CN112597451A - Method and device for distributing application programs - Google Patents
Method and device for distributing application programs Download PDFInfo
- Publication number
- CN112597451A CN112597451A CN202011569151.0A CN202011569151A CN112597451A CN 112597451 A CN112597451 A CN 112597451A CN 202011569151 A CN202011569151 A CN 202011569151A CN 112597451 A CN112597451 A CN 112597451A
- Authority
- CN
- China
- Prior art keywords
- application program
- terminal equipment
- authentication mode
- attribute information
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 29
- 238000009434 installation Methods 0.000 claims description 27
- 238000012795 verification Methods 0.000 description 19
- 230000003068 static effect Effects 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000006978 adaptation Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/121—Restricting unauthorised execution of programs
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/101—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities
- G06F21/1015—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM] by binding digital rights to specific entities to users
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Information Transfer Between Computers (AREA)
- Stored Programmes (AREA)
Abstract
The application discloses a method for distributing application programs, wherein a server firstly receives a first request sent by a terminal device, the first request is used for requesting to download a first application program, and the first request comprises an identifier of the first application program and attribute information of the terminal device. And after receiving the first request, the server obtains an authentication mode for authenticating the terminal equipment according to the identifier and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program. And after the authentication mode is determined, authenticating the terminal equipment according to the authentication mode, and distributing the first application program to the terminal equipment after the authentication is passed.
Description
Technical Field
The present application relates to the field of communications technologies, and in particular, to a method and an apparatus for distributing an application.
Background
Currently, when a user downloads an application program on a browser, authentication is usually performed by sending a short message verification code to a server, however, for some application programs with higher security level, the authentication method cannot meet the security requirement of the application program.
Therefore, a solution is urgently needed to solve this problem.
Disclosure of Invention
The technical problem to be solved by the present application is to provide a method for distributing an application program, so that when a user requests a server to download an application program, an authentication mode adopted can meet the security requirement of the downloaded application program.
In a first aspect, an embodiment of the present application provides a method for distributing an application, where the method includes:
receiving a first request sent by terminal equipment, wherein the first request is used for requesting to download a first application program, and the first request comprises an identifier of the first application program and attribute information of the terminal equipment;
obtaining an authentication mode for authenticating the terminal equipment according to the identification and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program;
authenticating the terminal equipment according to the authentication mode;
and distributing the first application program to the terminal equipment after the authentication is passed.
Optionally, the obtaining, according to the identifier and the attribute information, an authentication manner for authenticating the terminal device includes:
obtaining the authentication mode according to the identification, the attribute information and a pre-stored corresponding relation; wherein the corresponding relationship comprises:
and the corresponding relation among the identification, the attribute information and the authentication mode.
Optionally, the method further includes:
determining the authentication mode according to the security requirement level of the first application program;
and storing the corresponding relation.
Optionally, the distributing the first application program to the terminal device includes:
and if the first application program supports internet distribution, sending a Uniform Resource Locator (URL) for acquiring the installation package of the first application program to the terminal equipment.
Optionally, the distributing the first application program to the terminal device includes:
if the first application program does not support internet distribution, acquiring an installation package of the first application program;
and sending the installation package to the terminal equipment.
In a second aspect, an embodiment of the present application provides an apparatus for distributing an application, where the apparatus includes:
a receiving module to: receiving a first request sent by terminal equipment, wherein the first request is used for requesting to download a first application program, and the first request comprises an identifier of the first application program and attribute information of the terminal equipment;
a first determination module to: obtaining an authentication mode for authenticating the terminal equipment according to the identification and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program;
an authentication module to: authenticating the terminal equipment according to the authentication mode;
a distribution module to: and distributing the first application program to the terminal equipment after the authentication is passed.
Optionally, the first determining module is configured to:
obtaining the authentication mode according to the identification, the attribute information and a pre-stored corresponding relation; wherein the corresponding relationship comprises:
and the corresponding relation among the identification, the attribute information and the authentication mode.
Optionally, the apparatus further comprises:
a second determination module to: determining the authentication mode according to the security requirement level of the first application program;
a save module to: and storing the corresponding relation.
Optionally, the distribution module is configured to:
and if the first application program supports internet distribution, sending a Uniform Resource Locator (URL) for acquiring the installation package of the first application program to the terminal equipment.
Optionally, the distribution module is configured to:
if the first application program does not support internet distribution, acquiring an installation package of the first application program;
and sending the installation package to the terminal equipment.
Compared with the prior art, the embodiment of the application has the following advantages:
the embodiment of the application provides a method for distributing application programs, wherein a server firstly receives a first request sent by a terminal device, the first request is used for requesting to download a first application program, and the first request comprises an identifier of the first application program and attribute information of the terminal device. And after receiving the first request, the server obtains an authentication mode for authenticating the terminal equipment according to the identifier and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program. In other words, for the obtained different identifiers and attribute information, the server may determine, according to the obtained identifiers and attribute information, the security requirement level of the application program corresponding to the identifiers and attribute information, and further determine the authentication mode of the application program of the security level. And after the authentication mode is determined, authenticating the terminal equipment according to the authentication mode, and distributing the first application program to the terminal equipment after the authentication is passed. Therefore, by the method, the safety requirement of the downloaded application program can be met by the authentication mode adopted when the user requests the server to download the application program.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments described in the present application, and other drawings can be obtained by those skilled in the art without creative efforts.
FIG. 1 is a flowchart illustrating a method for distributing applications in an embodiment of the present application;
fig. 2 is a schematic structural diagram of an apparatus for distributing an application program according to an embodiment of the present application.
Detailed Description
In order to make the technical solutions of the present application better understood, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
The inventor of the present application finds, through research, that currently, when a user downloads an application program on a browser, authentication is usually performed in a manner of sending a short message verification code to a server, however, for some application programs with higher security level, this authentication manner cannot meet the security requirement of the application program.
In order to solve the above problem, in this embodiment of the present application, a server first receives a first request sent by a terminal device, where the first request is used to request downloading of a first application program, and the first request includes an identifier of the first application program and attribute information of the terminal device. And after receiving the first request, the server obtains an authentication mode for authenticating the terminal equipment according to the identifier and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program. In other words, for the obtained different identifiers and attribute information, the server may determine, according to the obtained identifiers and attribute information, the security requirement level of the application program corresponding to the identifiers and attribute information, and further determine the authentication mode of the application program of the security level. And after the authentication mode is determined, authenticating the terminal equipment according to the authentication mode, and distributing the first application program to the terminal equipment after the authentication is passed. Therefore, by the method, the safety requirement of the downloaded application program can be met by the authentication mode adopted when the user requests the server to download the application program.
Various non-limiting embodiments of the present application are described in detail below with reference to the accompanying drawings.
Exemplary method
Referring to fig. 1, a flowchart illustrating a method for accessing an application program in an embodiment of the present application is shown. The method illustrated in FIG. 1, in one implementation, may be performed by a server.
In the present embodiment, the method shown in FIG. 1 can be implemented, for example, by the following steps S101-S104.
S101: receiving a first request sent by a terminal device, wherein the first request is used for requesting to download a first application program, and the first request comprises an identifier of the first application program and attribute information of the terminal device.
In this embodiment, after a user triggers an operation of requesting to download a first application program, a server may first receive a first request sent by a terminal device, where the first request is used to request to download the first application program, and the first request includes an identifier of the first application program and attribute information of the terminal device. For example, after a user clicks a "download" button on a download page of an application program in a browser, a terminal device may generate a request for downloading the application program based on the user operation, and then send the request to a server. It should be noted that the identifier of the first application is used to identify the first application, and the attribute information of the terminal device may include one or more of the terminal device and a model thereof, a system version, and location information, such as beijing or shanghai, and a location network model, such as a mobile network or WiFi.
S102: and obtaining an authentication mode for authenticating the terminal equipment according to the identification and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program.
In this embodiment, the server may determine, according to the obtained identifier and the attribute information, a security requirement level of the application program corresponding to the identifier and the attribute information, and further determine an authentication mode of the application program of the security level. The authentication mode may include, for example, one or more combinations of account password verification, identification number verification, dynamic verification code verification, or static verification code verification. The dynamic verification code is a verification code which takes effect only within a certain time and changes after expiration, and the static verification code is a verification code which cannot be changed all the time after being issued. It can be understood that, in the four authentication manners, the security level of the application corresponding to the authentication manner that only uses the account number and the password may be set to be the lowest, and the security level of the application corresponding to the authentication manner that uses the dynamic verification code may be higher than the security level of the application corresponding to the authentication manner that uses the static verification code.
For example, for an application with a higher security level requirement, such as a communication software application, the authentication mode may be set to be identification number verification; for applications with lower security level requirements, such as enterprise forum applications and the like, the authentication mode can be set to account password verification; for applications with a particularly high security level, such as applications including payment, the authentication method may be a combination of multiple authentication methods, such as a combination of dynamic verification code verification and identification number verification. Therefore, by adopting the method, when the user requests the server to download the application program, the authentication mode of the application program which is suitable for the corresponding security level is adopted according to the different security levels of the downloaded application program, so that the adopted authentication mode can meet the security requirement of the downloaded application program.
In an example, after acquiring the identifier of the first application program and the attribute information of the terminal device, the server may obtain the authentication mode according to a pre-stored correspondence between the identifier, the attribute information, and the authentication mode; if the correspondence between the identifier, the attribute information, and the authentication method is not stored in the server, the server may determine the authentication method according to the security requirement level of the first application program, for example: and determining the security requirement level according to the level of the first application program, and determining the authentication mode according to the corresponding relation among the security requirement level, the attribute information and the authentication mode.
S103: and authenticating the terminal equipment according to the authentication mode.
It is understood that, after determining the authentication mode, the terminal device may be authenticated according to the authentication mode. When authentication is carried out, the server firstly sends authentication information to the terminal equipment to prompt a user to input information (such as an identity card number) for authentication, after the user inputs the information on the terminal equipment, the terminal equipment sends the information to the server, the server verifies the information, if the information is accurate, the authentication is passed, otherwise, the server fails to prompt the user not to download the first application program.
S104: and distributing the first application program to the terminal equipment after the authentication is passed.
In this embodiment, if the server passes the authentication, the first application program may be distributed to the terminal device. It should be noted that, since the first application program supports internet distribution, the content distributed by the server to the terminal device may be different. The internet distribution support means that the first application program can be acquired from the internet; the non-internet distribution means that the first application program cannot be acquired from the internet and can be acquired only through an internal network. It can be understood that, for an application with a higher security level, it may be set that the application does not support internet distribution, and the security of the application is ensured by limiting the obtaining route of the application with the higher security level to the internal network, so that the application is not obtained by the user on the internet. In one example, if the first application supports internet distribution, the server may send, to the terminal device, a Uniform Resource Locator (URL) for obtaining an installation package of the first application; if the first application program does not support internet distribution, the server may obtain an installation package of the first application program, and then send the installation package to the terminal device. When the installation package is sent, the server firstly checks whether a cache of the installation package exists locally, and if so, the cached installation package is sent to the terminal equipment; if the installation package does not exist, the installation package is requested from an external file service of the server, the obtained installation package is sent to the terminal equipment, and the installation package is stored locally. Wherein the installation package sent by the server is the installation package of the latest version matched with the attribute information of the terminal device.
Exemplary device
Based on the method provided by the above embodiment, the embodiment of the present application further provides an apparatus, which is described below with reference to the accompanying drawings.
Referring to fig. 2, a schematic structural diagram of an application distribution device in the embodiment of the present application is shown. Applied to a server, the apparatus may specifically include:
the receiving module 201: the terminal equipment is used for receiving a first request sent by the terminal equipment, wherein the first request is used for requesting to download a first application program and comprises an identifier of the first application program and attribute information of the terminal equipment;
the first determination module 202: the authentication mode is used for authenticating the terminal equipment according to the identification and the attribute information and is determined according to the security requirement level of the first application program;
the authentication module 203: the terminal equipment is used for authenticating the terminal equipment according to the authentication mode;
the distribution module 204: the first application program is distributed to the terminal equipment after the authentication is passed.
By the device, when a user requests the server to download the application program, the safety requirement of the downloaded application program can be met by the authentication mode.
In one implementation, the first determining module is configured to:
obtaining the authentication mode according to the identification, the attribute information and a pre-stored corresponding relation; wherein the corresponding relationship comprises:
and the corresponding relation among the identification, the attribute information and the authentication mode.
In one implementation, the apparatus further comprises:
a second determination module to: determining the authentication mode according to the security requirement level of the first application program;
a save module to: and storing the corresponding relation.
In one implementation, the distribution module is configured to:
and if the first application program supports internet distribution, sending a Uniform Resource Locator (URL) for acquiring the installation package of the first application program to the terminal equipment.
In one implementation, the distribution module is configured to:
if the first application program does not support internet distribution, acquiring an installation package of the first application program;
and sending the installation package to the terminal equipment.
Other embodiments of the present application will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of the invention following, in general, the principles of the application and including such departures from the present disclosure as come within known or customary practice in the art to which the invention pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the application being indicated by the following claims.
It will be understood that the present application is not limited to the precise arrangements described above and shown in the drawings and that various modifications and changes may be made without departing from the scope thereof. The scope of the application is limited only by the attached claims
The above description is only exemplary of the present application and should not be taken as limiting the present application, as any modification, equivalent replacement, or improvement made within the spirit and principle of the present application should be included in the protection scope of the present application.
Claims (10)
1. A method for distributing applications, the method comprising:
receiving a first request sent by terminal equipment, wherein the first request is used for requesting to download a first application program, and the first request comprises an identifier of the first application program and attribute information of the terminal equipment;
obtaining an authentication mode for authenticating the terminal equipment according to the identification and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program;
authenticating the terminal equipment according to the authentication mode;
and distributing the first application program to the terminal equipment after the authentication is passed.
2. The method according to claim 1, wherein obtaining an authentication manner for authenticating the terminal device according to the identifier and the attribute information comprises:
obtaining the authentication mode according to the identification, the attribute information and a pre-stored corresponding relation; wherein the corresponding relationship comprises:
and the corresponding relation among the identification, the attribute information and the authentication mode.
3. The method of claim 2, further comprising:
determining the authentication mode according to the security requirement level of the first application program;
and storing the corresponding relation.
4. The method of claim 1, wherein the distributing the first application to the terminal device comprises:
and if the first application program supports internet distribution, sending a Uniform Resource Locator (URL) for acquiring the installation package of the first application program to the terminal equipment.
5. The method of claim 1, wherein the distributing the first application to the terminal device comprises:
if the first application program does not support internet distribution, acquiring an installation package of the first application program;
and sending the installation package to the terminal equipment.
6. An apparatus for distributing applications, the apparatus comprising:
a receiving module to: receiving a first request sent by terminal equipment, wherein the first request is used for requesting to download a first application program, and the first request comprises an identifier of the first application program and attribute information of the terminal equipment;
a first determination module to: obtaining an authentication mode for authenticating the terminal equipment according to the identification and the attribute information, wherein the authentication mode is determined according to the security requirement level of the first application program;
an authentication module to: authenticating the terminal equipment according to the authentication mode;
a distribution module to: and distributing the first application program to the terminal equipment after the authentication is passed.
7. The apparatus of claim 6, wherein the first determining module is configured to:
obtaining the authentication mode according to the identification, the attribute information and a pre-stored corresponding relation; wherein the corresponding relationship comprises:
and the corresponding relation among the identification, the attribute information and the authentication mode.
8. The apparatus of claim 7, further comprising:
a second determination module to: determining the authentication mode according to the security requirement level of the first application program;
a save module to: and storing the corresponding relation.
9. The apparatus of claim 6, wherein the distribution module is configured to:
and if the first application program supports internet distribution, sending a Uniform Resource Locator (URL) for acquiring the installation package of the first application program to the terminal equipment.
10. The apparatus of claim 6, wherein the distribution module is configured to:
if the first application program does not support internet distribution, acquiring an installation package of the first application program;
and sending the installation package to the terminal equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011569151.0A CN112597451B (en) | 2020-12-26 | 2020-12-26 | Method and device for distributing application program |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011569151.0A CN112597451B (en) | 2020-12-26 | 2020-12-26 | Method and device for distributing application program |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112597451A true CN112597451A (en) | 2021-04-02 |
| CN112597451B CN112597451B (en) | 2024-08-06 |
Family
ID=75202355
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011569151.0A Active CN112597451B (en) | 2020-12-26 | 2020-12-26 | Method and device for distributing application program |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112597451B (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2002091850A (en) * | 2000-09-19 | 2002-03-29 | Techfirm Kk | Information distribution server system, application authenticating method for the same and recording medium |
| CN101754213A (en) * | 2008-11-28 | 2010-06-23 | 爱思开电讯投资(中国)有限公司 | Smart card, terminal equipment, and authentication server for guaranteeing application safety and methods thereof |
| CN105100047A (en) * | 2015-05-19 | 2015-11-25 | 努比亚技术有限公司 | Method and device for authentication of terminal application program |
| CN105959317A (en) * | 2016-07-11 | 2016-09-21 | 深圳市金立通信设备有限公司 | Security authentication method and terminal |
| CN106682491A (en) * | 2017-01-23 | 2017-05-17 | 百度在线网络技术(北京)有限公司 | Application downloading method and device |
-
2020
- 2020-12-26 CN CN202011569151.0A patent/CN112597451B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2002091850A (en) * | 2000-09-19 | 2002-03-29 | Techfirm Kk | Information distribution server system, application authenticating method for the same and recording medium |
| CN101754213A (en) * | 2008-11-28 | 2010-06-23 | 爱思开电讯投资(中国)有限公司 | Smart card, terminal equipment, and authentication server for guaranteeing application safety and methods thereof |
| CN105100047A (en) * | 2015-05-19 | 2015-11-25 | 努比亚技术有限公司 | Method and device for authentication of terminal application program |
| CN105959317A (en) * | 2016-07-11 | 2016-09-21 | 深圳市金立通信设备有限公司 | Security authentication method and terminal |
| CN106682491A (en) * | 2017-01-23 | 2017-05-17 | 百度在线网络技术(北京)有限公司 | Application downloading method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112597451B (en) | 2024-08-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108200050B (en) | Single sign-on server, method and computer readable storage medium | |
| US20100077467A1 (en) | Authentication service for seamless application operation | |
| CN104954330B (en) | A kind of methods, devices and systems to be conducted interviews to data resource | |
| CN110493184B (en) | Method and device for processing login page in client and electronic device | |
| CN108540433B (en) | User identity verification method and device | |
| US20140041002A1 (en) | Secure Access Method, Apparatus And System For Cloud Computing | |
| CN108712372B (en) | Method and system for accessing WEB third party login by client | |
| JP2013505497A (en) | Method and apparatus for verification of identification information | |
| KR20120002836A (en) | Apparatus and method for controlling access to combined services | |
| CN108259457B (en) | WEB authentication method and device | |
| CN109474600B (en) | Account binding method, system, device and equipment | |
| US20120227114A1 (en) | Access control system, communication terminal, server, and access control method | |
| CN110163003B (en) | Password management method and device | |
| CN112199656B (en) | Access authority acquisition method of service platform and access control method of service platform | |
| CN111062023A (en) | Method and device for realizing single sign-on of multiple application systems | |
| CN112468540A (en) | Data distribution method, device and medium based on cloud platform | |
| WO2023093500A1 (en) | Access verification method and apparatus | |
| CN111241523B (en) | Authentication processing method, device, equipment and storage medium | |
| EP4087206A1 (en) | Internet-of-things device registration method and apparatus, device and storage medium | |
| CN109726545B (en) | Information display method, equipment, computer readable storage medium and device | |
| CN114301678B (en) | Data access method and device, electronic equipment and storage medium | |
| CN108009439B (en) | Resource request method, device and system | |
| JP2016148919A (en) | User attribute information management system and user attribute information management method | |
| CN106059776A (en) | Website login method and device | |
| JP2004021686A (en) | Verification processing system, verification processor, program, and verification processing method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |