CN111431845A - Method, device and system for recording access log - Google Patents

Method, device and system for recording access log Download PDF

Info

Publication number
CN111431845A
CN111431845A CN201910464465.5A CN201910464465A CN111431845A CN 111431845 A CN111431845 A CN 111431845A CN 201910464465 A CN201910464465 A CN 201910464465A CN 111431845 A CN111431845 A CN 111431845A
Authority
CN
China
Prior art keywords
data
access
user
biological characteristics
time
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201910464465.5A
Other languages
Chinese (zh)
Other versions
CN111431845B (en
Inventor
刘春辉
宋亮亮
唐朱震
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou Hikvision Digital Technology Co Ltd
Original Assignee
Hangzhou Hikvision Digital Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou Hikvision Digital Technology Co Ltd filed Critical Hangzhou Hikvision Digital Technology Co Ltd
Priority to CN201910464465.5A priority Critical patent/CN111431845B/en
Publication of CN111431845A publication Critical patent/CN111431845A/en
Application granted granted Critical
Publication of CN111431845B publication Critical patent/CN111431845B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/069Management of faults, events, alarms or notifications using logs of notifications; Post-processing of notifications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/535Tracking the activity of the user

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Debugging And Monitoring (AREA)
  • Medical Treatment And Welfare Office Work (AREA)

Abstract

The embodiment of the invention discloses an access log recording method, device and system, relates to the technical field of computer communication, and solves the problem that the traceability of user identities in an access process is not high. The method comprises the following steps: acquiring data which is acquired in an access process and contains user biological characteristics, wherein the access process contains at least one access operation of a user; labeling the data corresponding to the access operation in the data containing the biological characteristics of the user with a label representing the access operation; and saving the data with the tag representing the access operation. The embodiment of the invention can be applied to a scene of accessing the server through the client.

Description

Method, device and system for recording access log
Technical Field
The present invention relates to the field of computer communications technologies, and in particular, to a method, an apparatus, and a system for recording an access log.
Background
When the server is accessed through the client, the access process for the user is generally recorded through an access log. When the historical access records are traced, although what kind of access operation the user performs can be known through the access log, the access log records access operation information corresponding to the current access account, and the real identity of the user performing certain access operation cannot be determined according to the access log under the condition that the user name and the password are leaked or the real user is changed in the access process, so that the traceability of the user identity in the access process is not high when the access process is recorded through the access log in the prior art.
Disclosure of Invention
The embodiment of the invention discloses an access log recording method, device and system, which aim to improve the traceability of user identities in an access process.
In order to achieve the above object, an embodiment of the present invention discloses an access log recording method, where the method includes:
acquiring data which is acquired in an access process and contains user biological characteristics, wherein the access process contains at least one access operation of a user;
labeling the data corresponding to the access operation in the data containing the biological characteristics of the user with a label representing the access operation;
and saving the data with the tag representing the access operation.
Optionally, the acquiring data including the user biometric features collected in the accessing process includes:
acquiring first data acquired in an access process;
the method further comprises the following steps: identifying whether a user biometric feature is included in the first data;
the data including a user biometric is the first data if a user biometric is identified in the first data.
Optionally, the method further includes:
and if the first data is identified not to contain the user biological characteristics, sending a signal for interrupting the access process.
Optionally, the acquiring data including the user biometric features collected in the accessing process includes:
acquiring data which is acquired in real time in the access process and contains the biological characteristics of a user; or
And acquiring data which is acquired by triggering the access operation and contains the biological characteristics of the user for a preset time.
Optionally, the tagging, on the data corresponding to the access operation, of the data including the user biometric characteristic includes:
under the condition that the operation instruction of the access operation is obtained, a label representing the access operation is marked on data corresponding to the current moment in the data containing the biological characteristics of the user; or
Marking a label representing the access operation on data corresponding to a time period from the starting time to the ending time in the data containing the biological characteristics of the user by taking the time of acquiring the starting operation instruction as the starting time and the time of acquiring the ending operation instruction as the ending time; or
And under the condition that the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
Optionally, the method further includes:
acquiring an access account number, a starting time and an ending time of the access process;
and associating the saved data with an access account number, a starting time and an ending time of the access process.
In order to achieve the above object, an embodiment of the present invention discloses an access log recording apparatus, including:
the data acquisition module is used for acquiring data which are acquired in an access process and contain the biological characteristics of a user, wherein the access process contains at least one access operation of the user;
the labeling module is used for labeling the data corresponding to the access operation in the data containing the biological characteristics of the user with a label representing the access operation;
and the storage module is used for storing the data on which the label representing the access operation is marked.
Optionally, the data acquiring module is configured to acquire first data acquired in an access process;
the device further comprises: the identification module is used for identifying whether the first data contains the biological characteristics of the user;
the data including a user biometric is the first data if a user biometric is identified in the first data.
Optionally, the apparatus further comprises:
and the interruption module is used for sending a signal for interrupting the access process under the condition that the first data is identified not to contain the biological characteristics of the user.
Optionally, the data acquiring module is configured to acquire data including a user biological characteristic acquired in real time in an access process; or
The system is used for acquiring data which are acquired by the access operation trigger and contain the biological characteristics of the user for a preset time.
Optionally, the tagging module is configured to, in a case that the operation instruction of the access operation is obtained, tag representing the access operation on data corresponding to the current time in the data including the user biometric characteristic; or
The label is used for marking the data corresponding to the time period from the starting time to the ending time in the data containing the biological characteristics of the user with the time when the starting operation instruction is obtained as the starting time and the time when the ending operation instruction is obtained as the ending time; or
And when the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
Optionally, the apparatus further comprises:
the information acquisition module is used for acquiring an access account number, a starting time and an ending time of the access process;
and the association module is used for associating the saved data with the access account number, the starting time and the ending time of the access process.
In order to achieve the above object, an embodiment of the present invention discloses an access log recording system, including: a client and a server;
the client is used for sending data which are collected in an access process and contain user biological characteristics to the server, and the access process contains at least one access operation of a user;
the server is used for receiving the data which are collected in the access process and contain the biological characteristics of the user, marking a label which represents the access operation on the data which correspond to the access operation in the data which contain the biological characteristics of the user, and storing the data on which the label which represents the access operation is marked.
Optionally, the client is configured to send first data acquired in an access process to the server;
the server is used for receiving the first data collected in the access process and identifying whether the first data contains the biological characteristics of the user;
the data including a user biometric is the first data if a user biometric is identified in the first data.
Optionally, the server is configured to send a signal to the client to interrupt the access process if it is identified that the first data does not include the user biometric feature;
the client is used for interrupting the access process when receiving the signal for interrupting the access process.
Optionally, the client is configured to send data including a user biometric feature, which is acquired in real time during an access process, to the server; or the server is used for sending the data which is acquired by the access operation triggering and contains the user biological characteristics and has preset duration to the server;
the server is used for receiving the data which are collected in real time in the access process and contain the biological characteristics of the user; or for receiving data containing the user biological characteristics, which are acquired by triggering the access operation for a preset time.
Optionally, the server is configured to, in a case that the operation instruction of the access operation is obtained, mark a tag indicating the access operation on data corresponding to a current time in the data including the user biometric feature; or
The label is used for marking the data corresponding to the time period from the starting time to the ending time in the data containing the biological characteristics of the user with the time when the starting operation instruction is obtained as the starting time and the time when the ending operation instruction is obtained as the ending time; or
And when the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
Optionally, the server is configured to send, to the client, a signal for transmitting data including a user biometric feature acquired in an access process after receiving an operation instruction of the access operation;
the client is used for sending the data containing the user biological characteristics to the server after receiving a signal which is sent by the server and used for transmitting the data containing the user biological characteristics and collected in the access process.
Optionally, the server is configured to obtain an access account, a start time, and an end time of the access process, and associate the stored data with the access account, the start time, and the end time of the access process
In order to achieve the above object, an embodiment of the present invention further discloses an electronic device, which includes a processor and a memory, wherein,
a memory for storing a computer program;
the processor is configured to implement the steps of the access log recording method provided by the embodiment of the present invention when executing the program stored in the memory.
In order to achieve the above object, an embodiment of the present invention further discloses a computer-readable storage medium, in which a computer program is stored, and the computer program, when executed by a processor, implements the steps of the access log recording method provided in the embodiment of the present application.
The embodiment of the invention provides an access log recording method, an access log recording device, an access log recording system, electronic equipment and a computer readable storage medium, wherein data containing user biological characteristics acquired in an access process is acquired, the access process contains at least one access operation of a user, a label representing the access operation is printed on data corresponding to the access operation in the data containing the user biological characteristics, and the data on which the label representing the access operation is printed is stored, so that when historical access records are traced, the biological characteristics of the user when the access operation occurs can be determined through the data containing the user biological characteristics and the label representing the access operation printed on the data containing the user biological characteristics, and the real identity of the user who performs certain access operation can be determined according to the biological characteristics of the user, the traceability of the user identity in the access process is improved.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a schematic flowchart of an access log recording method according to an embodiment of the present invention;
fig. 2 is a schematic flowchart of another method for accessing a log record according to an embodiment of the present invention;
fig. 3 is a schematic flowchart of another method for accessing a log record according to an embodiment of the present invention;
fig. 4 is a schematic flowchart of another method for accessing a log record according to an embodiment of the present invention;
fig. 5 is a schematic flowchart of a further method for accessing a process record according to an embodiment of the present invention;
fig. 6 is a schematic structural diagram of an access log recording apparatus according to an embodiment of the present invention;
fig. 7 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention;
fig. 9 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention;
fig. 10 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention;
fig. 11 is a schematic structural diagram of an access logging system according to an embodiment of the present invention;
fig. 12 is a schematic structural diagram of another access logging system according to an embodiment of the present invention;
fig. 13 is a schematic structural diagram of another access logging system according to an embodiment of the present invention;
fig. 14 is a schematic structural diagram of an electronic device according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1, fig. 1 is a schematic flowchart of an access log recording method according to an embodiment of the present invention, where the method includes:
s101: data comprising a user biometric acquired during an access procedure comprising at least one access operation of the user is acquired.
Specifically, the data including the user biological characteristics acquired in real time in the access process may be acquired, or the data including the user biological characteristics acquired in a preset time period triggered by the access operation may be acquired, so that the data including the user biological characteristics corresponding to the access operation exists in the acquired data. The data containing the user biological characteristics can be video data containing face information of the user or audio data containing voice information of the user.
S102: and marking a label representing the access operation on the data corresponding to the access operation in the data containing the biological characteristics of the user.
Specifically, a relationship mapping table of access operations and tags representing the access operations may be pre-established, after an operation instruction of the access operation is obtained for data including user biological characteristics acquired in real time in an access process, a tag representing the access operation is obtained in the relationship mapping table, and the tag representing the access operation is marked on data corresponding to the current time in the data including the user biological characteristics. In particular, for an access operation having a start operation instruction and an end operation instruction, such as video playback, a start playback instruction and an end playback instruction, a tag indicating the access operation may be marked on data corresponding to a time period from the start time to the end time in the data including the biometric characteristic of the user, with the time at which the start operation instruction is acquired as a start time and the time at which the end operation instruction is acquired as an end time.
For the data including the biometric characteristic of the user triggered and acquired by the access operation, after the operation instruction of the access operation is acquired, the tag representing the access operation is acquired in the relation mapping table, and the tag representing the access operation is marked on the data corresponding to the moment when the biometric characteristic of the user is identified in the acquired data.
S103: and saving the data with the tag representing the access operation.
In this way, when the historical access record is traced, the data containing the user biological characteristics when the access operation occurs can be determined in the stored data through the label representing the access operation, and the true identity of the user can be determined according to the user biological characteristics, so that the true identity of the user performing certain access operation can be determined, and the traceability of the user identity in the access process is improved.
The embodiment of the invention provides an access log recording method, which comprises the steps of acquiring data containing user biological characteristics acquired in an access process, wherein the access process comprises at least one access operation of a user, marking a label representing the access operation on the data corresponding to the access operation in the data containing the user biological characteristics, and storing the data on which the label representing the access operation is marked, so that when a historical access record is traced, the biological characteristics of the user when the access operation occurs can be determined through the data containing the user biological characteristics and the label representing the access operation marked in the data containing the user biological characteristics, and the real identity of the user who performs certain access operation can be determined according to the user biological characteristics, the traceability of the user identity in the access process is improved.
Referring to fig. 2, fig. 2 is a schematic flowchart of another access log recording method provided in an embodiment of the present invention, where the method is applicable to a scenario in which a client accesses a backend server, and the method includes:
s201: after receiving an operation instruction of logging in a back-end server by an access account, acquiring the access account and the start time of an access process, and sending a signal for transmitting data which is acquired in the access process and contains the biological characteristics of a user.
Specifically, a user opens a client, clicks a login button after inputting an access account and a password, a back-end server obtains the access account in the access process after receiving an operation instruction of logging in the back-end server by the access account, records a current timestamp as a start time, and sends a signal for transmitting data which is acquired in the access process and contains the biological characteristics of the user to the client.
S202: first data acquired in real time during an access process is acquired.
After receiving the signal, the client judges whether the equipment where the client is located has data acquisition equipment which can be used for acquiring the data containing the biological characteristics of the user, when the data acquisition equipment is unavailable, the client logs an access account out of the server, the access process is terminated, and at the moment, a prompt box can be popped up on the interface of the client to prompt the user to carry out remote access and the environment of the data acquisition equipment needs to be configured; when the data collection device is available but is not allowed to collect data, for example, when a client interface pop-up prompt "will access process be recorded, continue? "," whether or not to allow the camera to be turned on? If the user selects no, the client logs the access account out of the server, and the access process is terminated; when the available data acquisition equipment is available and the data acquisition equipment is allowed to acquire data, the client starts the data acquisition equipment, the data are acquired in real time in the access process and are sent to the back-end server, and the data acquired by the back-end server in real time by the data acquisition equipment are first data acquired in real time in the access process.
Preferably, the data containing the biological characteristics of the user can be video data containing face information of the user, and the data acquisition equipment can be a camera, so that the user can access the back-end server by using a computer or a client on a mobile phone provided with the camera, and the convenience of user access is improved.
S203: identifying whether the first data contains the user biological characteristics or not, and if not, sending a signal for interrupting the access process to the client; and if so, not sending a signal for interrupting the access process, wherein the first data is the data containing the user biological characteristics under the condition that the user biological characteristics are identified in the first data.
The back-end server identifies whether the first data contains the biological characteristics of the user in real time, if not, a signal for interrupting the access process is sent to the client, the client pops up a prompt box for interrupting the access process on a client interface after receiving the signal, and the user cannot access the back-end server through the client under the condition that the prompt box exists; and if so, not sending a signal for interrupting the access process, and allowing the user to continue to access the back-end server through the client.
That is, if the backend server recognizes that the first data contains the user biological characteristics, the user can normally access the backend server through the client; in the access process, once the back-end server identifies that the first data does not contain the user biological characteristics, a signal for interrupting the access process is sent to the client, and after the client receives the signal, the prompt box is popped up on a client interface. Under the condition that the prompt box exists, if the back-end server recognizes that the first data contains the biological characteristics of the user again, the user can continue to access the back-end server through the client only by closing the prompt box; if the back-end server does not recognize that the first data contains the user biological characteristics, even if the user closes the current prompt box, the client-side interface can pop up the prompt box again, so that the user cannot perform access operation.
The first data where a user biometric is identified in the first data is the data including a user biometric. In this way, only when the back-end server obtains the data containing the user biological characteristics, the back-end server can perform access operation on the back-end server through the client, that is, when the access operation is performed, the back-end server can obtain the data containing the user biological characteristics corresponding to the access operation, and the data containing the user biological characteristics can be subsequently used for tracing the identity of the user performing the access operation in the access process, so that the traceability of the user identity in the access process is improved.
In other embodiments of the present invention, the user biometric is a pre-stored user biometric, the backend server identifies whether the first data includes the pre-stored user biometric in real time, and if not, that is, if it is identified that there is no user biometric or there is a user biometric but the user biometric is not matched with the pre-stored user biometric, the backend server sends a signal to the client to interrupt the access process; if so, not sending a signal for interrupting the access process. The pre-stored user biological characteristics may be one user biological characteristic or a plurality of user biological characteristics. Therefore, the server can be accessed only under the condition that the identified user biological characteristics are the pre-stored user biological characteristics, and the access safety is improved.
S204: and marking a label representing the access operation on data corresponding to the access operation in the data containing the biological characteristics of the user.
After data containing user biological characteristics acquired in real time in an access process is acquired, a label representing the access operation is marked on data corresponding to the access operation in the data containing the user biological characteristics, wherein the access operation can be all the access operations in the access process or one or more appointed access operations.
Specifically, the step S204 may be implemented by the step S2041 or S2042.
S2041: and under the condition that the operation instruction of the access operation is acquired, marking a label representing the access operation on the data corresponding to the current moment in the data containing the biological characteristics of the user.
Specifically, a relational mapping table of the access operation and a label representing the access operation may be established in advance, after the operation instruction of the access operation is obtained, the label representing the access operation is obtained in the relational mapping table, and the label representing the access operation is marked on data corresponding to the current time in the data including the user biometric characteristic.
S2042: and marking a label representing the access operation on data corresponding to a time period from the starting time to the ending time in the data containing the biological characteristics of the user by taking the time of acquiring the starting operation instruction as the starting time and the time of acquiring the ending operation instruction as the ending time.
For an access operation with a start operation instruction and an end operation instruction, such as video playback, the access operation with the start playback instruction and the end playback instruction has the start playback instruction and the end playback instruction, and when a user performs an access operation on a back-end server through a client, the back-end server can acquire the start operation instruction and the end operation instruction of the access operation.
Specifically, a relational mapping table of a start operation instruction, an end operation instruction, and a tag indicating the access operation of the access operation may be established in advance, after the start operation instruction of the access operation is acquired, the tag indicating the access operation may be acquired in the relational mapping table, the tag indicating the access operation may be applied to data corresponding to the current time among the data including the user biometric characteristic, and the tag indicating the access operation may be continuously applied to the acquired data including the user biometric characteristic from the current time until the end operation instruction of the access operation is acquired.
Specifically, the accessing operation is an operation of logging in a back-end server by the access account, and step S204 may be implemented by step S2043.
S2043: and under the condition that the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
Specifically, the access operation is an operation of logging in a backend server by the access account, and when an operation instruction of the login operation is obtained, the backend server does not obtain the data including the user biological characteristics, but because the backend server does not send a signal for interrupting the access process at the time of first identifying the user biological characteristics, the client logs in the backend server successfully, and the user can continue to perform the access operation on the backend server through the client, a tag representing the login operation is marked on data corresponding to the login operation in the data including the user biological characteristics, and a tag representing the login operation can be marked on data corresponding to the time of first identifying the user biological characteristics.
In other embodiments of the present invention, the data corresponding to the access operation in the data containing the user biometric feature may be tagged with a tag indicating the access operation, and the current timestamp may also be read and tagged with the data corresponding to the access operation.
S205: and saving the data with the tag representing the access operation.
The back-end server stores the data marked with the label representing the access operation in real time, so that when a historical access record is traced, the data containing the biological characteristics of the user when the access operation occurs can be determined in the stored data through the label representing the access operation.
S206: and acquiring the end time of the access process.
When the access account logs out of the server, for example, the user may close the client, or the user logs out of the access account at the client, or the access account logs out of the server due to disconnection of a network connection, and the back-end server acquires the access account log-out signal and records the current timestamp as the end time.
S207: and associating the saved data with an access account number, a starting time and an ending time of the access process.
Specifically, the access account number, the start time and the end time information of the access process may be printed on the data in the form of a tag, taking the data as video data containing face information of the user as an example, the access account number and the start time information of the access process may be printed on the first frame of video data of the video data in the form of a tag, and the end time information of the access process may be printed on the last frame of video data of the video data in the form of a tag; or establishing a mapping table, wherein the mapping table comprises a one-to-one correspondence relationship between the file name of the data and the access account number, the starting time and the ending time of the access process; the information of the access account number, the starting time and the ending time of the access process can be written in the header file of the data; in addition, the file name of the data may contain the access account number, the start time and the end time information of the access process, for example, the file of the data is named as "access account number _ start time _ end time of the access process".
In this way, when tracing back the historical access record, the true identity of the user performing the access operation under the access account, and the specific start time and end time of the access process may be determined in combination with the stored data and the access account, start time, and end time information of the access process associated with the data.
The embodiment of the invention provides another method for recording an access log, which comprises the steps of acquiring data containing user biological characteristics acquired in an access process, wherein the access process comprises at least one access operation of a user, printing a label representing the access operation on data corresponding to the access operation in the data containing the user biological characteristics, and storing the data printed with the label representing the access operation, so that when a historical access record is traced, the biological characteristics of the user when the access operation occurs can be determined through the data containing the user biological characteristics and the label representing the access operation printed in the data containing the user biological characteristics, and the real identity of the user who performs certain access operation can be determined according to the user biological characteristics, the traceability of the user identity in the access process is improved.
Referring to fig. 3, fig. 3 is a schematic flowchart of another method for accessing a log record according to an embodiment of the present invention, where the method is applicable to a scenario in which a client accesses a backend server, and the method includes:
s301: when an operation instruction of an access operation is acquired, a signal for transmitting data which is acquired by triggering of the access operation and has a preset time length and contains the biological characteristics of a user is sent, and when the access operation is the operation of logging in a back-end server by an access account, the access account and the start time in the access process are acquired.
When the back-end server obtains an operation instruction of a user for carrying out access operation on the back-end server through a client, the back-end server sends a signal for acquiring and transmitting data containing the biological characteristics of the user with preset duration to the client.
Here, the access operation may be all access operations in the access process, or may be one or more specified access operations.
Specifically, when the access operation is an operation of logging in a back-end server by an access account, specifically, a user opens a client, clicks a login button after the client inputs an access account and a password, the back-end server obtains the access account in an access process after receiving an operation instruction of logging in the back-end server by the access account, records a current timestamp as a start time, and sends a signal for acquiring and transmitting data containing user biological characteristics for a preset time to the client.
S302: and acquiring first data with preset duration, which is acquired by triggering of the access operation.
After receiving the signal, the client judges whether the equipment where the client is located has data acquisition equipment which can be used for acquiring the data containing the biological characteristics of the user, when the data acquisition equipment is unavailable, the client logs an access account out of the server, the access process is terminated, and at the moment, a prompt box can be popped up on the interface of the client to prompt the user to carry out remote access and the environment of the data acquisition equipment needs to be configured; when the data collection device is available but is not allowed to collect data, for example, when a client interface pop-up prompt "will access process be recorded, continue? "," whether or not to allow the camera to be turned on? If the user selects no, the client logs the access account out of the server, and the access process is terminated; when the available data acquisition equipment is available and the data acquisition equipment is allowed to acquire data, the client starts the data acquisition equipment, the data with the preset duration acquired at the current moment is taken as the starting moment and is sent to the back-end server, and the data acquired by the back-end server and acquired by the data acquisition equipment is the first data with the preset duration acquired by triggering of the operation instruction.
Preferably, the data containing the biological characteristics of the user can be video data containing face information of the user, and the data acquisition equipment can be a camera, so that the user can access the back-end server by using a computer or a client on a mobile phone provided with the camera, and the convenience of user access is improved.
S303: identifying whether the first data contains the biological characteristics of the user, and if not, not responding to the operation instruction of the access operation; and if so, responding to the operation instruction of the access operation, and enabling the first data to be the data containing the user biological characteristics under the condition that the user biological characteristics are identified in the first data.
The back-end server identifies whether the first data contains the biological characteristics of the user in real time, and if not, the back-end server does not respond to the operation instruction of the access operation; and if the first data contains the user biological characteristics, responding to the operation instruction of the access operation at the moment when the user biological characteristics are identified, wherein the first data is the data containing the user biological characteristics under the condition that the user biological characteristics are identified in the first data. Therefore, only when the back-end server acquires the data containing the biological characteristics of the user, the back-end server can respond to the operation instruction of the access operation, so that the access operation is smoothly executed, namely, when the access operation is executed, the back-end server can acquire the data containing the biological characteristics of the user corresponding to the access operation, and the data containing the biological characteristics of the user can be subsequently used for tracing the identity of the user who performs the access operation in the access process, so that the traceability of the identity of the user in the access process is improved.
In other embodiments of the present invention, the user biometric is a pre-stored user biometric, the backend server identifies whether the first data includes the pre-stored user biometric in real time, and if the first data does not include the pre-stored user biometric, that is, if it is identified that there is no user biometric or there is a user biometric but the user biometric does not match the pre-stored user biometric, the backend server does not respond to the operation instruction of the access operation; and if so, responding to the operation instruction of the access operation at the moment of identifying the pre-stored user biological characteristics. The pre-stored user biological characteristics may be one user biological characteristic or a plurality of user biological characteristics. Therefore, only under the condition that the identified user biological characteristics are the pre-stored user biological characteristics, the back-end server can respond to the operation instruction of the access operation, so that the access operation is smoothly executed, and the access safety is improved.
S304: and marking a label representing the access operation on the data corresponding to the access operation in the data containing the biological characteristics of the user.
After the data which are acquired by triggering the access operation and have the preset duration and contain the biological characteristics of the user are acquired, a label which represents the access operation is marked on the data which correspond to the access operation in the data which contain the biological characteristics of the user. Specifically, when the operation instruction of the access operation is acquired, a tag indicating the access operation may be marked on data corresponding to a time at which the user biometric is recognized in the data including the user biometric.
Here, since the backend server is an operation instruction to respond to the access operation at the time when the user biometric feature is recognized, it is necessary to mark a label indicating the access operation on data corresponding to the time when the user biometric feature is recognized, among the data including the user biometric feature. Specifically, a relationship mapping table of the access operation and a label representing the access operation may be established in advance, after an operation instruction of the access operation is acquired, the label representing the access operation is acquired in the relationship mapping table, and at a time when the user biometric feature is identified, a label representing the access operation is marked on data corresponding to a current time in the data including the user biometric feature.
In other embodiments of the present invention, the data corresponding to the access operation in the data containing the user biometric feature may be tagged with a tag indicating the access operation, and the current timestamp may also be read and tagged with the data corresponding to the access operation.
S305: and saving the data with the tag representing the access operation.
The back-end server stores the data with the label representing the access operation, so that when a historical access record is traced, the data containing the user biological characteristics when the access operation occurs can be determined in the stored data through the label representing the access operation.
S306: and acquiring the end time of the access process.
When the access account logs out of the back-end server, for example, the user may close the client, or the user logs out of the access account at the client, or the access account logs out of the server due to disconnection of a network, and the back-end server acquires the access account log-out signal and records the current timestamp as the end time.
S307: and associating the saved data with an access account number, a starting time and an ending time of the access process.
After the access process is finished, the back-end server may integrate all the stored data into one data according to the stored time sequence.
And after the back-end server integrates all the stored data into one data according to the stored time sequence, the back-end server associates the integrated data with the access account number, the starting time and the ending time of the access process. Specifically, the access account number, the start time and the end time information of the access process may be printed on the integrated data in the form of a tag, taking the integrated data as video data containing face information of the user as an example, the access account number and the start time information of the access process may be printed on the first frame of video data of the video data in the form of a tag, and the end time information of the access process may be printed on the last frame of video data of the video data in the form of a tag; or establishing a mapping table, wherein the mapping table comprises a one-to-one correspondence relationship between the file name of the integrated data and the access account number, the starting time and the ending time of the access process; the information of the access account number, the starting time and the ending time of the access process can be written in the header file of the integrated data; in addition, the file name of the integrated data may include the access account number, the start time, and the end time information of the access process, for example, the file of the integrated data is named "access account number _ start time _ end time of the access process".
In this way, when the historical access record is traced, the real identity of the user performing the access operation under the access account, and the specific start time and end time of the access process can be determined by combining the stored integrated data and the access account, start time and end time information of the access process associated with the integrated data.
The embodiment of the invention provides a further method for recording an access log, which comprises the steps of acquiring data containing user biological characteristics acquired in an access process, wherein the access process comprises at least one access operation of a user, marking a label representing the access operation on data corresponding to the access operation in the data containing the user biological characteristics, and storing the data on which the label representing the access operation is marked, so that when a historical access record is traced, the biological characteristics of the user when the access operation occurs can be determined through the data containing the user biological characteristics and the label representing the access operation marked in the data containing the user biological characteristics, and the real identity of the user who performs certain access operation can be determined according to the user biological characteristics, the traceability of the user identity in the access process is improved.
Referring to fig. 4, fig. 4 is a schematic flowchart of another access logging method provided in an embodiment of the present invention, where the method is applicable to a scenario where a device accesses a local service, and the method includes:
s401: the method comprises the steps of obtaining an access account number and start time of an access process, and obtaining first data collected in real time in the access process.
After a device acquires a login request of an access account for logging in a local service, acquires the access account and start time, and judges whether a data acquisition device which can be used for acquiring data containing biological characteristics of a user exists or not; when the data collection device is available but is not allowed to collect data, for example, when a device interface pop-up prompt "will access process be recorded, continue? "," whether or not to allow the camera to be turned on? If the user selects no, the login request of the access account is rejected, the login of the access account to the local service fails, and the access process is terminated; when the available data acquisition equipment is available and the data acquisition equipment is allowed to acquire data, the data acquisition equipment is started, and the data acquisition equipment acquires first data in real time in the access process, so that the equipment can acquire the first data acquired in real time in the access process.
Preferably, the data containing the biological characteristics of the user can be video data containing face information of the user, and the data acquisition equipment can be a camera, so that the user can access local services by using equipment provided with the camera, and the convenience of user access is improved.
S402: identifying whether the first data contains the user biological characteristics or not, and if not, interrupting the access process; if so, the access process is not interrupted, and the first data under the condition that the user biological characteristics are identified in the first data is the data containing the user biological characteristics.
The device identifies whether the acquired first data contain the biological characteristics of the user in real time, if not, a prompt box for interrupting the access process is popped up on an equipment interface, and the user cannot perform access operation under the condition that the prompt box exists; and if so, not interrupting the access process and allowing the user to continue the access operation.
That is, if the device recognizes that the first data contains the user biological characteristics, the user can normally access the device; in the access process, once the device recognizes that the first data does not contain the user biological characteristics, the prompt box pops up on the device interface, for example, when the user biological characteristics are user face information and the data acquisition device is a camera, the prompt box can prompt the user to adjust the position and the angle of the camera when the first data does not contain the user face information. Under the condition that the prompt box exists, if the first data is identified to contain the biological characteristics of the user again, the user can continue to perform the access operation only by closing the prompt box; if the first data does not contain the biological characteristics of the user, even if the user closes the current prompt box, the device interface can pop up the prompt box again, so that the user cannot perform access operation.
The first data where a user biometric is identified in the first data is the data including a user biometric. Therefore, only when the data containing the user biological characteristics are obtained, the access operation can be carried out, namely, when the access operation is carried out, the equipment can obtain the data containing the user biological characteristics corresponding to the access operation, and the data containing the user biological characteristics can be subsequently used for tracing the identity of the user carrying out the access operation in the access process, so that the traceability of the identity of the user in the access process is improved.
In another embodiment of the present invention, the user biometric is a pre-stored user biometric, the device identifies in real time whether the first data includes the pre-stored user biometric, and if not, interrupts the access process if no user biometric or a user biometric is identified but the user biometric is not matched with the pre-stored user biometric; if so, the access process is not interrupted. The pre-stored user biological characteristics may be one user biological characteristic or a plurality of user biological characteristics. Therefore, the local service can be accessed only under the condition that the identified user biological characteristics are the pre-stored user biological characteristics, and the access safety is improved.
S403: and marking a label representing the access operation on data corresponding to the access operation in the data containing the biological characteristics of the user.
After data containing user biological characteristics acquired in real time in an access process is acquired, a label representing the access operation is marked on data corresponding to the access operation in the data containing the user biological characteristics, wherein the access operation can be all the access operations in the access process or one or more appointed access operations.
Specifically, the step S403 may be implemented by the step S4031 or the step S4032.
S4031: and under the condition that the operation instruction of the access operation is acquired, marking a label representing the access operation on the data corresponding to the current moment in the data containing the biological characteristics of the user.
Specifically, a relational mapping table of the access operation and a label representing the access operation may be established in advance, after the operation instruction of the access operation is obtained, the label representing the access operation is obtained in the relational mapping table, and the label representing the access operation is marked on data corresponding to the current time in the data including the user biometric characteristic.
S4032: and marking a label representing the access operation on data corresponding to a time period from the starting time to the ending time in the data containing the biological characteristics of the user by taking the time of acquiring the starting operation instruction as the starting time and the time of acquiring the ending operation instruction as the ending time.
Specifically, for an access operation having a start operation instruction and an end operation instruction, such as video playback, and a start playback instruction and an end playback instruction, a relational mapping table of the start operation instruction, the end operation instruction, and a label indicating the access operation of the access operation may be established in advance, after the start operation instruction of the access operation is acquired, the label indicating the access operation may be acquired in the relational mapping table, the label indicating the access operation may be marked on data corresponding to the current time in the data including the user biometric characteristic, and the label indicating the access operation may be continuously marked on the acquired data including the user biometric characteristic from the current time until the end operation instruction of the access operation is acquired.
Specifically, the accessing operation is an operation of logging in a local service by the access account, and the step S403 may be implemented by the step S4033.
S4033: and under the condition that the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
Specifically, the access operation is an operation of logging in a local service by the access account, and when an operation instruction of the login operation is obtained, the device does not yet obtain the data including the user biological characteristics, but since the device does not interrupt the access process when the user biological characteristics are recognized for the first time, so that the access account logs in the local service successfully, and the access operation is continued, a tag representing the login operation is marked on data corresponding to the login operation in the data including the user biological characteristics, and the tag representing the login operation can be marked on data corresponding to the time when the user biological characteristics are recognized for the first time.
In other embodiments of the present invention, the data corresponding to the access operation in the data containing the user biometric feature may be tagged with a tag indicating the access operation, and the current timestamp may also be read and tagged with the data corresponding to the access operation.
S404: and saving the data with the tag representing the access operation.
The data marked with the label representing the access operation is stored in real time, so that when historical access records are traced, the data containing the user biological characteristics when the access operation occurs can be determined in the stored data through the label representing the access operation.
S405: and acquiring the end time of the access process.
When the access account logs out of the local service, for example, the local service may be closed by the user, or the user may quit the access account, and the device acquires the access account log-out signal and records the current timestamp as the end time.
S406: and associating the saved data with an access account number, a starting time and an ending time of the access process.
Specifically, the access account number, the start time and the end time information of the access process may be printed on the data in the form of a tag, taking the data as video data containing face information of the user as an example, the access account number and the start time information of the access process may be printed on the first frame of video data of the video data in the form of a tag, and the end time information of the access process may be printed on the last frame of video data of the video data in the form of a tag; or establishing a mapping table, wherein the mapping table comprises a one-to-one correspondence relationship between the file name of the data and the access account number, the starting time and the ending time of the access process; the information of the access account number, the starting time and the ending time of the access process can be written in the header file of the data; in addition, the file name of the data may contain the access account number, the start time and the end time information of the access process, for example, the file of the data is named as "access account number _ start time _ end time of the access process".
In this way, when tracing back the historical access record, the true identity of the user performing the access operation under the access account, and the specific start time and end time of the access process may be determined in combination with the stored data and the access account, start time, and end time information of the access process associated with the data.
The embodiment of the invention provides a further method for recording an access log, which comprises the steps of acquiring data containing user biological characteristics acquired in an access process, wherein the access process comprises at least one access operation of a user, marking a label representing the access operation on data corresponding to the access operation in the data containing the user biological characteristics, and storing the data on which the label representing the access operation is marked, so that when a historical access record is traced, the biological characteristics of the user when the access operation occurs can be determined through the data containing the user biological characteristics and the label representing the access operation marked in the data containing the user biological characteristics, and the real identity of the user who performs a certain access operation can be determined according to the user biological characteristics, the traceability of the user identity in the access process is improved.
Referring to fig. 5, fig. 5 is a schematic flowchart of a method for accessing a log record according to an embodiment of the present invention, where the method is applicable to a scenario where a device accesses a local service, and the method includes:
s501: the method comprises the steps of obtaining first data with preset duration, wherein the first data are triggered and collected by access operation, and the access operation is the operation of logging in local service by an access account, and the access account and the starting time in the access process are obtained.
Here, the access operation may be all access operations in the access process, or may be one or more specified access operations.
Specifically, after receiving an access operation instruction, the device determines whether there is a data acquisition device available for acquiring the data including the user biological characteristics, and when there is no available data acquisition device, the device does not respond to the access operation instruction, and at this time, a prompt box may pop up on a device interface to prompt the user that a remote operation is to be performed and an environment of the data acquisition device must be configured; when the data collection device is available but is not allowed to collect data, for example, when a device interface pop-up prompt "will access process be recorded, continue? "," whether or not to allow the camera to be turned on? When the user selects no, the user does not respond to the access operation instruction; when the available data acquisition equipment is available and the data acquisition equipment is allowed to acquire data, the data acquisition equipment is started, the data acquisition equipment acquires first data with preset time length by taking the current moment as the starting moment, so that the equipment acquires the first data with the preset time length acquired by triggering of the access operation, and the step S502 is executed.
Preferably, the data containing the biological characteristics of the user can be video data containing face information of the user, and the data acquisition equipment can be a camera, so that the user can access local services by using equipment provided with the camera, and the convenience of user access is improved.
Specifically, when the access operation is an operation of logging in a local service by an access account, the device further obtains the access account and the start time of the access process after receiving an operation instruction of logging in the local service by the access account.
S502: identifying whether the first data contains the biological characteristics of the user, and if not, not responding to the operation instruction of the access operation; and if so, responding to the operation instruction of the access operation, and enabling the first data to be the data containing the user biological characteristics under the condition that the user biological characteristics are identified in the first data.
The equipment identifies whether the acquired first data contain the biological characteristics of the user in real time, and if not, does not respond to the operation instruction of the access operation; and if the first data contains the user biological characteristics, responding to the operation instruction of the access operation at the moment when the user biological characteristics are identified, wherein the first data is the data containing the user biological characteristics under the condition that the user biological characteristics are identified in the first data. Therefore, only when the device acquires the data containing the biological characteristics of the user, the device can respond to the operation instruction of the access operation to enable the access operation to be smoothly executed, namely, when the access operation is executed, the device can acquire the data containing the biological characteristics of the user corresponding to the access operation, and the data containing the biological characteristics of the user can be subsequently used for tracing the identity of the user who performs the access operation in the access process, so that the traceability of the identity of the user in the access process is improved.
In other embodiments of the present invention, the user biometric is a pre-stored user biometric, the device identifies in real time whether the first data includes the pre-stored user biometric, and if the first data does not include the pre-stored user biometric, that is, if it is identified that there is no user biometric or there is a user biometric but the first data does not match the pre-stored user biometric, the device does not respond to the operation instruction of the access operation; and if so, responding to the operation instruction of the access operation at the moment of identifying the pre-stored user biological characteristics. The pre-stored user biological characteristics may be one user biological characteristic or a plurality of user biological characteristics. Therefore, only when the identified user biological characteristics are the pre-stored user biological characteristics, the equipment can respond to the operation instruction of the access operation, so that the access operation is smoothly executed, and the access safety is improved.
S503: and marking a label representing the access operation on the data corresponding to the access operation in the data containing the biological characteristics of the user.
After the data which are acquired by triggering the access operation and have the preset duration and contain the biological characteristics of the user are acquired, a label which represents the access operation is marked on the data which correspond to the access operation in the data which contain the biological characteristics of the user. Specifically, when the operation instruction of the access operation is acquired, a tag indicating the access operation may be marked on data corresponding to a time at which the user biometric is recognized in the data including the user biometric.
Here, since the device is an operation instruction to respond to the access operation at the time when the user biometric feature is recognized, it is necessary to mark a label indicating the access operation on data corresponding to the time when the user biometric feature is recognized, among the data including the user biometric feature. Specifically, a relationship mapping table of the access operation and a label representing the access operation may be established in advance, after an operation instruction of the access operation is acquired, the label representing the access operation is acquired in the relationship mapping table, and at a time when the user biometric feature is identified, a label representing the access operation is marked on data corresponding to a current time in the data including the user biometric feature.
In other embodiments of the present invention, the data corresponding to the access operation in the data containing the user biometric feature may be tagged with a tag indicating the access operation, and the current timestamp may also be read and tagged with the data corresponding to the access operation.
S504: and saving the data with the tag representing the access operation.
And storing the data on which the label representing the access operation is marked, so that when a historical access record is traced, the data containing the biological characteristics of the user when the access operation occurs can be determined in the stored data through the label representing the access operation.
S505: and acquiring the end time of the access process.
When the access account logs out of the local service, for example, the local service may be closed by the user, or the user may quit the access account, and the device acquires the access account log-out signal and records the current timestamp as the end time.
S506: and associating the saved data with an access account number, a starting time and an ending time of the access process.
After the access process is finished, all the stored data can be integrated into one data according to the stored time sequence.
And after all the stored data are integrated into one data according to the stored time sequence, associating the integrated data with the access account number, the starting time and the ending time of the access process. Specifically, the access account number, the start time and the end time information of the access process may be printed on the integrated data in the form of a tag, taking the integrated data as video data containing face information of the user as an example, the access account number and the start time information of the access process may be printed on the first frame of video data of the video data in the form of a tag, and the end time information of the access process may be printed on the last frame of video data of the video data in the form of a tag; or establishing a mapping table, wherein the mapping table comprises a one-to-one correspondence relationship between the file name of the integrated data and the access account number, the starting time and the ending time of the access process; the information of the access account number, the starting time and the ending time of the access process can be written in the header file of the integrated data; in addition, the file name of the integrated data may include the access account number, the start time, and the end time information of the access process, for example, the file of the integrated data is named "access account number _ start time _ end time of the access process".
In this way, when the historical access record is traced, the real identity of the user performing the access operation under the access account, and the specific start time and end time of the access process can be determined by combining the stored integrated data and the access account, start time and end time information of the access process associated with the integrated data.
The embodiment of the invention provides a method for recording an access log, which comprises the steps of acquiring data containing user biological characteristics acquired in an access process, wherein the access process comprises at least one access operation of a user, marking a label representing the access operation on data corresponding to the access operation in the data containing the user biological characteristics, and storing the data on which the label representing the access operation is marked, so that when a historical access record is traced, the biological characteristics of the user when the access operation occurs can be determined through the data containing the user biological characteristics and the label representing the access operation marked in the data containing the user biological characteristics, and the real identity of the user who performs certain access operation can be determined according to the user biological characteristics, the traceability of the user identity in the access process is improved.
Referring to fig. 6, fig. 6 is a schematic structural diagram of an access log recording apparatus according to an embodiment of the present invention, where the apparatus includes:
a data acquisition module 601, configured to acquire data including a user biometric characteristic acquired in an access process, where the access process includes at least one access operation of a user;
a labeling module 602, configured to label, on data corresponding to the access operation, a label representing the access operation in the data including the user biometric characteristic;
a saving module 603, configured to save the data after the tag representing the access operation is marked.
The embodiment of the invention provides an access log recording device, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 7, fig. 7 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention, where the apparatus is applicable to a scenario in which a client accesses a backend server, and the apparatus includes:
the data acquisition module 701 is configured to acquire first data acquired in real time in an access process, where the access process includes at least one access operation of a user.
An identifying module 702, configured to identify whether the first data includes a user biometric feature, where the first data in the case where the user biometric feature is identified in the first data is data including a user biometric feature.
In this way, the first data obtained when the user biometric characteristic is identified in the first data is the data acquired by the data acquisition module and including the user biometric characteristic in real time during the access process.
An interrupting module 703, configured to send a signal for interrupting the access process when the first data is identified to not include the user biometric feature after the access account logs in the back-end server successfully.
A labeling module 704, configured to label, on data corresponding to the access operation, a label representing the access operation in the data including the user biometric characteristic.
A saving module 705, configured to save the data after the tag representing the access operation is marked.
An information obtaining module 706, configured to obtain an access account, a start time, and an end time of the access process;
an associating module 707, configured to associate the saved data with an access account, a start time, and an end time of the access process.
The embodiment of the invention provides another access log recording device, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 8, fig. 8 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention, where the apparatus is applicable to a scenario in which a client accesses a backend server, and the apparatus includes:
the data obtaining module 801 is configured to obtain first data of a preset duration, where the first data is triggered and collected by an access operation, and the access process includes at least one access operation of a user.
An identifying module 802, configured to identify whether the first data includes a user biometric feature, where the first data in the case where the user biometric feature is identified in the first data is data including a user biometric feature.
In this way, the first data obtained by the data obtaining module under the condition that the user biological characteristics are identified in the first data is the data which is obtained by the data obtaining module and contains the user biological characteristics and is triggered and collected by the access operation and has the preset duration.
An operation response module 803, configured to respond to the operation instruction of the access operation when it is recognized that the first data includes the user biometric feature.
A labeling module 804, configured to label data corresponding to the access operation in the data including the user biometric characteristic with a label representing the access operation.
A saving module 805, configured to save the data after the tag representing the access operation is marked.
An information obtaining module 806, configured to obtain an access account, a start time, and an end time of the access process;
an associating module 807 for associating the saved data with the access account number, start time and end time of the access process.
The embodiment of the invention provides another access log recording device, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 9, fig. 9 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention, where the apparatus is applicable to a scenario where a device accesses a local service, and the apparatus includes:
the data acquiring module 901 is configured to acquire first data acquired in real time in an access process, where the access process includes at least one access operation of a user.
An identifying module 902, configured to identify whether the first data includes a user biometric feature, where the first data in the case where the user biometric feature is identified in the first data is data including a user biometric feature.
In this way, the first data obtained when the user biometric characteristic is identified in the first data is the data acquired by the data acquisition module and including the user biometric characteristic in real time during the access process.
An interrupting module 903, configured to interrupt the access process when it is recognized that the first data does not include the user biometric feature after the access account logs in the local service.
And a labeling module 904, configured to label, on data corresponding to the access operation, of the data including the user biometric characteristic, a label representing the access operation.
A saving module 905, configured to save the data after the tag representing the access operation is marked.
An information obtaining module 906, configured to obtain an access account, a start time, and an end time of the access process;
an associating module 907 for associating the saved data with the access account number, the start time and the end time of the access process.
The embodiment of the invention provides another access log recording device, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 10, fig. 10 is a schematic structural diagram of another access logging apparatus according to an embodiment of the present invention, where the apparatus is applicable to a scenario where a device accesses a local service, and the apparatus includes:
the data obtaining module 1001 is configured to obtain first data of a preset duration, which is triggered and collected by an access operation, where the access process includes at least one access operation of a user.
The identifying module 1002 is configured to identify whether the first data includes a user biometric feature, where the first data in the case where the user biometric feature is identified in the first data is data including the user biometric feature.
In this way, the first data obtained by the data obtaining module under the condition that the user biological characteristics are identified in the first data is the data which is obtained by the data obtaining module and contains the user biological characteristics and is triggered and collected by the access operation and has the preset duration.
An operation response module 1003, configured to respond to the operation instruction of the access operation when it is recognized that the first data includes the user biometric characteristic.
A tagging module 1004, configured to tag, on data corresponding to the access operation, a tag indicating the access operation in the data including the user biometric characteristic.
A saving module 1005, configured to save the data after the tag representing the access operation is marked.
An information obtaining module 1006, configured to obtain an access account, a start time, and an end time of the access process;
an associating module 1007 configured to associate the saved data with the access account, the start time, and the end time of the access process.
The embodiment of the invention provides a device for recording an access log, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 11, fig. 11 is a schematic structural diagram of an access logging system according to an embodiment of the present invention, where the system includes:
a client 1101 for sending data containing a user's biometric feature collected during an access process to the server, the access process containing at least one access operation of the user;
the server 1102 is configured to receive the data including the user biometric information collected in the access process, mark a tag representing the access operation on data corresponding to the access operation in the data including the user biometric information, and store the data on which the tag representing the access operation is marked.
The embodiment of the invention provides an access log recording system, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 12, fig. 12 is a schematic structural diagram of another access logging system according to an embodiment of the present invention, where the system includes:
the client 1201 is used for sending first data collected in an access process to the server after receiving a signal sent by the server and used for transmitting data collected in the access process and containing user biological characteristics, wherein the access process comprises at least one access operation of a user; for interrupting said access procedure upon receipt of said signal for interrupting said access procedure.
The server 1202 is configured to send a signal for transmitting data including a user biological characteristic acquired in an access process to the client after receiving an operation instruction for logging in a back-end server by an access account; the first data is used for receiving the first data collected in real time in the access process; the server is used for identifying whether the first data contain the user biological characteristics or not, and the first data are data containing the user biological characteristics under the condition that the user biological characteristics are identified in the first data, so that the server acquires the data which are sent by the client and collected in real time in the access process and contain the user biological characteristics; the system comprises a client, a server and a server, wherein the client is used for sending a signal for interrupting an access process to the client under the condition that the first data does not contain user biological characteristics after the access account logs in a local service; the data corresponding to the access operation in the data containing the biological characteristics of the user is marked with a label representing the access operation; the data used for saving the data after the label representing the access operation is marked; and the data storage module is used for acquiring the access account number, the starting time and the ending time of the access process and associating the stored data with the access account number, the starting time and the ending time of the access process.
The embodiment of the invention provides another access log recording system, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 13, fig. 13 is a schematic structural diagram of another access logging system according to an embodiment of the present invention, where the system includes:
the client 1301 is configured to send, to the server, first data of a preset duration that is triggered and acquired by the access operation after receiving a signal that is sent by the server and transmits data of the preset duration that is triggered and acquired by the access operation and includes a user biometric characteristic.
The server 1302 is configured to send a signal for transmitting data, which is triggered and acquired by the access operation and has a preset time duration and contains user biological characteristics, to the client after receiving an operation instruction of the access operation; the first data of the preset duration is used for receiving the first data which is triggered and collected by the access operation; the server is used for identifying whether the first data contain the user biological characteristics or not, and the first data are data containing the user biological characteristics under the condition that the user biological characteristics are identified in the first data, so that the server acquires the data which are sent by the client and contain the user biological characteristics and are acquired by triggering access operation and have preset duration; the first data is used for responding to the access operation under the condition that the first data is identified to contain the biological characteristics of the user; the data corresponding to the access operation in the data containing the biological characteristics of the user is marked with a label representing the access operation; the data used for saving the data after the label representing the access operation is marked; and the data storage module is used for acquiring the access account number, the starting time and the ending time of the access process and associating the stored data with the access account number, the starting time and the ending time of the access process.
The embodiment of the invention provides another access log recording system, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
Referring to fig. 14, fig. 14 is a schematic structural diagram of an electronic device according to an embodiment of the present invention, where the electronic device includes:
a memory 1401 for storing a computer program;
the processor 1402, when executing the program stored in the memory, implements the steps of the access logging method provided in the foregoing embodiments.
The embodiment of the invention provides electronic equipment, which can determine the biological characteristics of a user when an access operation occurs by the data containing the biological characteristics of the user and a label which is marked in the data containing the biological characteristics of the user and represents the access operation when a historical access record is traced.
The embodiment of the present invention further provides a computer-readable storage medium, where a computer program is stored in the computer-readable storage medium, where the computer program, when being executed by a processor, implements the steps of the access log recording method provided in the above embodiment, so that when tracing a historical access record, a user biological characteristic when an access operation occurs can be determined through the data including the user biological characteristic and a tag representing the access operation printed on the data including the user biological characteristic.
For the apparatus, system, electronic device, and computer-readable storage medium embodiments, the description is relatively simple because they are substantially similar to the method embodiments, and reference may be made to some descriptions of the method embodiments for their relevance.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
Those skilled in the art will appreciate that all or part of the steps in the above method embodiments may be implemented by a program to instruct relevant hardware to perform the steps, and the program may be stored in a computer-readable storage medium, which is referred to herein as a storage medium, such as: ROM/RAM, magnetic disk, optical disk, etc.
The above description is only for the preferred embodiment of the present invention, and is not intended to limit the scope of the present invention. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention shall fall within the protection scope of the present invention.

Claims (19)

1. A method of access logging, the method comprising:
acquiring data which is acquired in an access process and contains user biological characteristics, wherein the access process contains at least one access operation of a user;
labeling the data corresponding to the access operation in the data containing the biological characteristics of the user with a label representing the access operation;
and saving the data with the tag representing the access operation.
2. The method of claim 1, wherein the obtaining data containing the user's biometric characteristics collected during the accessing comprises:
acquiring first data acquired in an access process;
the method further comprises the following steps: identifying whether a user biometric feature is included in the first data;
the data including a user biometric is the first data if a user biometric is identified in the first data.
3. The method of claim 2, further comprising:
and if the first data is identified not to contain the user biological characteristics, sending a signal for interrupting the access process.
4. The method of claim 1, wherein the obtaining data containing the user's biometric characteristics collected during the accessing comprises:
acquiring data which is acquired in real time in the access process and contains the biological characteristics of a user; or
And acquiring data which is acquired by triggering the access operation and contains the biological characteristics of the user for a preset time.
5. The method according to claim 1, wherein the tagging of the data corresponding to the access operation in the data containing the user biometric characteristic to represent the access operation comprises:
under the condition that the operation instruction of the access operation is obtained, a label representing the access operation is marked on data corresponding to the current moment in the data containing the biological characteristics of the user; or
Marking a label representing the access operation on data corresponding to a time period from the starting time to the ending time in the data containing the biological characteristics of the user by taking the time of acquiring the starting operation instruction as the starting time and the time of acquiring the ending operation instruction as the ending time; or
And under the condition that the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
6. The method of claims 1 to 5, further comprising:
acquiring an access account number, a starting time and an ending time of the access process;
and associating the saved data with an access account number, a starting time and an ending time of the access process.
7. An access logging apparatus, the apparatus comprising:
the data acquisition module is used for acquiring data which are acquired in an access process and contain the biological characteristics of a user, wherein the access process contains at least one access operation of the user;
the labeling module is used for labeling the data corresponding to the access operation in the data containing the biological characteristics of the user with a label representing the access operation;
and the storage module is used for storing the data on which the label representing the access operation is marked.
8. The apparatus of claim 7, wherein the data acquisition module is configured to acquire first data collected during the access process;
the device further comprises: the identification module is used for identifying whether the first data contains the biological characteristics of the user;
the data including a user biometric is the first data if a user biometric is identified in the first data.
9. The apparatus of claim 8, further comprising:
and the interruption module is used for sending a signal for interrupting the access process under the condition that the first data is identified not to contain the biological characteristics of the user.
10. The device of claim 7, wherein the data acquisition module is configured to acquire data including a user biometric feature acquired in real time during the access process; or
The system is used for acquiring data which are acquired by the access operation trigger and contain the biological characteristics of the user for a preset time.
11. The apparatus according to claim 7, wherein the tagging module is configured to, in a case where the operation instruction of the access operation is obtained, tag a data corresponding to a current time in the data including the user biometric characteristic, the data representing the access operation; or
The label is used for marking the data corresponding to the time period from the starting time to the ending time in the data containing the biological characteristics of the user with the time when the starting operation instruction is obtained as the starting time and the time when the ending operation instruction is obtained as the ending time; or
And when the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
12. The apparatus of claims 7 to 11, further comprising:
the information acquisition module is used for acquiring an access account number, a starting time and an ending time of the access process;
and the association module is used for associating the saved data with the access account number, the starting time and the ending time of the access process.
13. An access logging system, the system comprising: a client and a server;
the client is used for sending data which are collected in an access process and contain user biological characteristics to the server, and the access process contains at least one access operation of a user;
the server is used for receiving the data which are collected in the access process and contain the biological characteristics of the user, marking a label which represents the access operation on the data which correspond to the access operation in the data which contain the biological characteristics of the user, and storing the data on which the label which represents the access operation is marked.
14. The system of claim 13, wherein the client is configured to send first data collected during the access process to the server;
the server is used for receiving the first data collected in the access process and identifying whether the first data contains the biological characteristics of the user;
the data including a user biometric is the first data if a user biometric is identified in the first data.
15. The system of claim 14, wherein the server is configured to send a signal to the client to interrupt the access process if it is identified that the first data does not include a user biometric;
the client is used for interrupting the access process when receiving the signal for interrupting the access process.
16. The system of claim 13, wherein the client is configured to send data containing user biometric characteristics collected in real time during the access process to the server; or the server is used for sending the data which is acquired by the access operation triggering and contains the user biological characteristics and has preset duration to the server;
the server is used for receiving the data which are collected in real time in the access process and contain the biological characteristics of the user; or for receiving data containing the user biological characteristics, which are acquired by triggering the access operation for a preset time.
17. The system according to claim 13, wherein the server is configured to, in a case where the operation instruction of the access operation is obtained, mark a tag indicating the access operation on data corresponding to a current time in the data including the user biometric feature; or
The label is used for marking the data corresponding to the time period from the starting time to the ending time in the data containing the biological characteristics of the user with the time when the starting operation instruction is obtained as the starting time and the time when the ending operation instruction is obtained as the ending time; or
And when the operation instruction of the access operation is acquired, marking a label representing the access operation on data corresponding to the moment when the user biological characteristics are identified in the data containing the user biological characteristics.
18. The system according to claim 13, wherein the server is configured to send a signal to the client, after receiving the operation instruction of the access operation, for transmitting data including a user biometric feature acquired during the access process;
the client is used for sending the data containing the user biological characteristics to the server after receiving a signal which is sent by the server and used for transmitting the data containing the user biological characteristics and collected in the access process.
19. The system of any one of claims 13 to 18, wherein the server is configured to obtain an access account number, a start time, and an end time of the access process, and to associate the saved data with the access account number, the start time, and the end time of the access process.
CN201910464465.5A 2019-05-30 2019-05-30 Method, device and system for recording access log Active CN111431845B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910464465.5A CN111431845B (en) 2019-05-30 2019-05-30 Method, device and system for recording access log

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910464465.5A CN111431845B (en) 2019-05-30 2019-05-30 Method, device and system for recording access log

Publications (2)

Publication Number Publication Date
CN111431845A true CN111431845A (en) 2020-07-17
CN111431845B CN111431845B (en) 2022-11-04

Family

ID=71546754

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910464465.5A Active CN111431845B (en) 2019-05-30 2019-05-30 Method, device and system for recording access log

Country Status (1)

Country Link
CN (1) CN111431845B (en)

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102143126A (en) * 2010-01-29 2011-08-03 北京邮电大学 Converged IP messaging (CPM) conversation history accessing method and message storage server
CN103177207A (en) * 2013-03-15 2013-06-26 苏州九光信息科技有限公司 Method and system for protecting data based on iris identification
CN103678985A (en) * 2013-12-24 2014-03-26 王梓延 Automatic operator tag generating system and automatic operator tag generating method
US20140337930A1 (en) * 2013-05-13 2014-11-13 Hoyos Labs Corp. System and method for authorizing access to access-controlled environments
CN106022046A (en) * 2016-05-24 2016-10-12 苏州安至上机电科技有限公司 Special equipment permitted operation monitoring method
CN106330919A (en) * 2016-08-26 2017-01-11 国家电网公司 Operation and maintenance safety auditing method and system
CN107273024A (en) * 2017-05-25 2017-10-20 努比亚技术有限公司 A kind of method and apparatus for realizing application data processing
CN108337235A (en) * 2017-12-28 2018-07-27 天地融科技股份有限公司 A kind of method and system executing safety operation using safety equipment
CN108446338A (en) * 2018-02-28 2018-08-24 维沃移动通信有限公司 A kind of method and terminal preserving browsing record

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102143126A (en) * 2010-01-29 2011-08-03 北京邮电大学 Converged IP messaging (CPM) conversation history accessing method and message storage server
CN103177207A (en) * 2013-03-15 2013-06-26 苏州九光信息科技有限公司 Method and system for protecting data based on iris identification
US20140337930A1 (en) * 2013-05-13 2014-11-13 Hoyos Labs Corp. System and method for authorizing access to access-controlled environments
CN103678985A (en) * 2013-12-24 2014-03-26 王梓延 Automatic operator tag generating system and automatic operator tag generating method
CN106022046A (en) * 2016-05-24 2016-10-12 苏州安至上机电科技有限公司 Special equipment permitted operation monitoring method
CN106330919A (en) * 2016-08-26 2017-01-11 国家电网公司 Operation and maintenance safety auditing method and system
CN107273024A (en) * 2017-05-25 2017-10-20 努比亚技术有限公司 A kind of method and apparatus for realizing application data processing
CN108337235A (en) * 2017-12-28 2018-07-27 天地融科技股份有限公司 A kind of method and system executing safety operation using safety equipment
CN108446338A (en) * 2018-02-28 2018-08-24 维沃移动通信有限公司 A kind of method and terminal preserving browsing record

Also Published As

Publication number Publication date
CN111431845B (en) 2022-11-04

Similar Documents

Publication Publication Date Title
EP1603316B1 (en) Mobile communication terminal and method for converting voice message to text message
CN109842712B (en) Call record generation method and device, computer equipment and storage medium
CN103209247B (en) Method and system that a kind of information shows and terminal and server
CN109660446A (en) Voice broadcast method, device, computer equipment and the storage medium of chat message
US20080004056A1 (en) Methods and systems for incorporating a voice-attached, tagged rich media package from a wireless camera-equipped handheld mobile device into a collaborative workflow
US20170064084A1 (en) Method and Apparatus for Implementing Voice Mailbox
CN109413760B (en) Wireless connection method and device
BR112015003831A2 (en) interaction analysis learning system, identifier, classification, method for learning call in a communication system, full stop, method for learning calls in a communication system, and method for directing communications in a communication system
CN109922060A (en) Account number cipher management method, system, mobile terminal and storage medium
CN106558311A (en) Voice content reminding method and device
CN112672086B (en) Audio and video equipment data acquisition, analysis, early warning system
CN111047358A (en) Member information query method and system based on face recognition
CN111431845B (en) Method, device and system for recording access log
CN109246280A (en) Address list cloud processing method, device, computer equipment and readable storage medium storing program for executing
KR101033870B1 (en) Method and device for processing spam call
CN109147791A (en) A kind of shorthand system and method
CN111741103A (en) Access control data synchronization method and system
CN111954013B (en) Live broadcast interaction method and device, terminal equipment, server and storage medium
US8560538B2 (en) Information processing device, content management system, method, and computer readable medium for managing contents
CN113127680B (en) Cross-network alarm condition association method, storage medium and system
CN113556502A (en) Emergency state communication method and system of law enforcement recorder
CN106657548A (en) Stranger call detection method and mobile terminal
CN112954106A (en) Method and device for marking call records
CN111768538A (en) Access control method and system
RU2010131947A (en) IMPROVED PRESENCE CONTROL SERVER SYSTEM

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant