CN111726330A - IP-based secure login control method and server - Google Patents
IP-based secure login control method and server Download PDFInfo
- Publication number
- CN111726330A CN111726330A CN201910578230.9A CN201910578230A CN111726330A CN 111726330 A CN111726330 A CN 111726330A CN 201910578230 A CN201910578230 A CN 201910578230A CN 111726330 A CN111726330 A CN 111726330A
- Authority
- CN
- China
- Prior art keywords
- equipment
- information
- mobile phone
- user
- login
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
Abstract
The invention relates to a safe login control method based on IP and a server, wherein the method comprises the following steps: step S1: after receiving a filing request sent by first equipment, applying for a mobile phone number of a user from a third-party system based on the filing request, and acquiring network information of the current first equipment; step S2: after receiving the mobile phone number fed back by the third-party system, obtaining user information from a user information base based on mobile phone number matching, automatically importing the user information, and finishing IP white list recording by combining the current network information of the first equipment; step S3: and after receiving a login request of the second equipment, verifying whether the network environment of the second equipment is matched with the IP white list record of the current user needing to login, if so, passing the login request, otherwise, rejecting the login request. Compared with the prior art, the method and the device have the advantages that the related information is automatically imported by using the mobile phone number provided by the third-party account, so that the difficulty of IP filing of the user is greatly reduced, and the user experience is good.
Description
Technical Field
The present invention relates to network security technologies, and in particular, to a secure login control method and server based on an IP.
Background
The IP address is used as a tracing basis of the equipment on the Internet, has a vital function, and can improve the safety of Internet application by utilizing the IP address.
For enterprise applications, there are often fixed IP outlets or fixed IP in the lan, and for personal users, there is also often a handset device that logs on daily.
In the prior art, a common means for improving the security is an IP white list, and an IP address in the white list can be registered by setting the IP white list, and the IP address outside the white list cannot be registered.
However, the process of making such a filing application in the prior art is very cumbersome, requires the user to input complete data, and thus the user experience is very poor.
Disclosure of Invention
The present invention provides a secure login control method and server based on IP to overcome the above-mentioned drawbacks of the prior art.
The purpose of the invention can be realized by the following technical scheme:
an IP-based secure login control method comprises the following steps:
step S1: after receiving a filing request sent by first equipment, applying for a mobile phone number of a user from a third-party system based on the filing request, and acquiring network information of the current first equipment;
step S2: after receiving the mobile phone number fed back by the third-party system, obtaining user information from a user information base based on mobile phone number matching, automatically importing the user information, and finishing IP white list recording by combining the current network information of the first equipment;
step S3: and after receiving a login request of the second equipment, verifying whether the network environment of the second equipment is matched with the IP white list record of the current user needing to login, if so, passing the login request, otherwise, rejecting the login request.
The network information comprises public network IP information and local network IP information.
The conditions for successful matching in step S3 are as follows: the second device and the IP address in the IP white list record are located in the same local area network.
The first device is a mobile phone.
A server configured to perform the steps of:
step S1: after receiving a filing request sent by first equipment, applying for a mobile phone number of a user from a third-party system based on the filing request, and acquiring network information of the current first equipment;
step S2: after receiving the mobile phone number fed back by the third-party system, obtaining user information from a user information base based on mobile phone number matching, automatically importing the user information, and finishing IP white list recording by combining the current network information of the first equipment;
step S3: and after receiving a login request of the second equipment, verifying whether the network environment of the second equipment is matched with the IP white list record of the current user needing to login, if so, passing the login request, otherwise, rejecting the login request.
Compared with the prior art, the invention has the following beneficial effects:
1) and related information is automatically imported by using the mobile phone number provided by the third party account, so that the difficulty of IP filing of the user is greatly reduced, and the user experience is good.
2) And the local area network information is used for IP record matching, so that the safety of Web login can be improved.
Drawings
FIG. 1 is a schematic flow chart of the main steps of the method of the present invention.
Detailed Description
The invention is described in detail below with reference to the figures and specific embodiments. The present embodiment is implemented on the premise of the technical solution of the present invention, and a detailed implementation manner and a specific operation process are given, but the scope of the present invention is not limited to the following embodiments.
An IP-based secure login control method in the form of a computer program that is executed by a server, as shown in fig. 1, includes:
step S1: after receiving a filing request sent by first equipment, applying for a mobile phone number of a user from a third-party system based on the filing request, and acquiring network information of the current first equipment, wherein the first equipment is preferably a mobile phone;
step S2: after receiving the mobile phone number fed back by the third-party system, obtaining user information from a user information base based on mobile phone number matching, automatically importing the user information, and finishing IP white list recording by combining the current network information of the first equipment;
step S3: and after receiving a login request of the second equipment, verifying whether the network environment of the second equipment is matched with the IP white list record of the current user needing to login, if so, passing the login request, otherwise, rejecting the login request.
The network information includes public network IP information and local network IP information, and the condition that the matching is successful in step S3 is preferably: the second device and the IP address in the IP white list record are located in the same local area network.
Logging in a WeChat applet (only if a user is assigned a right to see the Fei fish background system icon, otherwise, the icon cannot be seen, and white list IP filing operation is performed), clicking the icon on the page, displaying the icon IP application on the page, automatically acquiring the IP address under the current environment, clicking the application operation, opening a browser to log in the Fei fish background address for access, and ensuring that the network environment applied by the applet is consistent with the network environment for opening the browser, if the IP login address is different from the IP login address applied by the applet, the Fei fish background system cannot be accessed.
Claims (8)
1. An IP-based secure login control method is characterized by comprising the following steps:
step S1: after receiving a filing request sent by first equipment, applying for a mobile phone number of a user from a third-party system based on the filing request, and acquiring network information of the current first equipment;
step S2: after receiving the mobile phone number fed back by the third-party system, obtaining user information from a user information base based on mobile phone number matching, automatically importing the user information, and finishing IP white list recording by combining the current network information of the first equipment;
step S3: and after receiving a login request of the second equipment, verifying whether the network environment of the second equipment is matched with the IP white list record of the current user needing to login, if so, passing the login request, otherwise, rejecting the login request.
2. The IP-based secure login control method of claim 1, wherein the network information comprises public network IP information and local network IP information.
3. The IP-based secure login control method according to claim 2, wherein the condition that the matching in step S3 is successful is: the second device and the IP address in the IP white list record are located in the same local area network.
4. The IP-based secure login control method of claim 1, wherein the first device is a mobile phone.
5. A server, characterized in that the server is configured to perform the steps of:
step S1: after receiving a filing request sent by first equipment, applying for a mobile phone number of a user from a third-party system based on the filing request, and acquiring network information of the current first equipment;
step S2: after receiving the mobile phone number fed back by the third-party system, obtaining user information from a user information base based on mobile phone number matching, automatically importing the user information, and finishing IP white list recording by combining the current network information of the first equipment;
step S3: and after receiving a login request of the second equipment, verifying whether the network environment of the second equipment is matched with the IP white list record of the current user needing to login, if so, passing the login request, otherwise, rejecting the login request.
6. The server according to claim 5, wherein the network information comprises public network IP information and local network IP information.
7. The server according to claim 6, wherein the condition that the matching in step S3 is successful is: the second device and the IP address in the IP white list record are located in the same local area network.
8. The IP-based secure login control method of claim 5, wherein the first device is a mobile phone.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910578230.9A CN111726330B (en) | 2019-06-28 | 2019-06-28 | IP-based secure login control method and server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910578230.9A CN111726330B (en) | 2019-06-28 | 2019-06-28 | IP-based secure login control method and server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111726330A true CN111726330A (en) | 2020-09-29 |
| CN111726330B CN111726330B (en) | 2022-06-24 |
Family
ID=72563864
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910578230.9A Active CN111726330B (en) | 2019-06-28 | 2019-06-28 | IP-based secure login control method and server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111726330B (en) |
Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1731726A (en) * | 2005-08-09 | 2006-02-08 | 刘津立 | Safety infrastructure and value-added project composed by mobile phone association server |
| US20060123083A1 (en) * | 2004-12-03 | 2006-06-08 | Xerox Corporation | Adaptive spam message detector |
| CN101360276A (en) * | 2008-09-26 | 2009-02-04 | 腾讯科技(深圳)有限公司 | Community login method, community identity system and identity interconnecting server |
| WO2010090357A1 (en) * | 2009-02-04 | 2010-08-12 | 주식회사 이스트소프트 | System and method for verifying a website address |
| CN102104603A (en) * | 2011-02-22 | 2011-06-22 | 中兴通讯股份有限公司 | Method, system and device for registering mobile terminal in WEB server |
| CN102761531A (en) * | 2011-04-29 | 2012-10-31 | 腾讯科技(深圳)有限公司 | Community authentication method and server |
| CN105933466A (en) * | 2016-04-21 | 2016-09-07 | 广西广播电视信息网络股份有限公司 | Method for accurate user identification and serving in data transmission network |
| CN205827429U (en) * | 2016-06-01 | 2016-12-21 | 广东海辰科技股份有限公司 | A kind of self-service identity is put on record machine |
| WO2017059778A1 (en) * | 2015-10-08 | 2017-04-13 | 阿里巴巴集团控股有限公司 | Method, device and system for detecting shell website |
| CN107846482A (en) * | 2017-11-03 | 2018-03-27 | 赛尔网络有限公司 | Domain name put on record subsystem and apply its DNS management system |
| CN109002555A (en) * | 2018-08-09 | 2018-12-14 | 郑州市景安网络科技股份有限公司 | A kind of ICP puts on record method, apparatus, equipment and readable storage medium storing program for executing |
| CN109068016A (en) * | 2018-09-19 | 2018-12-21 | 李伟光 | It exhales and helps security system and method |
-
2019
- 2019-06-28 CN CN201910578230.9A patent/CN111726330B/en active Active
Patent Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060123083A1 (en) * | 2004-12-03 | 2006-06-08 | Xerox Corporation | Adaptive spam message detector |
| CN1731726A (en) * | 2005-08-09 | 2006-02-08 | 刘津立 | Safety infrastructure and value-added project composed by mobile phone association server |
| CN101360276A (en) * | 2008-09-26 | 2009-02-04 | 腾讯科技(深圳)有限公司 | Community login method, community identity system and identity interconnecting server |
| WO2010090357A1 (en) * | 2009-02-04 | 2010-08-12 | 주식회사 이스트소프트 | System and method for verifying a website address |
| CN102104603A (en) * | 2011-02-22 | 2011-06-22 | 中兴通讯股份有限公司 | Method, system and device for registering mobile terminal in WEB server |
| CN102761531A (en) * | 2011-04-29 | 2012-10-31 | 腾讯科技(深圳)有限公司 | Community authentication method and server |
| WO2017059778A1 (en) * | 2015-10-08 | 2017-04-13 | 阿里巴巴集团控股有限公司 | Method, device and system for detecting shell website |
| CN105933466A (en) * | 2016-04-21 | 2016-09-07 | 广西广播电视信息网络股份有限公司 | Method for accurate user identification and serving in data transmission network |
| CN205827429U (en) * | 2016-06-01 | 2016-12-21 | 广东海辰科技股份有限公司 | A kind of self-service identity is put on record machine |
| CN107846482A (en) * | 2017-11-03 | 2018-03-27 | 赛尔网络有限公司 | Domain name put on record subsystem and apply its DNS management system |
| CN109002555A (en) * | 2018-08-09 | 2018-12-14 | 郑州市景安网络科技股份有限公司 | A kind of ICP puts on record method, apparatus, equipment and readable storage medium storing program for executing |
| CN109068016A (en) * | 2018-09-19 | 2018-12-21 | 李伟光 | It exhales and helps security system and method |
Non-Patent Citations (1)
| Title |
|---|
| 交宣: "公安部优化互联网自助处理流程 交通违法自助处理更便捷", 《汽车与安全》 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111726330B (en) | 2022-06-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11706217B2 (en) | Managing voice applications within a digital workspace | |
| CN108769229B (en) | Information customization sending method and device, computer equipment and storage medium | |
| US20060229054A1 (en) | Help desk connect | |
| US8072926B1 (en) | Systems and methods for device emulation on mobile channel | |
| US20200322480A1 (en) | Systems and methods for automatically authenticating communications with a calling device | |
| US10601831B2 (en) | Accessing local information based on a browser session | |
| CN110555299A (en) | electronic contract signing and storing method and device, computer equipment and storage medium | |
| US11750587B1 (en) | Systems and methods for communications channel authentication | |
| US9398075B2 (en) | Communication system, communication apparatus, communication method, and storage medium | |
| US20220210267A1 (en) | Systems and methods for providing context data associated with a communications session to the called device | |
| CN103905399A (en) | Account registration management method and apparatus | |
| WO2008157095A1 (en) | Multiple user authentications on a communications device | |
| CN107864475A (en) | The quick authentication methods of WiFi based on Portal+ dynamic passwords | |
| US20220366066A1 (en) | Display method, display device, and electronic device | |
| US11949669B2 (en) | Message authenticated communication sessions | |
| CN111726330B (en) | IP-based secure login control method and server | |
| CN113626789A (en) | User operation request processing method and device and electronic equipment | |
| CN110519257B (en) | Network information processing method and device | |
| CN111132043A (en) | Method for automatically acquiring current mobile phone SIM card telephone number | |
| CN102185849A (en) | Method and system for realizing audio recording on webpage | |
| CN114980072B (en) | Electronic business card exchange method and device based on Subscriber Identity Module (SIM) card | |
| KR101980686B1 (en) | Provide method for email service based on mobile application using phone number as email id | |
| CN107770772A (en) | A kind of method and apparatus that unaware certification online is realized by APP | |
| CN113591153A (en) | Data processing method, device, equipment and storage medium | |
| CN113051546A (en) | Double recording method, video and audio acquisition system and computer readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |