CN107248995A - Account verification method and device - Google Patents
Account verification method and device Download PDFInfo
- Publication number
- CN107248995A CN107248995A CN201710510231.0A CN201710510231A CN107248995A CN 107248995 A CN107248995 A CN 107248995A CN 201710510231 A CN201710510231 A CN 201710510231A CN 107248995 A CN107248995 A CN 107248995A
- Authority
- CN
- China
- Prior art keywords
- information
- terminal
- account
- security
- safety coefficient
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Abstract
The embodiment of the present invention provides a kind of account verification method and device, and this method includes:Receive the login request message that first terminal equipment is sent, login request message includes the first terminal information of account, password and first terminal equipment, and first terminal information includes at least one of network information of attribute information, first terminal device location information and first terminal equipment of first terminal equipment;The corresponding security terminal information of account after, is being obtained to account and password authentification, security terminal information is collected in the case where account is logging status;According to first terminal information and security terminal information, the safety coefficient of account is determined;When it is determined that the safety coefficient of account is more than or equal to preset security coefficient, is sent to first terminal equipment and login successfully response message.Accuracy for improving account checking.
Description
Technical field
The present embodiments relate to communication technical field, more particularly to a kind of account verification method and device.
Background technology
At present, for many application programs in terminal device (such as mobile phone, computer), user needs passing through account
Number, could use after password login.
In the prior art, in order to ensure the security of user data, in user in terminal device login application program
When, terminal device sends the device identification of account, password and terminal device to server, and server is first carried out to account and password
Checking, after, is judging that account and password authentification this logs in the terminal device of the account and the last time logs in the account
Number terminal device it is whether identical, if identical, login successfully, if it is different, then server thinks that the login of the account is abnormal, then
User is pointed out to carry out other checkings, for example, short-message verification etc..
However, in the prior art, when user is by different terminal device logs application programs, even if account is in
Under safe condition, user is stilled need by other checkings ability login application program, and the accuracy for causing account to be verified is poor.
The content of the invention
The embodiment of the present invention provides a kind of account verification method and device, improves the accuracy of account checking.
In a first aspect, the embodiment of the present invention provides a kind of account verification method, including:
Receive the login request message that first terminal equipment is sent, the login request message include account, password and
The first terminal information of the first terminal equipment, the attribute that the first terminal information includes the first terminal equipment is believed
At least one of network information of breath, the first terminal device location information and the first terminal equipment;
The corresponding security terminal information of the account, institute after, are being obtained to the account and the password authentification
Security terminal information is stated to collect in the case where the account is logging status;
According to the first terminal information and the security terminal information, the safety coefficient of the account is determined;
When it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, sent out to the first terminal equipment
Send and login successfully response message.
In a kind of possible embodiment, according to the first terminal information and the security terminal information, institute is determined
The safety coefficient of account is stated, including:
Obtain the safety coefficient of each information in the first terminal information;
According to the weighted value of the safety coefficient of each information and each information in the first terminal information, the account is determined
Safety coefficient.
In alternatively possible embodiment, for any first information in the first terminal information, institute is obtained
The safety coefficient of each information in first terminal information is stated, including:
According to the type of the first information, the corresponding safety of the first information is obtained in the security terminal information
Information aggregate, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, being according to the safety of the matching degree and second information of the first information and second information then
Number, determines the safety coefficient of the first information;
If not, it is determined that the safety coefficient of the first information is zero.
In alternatively possible embodiment, methods described also includes:
When it is determined that the account is logging status, sends information gathering to the second terminal equipment for logging in the account and disappear
Breath;
The second terminal information that the second terminal equipment is sent is received, the second terminal information includes described second
In the network information of the attribute information of terminal device, the positional information of the second terminal equipment and the second terminal equipment
At least one;
Judge whether the corresponding security terminal information of the account that is stored with;
If so, then according to the second terminal information, updating the security terminal information;
If it is not, the second terminal information then is defined as into the security terminal information, and store the security terminal letter
Breath.
In alternatively possible embodiment, the second terminal information includes multiple 3rd information;Accordingly, root
According to the second terminal information, the security terminal information is updated, including:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the described 3rd
The safety coefficient of information.
Second aspect, the embodiment of the present invention provides a kind of account checking device, including receiving module, acquisition module, first
Determining module and sending module, wherein,
The receiving module is used for, and receives the login request message that first terminal equipment is sent, the login request message
Include the first terminal information of account, password and the first terminal equipment, the first terminal information includes described first
In the network information of the attribute information of terminal device, the first terminal device location information and the first terminal equipment
It is at least one;
The acquisition module is used for, and the account correspondence after, is being obtained to the account and the password authentification
Security terminal information, the security terminal information collects in the case where the account is logging status;
First determining module is used for, according to the first terminal information and the security terminal information, it is determined that described
The safety coefficient of account;
The sending module is used for, when it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, to
The first terminal equipment sends and logins successfully response message.
In a kind of possible embodiment, first determining module includes acquiring unit and determining unit, wherein,
The acquiring unit is used for, and obtains the safety coefficient of each information in the first terminal information;
The determining unit is used for, according to the power of the safety coefficient of each information and each information in the first terminal information
Weight values, determine the safety coefficient of the account.
It is described to obtain for any first information in the first terminal information in alternatively possible embodiment
Take unit specifically for:
According to the type of the first information, the corresponding safety of the first information is obtained in the security terminal information
Information aggregate, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, being according to the safety of the matching degree and second information of the first information and second information then
Number, determines the safety coefficient of the first information;
If not, it is determined that the safety coefficient of the first information is zero.
In alternatively possible embodiment, described device also includes judge module, update module, the second determining module
And memory module, wherein,
The sending module is additionally operable to, when it is determined that the account is logging status, whole to log in the account second
End equipment sends information gathering message;
The receiving module is additionally operable to, and receives the second terminal information that the second terminal equipment is sent, described second eventually
Client information includes the attribute information of the second terminal equipment, the positional information of the second terminal equipment and described second
At least one of network information of terminal device;
The judge module is used for, and judges whether the corresponding security terminal information of the account that is stored with;
The update module is used for, and the corresponding security terminal information of the account that is stored with is judged in the judge module
When, according to the second terminal information, update the security terminal information;
Second determining module is used for, and judges not storing the corresponding security terminal letter of the account in the judge module
During breath, the second terminal information is defined as the security terminal information, the memory module is used for, stores the safety eventually
Client information.
In alternatively possible embodiment, the second terminal information includes multiple 3rd information;Accordingly, institute
State update module specifically for:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the described 3rd
The safety coefficient of information.
Account verification method and device provided in an embodiment of the present invention, the transmission of first terminal equipment is received in server
After login request message, server first verifies whether account and password in logging request match, it is determined that account and password
During matching, verified further according to the corresponding security terminal information of the account first terminal information current to first terminal equipment,
Because first terminal information includes attribute information, the positional information of first terminal equipment and the first end of first terminal equipment
One or more in the network information of end equipment, the much information can accurately reflect the current security of account, therefore,
The accuracy that account is verified can be improved by the above method.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing
There is the accompanying drawing used required in technology description to be briefly described, it should be apparent that, drawings in the following description are this hairs
Some bright embodiments, for those of ordinary skill in the art, without having to pay creative labor, can be with
Other accompanying drawings are obtained according to these accompanying drawings.
Fig. 1 is the application scenarios schematic diagram of account verification method provided in an embodiment of the present invention;
Fig. 2 is the schematic flow sheet one of account verification method provided in an embodiment of the present invention;
Fig. 3 is the schematic flow sheet provided in an embodiment of the present invention for safeguarding security terminal information approach;
Fig. 4 is the structural representation one that account provided in an embodiment of the present invention verifies device;
Fig. 5 is the structural representation two that account provided in an embodiment of the present invention verifies device.
Embodiment
To make the purpose, technical scheme and advantage of the embodiment of the present invention clearer, below in conjunction with the embodiment of the present invention
In accompanying drawing, the technical scheme in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment is
A part of embodiment of the present invention, rather than whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art
The every other embodiment obtained under the premise of creative work is not made, belongs to the scope of protection of the invention.
Fig. 1 is the application scenarios schematic diagram of account verification method provided in an embodiment of the present invention.Refer to Fig. 1, including end
End equipment 101 and server 102.Optionally, terminal device 101 can be the equipment, terminal device 101 such as mobile phone, computer, TV
In the application program that can be logged in by account, password is installed.Server 102 is used for the application into terminal device 101
Program provides login service.Include the corresponding checking information of multiple accounts in server 102, checking information includes account pair
The password and security terminal information answered, security terminal information can include the attribute letter for the terminal device that the account is generally logged in
Breath, the positional information of terminal device, the network information of terminal device etc..Server 102 is according to the actual log feelings of each account
Condition, real-time or periodically to account checking information is updated maintenance.
In this application, when needing the login application program in terminal device 101, terminal device 101 is to server 102
Send user input account, password and collection terminal device 101 current information, server 102 first verify account with
Whether password matches, it is determined that when account and password match, further according to the corresponding security terminal credit-verification terminal equipment of account
Current information, after being verified to the current information of terminal device, just to terminal device feedback login successfully response.
In the application, the current information of terminal device includes the positional information and terminal of the attribute information of terminal device, terminal device
One or more in the network information of equipment, therefore, server to account and password authentification after, always according to terminal
One or more in the network information of the attribute information of equipment, the positional information of terminal device and terminal device are entered to user
Row account verifies that the much information can accurately reflect the current security of account, it is thus possible to improve the standard of account checking
True property.
Below, by specific embodiment, the technical scheme shown in the application is described in detail.It should be noted that
Several specific embodiments can be combined with each other below, for same or analogous content, no longer carry out in various embodiments
Repeat.
Fig. 2 is the schematic flow sheet one of account verification method provided in an embodiment of the present invention.Fig. 2 is referred to, this method can
With including:
S201, receive the login request message that first terminal equipment is sent, login request message include account, password,
And the first terminal information of first terminal equipment.
The executive agent of the embodiment of the present invention is server, and the server is used to carry out the application program in terminal device
Log in management.Certainly, executive agent can also be the part in server, for example, executive agent can be to be arranged on service
Account checking device in device, the account verifies that device can be realized by software, or, account checking device can pass through
Software and hardware is implemented in combination with.
When user needs the login application program in first terminal equipment, user can input in first terminal equipment
Account and password, (such as user carries out clicking operation to the login button of application program), first terminal under the triggering of user
Device-to-server sends login request message, meanwhile, first terminal equipment also gathers the first terminal equipment at current time
First terminal information, and the carrying first terminal information in login request message.
First terminal information includes the attribute information of first terminal equipment, first terminal device location information and first eventually
At least one of network information of end equipment.Optionally, the attribute information of first terminal equipment can be set including first terminal
Standby mark, model of first terminal equipment etc..Optionally, the network information of first terminal equipment can be set including first terminal
The network information of standby currently used data network, for example, the network information can be WIFI, 4G network etc., the network information may be used also
With mark including WIFI etc..
Certainly, in actual application, first terminal information can also include other information, and the embodiment of the present invention is to this
It is not especially limited.
S202, the corresponding security terminal information of account, security terminal letter after, are being obtained to account and password authentification
Cease and collected in the case where account is logging status.
Server is received after login request message, and first the account and password in login request message are verified,
Judge whether account and password match, if account and password match, pass through to account and password authentification, if account and password are not
Matching, then fail, and send login failure response message to terminal device to account and password authentification.
The corresponding security terminal information of account, the security terminal information after, are being obtained to account and password authentification
When for the account being logging status, server is collected to the terminal device for logging in the account.Wherein, stored in server
The corresponding security terminal information of each account, and in real time or periodically security terminal information is safeguarded.
Optionally, multiple security information set can be included in security terminal information, can in each security information set
With multiple security information including same type, for example, terminal attributive information set, terminal can be included in security terminal information
Positional information set, terminal network information aggregate etc., can include all of the logged account in terminal attributive information set
The mark of terminal device, can include the area that terminal device is often located when the account is logging status in terminal positional information set
The network information that terminal device is often used when the account is logging status can be included in domain, terminal network information aggregate.
Optionally, it can also include in security terminal information in security information set, the safety of each security information is
Number, wherein, when the account is logging status, the collected frequency of security information is higher, then the safety coefficient of the security information
Also it is higher.In actual application, it can determine that the safety coefficient of security information is established rules then really according to actual needs, this hair
Bright embodiment is not especially limited to this.
For example, it is assumed that user is once by terminal device 1 and the logged account 1 of terminal device 2, wherein, user passes through terminal
The time of the login account 1 of equipment 1 is longer, then the safety coefficient of terminal device 1 can be 0.9, and the coefficient of terminal device 2 can be
0.8.Certainly, if user is all higher than preset duration by the duration of terminal device 1 and the login account 1 of terminal device 2, terminal is set
Can be 1 for the safety coefficient of 1 and terminal device 2.
For example, security terminal information can be as shown in table 1:
Table 1
S203, according to first terminal information and security terminal information, determine the safety coefficient of account.
Optionally, the safety coefficient of each information in first terminal information can be obtained, and according to each in first terminal information
The weighted value of the safety coefficient of information and each information, determines the safety coefficient of account.
For example, the safety coefficient P of account can be determined by equation below one:
Wherein, n is the number for the information that first terminal information includes, αiFor the weighted value of i-th of information, PiFor i-th
The safety coefficient of information.Optionally,
It should be noted that determine that the method for the safety coefficient of each information in first terminal information is identical, optionally, for
Any one first information in first terminal information, can determine the safety of the first information by following feasible implementation
Coefficient:
According to the type of the first information, the corresponding security information set of the first information, peace are obtained in security terminal information
Full information set includes the safety coefficient of multiple standard information and each standard information;Judge to whether there is in security information set
The second information matched with the first information.If so, then according to the peace of the matching degree and the second information of the first information and the second information
Overall coefficient, determines the safety coefficient of the first information;If not, it is determined that the safety coefficient of the first information is zero.
Optionally, if there is second letter of the matching degree more than preset matching degree with the first information in security information set
Breath, it is determined that there is the second information matched with the first information in security information set, can basis in actual application
It is actually needed and the preset matching degree is set.
Optionally, the safety coefficient of the first information can be:The matching degree of the first information and the second information and the second information
Safety coefficient product, if for example, the matching degree of the first information and the second information be 100%, the first information safety system
Number is the safety coefficient of the second information, if the matching degree of the first information and the second information is 50%, the safety of the first information is
Number is the half of the safety coefficient of the second information.Certainly, in actual application, the first letter can be determined according to actual needs
The relation of the safety coefficient of breath and the safety coefficient of the second information, the embodiment of the present invention is not especially limited to this.
S204, it is determined that account safety coefficient be more than or equal to preset security coefficient when, to first terminal equipment send
Login successfully response message.
After it is determined that obtaining the safety coefficient of account, the safety coefficient of account is compared with preset security coefficient,
When the safety coefficient of account is more than or equal to preset security coefficient, determine that account is currently at security context, then can be to the
One terminal device sends and logins successfully response message, and determines that application program is logined successfully.
Account verification method provided in an embodiment of the present invention, the login for receiving the transmission of first terminal equipment in server please
Ask after message, server first verifies whether account and password in logging request match, it is determined that when account and password match,
Verified further according to the corresponding security terminal information of the account first terminal information current to first terminal equipment, due to first
End message includes the attribute information of first terminal equipment, the positional information of first terminal equipment and first terminal equipment
One or more in the network information, the much information can accurately reflect the current security of account, therefore, by above-mentioned
Method can improve the accuracy of account checking.
On the basis of embodiment illustrated in fig. 2, server also needs to real-time or periodically safeguards that each account is corresponding
Security terminal information, below, by the embodiment shown in Fig. 3, safeguard that the process of the security terminal information of account is entered to server
Row is described in detail.
Fig. 3 is the schematic flow sheet provided in an embodiment of the present invention for safeguarding security terminal information approach.Fig. 3 is referred to, should
Method can include:
S301, it is determined that account be logging status when, to login account second terminal equipment send information gathering message.
When it is logging status that server, which determines account, information can be sent to the second terminal equipment for logging in the account and adopted
Collect message, the information gathering message is used for the presupposed information for asking collection second terminal equipment.Optionally, second terminal equipment can
, can also be different from first terminal equipment with identical with first terminal equipment.
Optionally, the type for the information for needing to gather can be carried in information gathering message, so that second terminal equipment
The information of corresponding types can be sent to server.
S302, the second terminal information for receiving the transmission of second terminal equipment.
Optionally, attribute information, the position of second terminal equipment of second terminal equipment can be included in second terminal information
At least one of network information of confidence breath and second terminal equipment.
S303, judge whether the corresponding security terminal information of account that is stored with.
If so, then performing S304.
If it is not, then performing S305.
S304, according to second terminal information, update security terminal information.
If the corresponding security terminal information of the account that has been stored with server, sent according to second terminal equipment
Second terminal information, updates the corresponding security terminal information of the account.
Optionally, it is assumed that second terminal information includes multiple 3rd information, then can be according to following feasible realization side
Formula updates security terminal information:
Each corresponding security information set of the 3rd information is obtained respectively, and the corresponding safety letter of the 3rd information is judged respectively
Whether include corresponding 3rd information in breath set, if so, then updating peace of the 3rd information in corresponding security information set
Overall coefficient, if it is not, then increasing by the 3rd information in the corresponding security information set of the 3rd information, and determines the safety of the 3rd information
Coefficient.
Optionally, if the corresponding security information set of the 3rd information includes the safety system of the 3rd information and the 3rd information
When number is less than 1, then the safety coefficient of the 3rd information can be improved.
Optionally, if not including the 3rd information in the corresponding security information set of the 3rd information, the 3rd information is added
Safety coefficient is determined into the corresponding security information set of the 3rd information, and for the 3rd information, can be by the safety of the 3rd information
Coefficient is set to initial factor of safety, and initial factor of safety is generally relatively low, when the number of times of the 3rd information of collection is more, then can be with
Step up the safety coefficient of the 3rd information.
S305, second terminal information is defined as to security terminal information, and stores security terminal information.
If second terminal information, is directly defined as by the corresponding security terminal information of the account that is not stored with server
Security terminal information, and store the security terminal information.
In the embodiment shown in fig. 3, server gathers the information of the terminal device of login account in real time or periodically,
And the security terminal information according to the information collected to account to one is updated maintenance, in this manner it is ensured that account
Corresponding security terminal information is related to the actual log situation of the account so that the security terminal information of account is more accurate,
, it is necessary to be verified by security terminal information to the end message of login account during due to being verified to account, and then it can enter
One step improves the accuracy of account checking.
Below, by example 1- examples 2, the technical scheme shown in above method embodiment is described in detail.Specifically
, by example 1, the maintenance process to security terminal information is described in detail, and the verification process of account is entered by example 2
Row is described in detail.
Example 1, it is assumed that account 1 carried out login before current time, the then safety for the account 1 that is stored with the server
End message, and security terminal information is as shown in table 2:
Table 2
When it is logging status that server, which determines account 1, server sends information gathering to the corresponding terminal device of account 1
Message.Assuming that current by the login account 1 of terminal device 3, then server sends information gathering message to terminal device 3.
The information that terminal device 3 sends terminal device 3 to server is as follows:Terminal device 3, region 1, WiFi-1.
Server is received after above- mentioned information, the security terminal information of account 1 is updated according to above- mentioned information, due to table 2
Do not include terminal device 3 in shown security terminal information, then terminal device 3 is directly added to terminal attributive information set
In, and safety coefficient is set for terminal device 3.Because the security terminal information shown in table 2 includes region 1, then update area 1
Corresponding safety coefficient.Because the security terminal information shown in table 2 includes WiFi-1, then WiFi-1 safety coefficient is updated,
Again because WiFi-1 safety coefficient has been 1, then WiFi-1 safety coefficient need not be improved.Optionally, updated account 1
Security device information is as shown in table 3:
Table 3
Example 2, it is assumed that the corresponding security terminal information of account 1 as shown in table 3, asks to step in user in terminal device 4
Record account 1 when, terminal device 4 to server send login request message, the login request message include account 1, password and
The information of terminal device 4, wherein, the information of terminal device 4 is:Terminal device 4, region 1, WIFI-1.
After the login request message that server receives the side of terminal device 4, first verify account 1 and password whether
Match somebody with somebody, if matching, is verified further according to the security terminal information shown in table 3 to the information of terminal device 4, specifically, due to peace
Do not include terminal device 4 in full attribute information set, then the safety coefficient of terminal device 4 is 0, due to terminal positional information set
Include region 1, then the safety coefficient in region 1 is 0.9, because terminal network information aggregate includes WiFi-1, then WiFi-1
Safety coefficient be 1.
Assuming that the weighted value of terminal attributive information is 0.4, the weighted value of terminal positional information is 0.2, terminal network information
Weighted value be 0.4, then the safety coefficient of account 1 is as follows:
0*0.4+0.9*0.2+1*0.4=0.58.
It is 0.5 to assume again that preset security coefficient, because the safety coefficient (0.58) of account 1 is more than preset security coefficient
(0.5), it is determined that the current environment of account 1 to be safe, then can determine account 1 can in terminal device 4 secure log.
Fig. 4 is the structural representation one that account provided in an embodiment of the present invention verifies device.Fig. 4 is referred to, the device can
With including receiving module 11, acquisition module 12, the first determining module 13 and sending module 14, wherein,
The receiving module 11 is used for, and receives the login request message that first terminal equipment is sent, and the logging request disappears
Breath includes the first terminal information of account, password and the first terminal equipment, and the first terminal information includes described the
In the network information of the attribute information of one terminal device, the first terminal device location information and the first terminal equipment
At least one;
The acquisition module 12 is used for, and after, the account pair is being obtained to the account and the password authentification
The security terminal information answered, the security terminal information is collected in the case where the account is logging status;
First determining module 13 is used for, and according to the first terminal information and the security terminal information, determines institute
State the safety coefficient of account;
The sending module 14 is used for, when it is determined that the safety coefficient of the account is more than or equal to preset security coefficient,
Sent to the first terminal equipment and login successfully response message.
Account checking device provided in an embodiment of the present invention can perform the technical scheme shown in above method embodiment, its
Realization principle and beneficial effect are similar, are no longer repeated herein.
Fig. 5 is the structural representation two that account provided in an embodiment of the present invention verifies device.In the base of embodiment illustrated in fig. 4
On plinth, Fig. 5 is referred to, first determining module 13 includes acquiring unit 131 and determining unit 132, wherein,
The acquiring unit 131 is used for, and obtains the safety coefficient of each information in the first terminal information;
The determining unit 132 is used for, according to the safety coefficient of each information in the first terminal information and each information
Weighted value, determines the safety coefficient of the account.
In a kind of possible embodiment, for any first information in the first terminal information, the acquisition
Unit 131 specifically for:
According to the type of the first information, the corresponding safety of the first information is obtained in the security terminal information
Information aggregate, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, being according to the safety of the matching degree and second information of the first information and second information then
Number, determines the safety coefficient of the first information;
If not, it is determined that the safety coefficient of the first information is zero.
In alternatively possible embodiment, described device also includes judge module 15, update module 16, second and determined
Module 17 and memory module 18, wherein,
The sending module 14 is additionally operable to, when it is determined that the account is logging status, to the second of the login account
Terminal device sends information gathering message;
The receiving module 11 is additionally operable to, and receives the second terminal information that the second terminal equipment is sent, described second
End message includes the attribute information of the second terminal equipment, the positional information of the second terminal equipment and described
At least one of network information of two terminal devices;
The judge module 15 is used for, and judges whether the corresponding security terminal information of the account that is stored with;
The update module 16 is used for, and the corresponding security terminal letter of the account that is stored with is judged in the judge module 15
During breath, according to the second terminal information, the security terminal information is updated;
Second determining module 17 is used for, and judges not store the corresponding safety of the account eventually in the judge module 15
During client information, the second terminal information is defined as the security terminal information, the memory module 18 is used for, storage is described
Security terminal information.
In alternatively possible embodiment, the second terminal information includes multiple 3rd information;Accordingly, institute
State update module 15 specifically for:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the described 3rd
The safety coefficient of information.
Account checking device provided in an embodiment of the present invention can perform the technical scheme shown in above method embodiment, its
Realization principle and beneficial effect are similar, are no longer repeated herein.
One of ordinary skill in the art will appreciate that:Realizing all or part of step of above-mentioned each method embodiment can lead to
The related hardware of programmed instruction is crossed to complete.Foregoing program can be stored in a computer read/write memory medium.The journey
Sequence upon execution, performs the step of including above-mentioned each method embodiment;And foregoing storage medium includes:ROM, RAM, magnetic disc or
Person's CD etc. is various can be with the medium of store program codes.
Finally it should be noted that:Various embodiments above is only to the technical scheme for illustrating the embodiment of the present invention, rather than to it
Limitation;Although the embodiment of the present invention is described in detail with reference to foregoing embodiments, one of ordinary skill in the art
It should be understood that:It can still modify to the technical scheme described in foregoing embodiments, or to which part or
All technical characteristic carries out equivalent substitution;And these modifications or replacement, the essence of appropriate technical solution is departed from this hair
The scope of bright embodiment scheme.
Claims (10)
1. a kind of account verification method, it is characterised in that including:
Receive the login request message that first terminal equipment is sent, the login request message includes account, password and described
The first terminal information of first terminal equipment, the first terminal information includes the attribute information of the first terminal equipment, institute
State at least one of network information of first terminal device location information and the first terminal equipment;
The corresponding security terminal information of the account, the peace after, are being obtained to the account and the password authentification
Full end message is collected in the case where the account is logging status;
According to the first terminal information and the security terminal information, the safety coefficient of the account is determined;
When it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, sends and step on to the first terminal equipment
Record success response message.
2. according to the method described in claim 1, it is characterised in that believed according to the first terminal information and the security terminal
Breath, determines the safety coefficient of the account, including:
Obtain the safety coefficient of each information in the first terminal information;
According to the weighted value of the safety coefficient of each information and each information in the first terminal information, the peace of the account is determined
Overall coefficient.
3. method according to claim 2, it is characterised in that for any first letter in the first terminal information
Breath, obtains the safety coefficient of each information in the first terminal information, including:
According to the type of the first information, the corresponding security information of the first information is obtained in the security terminal information
Set, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, then according to the safety coefficient of the matching degree and second information of the first information and second information, really
The safety coefficient of the fixed first information;
If not, it is determined that the safety coefficient of the first information is zero.
4. the method according to claim any one of 1-3, it is characterised in that methods described also includes:
When it is determined that the account is logging status, information gathering message is sent to the second terminal equipment for logging in the account;
The second terminal information that the second terminal equipment is sent is received, the second terminal information includes the second terminal
In the network information of the attribute information of equipment, the positional information of the second terminal equipment and the second terminal equipment extremely
Few one kind;
Judge whether the corresponding security terminal information of the account that is stored with;
If so, then according to the second terminal information, updating the security terminal information;
If it is not, the second terminal information then is defined as into the security terminal information, and store the security terminal information.
5. method according to claim 4, it is characterised in that the second terminal information includes multiple 3rd information;
Accordingly, according to the second terminal information, the security terminal information is updated, including:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the 3rd information
Safety coefficient.
6. a kind of account verifies device, it is characterised in that including receiving module, acquisition module, the first determining module and transmission mould
Block, wherein,
The receiving module is used for, and receives and is wrapped in the login request message that first terminal equipment is sent, the login request message
The first terminal information of account, password and the first terminal equipment is included, the first terminal information includes the first terminal
In the network information of the attribute information of equipment, the first terminal device location information and the first terminal equipment at least
It is a kind of;
The acquisition module is used for, and the corresponding peace of the account after, is being obtained to the account and the password authentification
Full end message, the security terminal information is collected in the case where the account is logging status;
First determining module is used for, and according to the first terminal information and the security terminal information, determines the account
Safety coefficient;
The sending module is used for, when it is determined that the safety coefficient of the account is more than or equal to preset security coefficient, to described
First terminal equipment sends and logins successfully response message.
7. device according to claim 6, it is characterised in that first determining module includes acquiring unit and determined single
Member, wherein,
The acquiring unit is used for, and obtains the safety coefficient of each information in the first terminal information;
The determining unit is used for, according to the weighted value of the safety coefficient of each information and each information in the first terminal information,
Determine the safety coefficient of the account.
8. device according to claim 7, it is characterised in that for any first letter in the first terminal information
Breath, the acquiring unit specifically for:
According to the type of the first information, the corresponding security information of the first information is obtained in the security terminal information
Set, the security information set includes the safety coefficient of multiple standard information and each standard information;
Judge in the security information set with the presence or absence of the second information matched with the first information;
If so, then according to the safety coefficient of the matching degree and second information of the first information and second information, really
The safety coefficient of the fixed first information;
If not, it is determined that the safety coefficient of the first information is zero.
9. the device according to claim any one of 6-8, it is characterised in that described device also includes judge module, updated
Module, the second determining module and memory module, wherein,
The sending module is additionally operable to, and when it is determined that the account is logging status, is set to the second terminal for logging in the account
Preparation send information gathering message;
The receiving module is additionally operable to, and receives the second terminal information that the second terminal equipment is sent, the second terminal letter
Breath includes the attribute information of the second terminal equipment, the positional information and the second terminal of the second terminal equipment
At least one of network information of equipment;
The judge module is used for, and judges whether the corresponding security terminal information of the account that is stored with;
The update module is used for, when the judge module judges to be stored with the corresponding security terminal information of the account, root
According to the second terminal information, the security terminal information is updated;
Second determining module is used for, and judges not storing the corresponding security terminal information of the account in the judge module
When, the second terminal information is defined as the security terminal information, the memory module is used for, stores the security terminal
Information.
10. device according to claim 9, it is characterised in that the second terminal information includes multiple 3rd information;
Accordingly, the update module specifically for:
The corresponding security information set of each 3rd information is obtained respectively;
Judge whether include corresponding 3rd information in the corresponding security information set of the 3rd information respectively;
If so, then updating the safety coefficient of the 3rd information;
If it is not, then increasing the 3rd information in the corresponding security information set of the 3rd information, and determine the 3rd information
Safety coefficient.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710510231.0A CN107248995B (en) | 2017-06-28 | 2017-06-28 | Account verification method and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710510231.0A CN107248995B (en) | 2017-06-28 | 2017-06-28 | Account verification method and device |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107248995A true CN107248995A (en) | 2017-10-13 |
CN107248995B CN107248995B (en) | 2021-06-01 |
Family
ID=60014013
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710510231.0A Active CN107248995B (en) | 2017-06-28 | 2017-06-28 | Account verification method and device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107248995B (en) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107864454A (en) * | 2017-12-07 | 2018-03-30 | 广东电网有限责任公司信息中心 | A kind of intelligent grid maintaining method and system based on mobile intelligent terminal |
CN108737408A (en) * | 2018-05-11 | 2018-11-02 | 国家计算机网络与信息安全管理中心 | A kind of user network authentication information extracting method and system |
CN109803159A (en) * | 2018-12-17 | 2019-05-24 | 视联动力信息技术股份有限公司 | A kind of verification method and system of terminal |
WO2019184135A1 (en) * | 2018-03-30 | 2019-10-03 | 平安科技(深圳)有限公司 | Application login method and apparatus, and computer device and storage medium |
CN111147457A (en) * | 2019-12-12 | 2020-05-12 | 泰斗微电子科技有限公司 | Data processing method and device, terminal equipment and server |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104426884A (en) * | 2013-09-03 | 2015-03-18 | 深圳市腾讯计算机系统有限公司 | Method for authenticating identity and device for authenticating identity |
CN104518876A (en) * | 2013-09-29 | 2015-04-15 | 腾讯科技(深圳)有限公司 | Service login method and device |
EP2916510A1 (en) * | 2014-03-03 | 2015-09-09 | Keypasco AB | Network authentication method for secure user identity verification using user positioning information |
CN105471819A (en) * | 2014-08-19 | 2016-04-06 | 腾讯科技(深圳)有限公司 | Account abnormity detection method and account abnormity detection device |
CN106341233A (en) * | 2015-07-08 | 2017-01-18 | 阿里巴巴集团控股有限公司 | Authentication method for client to log into server, device, system and electronic device |
CN106657073A (en) * | 2016-12-26 | 2017-05-10 | 北京五八信息技术有限公司 | Method and system for screening abnormal login users |
-
2017
- 2017-06-28 CN CN201710510231.0A patent/CN107248995B/en active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104426884A (en) * | 2013-09-03 | 2015-03-18 | 深圳市腾讯计算机系统有限公司 | Method for authenticating identity and device for authenticating identity |
CN104518876A (en) * | 2013-09-29 | 2015-04-15 | 腾讯科技(深圳)有限公司 | Service login method and device |
EP2916510A1 (en) * | 2014-03-03 | 2015-09-09 | Keypasco AB | Network authentication method for secure user identity verification using user positioning information |
CN105471819A (en) * | 2014-08-19 | 2016-04-06 | 腾讯科技(深圳)有限公司 | Account abnormity detection method and account abnormity detection device |
CN106341233A (en) * | 2015-07-08 | 2017-01-18 | 阿里巴巴集团控股有限公司 | Authentication method for client to log into server, device, system and electronic device |
CN106657073A (en) * | 2016-12-26 | 2017-05-10 | 北京五八信息技术有限公司 | Method and system for screening abnormal login users |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107864454A (en) * | 2017-12-07 | 2018-03-30 | 广东电网有限责任公司信息中心 | A kind of intelligent grid maintaining method and system based on mobile intelligent terminal |
CN107864454B (en) * | 2017-12-07 | 2020-04-14 | 广东电网有限责任公司信息中心 | Smart power grid maintenance method and system based on mobile smart terminal |
WO2019184135A1 (en) * | 2018-03-30 | 2019-10-03 | 平安科技(深圳)有限公司 | Application login method and apparatus, and computer device and storage medium |
CN108737408A (en) * | 2018-05-11 | 2018-11-02 | 国家计算机网络与信息安全管理中心 | A kind of user network authentication information extracting method and system |
CN109803159A (en) * | 2018-12-17 | 2019-05-24 | 视联动力信息技术股份有限公司 | A kind of verification method and system of terminal |
CN111147457A (en) * | 2019-12-12 | 2020-05-12 | 泰斗微电子科技有限公司 | Data processing method and device, terminal equipment and server |
Also Published As
Publication number | Publication date |
---|---|
CN107248995B (en) | 2021-06-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107248995A (en) | Account verification method and device | |
CN106161392B (en) | A kind of auth method and equipment | |
CN108596613A (en) | block chain transaction processing method, device and storage medium | |
CN105991590B (en) | A kind of method, system, client and server for verifying user identity | |
CN107624238A (en) | To the safe access control of the application based on cloud | |
CN105450614B (en) | A kind of server account logon method, device and system | |
US9667613B1 (en) | Detecting mobile device emulation | |
CN105933266A (en) | Verification method and server | |
CN106888106A (en) | The extensive detecting system of IT assets in intelligent grid | |
CN110213215A (en) | A kind of resource access method, device, terminal and storage medium | |
CN108243404B (en) | Method, device and equipment for verifying binding state of mobile phone number | |
CN105657660A (en) | Access method of base station routing inspection terminal, routing inspection terminal, server and base station | |
CN107484152A (en) | The management method and device of terminal applies | |
CN109753772A (en) | A kind of account safety verification method and system | |
CN112650520B (en) | Ammeter upgrading method and system, intelligent ammeter and storage medium | |
CN106534129B (en) | Connection control method and device | |
CN107689941A (en) | A kind of apparatus and method for preventing same user's repeat logon | |
CN108123961A (en) | Information processing method, apparatus and system | |
CN107135201A (en) | A kind of webserver login authentication method and device | |
CN110267268A (en) | The recognition methods of pseudo-base station, apparatus and system | |
CN109639724A (en) | Password method for retrieving, password device for retrieving, computer equipment and storage medium | |
CN107612735A (en) | A kind of broadband On-line Fault processing method, server and user terminal | |
CN104967603B (en) | Using account number safety verification method and device | |
CN108322917A (en) | Wireless network accesses Fault Locating Method, equipment, system and storage medium | |
CN111555920A (en) | Intelligent operation and maintenance method, system, equipment and user side |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |