CN107248995A - Account verification method and device - Google Patents

Account verification method and device Download PDF

Info

Publication number
CN107248995A
CN107248995A CN201710510231.0A CN201710510231A CN107248995A CN 107248995 A CN107248995 A CN 107248995A CN 201710510231 A CN201710510231 A CN 201710510231A CN 107248995 A CN107248995 A CN 107248995A
Authority
CN
China
Prior art keywords
information
terminal
account
security
safety coefficient
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710510231.0A
Other languages
Chinese (zh)
Other versions
CN107248995B (en
Inventor
张达理
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing 58 Information Technology Co Ltd
Original Assignee
Beijing 58 Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing 58 Information Technology Co Ltd filed Critical Beijing 58 Information Technology Co Ltd
Priority to CN201710510231.0A priority Critical patent/CN107248995B/en
Publication of CN107248995A publication Critical patent/CN107248995A/en
Application granted granted Critical
Publication of CN107248995B publication Critical patent/CN107248995B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint

Abstract

The embodiment of the present invention provides a kind of account verification method and device, and this method includes:Receive the login request message that first terminal equipment is sent, login request message includes the first terminal information of account, password and first terminal equipment, and first terminal information includes at least one of network information of attribute information, first terminal device location information and first terminal equipment of first terminal equipment;The corresponding security terminal information of account after, is being obtained to account and password authentification, security terminal information is collected in the case where account is logging status;According to first terminal information and security terminal information, the safety coefficient of account is determined;When it is determined that the safety coefficient of account is more than or equal to preset security coefficient, is sent to first terminal equipment and login successfully response message.Accuracy for improving account checking.

Description

Account verification method and device
Technical field
The present embodiments relate to communication technical field, more particularly to a kind of account verification method and device.
Background technology
At present, for many application programs in terminal device (such as mobile phone, computer), user needs passing through account Number, could use after password login.
In the prior art, in order to ensure the security of user data, in user in terminal device login application program When, terminal device sends the device identification of account, password and terminal device to server, and server is first carried out to account and password Checking, after, is judging that account and password authentification this logs in the terminal device of the account and the last time logs in the account Number terminal device it is whether identical, if identical, login successfully, if it is different, then server thinks that the login of the account is abnormal, then User is pointed out to carry out other checkings, for example, short-message verification etc..
However, in the prior art, when user is by different terminal device logs application programs, even if account is in Under safe condition, user is stilled need by other checkings ability login application program, and the accuracy for causing account to be verified is poor.
The content of the invention
The embodiment of the present invention provides a kind of account verification method and device, improves the accuracy of account checking.
In a first aspect, the embodiment of the present invention provides a kind of account verification method, including:
Receive the login request message that first terminal equipment is sent, the login request message include account, password and The first terminal information of the first terminal equipment, the attribute that the first terminal information includes the first terminal equipment is believed At least one of network information of breath, the first terminal device location information and the first terminal equipment;
The corresponding security terminal information of the account, institute after, are being obtained to the account and the password authentification Security terminal information is stated to collect in the case where the account is logging status;
According to the first terminal information and the security terminal information, the safety coefficient of the account is determined;
When it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, sent out to the first terminal equipment Send and login successfully response message.
In a kind of possible embodiment, according to the first terminal information and the security terminal information, institute is determined The safety coefficient of account is stated, including:
Obtain the safety coefficient of each information in the first terminal information;
According to the weighted value of the safety coefficient of each information and each information in the first terminal information, the account is determined Safety coefficient.
In alternatively possible embodiment, for any first information in the first terminal information, institute is obtained The safety coefficient of each information in first terminal information is stated, including:
According to the type of the first information, the corresponding safety of the first information is obtained in the security terminal information Information aggregate, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, being according to the safety of the matching degree and second information of the first information and second information then Number, determines the safety coefficient of the first information;
If not, it is determined that the safety coefficient of the first information is zero.
In alternatively possible embodiment, methods described also includes:
When it is determined that the account is logging status, sends information gathering to the second terminal equipment for logging in the account and disappear Breath;
The second terminal information that the second terminal equipment is sent is received, the second terminal information includes described second In the network information of the attribute information of terminal device, the positional information of the second terminal equipment and the second terminal equipment At least one;
Judge whether the corresponding security terminal information of the account that is stored with;
If so, then according to the second terminal information, updating the security terminal information;
If it is not, the second terminal information then is defined as into the security terminal information, and store the security terminal letter Breath.
In alternatively possible embodiment, the second terminal information includes multiple 3rd information;Accordingly, root According to the second terminal information, the security terminal information is updated, including:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the described 3rd The safety coefficient of information.
Second aspect, the embodiment of the present invention provides a kind of account checking device, including receiving module, acquisition module, first Determining module and sending module, wherein,
The receiving module is used for, and receives the login request message that first terminal equipment is sent, the login request message Include the first terminal information of account, password and the first terminal equipment, the first terminal information includes described first In the network information of the attribute information of terminal device, the first terminal device location information and the first terminal equipment It is at least one;
The acquisition module is used for, and the account correspondence after, is being obtained to the account and the password authentification Security terminal information, the security terminal information collects in the case where the account is logging status;
First determining module is used for, according to the first terminal information and the security terminal information, it is determined that described The safety coefficient of account;
The sending module is used for, when it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, to The first terminal equipment sends and logins successfully response message.
In a kind of possible embodiment, first determining module includes acquiring unit and determining unit, wherein,
The acquiring unit is used for, and obtains the safety coefficient of each information in the first terminal information;
The determining unit is used for, according to the power of the safety coefficient of each information and each information in the first terminal information Weight values, determine the safety coefficient of the account.
It is described to obtain for any first information in the first terminal information in alternatively possible embodiment Take unit specifically for:
According to the type of the first information, the corresponding safety of the first information is obtained in the security terminal information Information aggregate, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, being according to the safety of the matching degree and second information of the first information and second information then Number, determines the safety coefficient of the first information;
If not, it is determined that the safety coefficient of the first information is zero.
In alternatively possible embodiment, described device also includes judge module, update module, the second determining module And memory module, wherein,
The sending module is additionally operable to, when it is determined that the account is logging status, whole to log in the account second End equipment sends information gathering message;
The receiving module is additionally operable to, and receives the second terminal information that the second terminal equipment is sent, described second eventually Client information includes the attribute information of the second terminal equipment, the positional information of the second terminal equipment and described second At least one of network information of terminal device;
The judge module is used for, and judges whether the corresponding security terminal information of the account that is stored with;
The update module is used for, and the corresponding security terminal information of the account that is stored with is judged in the judge module When, according to the second terminal information, update the security terminal information;
Second determining module is used for, and judges not storing the corresponding security terminal letter of the account in the judge module During breath, the second terminal information is defined as the security terminal information, the memory module is used for, stores the safety eventually Client information.
In alternatively possible embodiment, the second terminal information includes multiple 3rd information;Accordingly, institute State update module specifically for:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the described 3rd The safety coefficient of information.
Account verification method and device provided in an embodiment of the present invention, the transmission of first terminal equipment is received in server After login request message, server first verifies whether account and password in logging request match, it is determined that account and password During matching, verified further according to the corresponding security terminal information of the account first terminal information current to first terminal equipment, Because first terminal information includes attribute information, the positional information of first terminal equipment and the first end of first terminal equipment One or more in the network information of end equipment, the much information can accurately reflect the current security of account, therefore, The accuracy that account is verified can be improved by the above method.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing There is the accompanying drawing used required in technology description to be briefly described, it should be apparent that, drawings in the following description are this hairs Some bright embodiments, for those of ordinary skill in the art, without having to pay creative labor, can be with Other accompanying drawings are obtained according to these accompanying drawings.
Fig. 1 is the application scenarios schematic diagram of account verification method provided in an embodiment of the present invention;
Fig. 2 is the schematic flow sheet one of account verification method provided in an embodiment of the present invention;
Fig. 3 is the schematic flow sheet provided in an embodiment of the present invention for safeguarding security terminal information approach;
Fig. 4 is the structural representation one that account provided in an embodiment of the present invention verifies device;
Fig. 5 is the structural representation two that account provided in an embodiment of the present invention verifies device.
Embodiment
To make the purpose, technical scheme and advantage of the embodiment of the present invention clearer, below in conjunction with the embodiment of the present invention In accompanying drawing, the technical scheme in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment is A part of embodiment of the present invention, rather than whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art The every other embodiment obtained under the premise of creative work is not made, belongs to the scope of protection of the invention.
Fig. 1 is the application scenarios schematic diagram of account verification method provided in an embodiment of the present invention.Refer to Fig. 1, including end End equipment 101 and server 102.Optionally, terminal device 101 can be the equipment, terminal device 101 such as mobile phone, computer, TV In the application program that can be logged in by account, password is installed.Server 102 is used for the application into terminal device 101 Program provides login service.Include the corresponding checking information of multiple accounts in server 102, checking information includes account pair The password and security terminal information answered, security terminal information can include the attribute letter for the terminal device that the account is generally logged in Breath, the positional information of terminal device, the network information of terminal device etc..Server 102 is according to the actual log feelings of each account Condition, real-time or periodically to account checking information is updated maintenance.
In this application, when needing the login application program in terminal device 101, terminal device 101 is to server 102 Send user input account, password and collection terminal device 101 current information, server 102 first verify account with Whether password matches, it is determined that when account and password match, further according to the corresponding security terminal credit-verification terminal equipment of account Current information, after being verified to the current information of terminal device, just to terminal device feedback login successfully response. In the application, the current information of terminal device includes the positional information and terminal of the attribute information of terminal device, terminal device One or more in the network information of equipment, therefore, server to account and password authentification after, always according to terminal One or more in the network information of the attribute information of equipment, the positional information of terminal device and terminal device are entered to user Row account verifies that the much information can accurately reflect the current security of account, it is thus possible to improve the standard of account checking True property.
Below, by specific embodiment, the technical scheme shown in the application is described in detail.It should be noted that Several specific embodiments can be combined with each other below, for same or analogous content, no longer carry out in various embodiments Repeat.
Fig. 2 is the schematic flow sheet one of account verification method provided in an embodiment of the present invention.Fig. 2 is referred to, this method can With including:
S201, receive the login request message that first terminal equipment is sent, login request message include account, password, And the first terminal information of first terminal equipment.
The executive agent of the embodiment of the present invention is server, and the server is used to carry out the application program in terminal device Log in management.Certainly, executive agent can also be the part in server, for example, executive agent can be to be arranged on service Account checking device in device, the account verifies that device can be realized by software, or, account checking device can pass through Software and hardware is implemented in combination with.
When user needs the login application program in first terminal equipment, user can input in first terminal equipment Account and password, (such as user carries out clicking operation to the login button of application program), first terminal under the triggering of user Device-to-server sends login request message, meanwhile, first terminal equipment also gathers the first terminal equipment at current time First terminal information, and the carrying first terminal information in login request message.
First terminal information includes the attribute information of first terminal equipment, first terminal device location information and first eventually At least one of network information of end equipment.Optionally, the attribute information of first terminal equipment can be set including first terminal Standby mark, model of first terminal equipment etc..Optionally, the network information of first terminal equipment can be set including first terminal The network information of standby currently used data network, for example, the network information can be WIFI, 4G network etc., the network information may be used also With mark including WIFI etc..
Certainly, in actual application, first terminal information can also include other information, and the embodiment of the present invention is to this It is not especially limited.
S202, the corresponding security terminal information of account, security terminal letter after, are being obtained to account and password authentification Cease and collected in the case where account is logging status.
Server is received after login request message, and first the account and password in login request message are verified, Judge whether account and password match, if account and password match, pass through to account and password authentification, if account and password are not Matching, then fail, and send login failure response message to terminal device to account and password authentification.
The corresponding security terminal information of account, the security terminal information after, are being obtained to account and password authentification When for the account being logging status, server is collected to the terminal device for logging in the account.Wherein, stored in server The corresponding security terminal information of each account, and in real time or periodically security terminal information is safeguarded.
Optionally, multiple security information set can be included in security terminal information, can in each security information set With multiple security information including same type, for example, terminal attributive information set, terminal can be included in security terminal information Positional information set, terminal network information aggregate etc., can include all of the logged account in terminal attributive information set The mark of terminal device, can include the area that terminal device is often located when the account is logging status in terminal positional information set The network information that terminal device is often used when the account is logging status can be included in domain, terminal network information aggregate.
Optionally, it can also include in security terminal information in security information set, the safety of each security information is Number, wherein, when the account is logging status, the collected frequency of security information is higher, then the safety coefficient of the security information Also it is higher.In actual application, it can determine that the safety coefficient of security information is established rules then really according to actual needs, this hair Bright embodiment is not especially limited to this.
For example, it is assumed that user is once by terminal device 1 and the logged account 1 of terminal device 2, wherein, user passes through terminal The time of the login account 1 of equipment 1 is longer, then the safety coefficient of terminal device 1 can be 0.9, and the coefficient of terminal device 2 can be 0.8.Certainly, if user is all higher than preset duration by the duration of terminal device 1 and the login account 1 of terminal device 2, terminal is set Can be 1 for the safety coefficient of 1 and terminal device 2.
For example, security terminal information can be as shown in table 1:
Table 1
S203, according to first terminal information and security terminal information, determine the safety coefficient of account.
Optionally, the safety coefficient of each information in first terminal information can be obtained, and according to each in first terminal information The weighted value of the safety coefficient of information and each information, determines the safety coefficient of account.
For example, the safety coefficient P of account can be determined by equation below one:
Wherein, n is the number for the information that first terminal information includes, αiFor the weighted value of i-th of information, PiFor i-th The safety coefficient of information.Optionally,
It should be noted that determine that the method for the safety coefficient of each information in first terminal information is identical, optionally, for Any one first information in first terminal information, can determine the safety of the first information by following feasible implementation Coefficient:
According to the type of the first information, the corresponding security information set of the first information, peace are obtained in security terminal information Full information set includes the safety coefficient of multiple standard information and each standard information;Judge to whether there is in security information set The second information matched with the first information.If so, then according to the peace of the matching degree and the second information of the first information and the second information Overall coefficient, determines the safety coefficient of the first information;If not, it is determined that the safety coefficient of the first information is zero.
Optionally, if there is second letter of the matching degree more than preset matching degree with the first information in security information set Breath, it is determined that there is the second information matched with the first information in security information set, can basis in actual application It is actually needed and the preset matching degree is set.
Optionally, the safety coefficient of the first information can be:The matching degree of the first information and the second information and the second information Safety coefficient product, if for example, the matching degree of the first information and the second information be 100%, the first information safety system Number is the safety coefficient of the second information, if the matching degree of the first information and the second information is 50%, the safety of the first information is Number is the half of the safety coefficient of the second information.Certainly, in actual application, the first letter can be determined according to actual needs The relation of the safety coefficient of breath and the safety coefficient of the second information, the embodiment of the present invention is not especially limited to this.
S204, it is determined that account safety coefficient be more than or equal to preset security coefficient when, to first terminal equipment send Login successfully response message.
After it is determined that obtaining the safety coefficient of account, the safety coefficient of account is compared with preset security coefficient, When the safety coefficient of account is more than or equal to preset security coefficient, determine that account is currently at security context, then can be to the One terminal device sends and logins successfully response message, and determines that application program is logined successfully.
Account verification method provided in an embodiment of the present invention, the login for receiving the transmission of first terminal equipment in server please Ask after message, server first verifies whether account and password in logging request match, it is determined that when account and password match, Verified further according to the corresponding security terminal information of the account first terminal information current to first terminal equipment, due to first End message includes the attribute information of first terminal equipment, the positional information of first terminal equipment and first terminal equipment One or more in the network information, the much information can accurately reflect the current security of account, therefore, by above-mentioned Method can improve the accuracy of account checking.
On the basis of embodiment illustrated in fig. 2, server also needs to real-time or periodically safeguards that each account is corresponding Security terminal information, below, by the embodiment shown in Fig. 3, safeguard that the process of the security terminal information of account is entered to server Row is described in detail.
Fig. 3 is the schematic flow sheet provided in an embodiment of the present invention for safeguarding security terminal information approach.Fig. 3 is referred to, should Method can include:
S301, it is determined that account be logging status when, to login account second terminal equipment send information gathering message.
When it is logging status that server, which determines account, information can be sent to the second terminal equipment for logging in the account and adopted Collect message, the information gathering message is used for the presupposed information for asking collection second terminal equipment.Optionally, second terminal equipment can , can also be different from first terminal equipment with identical with first terminal equipment.
Optionally, the type for the information for needing to gather can be carried in information gathering message, so that second terminal equipment The information of corresponding types can be sent to server.
S302, the second terminal information for receiving the transmission of second terminal equipment.
Optionally, attribute information, the position of second terminal equipment of second terminal equipment can be included in second terminal information At least one of network information of confidence breath and second terminal equipment.
S303, judge whether the corresponding security terminal information of account that is stored with.
If so, then performing S304.
If it is not, then performing S305.
S304, according to second terminal information, update security terminal information.
If the corresponding security terminal information of the account that has been stored with server, sent according to second terminal equipment Second terminal information, updates the corresponding security terminal information of the account.
Optionally, it is assumed that second terminal information includes multiple 3rd information, then can be according to following feasible realization side Formula updates security terminal information:
Each corresponding security information set of the 3rd information is obtained respectively, and the corresponding safety letter of the 3rd information is judged respectively Whether include corresponding 3rd information in breath set, if so, then updating peace of the 3rd information in corresponding security information set Overall coefficient, if it is not, then increasing by the 3rd information in the corresponding security information set of the 3rd information, and determines the safety of the 3rd information Coefficient.
Optionally, if the corresponding security information set of the 3rd information includes the safety system of the 3rd information and the 3rd information When number is less than 1, then the safety coefficient of the 3rd information can be improved.
Optionally, if not including the 3rd information in the corresponding security information set of the 3rd information, the 3rd information is added Safety coefficient is determined into the corresponding security information set of the 3rd information, and for the 3rd information, can be by the safety of the 3rd information Coefficient is set to initial factor of safety, and initial factor of safety is generally relatively low, when the number of times of the 3rd information of collection is more, then can be with Step up the safety coefficient of the 3rd information.
S305, second terminal information is defined as to security terminal information, and stores security terminal information.
If second terminal information, is directly defined as by the corresponding security terminal information of the account that is not stored with server Security terminal information, and store the security terminal information.
In the embodiment shown in fig. 3, server gathers the information of the terminal device of login account in real time or periodically, And the security terminal information according to the information collected to account to one is updated maintenance, in this manner it is ensured that account Corresponding security terminal information is related to the actual log situation of the account so that the security terminal information of account is more accurate, , it is necessary to be verified by security terminal information to the end message of login account during due to being verified to account, and then it can enter One step improves the accuracy of account checking.
Below, by example 1- examples 2, the technical scheme shown in above method embodiment is described in detail.Specifically , by example 1, the maintenance process to security terminal information is described in detail, and the verification process of account is entered by example 2 Row is described in detail.
Example 1, it is assumed that account 1 carried out login before current time, the then safety for the account 1 that is stored with the server End message, and security terminal information is as shown in table 2:
Table 2
When it is logging status that server, which determines account 1, server sends information gathering to the corresponding terminal device of account 1 Message.Assuming that current by the login account 1 of terminal device 3, then server sends information gathering message to terminal device 3.
The information that terminal device 3 sends terminal device 3 to server is as follows:Terminal device 3, region 1, WiFi-1.
Server is received after above- mentioned information, the security terminal information of account 1 is updated according to above- mentioned information, due to table 2 Do not include terminal device 3 in shown security terminal information, then terminal device 3 is directly added to terminal attributive information set In, and safety coefficient is set for terminal device 3.Because the security terminal information shown in table 2 includes region 1, then update area 1 Corresponding safety coefficient.Because the security terminal information shown in table 2 includes WiFi-1, then WiFi-1 safety coefficient is updated, Again because WiFi-1 safety coefficient has been 1, then WiFi-1 safety coefficient need not be improved.Optionally, updated account 1 Security device information is as shown in table 3:
Table 3
Example 2, it is assumed that the corresponding security terminal information of account 1 as shown in table 3, asks to step in user in terminal device 4 Record account 1 when, terminal device 4 to server send login request message, the login request message include account 1, password and The information of terminal device 4, wherein, the information of terminal device 4 is:Terminal device 4, region 1, WIFI-1.
After the login request message that server receives the side of terminal device 4, first verify account 1 and password whether Match somebody with somebody, if matching, is verified further according to the security terminal information shown in table 3 to the information of terminal device 4, specifically, due to peace Do not include terminal device 4 in full attribute information set, then the safety coefficient of terminal device 4 is 0, due to terminal positional information set Include region 1, then the safety coefficient in region 1 is 0.9, because terminal network information aggregate includes WiFi-1, then WiFi-1 Safety coefficient be 1.
Assuming that the weighted value of terminal attributive information is 0.4, the weighted value of terminal positional information is 0.2, terminal network information Weighted value be 0.4, then the safety coefficient of account 1 is as follows:
0*0.4+0.9*0.2+1*0.4=0.58.
It is 0.5 to assume again that preset security coefficient, because the safety coefficient (0.58) of account 1 is more than preset security coefficient (0.5), it is determined that the current environment of account 1 to be safe, then can determine account 1 can in terminal device 4 secure log.
Fig. 4 is the structural representation one that account provided in an embodiment of the present invention verifies device.Fig. 4 is referred to, the device can With including receiving module 11, acquisition module 12, the first determining module 13 and sending module 14, wherein,
The receiving module 11 is used for, and receives the login request message that first terminal equipment is sent, and the logging request disappears Breath includes the first terminal information of account, password and the first terminal equipment, and the first terminal information includes described the In the network information of the attribute information of one terminal device, the first terminal device location information and the first terminal equipment At least one;
The acquisition module 12 is used for, and after, the account pair is being obtained to the account and the password authentification The security terminal information answered, the security terminal information is collected in the case where the account is logging status;
First determining module 13 is used for, and according to the first terminal information and the security terminal information, determines institute State the safety coefficient of account;
The sending module 14 is used for, when it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, Sent to the first terminal equipment and login successfully response message.
Account checking device provided in an embodiment of the present invention can perform the technical scheme shown in above method embodiment, its Realization principle and beneficial effect are similar, are no longer repeated herein.
Fig. 5 is the structural representation two that account provided in an embodiment of the present invention verifies device.In the base of embodiment illustrated in fig. 4 On plinth, Fig. 5 is referred to, first determining module 13 includes acquiring unit 131 and determining unit 132, wherein,
The acquiring unit 131 is used for, and obtains the safety coefficient of each information in the first terminal information;
The determining unit 132 is used for, according to the safety coefficient of each information in the first terminal information and each information Weighted value, determines the safety coefficient of the account.
In a kind of possible embodiment, for any first information in the first terminal information, the acquisition Unit 131 specifically for:
According to the type of the first information, the corresponding safety of the first information is obtained in the security terminal information Information aggregate, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, being according to the safety of the matching degree and second information of the first information and second information then Number, determines the safety coefficient of the first information;
If not, it is determined that the safety coefficient of the first information is zero.
In alternatively possible embodiment, described device also includes judge module 15, update module 16, second and determined Module 17 and memory module 18, wherein,
The sending module 14 is additionally operable to, when it is determined that the account is logging status, to the second of the login account Terminal device sends information gathering message;
The receiving module 11 is additionally operable to, and receives the second terminal information that the second terminal equipment is sent, described second End message includes the attribute information of the second terminal equipment, the positional information of the second terminal equipment and described At least one of network information of two terminal devices;
The judge module 15 is used for, and judges whether the corresponding security terminal information of the account that is stored with;
The update module 16 is used for, and the corresponding security terminal letter of the account that is stored with is judged in the judge module 15 During breath, according to the second terminal information, the security terminal information is updated;
Second determining module 17 is used for, and judges not store the corresponding safety of the account eventually in the judge module 15 During client information, the second terminal information is defined as the security terminal information, the memory module 18 is used for, storage is described Security terminal information.
In alternatively possible embodiment, the second terminal information includes multiple 3rd information;Accordingly, institute State update module 15 specifically for:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the described 3rd The safety coefficient of information.
Account checking device provided in an embodiment of the present invention can perform the technical scheme shown in above method embodiment, its Realization principle and beneficial effect are similar, are no longer repeated herein.
One of ordinary skill in the art will appreciate that:Realizing all or part of step of above-mentioned each method embodiment can lead to The related hardware of programmed instruction is crossed to complete.Foregoing program can be stored in a computer read/write memory medium.The journey Sequence upon execution, performs the step of including above-mentioned each method embodiment;And foregoing storage medium includes:ROM, RAM, magnetic disc or Person's CD etc. is various can be with the medium of store program codes.
Finally it should be noted that:Various embodiments above is only to the technical scheme for illustrating the embodiment of the present invention, rather than to it Limitation;Although the embodiment of the present invention is described in detail with reference to foregoing embodiments, one of ordinary skill in the art It should be understood that:It can still modify to the technical scheme described in foregoing embodiments, or to which part or All technical characteristic carries out equivalent substitution;And these modifications or replacement, the essence of appropriate technical solution is departed from this hair The scope of bright embodiment scheme.

Claims (10)

1. a kind of account verification method, it is characterised in that including:
Receive the login request message that first terminal equipment is sent, the login request message includes account, password and described The first terminal information of first terminal equipment, the first terminal information includes the attribute information of the first terminal equipment, institute State at least one of network information of first terminal device location information and the first terminal equipment;
The corresponding security terminal information of the account, the peace after, are being obtained to the account and the password authentification Full end message is collected in the case where the account is logging status;
According to the first terminal information and the security terminal information, the safety coefficient of the account is determined;
When it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, sends and step on to the first terminal equipment Record success response message.
2. according to the method described in claim 1, it is characterised in that believed according to the first terminal information and the security terminal Breath, determines the safety coefficient of the account, including:
Obtain the safety coefficient of each information in the first terminal information;
According to the weighted value of the safety coefficient of each information and each information in the first terminal information, the peace of the account is determined Overall coefficient.
3. method according to claim 2, it is characterised in that for any first letter in the first terminal information Breath, obtains the safety coefficient of each information in the first terminal information, including:
According to the type of the first information, the corresponding security information of the first information is obtained in the security terminal information Set, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, then according to the safety coefficient of the matching degree and second information of the first information and second information, really The safety coefficient of the fixed first information;
If not, it is determined that the safety coefficient of the first information is zero.
4. the method according to claim any one of 1-3, it is characterised in that methods described also includes:
When it is determined that the account is logging status, information gathering message is sent to the second terminal equipment for logging in the account;
The second terminal information that the second terminal equipment is sent is received, the second terminal information includes the second terminal In the network information of the attribute information of equipment, the positional information of the second terminal equipment and the second terminal equipment extremely Few one kind;
Judge whether the corresponding security terminal information of the account that is stored with;
If so, then according to the second terminal information, updating the security terminal information;
If it is not, the second terminal information then is defined as into the security terminal information, and store the security terminal information.
5. method according to claim 4, it is characterised in that the second terminal information includes multiple 3rd information; Accordingly, according to the second terminal information, the security terminal information is updated, including:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the 3rd information Safety coefficient.
6. a kind of account verifies device, it is characterised in that including receiving module, acquisition module, the first determining module and transmission mould Block, wherein,
The receiving module is used for, and receives and is wrapped in the login request message that first terminal equipment is sent, the login request message The first terminal information of account, password and the first terminal equipment is included, the first terminal information includes the first terminal In the network information of the attribute information of equipment, the first terminal device location information and the first terminal equipment at least It is a kind of;
The acquisition module is used for, and the corresponding peace of the account after, is being obtained to the account and the password authentification Full end message, the security terminal information is collected in the case where the account is logging status;
First determining module is used for, and according to the first terminal information and the security terminal information, determines the account Safety coefficient;
The sending module is used for, when it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, to described First terminal equipment sends and logins successfully response message.
7. device according to claim 6, it is characterised in that first determining module includes acquiring unit and determined single Member, wherein,
The acquiring unit is used for, and obtains the safety coefficient of each information in the first terminal information;
The determining unit is used for, according to the weighted value of the safety coefficient of each information and each information in the first terminal information, Determine the safety coefficient of the account.
8. device according to claim 7, it is characterised in that for any first letter in the first terminal information Breath, the acquiring unit specifically for:
According to the type of the first information, the corresponding security information of the first information is obtained in the security terminal information Set, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, then according to the safety coefficient of the matching degree and second information of the first information and second information, really The safety coefficient of the fixed first information;
If not, it is determined that the safety coefficient of the first information is zero.
9. the device according to claim any one of 6-8, it is characterised in that described device also includes judge module, updated Module, the second determining module and memory module, wherein,
The sending module is additionally operable to, and when it is determined that the account is logging status, is set to the second terminal for logging in the account Preparation send information gathering message;
The receiving module is additionally operable to, and receives the second terminal information that the second terminal equipment is sent, the second terminal letter Breath includes the attribute information of the second terminal equipment, the positional information and the second terminal of the second terminal equipment At least one of network information of equipment;
The judge module is used for, and judges whether the corresponding security terminal information of the account that is stored with;
The update module is used for, when the judge module judges to be stored with the corresponding security terminal information of the account, root According to the second terminal information, the security terminal information is updated;
Second determining module is used for, and judges not storing the corresponding security terminal information of the account in the judge module When, the second terminal information is defined as the security terminal information, the memory module is used for, stores the security terminal Information.
10. device according to claim 9, it is characterised in that the second terminal information includes multiple 3rd information; Accordingly, the update module specifically for:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the 3rd information Safety coefficient.
CN201710510231.0A 2017-06-28 2017-06-28 Account verification method and device Active CN107248995B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710510231.0A CN107248995B (en) 2017-06-28 2017-06-28 Account verification method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710510231.0A CN107248995B (en) 2017-06-28 2017-06-28 Account verification method and device

Publications (2)

Publication Number Publication Date
CN107248995A true CN107248995A (en) 2017-10-13
CN107248995B CN107248995B (en) 2021-06-01

Family

ID=60014013

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710510231.0A Active CN107248995B (en) 2017-06-28 2017-06-28 Account verification method and device

Country Status (1)

Country Link
CN (1) CN107248995B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107864454A (en) * 2017-12-07 2018-03-30 广东电网有限责任公司信息中心 A kind of intelligent grid maintaining method and system based on mobile intelligent terminal
CN108737408A (en) * 2018-05-11 2018-11-02 国家计算机网络与信息安全管理中心 A kind of user network authentication information extracting method and system
CN109803159A (en) * 2018-12-17 2019-05-24 视联动力信息技术股份有限公司 A kind of verification method and system of terminal
WO2019184135A1 (en) * 2018-03-30 2019-10-03 平安科技(深圳)有限公司 Application login method and apparatus, and computer device and storage medium
CN111147457A (en) * 2019-12-12 2020-05-12 泰斗微电子科技有限公司 Data processing method and device, terminal equipment and server

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104426884A (en) * 2013-09-03 2015-03-18 深圳市腾讯计算机系统有限公司 Method for authenticating identity and device for authenticating identity
CN104518876A (en) * 2013-09-29 2015-04-15 腾讯科技(深圳)有限公司 Service login method and device
EP2916510A1 (en) * 2014-03-03 2015-09-09 Keypasco AB Network authentication method for secure user identity verification using user positioning information
CN105471819A (en) * 2014-08-19 2016-04-06 腾讯科技(深圳)有限公司 Account abnormity detection method and account abnormity detection device
CN106341233A (en) * 2015-07-08 2017-01-18 阿里巴巴集团控股有限公司 Authentication method for client to log into server, device, system and electronic device
CN106657073A (en) * 2016-12-26 2017-05-10 北京五八信息技术有限公司 Method and system for screening abnormal login users

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104426884A (en) * 2013-09-03 2015-03-18 深圳市腾讯计算机系统有限公司 Method for authenticating identity and device for authenticating identity
CN104518876A (en) * 2013-09-29 2015-04-15 腾讯科技(深圳)有限公司 Service login method and device
EP2916510A1 (en) * 2014-03-03 2015-09-09 Keypasco AB Network authentication method for secure user identity verification using user positioning information
CN105471819A (en) * 2014-08-19 2016-04-06 腾讯科技(深圳)有限公司 Account abnormity detection method and account abnormity detection device
CN106341233A (en) * 2015-07-08 2017-01-18 阿里巴巴集团控股有限公司 Authentication method for client to log into server, device, system and electronic device
CN106657073A (en) * 2016-12-26 2017-05-10 北京五八信息技术有限公司 Method and system for screening abnormal login users

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107864454A (en) * 2017-12-07 2018-03-30 广东电网有限责任公司信息中心 A kind of intelligent grid maintaining method and system based on mobile intelligent terminal
CN107864454B (en) * 2017-12-07 2020-04-14 广东电网有限责任公司信息中心 Smart power grid maintenance method and system based on mobile smart terminal
WO2019184135A1 (en) * 2018-03-30 2019-10-03 平安科技(深圳)有限公司 Application login method and apparatus, and computer device and storage medium
CN108737408A (en) * 2018-05-11 2018-11-02 国家计算机网络与信息安全管理中心 A kind of user network authentication information extracting method and system
CN109803159A (en) * 2018-12-17 2019-05-24 视联动力信息技术股份有限公司 A kind of verification method and system of terminal
CN111147457A (en) * 2019-12-12 2020-05-12 泰斗微电子科技有限公司 Data processing method and device, terminal equipment and server

Also Published As

Publication number Publication date
CN107248995B (en) 2021-06-01

Similar Documents

Publication Publication Date Title
CN107248995A (en) Account verification method and device
CN106161392B (en) A kind of auth method and equipment
CN108596613A (en) block chain transaction processing method, device and storage medium
CN105991590B (en) A kind of method, system, client and server for verifying user identity
CN107624238A (en) To the safe access control of the application based on cloud
CN105450614B (en) A kind of server account logon method, device and system
US9667613B1 (en) Detecting mobile device emulation
CN105933266A (en) Verification method and server
CN106888106A (en) The extensive detecting system of IT assets in intelligent grid
CN110213215A (en) A kind of resource access method, device, terminal and storage medium
CN108243404B (en) Method, device and equipment for verifying binding state of mobile phone number
CN105657660A (en) Access method of base station routing inspection terminal, routing inspection terminal, server and base station
CN107484152A (en) The management method and device of terminal applies
CN109753772A (en) A kind of account safety verification method and system
CN112650520B (en) Ammeter upgrading method and system, intelligent ammeter and storage medium
CN106534129B (en) Connection control method and device
CN107689941A (en) A kind of apparatus and method for preventing same user's repeat logon
CN108123961A (en) Information processing method, apparatus and system
CN107135201A (en) A kind of webserver login authentication method and device
CN110267268A (en) The recognition methods of pseudo-base station, apparatus and system
CN109639724A (en) Password method for retrieving, password device for retrieving, computer equipment and storage medium
CN107612735A (en) A kind of broadband On-line Fault processing method, server and user terminal
CN104967603B (en) Using account number safety verification method and device
CN108322917A (en) Wireless network accesses Fault Locating Method, equipment, system and storage medium
CN111555920A (en) Intelligent operation and maintenance method, system, equipment and user side

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant