CN113836504A - Authority management authentication method and system applied to multifunctional integrated office system - Google Patents

Authority management authentication method and system applied to multifunctional integrated office system Download PDF

Info

Publication number
CN113836504A
CN113836504A CN202110981967.2A CN202110981967A CN113836504A CN 113836504 A CN113836504 A CN 113836504A CN 202110981967 A CN202110981967 A CN 202110981967A CN 113836504 A CN113836504 A CN 113836504A
Authority
CN
China
Prior art keywords
login
time period
department
free
secret
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202110981967.2A
Other languages
Chinese (zh)
Other versions
CN113836504B (en
Inventor
武静新
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Xinweijiaye Technology Co ltd
Original Assignee
Beijing Xinweijiaye Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Xinweijiaye Technology Co ltd filed Critical Beijing Xinweijiaye Technology Co ltd
Priority to CN202110981967.2A priority Critical patent/CN113836504B/en
Publication of CN113836504A publication Critical patent/CN113836504A/en
Application granted granted Critical
Publication of CN113836504B publication Critical patent/CN113836504B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2133Verifying human interaction, e.g., Captcha
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2137Time limited access, e.g. to a computer or data

Abstract

The invention provides a permission management authentication method and system applied to a multifunctional integrated office system. One such method comprises: inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department; when the multifunctional integrated office system authentication password and the user name are correct, allowing the system to log in; recording the login time of the current unit department, setting a password-free login time period, and performing system login by the current unit department in a verification code mode in the password-free login time period; and when the password-free login time period is reached, clearing the stored password and the user name corresponding to the current department of the unit, and verifying the user name and the password when the multifunctional integrated office system is accessed again in the current department of the unit. The system comprises modules corresponding to the steps of the method.

Description

Authority management authentication method and system applied to multifunctional integrated office system
Technical Field
The invention provides a permission management authentication method and system applied to a multifunctional integrated office system, and belongs to the technical field of the Internet.
Background
The integrated office management system is software which can embody most functions (including decision, planning, organization, leadership, monitoring, analysis and the like) of enterprise management, can provide real-time, relevant, accurate and complete data and provide decision basis for managers. The enterprise management software can be divided into various types such as enterprise document management, financial management, workshop management, purchase, sale and stock management (ERP), asset management, cost management, equipment management, quality management, distribution resource planning management, human resource management (HR), Supply Chain Management (SCM), Customer Relationship Management (CRM) and the like by module division. The integrated office management system can help enterprise managers to improve work efficiency instead of increasing the burden of the enterprise managers. No complex flow design, no complex form design, etc. The enterprise management software pays attention to the comprehensiveness of system functions, the controllability of processes, the advancement of technologies and the usability of the system.
The existing integrated office management system has the login password and the user of each department correspondingly, and the login of the password and the user name is carried out in each login process, so that the user name and the password are input repeatedly at high frequency, and the user name and the password are easy to steal and reveal.
Disclosure of Invention
The invention provides a permission management authentication method and a permission management authentication system applied to a multifunctional integrated office system, which are used for solving the problems that the existing enterprise office system frequently logs in a user name and a password, so that the password and the user name are high in occurrence frequency and easy to steal:
the authority management authentication method applied to the multifunctional integrated office system comprises the following steps:
inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department;
when the multifunctional integrated office system authentication password and the user name are correct, allowing the system to log in;
recording the login time of the current unit department, setting a password-free login time period, and performing system login by the current unit department in a verification code mode in the password-free login time period;
and when the password-free login time period is reached, clearing the stored password and the user name corresponding to the current department of the unit, and verifying the user name and the password when the multifunctional integrated office system is accessed again in the current department of the unit.
Further, recording the login time of the current unit department, and setting a secret-free login time period, wherein in the secret-free login time period, the current unit department performs system login in a verification code mode, and the method comprises the following steps:
the multifunctional integrated office system records the login time of the password and the user name and sets a password-free login time period;
storing and recording the password and the user name, and setting storage time, wherein the storage time is the same as the password-free login time period;
and in the storage time, when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system automatically pops out a login verification code in a login page and directly logs in the system through the login verification code.
Further, in the storage time, when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system automatically pops out a login verification code in a login page, and performs direct system login through the login verification code, including:
when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system determines the login interval time length corresponding to the current login time through the time difference between the current login time and the recorded login time of the password and the user name;
comparing the login interval time length with the secret-free login time period, and when the login interval time length is smaller than the secret-free login time period, generating an eight-digit digital verification code by the multifunctional integrated office system;
sending the digital verification code to a login port interface of the department, and prompting six-digit verification after the work number and the identity card number are verified after the data verification code is input into the login port corresponding to the department within a first specified time;
and when the information is consistent, the login verification is completed, and the department is allowed to carry out system login access.
Further, the multifunctional integrated office system generates an eight-digit digital verification code, comprising:
extracting any continuous two digits in the number of the department as a replacement code, wherein the number of the department adopts a four-digit number;
randomly generating an initial digital code with eight digits, wherein each digit of the initial digital code is any random number from 0 to 9;
and randomly selecting two continuous digits at any position in the initial digital code to be interchanged with the replacing code, so that the replacing code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
Further, the setting of the secret-free login time period includes:
extracting an initial password-free login time period corresponding to each department;
when the department logs in for the first time every day, the secret-free login time period is correspondingly set to be 55% of the time length corresponding to the initial secret-free login time period;
when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold value but exceed a preset second time threshold value within the secret-free login time period, setting the secret-free login time period as a time length corresponding to 85% of the initial secret-free login time period when the next secret-free login time period is set;
and when the login times of the multifunctional integrated office system of the department exceed a preset second time threshold value in the secret-free login time period, setting the secret-free login time period as the time length corresponding to the initial secret-free login time period when the next secret-free login time period is set. Wherein, the initial secret-free login time period has a value range of 60-90 minutes, preferably 80 minutes.
A rights management authentication system for a multifunctional integrated office system, the system comprising:
the login module is used for inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department;
the login permission module is used for allowing the system to login when the authentication password and the user name of the multifunctional integrated office system are correct;
the system comprises a recording module, a password-free logging time period and a password-free logging time period, wherein the recording module is used for recording the logging time of the current unit department and setting the password-free logging time period, and the current unit department logs in the system in a verification code mode in the password-free logging time period;
and the clearing module is used for clearing the stored password and the user name corresponding to the current unit department after the password-free login time period is reached, and verifying the user name and the password when the multifunctional integrated office system is accessed again in the current unit department.
Further, the recording module includes:
the time period setting module is used for recording the login time of the password and the user name by the multifunctional integrated office system and setting a password-free login time period;
the storage recording module is used for storing and recording the password and the user name and setting storage time, wherein the storage time is the same as the secret-free login time period;
and the login mode switching module is used for automatically popping out a login verification code in a login page by the multifunctional integrated office system when the department logs in the multifunctional integrated office system again in the storage time, and directly logging in the system through the login verification code.
Further, the login mode switching module includes:
the determining module is used for determining the login interval time length corresponding to the current login time by the multifunctional integrated office system according to the time difference between the current login time and the recorded login time of the password and the user name when the department logs in the multifunctional integrated office system again;
the verification code generation module is used for comparing the login interval time length with the secret-free login time period, and when the login interval time length is smaller than the secret-free login time period, the multifunctional integrated office system generates an eight-digit digital verification code;
the prompting module is used for sending the digital verification code to a login port interface of the department, and prompting six-digit verification after the work number and the identity card number are carried out after the data verification code is input into the login port corresponding to the department within a first specified time;
and the verification module is used for comparing the work number and the six digits after the identification card with the archive storage information of the multifunctional integrated office system after the work number and the identification card are input into the login port corresponding to the department within a first specified time, and completing login verification and allowing the department to perform system login access when the information is consistent.
Further, the verification code generation module includes:
the number extraction module is used for extracting any continuous two-digit numbers in the self numbers of the departments as replacement codes, wherein the self numbers of the departments adopt the numbers of one four-digit number;
the initial digital code generating module is used for randomly generating an initial digital code with eight digits, wherein each digit of the initial digital code is any random number from 0 to 9;
and the interchange module is used for randomly selecting two continuous digits at any position in the initial digital code to interchange with the substitution code, so that the substitution code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
Further, the time period setting module includes:
the initial time period extraction module is used for extracting an initial secret-free login time period corresponding to each department;
the first secret-free login time period setting module is used for correspondingly setting the secret-free login time period to be a time length corresponding to 55% of the initial secret-free login time period when the department logs in for the first time every day;
a second secret-free login time period setting module, configured to set, when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold but exceed a preset second time threshold within the secret-free login time period, the secret-free login time period to a time length corresponding to 85% of the initial secret-free login time period when a next secret-free login time period is set;
and a third secret-free login time period setting module, which is used for setting the secret-free login time period to be the time length corresponding to the initial secret-free login time period when the login times of the multifunctional integrated office system of the department exceed the preset second time threshold value and the next secret-free login time period is set. Wherein, the initial secret-free login time period has a value range of 60-90 minutes, preferably 80 minutes.
The invention has the beneficial effects that:
the authority management authentication method and the authority management authentication system applied to the multifunctional integrated office system can effectively reduce the input times of the user name and the password under the condition that the user frequently logs in a short time, and effectively reduce the leakage probability and the stealing probability of the user name and the password. Meanwhile, when the user name and the password are replaced by the verification code in the password-free time period for login, the safety of authority management authentication of the verification code is effectively improved under the condition of reducing the input of the user name and the password, and other non-department personnel are prevented from logging in and stealing department data.
Drawings
FIG. 1 is a flow chart of the method of the present invention;
fig. 2 is a system block diagram of the system of the present invention.
Detailed Description
The preferred embodiments of the present invention will be described in conjunction with the accompanying drawings, and it will be understood that they are described herein for the purpose of illustration and explanation and not limitation.
The embodiment of the invention provides a rights management authentication method applied to a multifunctional integrated office system, which comprises the following steps of:
s1, inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department;
s2, when the multifunctional integrated office system authentication password and the user name are correct, allowing the system to log in;
s3, recording the login time of the current unit department, and setting a password-free login time period, wherein in the password-free login time period, the current unit department performs system login in a verification code mode;
and S4, when the password-free login time period is reached, clearing the stored password and the user name corresponding to the current department of the unit, and when the multifunctional integrated office system is accessed again in the current department of the unit, verifying the user name and the password.
The principle of the technical scheme is as follows: firstly, inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department; then, when the authentication password and the user name of the multifunctional integrated office system are correct, system login is allowed; then, recording the login time of the current unit department, and setting a secret-free login time period, wherein the current unit department performs system login in a verification code mode in the secret-free login time period; and finally, after the password-free login time period is reached, clearing the stored password and the user name corresponding to the current unit department, and verifying the user name and the password when the current unit department accesses the multifunctional integrated office system again.
The effect of the above technical scheme is as follows: the method can effectively reduce the input times of the user name and the password under the condition that the user frequently logs in a short time, and effectively reduce the leakage probability and the stealing probability of the user name and the password. Meanwhile, when the user name and the password are replaced by the verification code in the password-free time period for login, the safety of authority management authentication of the verification code is effectively improved under the condition of reducing the input of the user name and the password, and other non-department personnel are prevented from logging in and stealing department data.
In one embodiment of the present invention, recording the login time of the current unit department, and setting a secret-free login time period, in which the current unit department performs system login in a verification code manner, includes:
s301, the multifunctional integrated office system records the login time of the password and the user name and sets a password-free login time period;
s302, storing and recording the password and the user name, and setting storage time, wherein the storage time is the same as the password-free login time period;
and S303, in the storage time, when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system automatically pops out a login verification code in a login page, and directly logs in the system through the login verification code.
The principle of the technical scheme is as follows: firstly, the multifunctional integrated office system records the login time of the password and the user name and sets a password-free login time period; then, storing and recording the password and the user name, and setting storage time, wherein the storage time is the same as the password-free login time period; and finally, in the storage time, when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system automatically pops out a login verification code in a login page, and directly logs in the system through the login verification code.
The effect of the above technical scheme is as follows: the user name and the password are stored and the login time is recorded, so that the recording condition of department login can be effectively improved, and the time tracking accuracy of subsequent password-free login is further improved.
In an embodiment of the present invention, when the department logs in the multifunctional integrated office system again within the storage time, the multifunctional integrated office system automatically pops out a login verification code in a login page, and performs direct system login through the login verification code, including:
s3031, when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system determines the login interval time length corresponding to the current login time through the time difference between the current login time and the recorded login time of the password and the user name;
s3032, comparing the login interval time length with the secret-free login time period, and when the login interval time length is smaller than the secret-free login time period, generating an eight-digit digital verification code by the multifunctional integrated office system;
s3033, the digital verification code is sent to a login port interface of the department, and after the data verification code is input into the login port corresponding to the department within a first specified time, six-digit verification after the work number and the identity card number is prompted;
s3034, after the login port corresponding to the department inputs the work number and the identification card number in the first specified time, comparing the six digits after the work number and the identification card with the archive storage information of the multifunctional integrated office system, and when the information is consistent, completing login verification and allowing the department to perform system login access.
The principle of the technical scheme is as follows: firstly, when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system determines the login interval time length corresponding to the current login time through the time difference between the current login time and the recorded login time of the password and the user name; then, comparing the login interval time length with the secret-free login time period, and when the login interval time length is smaller than the secret-free login time period, generating an eight-digit digital verification code by the multifunctional integrated office system; then, the digital verification code is sent to a login port interface of the department, and after the data verification code is input into a login port corresponding to the department within a first specified time, six-digit verification after the work number and the identity card number is prompted to be carried out; and finally, after the login port corresponding to the department inputs the work number and the identification card number and then six digits, comparing the work number and the six digits after the identification card with the archive storage information of the multifunctional integrated office system, and when the information is consistent, completing login verification and allowing the department to perform system login access.
The effect of the above technical scheme is as follows: by the method, the authentication strength of the identity authority in the process of the secret-free login can be effectively improved, the login safety of the system is improved, and the situation that other non-department personnel log in by using a simple verification code to cause department data or data leakage and theft in the time period of the secret-free login is prevented. The data or data leakage caused by secret-free login is effectively avoided. Meanwhile, by adopting the method for verification, the verification time can be effectively shortened, the verification efficiency is improved, the identity verification strength of login personnel is improved, and the problem that the login efficiency is reduced due to the fact that the authentication link is locked reversely and complexly by means of complicated decryption or encryption and the like is solved.
In one embodiment of the present invention, the multifunctional integrated office system generates an eight-digit digital authentication code, comprising:
step 1, extracting any continuous two digits in the number of the department as a replacement code, wherein the number of the department adopts the number of one four digit;
2, randomly generating an initial digital code of eight digits, wherein each digit of the initial digital code is any random number from 0 to 9;
and 3, randomly selecting two continuous digits at any position in the initial digital code to be interchanged with the substitution code, so that the substitution code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
The principle of the technical scheme is as follows: firstly, extracting any continuous two digits in the number of the department as a replacement code, wherein the number of the department adopts a four-digit number; then, randomly generating an initial digital code of eight digits, wherein each digit of the initial digital code is any random number of 0-9; and finally, randomly selecting two continuous digits at any position in the initial digital code to be interchanged with the substitution code, so that the substitution code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
The effect of the above technical scheme is as follows: by the method, the irregularity of the eight-digit verification code can be effectively improved, meanwhile, the verification code generated by the combination of the random number and the department number can effectively improve the safety of the verification code, and the problem that malicious third parties pretend to be a system to generate the verification code and butt with a department port to cause the department data to be stolen is effectively prevented. The safety of system management and authentication management is effectively improved.
In an embodiment of the present invention, the setting of the secret-free login time period includes:
firstly, extracting an initial secret-free login time period corresponding to each department;
secondly, when the department logs in for the first time every day, the secret-free login time period is correspondingly set to be 55% of the time length corresponding to the initial secret-free login time period;
thirdly, when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold value but exceed a preset second time threshold value within the secret-free login time period, setting the secret-free login time period as a time length corresponding to 85% of the initial secret-free login time period when the next secret-free login time period is set;
and fourthly, when the login times of the multifunctional integrated office system of the department exceed a preset second time threshold value in the secret-free login time period, and when the next secret-free login time period is set, the secret-free login time period is set to be the time length corresponding to the initial secret-free login time period. Wherein, the initial secret-free login time period has a value range of 60-90 minutes, preferably 80 minutes.
Firstly, extracting an initial secret-free login time period corresponding to each department; when the department logs in for the first time every day, the secret-free login time period is correspondingly set to be 55% of the time length corresponding to the initial secret-free login time period; then, when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold value but exceed a preset second time threshold value within the secret-free login time period, setting the secret-free login time period as a time length corresponding to 85% of the initial secret-free login time period when setting the next secret-free login time period; and finally, when the login times of the multifunctional integrated office system of the department exceed a preset second time threshold value in the secret-free login time period, and when the next secret-free login time period is set, the secret-free login time period is set to be the time length corresponding to the initial secret-free login time period.
The effect of the above technical scheme is as follows: through the setting of the secret-free login time period, the secret-free login time period can be set according to the frequency and the condition of actual system application of department work, and through the setting mode, the password of department action personnel and the login times of the user name can be kept at low use frequency while the system login safety performance is reduced due to the fact that the secret-free login time is too long, so that the safety of the user name and the password is improved.
Meanwhile, by the aid of the percentage distribution mode of the secret-free time periods, effective and sufficient secret-free login time periods can be set according to actual working conditions of departments and use conditions of systems, the problem that the use frequency of user names and passwords is increased due to frequent use of user names and passwords due to too short secret-free login time periods is solved, and the use frequency of the user names and the passwords can be effectively reduced to anti-theft safety indexes.
The embodiment of the invention provides a rights management authentication system applied to a multifunctional integrated office system, and as shown in fig. 2, the system comprises:
the login module is used for inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department;
the login permission module is used for allowing the system to login when the authentication password and the user name of the multifunctional integrated office system are correct;
the system comprises a recording module, a password-free logging time period and a password-free logging time period, wherein the recording module is used for recording the logging time of the current unit department and setting the password-free logging time period, and the current unit department logs in the system in a verification code mode in the password-free logging time period;
and the clearing module is used for clearing the stored password and the user name corresponding to the current unit department after the password-free login time period is reached, and verifying the user name and the password when the multifunctional integrated office system is accessed again in the current unit department.
The principle of the technical scheme is as follows: firstly, a login authentication password and a user name are input into the multifunctional integrated office system through a system port corresponding to each unit department by using a login module; then, a login allowing module is adopted to allow the system to log in when the authentication password and the user name of the multifunctional integrated office system are correct; then, recording the login time of the current unit department by adopting a recording module, and setting a password-free login time period, wherein the current unit department performs system login in a verification code mode in the password-free login time period; and finally, clearing the stored password and the user name corresponding to the current unit department by a clearing module after the password-free login time period is reached, and verifying the user name and the password when the multifunctional integrated office system is accessed again by the current unit department.
The effect of the above technical scheme is as follows: the method can effectively reduce the input times of the user name and the password under the condition that the user frequently logs in a short time, and effectively reduce the leakage probability and the stealing probability of the user name and the password. Meanwhile, when the user name and the password are replaced by the verification code in the password-free time period for login, the safety of authority management authentication of the verification code is effectively improved under the condition of reducing the input of the user name and the password, and other non-department personnel are prevented from logging in and stealing department data.
In one embodiment of the present invention, the recording module includes:
the time period setting module is used for recording the login time of the password and the user name by the multifunctional integrated office system and setting a password-free login time period;
the storage recording module is used for storing and recording the password and the user name and setting storage time, wherein the storage time is the same as the secret-free login time period;
and the login mode switching module is used for automatically popping out a login verification code in a login page by the multifunctional integrated office system when the department logs in the multifunctional integrated office system again in the storage time, and directly logging in the system through the login verification code.
The principle of the technical scheme is as follows: firstly, controlling the multifunctional integrated office system to record the login time of the password and the user name through a time period setting module, and setting a password-free login time period; then, a storage recording module is used for storing and recording the password and the user name, and storage time is set, wherein the storage time is the same as the secret-free login time period; and then, when the department logs in the multifunctional integrated office system again in the storage time by adopting a login mode switching module, the multifunctional integrated office system automatically pops out a login verification code in a login page, and directly logs in the system through the login verification code.
The effect of the above technical scheme is as follows: the user name and the password are stored and the login time is recorded, so that the recording condition of department login can be effectively improved, and the time tracking accuracy of subsequent password-free login is further improved.
In an embodiment of the present invention, the login method switching module includes:
the determining module is used for determining the login interval time length corresponding to the current login time by the multifunctional integrated office system according to the time difference between the current login time and the recorded login time of the password and the user name when the department logs in the multifunctional integrated office system again;
the verification code generation module is used for comparing the login interval time length with the secret-free login time period, and when the login interval time length is smaller than the secret-free login time period, the multifunctional integrated office system generates an eight-digit digital verification code;
the prompting module is used for sending the digital verification code to a login port interface of the department, and prompting six-digit verification after the work number and the identity card number are carried out after the data verification code is input into the login port corresponding to the department within a first specified time;
and the verification module is used for comparing the work number and the six digits after the identification card with the archive storage information of the multifunctional integrated office system after the work number and the identification card are input into the login port corresponding to the department within a first specified time, and completing login verification and allowing the department to perform system login access when the information is consistent.
The principle of the technical scheme is as follows: firstly, when the department logs in the multifunctional integrated office system again through a determining module, the multifunctional integrated office system determines the login interval time length corresponding to the current login time through the time difference between the current login time and the recorded login time of the password and the user name; then, comparing the login interval time length with the password-free login time period by using a verification code generation module, and when the login interval time length is smaller than the password-free login time period, generating an eight-digit digital verification code by the multifunctional integrated office system; then, a prompting module is adopted to send the digital verification code to a login port interface of the department, and after the data verification code is input into a login port corresponding to the department within a first specified time, six-digit verification after work number and identification number is prompted; and finally, after the six digits after the work number and the identity card number are input into a login port corresponding to the department within a first specified time through a verification module, comparing the six digits after the work number and the identity card with archive storage information of the multifunctional integrated office system, and when the information is consistent, completing login verification and allowing the department to perform system login access.
The effect of the above technical scheme is as follows: by the method, the authentication strength of the identity authority in the process of the secret-free login can be effectively improved, the login safety of the system is improved, and the situation that other non-department personnel log in by using a simple verification code to cause department data or data leakage and theft in the time period of the secret-free login is prevented. The data or data leakage caused by secret-free login is effectively avoided. Meanwhile, by adopting the method for verification, the verification time can be effectively shortened, the verification efficiency is improved, the identity verification strength of login personnel is improved, and the problem that the login efficiency is reduced due to the fact that the authentication link is locked reversely and complexly by means of complicated decryption or encryption and the like is solved.
In an embodiment of the present invention, the verification code generation module includes:
the number extraction module is used for extracting any continuous two-digit numbers in the self numbers of the departments as replacement codes, wherein the self numbers of the departments adopt the numbers of one four-digit number;
the initial digital code generating module is used for randomly generating an initial digital code with eight digits, wherein each digit of the initial digital code is any random number from 0 to 9;
and the interchange module is used for randomly selecting two continuous digits at any position in the initial digital code to interchange with the substitution code, so that the substitution code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
The principle of the technical scheme is as follows: firstly, extracting any continuous two digits in the self number of the department as a replacement code through a number extraction module, wherein the self number of the department adopts a four-digit number; then, an initial digital code of eight digits is randomly generated by using an initial digital code generation module, wherein each digit of the initial digital code is any random number of 0-9; and finally, randomly selecting two continuous digits at any position in the initial digital code by adopting an interchange module to interchange with the substitution code, so that the substitution code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
The effect of the above technical scheme is as follows: by the method, the irregularity of the eight-digit verification code can be effectively improved, meanwhile, the verification code generated by the combination of the random number and the department number can effectively improve the safety of the verification code, and the problem that malicious third parties pretend to be a system to generate the verification code and butt with a department port to cause the department data to be stolen is effectively prevented. The safety of system management and authentication management is effectively improved.
In one embodiment of the present invention, the time period setting module includes:
the initial time period extraction module is used for extracting an initial secret-free login time period corresponding to each department;
the first secret-free login time period setting module is used for correspondingly setting the secret-free login time period to be a time length corresponding to 55% of the initial secret-free login time period when the department logs in for the first time every day;
a second secret-free login time period setting module, configured to set, when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold but exceed a preset second time threshold within the secret-free login time period, the secret-free login time period to a time length corresponding to 85% of the initial secret-free login time period when a next secret-free login time period is set;
and a third secret-free login time period setting module, which is used for setting the secret-free login time period to be the time length corresponding to the initial secret-free login time period when the login times of the multifunctional integrated office system of the department exceed the preset second time threshold value and the next secret-free login time period is set. Wherein, the initial secret-free login time period has a value range of 60-90 minutes, preferably 80 minutes.
The principle of the technical scheme is as follows: firstly, extracting an initial secret-free login time period corresponding to each department by using an initial time period extraction module; then, when the department logs in for the first time every day by adopting a first secret-free login time period setting module, correspondingly setting the secret-free login time period to be a time length corresponding to 55% of the initial secret-free login time period; then, a second secret-free login time period setting module is adopted, when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold value but exceed a preset second time threshold value in the secret-free login time period, and when the next secret-free login time period is set, the secret-free login time period is set to be a time length corresponding to 85% of the initial secret-free login time period; and finally, in the secret-free login time period, the login times of the multifunctional integrated office system of the department exceed a preset second time threshold value through a third secret-free login time period setting module, and when the next secret-free login time period is set, the secret-free login time period is set to be the time length corresponding to the initial secret-free login time period. Wherein, the initial secret-free login time period has a value range of 60-90 minutes, preferably 80 minutes.
The effect of the above technical scheme is as follows: through the setting of the secret-free login time period, the secret-free login time period can be set according to the frequency and the condition of actual system application of department work, and through the setting mode, the password of department action personnel and the login times of the user name can be kept at low use frequency while the system login safety performance is reduced due to the fact that the secret-free login time is too long, so that the safety of the user name and the password is improved.
Meanwhile, by the aid of the percentage distribution mode of the secret-free time periods, effective and sufficient secret-free login time periods can be set according to actual working conditions of departments and use conditions of systems, the problem that the use frequency of user names and passwords is increased due to frequent use of user names and passwords due to too short secret-free login time periods is solved, and the use frequency of the user names and the passwords can be effectively reduced to anti-theft safety indexes.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.

Claims (10)

1. The authority management authentication method applied to the multifunctional integrated office system is characterized by comprising the following steps:
inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department;
when the multifunctional integrated office system authentication password and the user name are correct, allowing the system to log in;
recording the login time of the current unit department, setting a password-free login time period, and performing system login by the current unit department in a verification code mode in the password-free login time period;
and when the password-free login time period is reached, clearing the stored password and the user name corresponding to the current department of the unit, and verifying the user name and the password when the multifunctional integrated office system is accessed again in the current department of the unit.
2. The method of claim 1, wherein the recording of the login time of the current department unit and the setting of a secret-free login time period are performed, and the system login of the current department unit in the secret-free login time period is performed by means of a verification code, and the method comprises the following steps:
the multifunctional integrated office system records the login time of the password and the user name and sets a password-free login time period;
storing and recording the password and the user name, and setting storage time, wherein the storage time is the same as the password-free login time period;
and in the storage time, when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system automatically pops out a login verification code in a login page and directly logs in the system through the login verification code.
3. The method as claimed in claim 2, wherein, during the storage time, when the department performs the multi-function integrated office system login again, the multi-function integrated office system automatically pops up a login verification code in the login page, and performs the direct system login via the login verification code, comprising:
when the department logs in the multifunctional integrated office system again, the multifunctional integrated office system determines the login interval time length corresponding to the current login time through the time difference between the current login time and the recorded login time of the password and the user name;
comparing the login interval time length with the secret-free login time period, and when the login interval time length is smaller than the secret-free login time period, generating an eight-digit digital verification code by the multifunctional integrated office system;
sending the digital verification code to a login port interface of the department, and prompting six-digit verification after the work number and the identity card number are verified after the data verification code is input into the login port corresponding to the department within a first specified time;
and when the information is consistent, the login verification is completed, and the department is allowed to carry out system login access.
4. The method of claim 3, wherein the multifunctional integrated office system generates an eight digit numeric validation code comprising:
extracting any continuous two digits in the number of the department as a replacement code, wherein the number of the department adopts a four-digit number;
randomly generating an initial digital code with eight digits, wherein each digit of the initial digital code is any random number from 0 to 9;
and randomly selecting two continuous digits at any position in the initial digital code to be interchanged with the replacing code, so that the replacing code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
5. The method of claim 1, wherein setting the secret-free login time period comprises:
extracting an initial password-free login time period corresponding to each department;
when the department logs in for the first time every day, the secret-free login time period is correspondingly set to be 55% of the time length corresponding to the initial secret-free login time period;
when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold value but exceed a preset second time threshold value within the secret-free login time period, setting the secret-free login time period as a time length corresponding to 85% of the initial secret-free login time period when the next secret-free login time period is set;
and when the login times of the multifunctional integrated office system of the department exceed a preset second time threshold value in the secret-free login time period, setting the secret-free login time period as the time length corresponding to the initial secret-free login time period when the next secret-free login time period is set.
6. Authority management authentication system applied to multifunctional integrated office system, characterized in that the system comprises:
the login module is used for inputting a login authentication password and a user name to the multifunctional integrated office system through a system port corresponding to each unit department;
the login permission module is used for allowing the system to login when the authentication password and the user name of the multifunctional integrated office system are correct;
the system comprises a recording module, a password-free logging time period and a password-free logging time period, wherein the recording module is used for recording the logging time of the current unit department and setting the password-free logging time period, and the current unit department logs in the system in a verification code mode in the password-free logging time period;
and the clearing module is used for clearing the stored password and the user name corresponding to the current unit department after the password-free login time period is reached, and verifying the user name and the password when the multifunctional integrated office system is accessed again in the current unit department.
7. The system of claim 6, wherein the recording module comprises:
the time period setting module is used for recording the login time of the password and the user name by the multifunctional integrated office system and setting a password-free login time period;
the storage recording module is used for storing and recording the password and the user name and setting storage time, wherein the storage time is the same as the secret-free login time period;
and the login mode switching module is used for automatically popping out a login verification code in a login page by the multifunctional integrated office system when the department logs in the multifunctional integrated office system again in the storage time, and directly logging in the system through the login verification code.
8. The system of claim 7, wherein the login switching module comprises:
the determining module is used for determining the login interval time length corresponding to the current login time by the multifunctional integrated office system according to the time difference between the current login time and the recorded login time of the password and the user name when the department logs in the multifunctional integrated office system again;
the verification code generation module is used for comparing the login interval time length with the secret-free login time period, and when the login interval time length is smaller than the secret-free login time period, the multifunctional integrated office system generates an eight-digit digital verification code;
the prompting module is used for sending the digital verification code to a login port interface of the department, and prompting six-digit verification after the work number and the identity card number are carried out after the data verification code is input into the login port corresponding to the department within a first specified time;
and the verification module is used for comparing the work number and the six digits after the identification card with the archive storage information of the multifunctional integrated office system after the work number and the identification card are input into the login port corresponding to the department within a first specified time, and completing login verification and allowing the department to perform system login access when the information is consistent.
9. The system of claim 8, wherein the verification code generation module comprises:
the number extraction module is used for extracting any continuous two-digit numbers in the self numbers of the departments as replacement codes, wherein the self numbers of the departments adopt the numbers of one four-digit number;
the initial digital code generating module is used for randomly generating an initial digital code with eight digits, wherein each digit of the initial digital code is any random number from 0 to 9;
and the interchange module is used for randomly selecting two continuous digits at any position in the initial digital code to interchange with the substitution code, so that the substitution code replaces the positions corresponding to the two continuous digits at any position in the randomly selected initial digital code, and a final eight-digit digital verification code is formed.
10. The system of claim 6, wherein the time period setting module comprises:
the initial time period extraction module is used for extracting an initial secret-free login time period corresponding to each department;
the first secret-free login time period setting module is used for correspondingly setting the secret-free login time period to be a time length corresponding to 55% of the initial secret-free login time period when the department logs in for the first time every day;
a second secret-free login time period setting module, configured to set, when the login times of the multifunctional integrated office system of the department exceed a preset first time threshold but exceed a preset second time threshold within the secret-free login time period, the secret-free login time period to a time length corresponding to 85% of the initial secret-free login time period when a next secret-free login time period is set;
and a third secret-free login time period setting module, which is used for setting the secret-free login time period to be the time length corresponding to the initial secret-free login time period when the login times of the multifunctional integrated office system of the department exceed the preset second time threshold value and the next secret-free login time period is set.
CN202110981967.2A 2021-08-25 2021-08-25 Authority management authentication method and system applied to multifunctional integrated office system Active CN113836504B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110981967.2A CN113836504B (en) 2021-08-25 2021-08-25 Authority management authentication method and system applied to multifunctional integrated office system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110981967.2A CN113836504B (en) 2021-08-25 2021-08-25 Authority management authentication method and system applied to multifunctional integrated office system

Publications (2)

Publication Number Publication Date
CN113836504A true CN113836504A (en) 2021-12-24
CN113836504B CN113836504B (en) 2024-02-06

Family

ID=78961246

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110981967.2A Active CN113836504B (en) 2021-08-25 2021-08-25 Authority management authentication method and system applied to multifunctional integrated office system

Country Status (1)

Country Link
CN (1) CN113836504B (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090265769A1 (en) * 2008-04-22 2009-10-22 Feitian Technologies Co., Ltd. Method for automatically generating and filling in login information and system for the same
US20130305327A1 (en) * 2011-01-17 2013-11-14 Tencent Technology (Shenzhen) Company Limited Method and apparatus to assist user input based on a mobile terminal browser
CN103618717A (en) * 2013-11-28 2014-03-05 北京奇虎科技有限公司 Multi-account client information dynamic authentication method, device and system
CN108647501A (en) * 2018-05-09 2018-10-12 平安科技(深圳)有限公司 Multiple utility program shares password unlocking method, device, equipment and storage medium
CN110247901A (en) * 2019-05-29 2019-09-17 苏宁云计算有限公司 The cross-platform method for exempting from close sign-on access, system and equipment

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090265769A1 (en) * 2008-04-22 2009-10-22 Feitian Technologies Co., Ltd. Method for automatically generating and filling in login information and system for the same
US20130305327A1 (en) * 2011-01-17 2013-11-14 Tencent Technology (Shenzhen) Company Limited Method and apparatus to assist user input based on a mobile terminal browser
CN103618717A (en) * 2013-11-28 2014-03-05 北京奇虎科技有限公司 Multi-account client information dynamic authentication method, device and system
CN108647501A (en) * 2018-05-09 2018-10-12 平安科技(深圳)有限公司 Multiple utility program shares password unlocking method, device, equipment and storage medium
CN110247901A (en) * 2019-05-29 2019-09-17 苏宁云计算有限公司 The cross-platform method for exempting from close sign-on access, system and equipment

Also Published As

Publication number Publication date
CN113836504B (en) 2024-02-06

Similar Documents

Publication Publication Date Title
US20080189549A1 (en) Secure serial number
US20070074047A1 (en) Key rotation
CN101237353B (en) A method and system for monitoring mobile storage device based on USBKEY
CN101140648A (en) Method for bank bill online authorisation and off line trading
CN112508564B (en) Seal use management method based on block chain, electronic equipment and storage medium
CN103294938A (en) Access request verification method and system, authorization information generation method, hardware equipment
CN105005721A (en) Computer authorization starting control system and method based on computer starting key
CN100444184C (en) Method and system of software identify identification
CN109960917A (en) A kind of time slot scrambling and device of document
CN103530581A (en) Hard disk encrypting method and operation system
CN110288315A (en) A kind of financial management computer system
CN112115199A (en) Data management system based on block chain technology
CN111461731A (en) Block chain monitoring system and method applied to financial transactions
CN104363093A (en) Method for encrypting file data by dynamic authorization code
CN101324913B (en) Method and apparatus for protecting computer file
CN112884485B (en) Symmetrical encryption traceability transaction method, system and storage medium based on blockchain network
CN110334535A (en) A kind of financial management control system
CN109101798A (en) A kind of login method of BIOS, login system and relevant apparatus
CN116595573B (en) Data security reinforcement method and device for traffic management information system
CN113836504B (en) Authority management authentication method and system applied to multifunctional integrated office system
CN110674538B (en) Optical disk safety burning monitoring and warning method
CN117094036A (en) Electronic signature method based on blockchain technology
JP4445331B2 (en) Database apparatus, system and program
CN106557682A (en) The authority checking method and device of softdog
CN114154965A (en) Collaborative law enforcement and case handling management method and system based on block chain

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant