Method for automatically authenticate and recognize customer identity between different customers and login |
CN102469075A (en) * | 2010-11-09 | 2012-05-23 | 中科正阳信息安全技术有限公司 | Integration authentication method based on WEB single sign on |
CN102882835A (en) * | 2011-07-13 | 2013-01-16 | 中国科学院声学研究所 | Method and system for implementing single sign on |
CN103179134A (en) * | 2013-04-19 | 2013-06-26 | 中国建设银行股份有限公司 | Single sign on method and system based on Cookie and application server thereof |
US20140032759A1 (en) * | 2011-10-11 | 2014-01-30 | Citrix Systems, Inc. | Policy-Based Application Management |
CN103634399A (en) * | 2013-11-29 | 2014-03-12 | 北京奇虎科技有限公司 | Method and device for realizing cross-domain data transmission |
WO2014048749A1 (en) * | 2012-09-29 | 2014-04-03 | Siemens Aktiengesellschaft | Inter-domain single sign-on |
-
2015
- 2015-12-04 CN CN201510892170.XA patent/CN106850517A/en active Pending
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101388774A (en) * | 2008-10-24 | 2009-03-18 | 焦点科技股份有限公司 | Method for automatically authenticate and recognize customer identity between different customers and login |
CN102469075A (en) * | 2010-11-09 | 2012-05-23 | 中科正阳信息安全技术有限公司 | Integration authentication method based on WEB single sign on |
CN102882835A (en) * | 2011-07-13 | 2013-01-16 | 中国科学院声学研究所 | Method and system for implementing single sign on |
US20140032759A1 (en) * | 2011-10-11 | 2014-01-30 | Citrix Systems, Inc. | Policy-Based Application Management |
WO2014048749A1 (en) * | 2012-09-29 | 2014-04-03 | Siemens Aktiengesellschaft | Inter-domain single sign-on |
CN103179134A (en) * | 2013-04-19 | 2013-06-26 | 中国建设银行股份有限公司 | Single sign on method and system based on Cookie and application server thereof |
CN103634399A (en) * | 2013-11-29 | 2014-03-12 | 北京奇虎科技有限公司 | Method and device for realizing cross-domain data transmission |
Non-Patent Citations (2)
Title |
---|
肖攸安: "加密与签名", 《椭圆曲线密码体系研究》 * |
陆汉权等: "内网和外网:Intranet", 《大学计算机基础教程》 * |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107547568A (en) * | 2017-09-29 | 2018-01-05 | 新华三技术有限公司 | Authentication method and device |
CN107547568B (en) * | 2017-09-29 | 2020-07-07 | 新华三技术有限公司 | Authentication method and device |
CN110198325A (en) * | 2018-02-26 | 2019-09-03 | 北京京东尚科信息技术有限公司 | Communication means, device and system, network server and storage medium |
CN110198325B (en) * | 2018-02-26 | 2022-04-12 | 北京京东尚科信息技术有限公司 | Communication method, device and system, network server and storage medium |
CN110855639A (en) * | 2019-10-29 | 2020-02-28 | 云深互联(北京)科技有限公司 | Method, device and equipment for controlling login of intranet and extranet of browser |
CN113922982A (en) * | 2021-08-31 | 2022-01-11 | 网宿科技股份有限公司 | Login method, electronic device and computer-readable storage medium |
WO2023029138A1 (en) * | 2021-08-31 | 2023-03-09 | 网宿科技股份有限公司 | Login method, electronic device and computer-readable storage medium |
CN114189527A (en) * | 2021-10-28 | 2022-03-15 | 海南视联通信技术有限公司 | Information synchronization method and device, electronic equipment and storage medium |
CN114666147A (en) * | 2022-03-31 | 2022-06-24 | 深信服科技股份有限公司 | Identity authentication method, device, equipment and readable storage medium |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109309565B (en) | Security authentication method and device | |
CN103812871B (en) | Development method and system based on mobile terminal application program security application | |
CN106850517A (en) | A kind of method, apparatus and system for solving intranet and extranet repeat logon | |
CN104184743B (en) | Towards three layers of Verification System and authentication method of cloud computing platform | |
CN107743133A (en) | Mobile terminal and its access control method and system based on trustable security environment | |
CN103634114B (en) | The verification method and system of intelligent code key | |
CN109361668A (en) | A kind of data trusted transmission method | |
CN102377788B (en) | Single sign-on (SSO) system and single sign-on (SSO) method | |
CN106685973B (en) | Remember method and device, log-in control method and the device of log-on message | |
CN105072125B (en) | A kind of http communication system and method | |
CN106060078B (en) | User information encryption method, register method and verification method applied to cloud platform | |
CN103179134A (en) | Single sign on method and system based on Cookie and application server thereof | |
CN206212040U (en) | A kind of real-name authentication system for express delivery industry | |
CN102868702B (en) | System login device and system login method | |
CN105681470A (en) | Communication method, server and terminal based on hypertext transfer protocol | |
CN106330829A (en) | Method and system for realizing single signing on by using middleware | |
CN106936588A (en) | A kind of trustship method, the apparatus and system of hardware controls lock | |
CN104243452B (en) | A kind of cloud computing access control method and system | |
CN105516066B (en) | A kind of method and device that internuncial presence is recognized | |
CN112422500B (en) | Cross-platform data transmission method and device, storage medium and electronic device | |
CN106550359A (en) | The authentication method and system of a kind of terminal and SIM | |
CN108111518A (en) | A kind of single-point logging method and system based on security password proxy server | |
CN107911344A (en) | A kind of safe docking calculation of cloud platform | |
CN109495458A (en) | A kind of method, system and the associated component of data transmission | |
CN108959962A (en) | A kind of API secure calling method of dynamic base |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170613 |
|
RJ01 | Rejection of invention patent application after publication |