CN1225866C - A method for detecting whether or not WEB authentication user is on line - Google Patents
A method for detecting whether or not WEB authentication user is on line Download PDFInfo
- Publication number
- CN1225866C CN1225866C CN 02152566 CN02152566A CN1225866C CN 1225866 C CN1225866 C CN 1225866C CN 02152566 CN02152566 CN 02152566 CN 02152566 A CN02152566 A CN 02152566A CN 1225866 C CN1225866 C CN 1225866C
- Authority
- CN
- China
- Prior art keywords
- user
- subscriber equipment
- server
- heartbeat
- message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Information Transfer Between Computers (AREA)
- Computer And Data Communications (AREA)
Abstract
The present invention discloses a method for detecting whether a WEB identification user is online. Heartbeat processing procedures of a device of a user are started when the device of the user is accessed to a network, the identification of the user is completed by an identification server, an authorization server and a charging strategy portal processing server, result information is fed back to the device of the user, and the result information is the identification success information; the device of the user periodically sends heartbeat messages to a portal server later, and the portal server periodically or non periodically feeds back heartbeat response messages to the device of the user; when the portal server does not receive the heartbeat messages sent by the device of the user in scheduled time, offline requests of the device of the user are sent to a network access server which stops charging the user according to a scheduled strategy. The method can more precise record the length of the online time of the user, and meanwhile, when the user is offline abnormally, user resources can be released in time so that network resources can be used legitimately.
Description
Technical field
The present invention relates to network system, relate in particular to the whether online method of Internet user that detects.
Background technology
In the access procedure of present broadband network, extensively adopt and the Internet user is carried out safety certification based on the authentication techniques of WEB web portal pages.Under this authentication mode, Authentication Client need not the user be installed especially, directly adopts web browser.In user network inserts, usually earlier by interim IP address of DHCP (DHCP) first to file (generally when starting shooting, finishing), utilize the web browser user can visit some websites of regulation by this interim IP address, as portal server (PORTAL SERVER), thereby enter the portal website of operator, on web portal pages, the user can import username and password and authenticate, to obtain bigger operating right, to visit some other website and some services of enjoyment.The user is by after authenticating, and PORTALSERVER can issue an interface to the user, information such as prompting online time, and accounting server begins this user is chargeed simultaneously; During user offline,, initiate rolling off the production line request, stop charging the user to notify accounting server by clicking the button that rolls off the production line on the PORTAL SERVER browser page.
From the above, whether online the major defect of at present general WEB authentication mode be to carry out detection to the user.Because the WEB authentication is undertaken by browser, do not need extra instrument, therefore PORTAL SERVER can't control the browser of user's operation, can't know the user's online state, for example the user does not exit network by the click button that rolls off the production line, and directly closes browser at all, perhaps at user side because accident when causing situation such as shutdown to occur, PORTALSERVER just can't know that the user rolls off the production line, and still the user is chargeed, and this will make user's economy sustain a loss.
Summary of the invention
The object of the present invention is to provide the whether online method of a kind of WEB of detection authenticated user, be included in and set up following heartbeat handling process between subscriber equipment and the portal server;
Step 1: when subscriber equipment carried out network insertion, portal server was sent to network access server after authentication information is handled;
Step 2: the charging certificate server of network access server informing network is handled the authentication information that the portal server transmission comes, and object information is fed back to subscriber equipment, when object information is authentication success message, starts the heartbeat processing capacity of subscriber equipment;
Step 3: portal server by and subscriber equipment between the heartbeat message that mutually sends and heartbeat response message whether detect the WEB authenticated user online.
Described step 3 further comprises following content:
Subscriber equipment periodicity or aperiodicity ground send heartbeat message to portal server, portal server is to subscriber equipment feedback heartbeat response message, if portal server is not received the heartbeat message that subscriber equipment sends at the appointed time, then send the subscriber equipment request of rolling off the production line, the user is carried out the subscriber equipment processing of rolling off the production line by network access server to network access server.
Described step 3 also can comprise following content:
Portal server periodicity or aperiodicity ground send heartbeat message to subscriber equipment, subscriber equipment is to portal server feedback heartbeat response message, if portal server is not received the heartbeat response message that subscriber equipment sends at the appointed time, then send the subscriber equipment request of rolling off the production line, the user is carried out the subscriber equipment processing of rolling off the production line by network access server to network access server.
Above-mentioned heartbeat message comprises: type of message, message identification, message attribute.
Because the present invention adopts the authentication of the participation WEB of heartbeat mechanism, can the WEB authenticated user online detection of dynamic of carrying out whether be compared online time that can accurate more recording user with the WEB authentication that does not have heartbeat mechanism, when user's abnormal off-line, in time user resources are discharged simultaneously; So not only make Internet resources obtain reasonable use, can also increase the security reliability of network.
Description of drawings
Fig. 1 uses network structure of the present invention;
Fig. 2 is first embodiment flow chart of the method for the invention;
Fig. 3 is second embodiment flow chart of the method for the invention.
Embodiment
The present invention is described in further detail below in conjunction with accompanying drawing.
Fig. 1 uses network structure of the present invention.Among Fig. 1, portal server is monitored by network access layer equipment and the edge access layer equipment WEB user to terminal, and the charging certificate server authenticates and billing operation online WEB user.
Fig. 2 is first embodiment flow chart of the method for the invention.Implement the present invention according to Fig. 2, at first, between subscriber equipment and portal server, set up the heartbeat handling process; The user terminal portal page that is used to authenticate to the portal server request in step 11 then, portal server is after step 12 is replied certification page, and WEB user submits the information such as username and password that are used to authenticate in step 13 to by this page to portal server; Portal server is sent to network access equipment after step 14 is handled information such as above-mentioned username and password, again the charging certificate server of transferring to after the above-mentioned information processing in the network is carried out authentication processing according to certain authentication strategy by network access equipment, if authentication processing success, then network access layer equipment feeds back to portal server in step 15 with success message, is fed back authentication success message and opens the heartbeat flow process to user terminal in step 16 by portal server again; After this step, user terminal sends heartbeat message in step 17 to portal server, portal server is responded heartbeat message in step 18, like this user terminal and portal server step 17 and step 18 by periodically or aperiodicity ground send heartbeat message and feedback heartbeat message and set up heartbeat and get in touch, if portal server is not received the heartbeat message that user terminal sends in the predefined time, think that then the user is unusual, therefore send the request that the user has been rolled off the production line in step 19 to network access layer equipment, stop billing operation according to the strategy of its setting the user by network access layer equipment notice charging certificate server.
Fig. 3 is second embodiment flow chart of the method for the invention.Implement the present invention according to Fig. 2, at first, between subscriber equipment and portal server, set up the heartbeat handling process; The user terminal portal page that is used to authenticate to the portal server request in step 21 then, portal server is after step 22 is replied certification page, and WEB user submits the information such as username and password that are used to authenticate in step 23 to by this page to portal server; Portal server is sent to network access equipment after step 24 is handled information such as above-mentioned username and password, again the charging certificate server of transferring to after the above-mentioned information processing in the network is carried out authentication processing according to certain authentication strategy by network access equipment, if authentication processing success, then network access layer equipment feeds back to portal server in step 25 with success message, is fed back authentication success message and opens the heartbeat flow process to user terminal in step 26 by portal server again; After this step, portal server sends heartbeat message in step 27 to user terminal, user terminal is responded heartbeat message in step 28, like this user terminal and portal server step 27 and step 28 by periodically or aperiodicity ground send heartbeat message and feedback heartbeat message and set up heartbeat and get in touch, if portal server is not received the heartbeat message that user terminal sends in the predefined time, think that then the user is unusual, therefore send the request that the user has been rolled off the production line in step 29 to network access layer equipment, stop billing operation according to the strategy of its setting the user by network access layer equipment notice charging certificate server.
Among above-mentioned Fig. 2, the 3 described embodiment, the heartbeat message that is adopted comprises following content: type of message, message identification, message length and message attribute.Wherein to be used to identify message be request message or response message to type of message, and message identification is used to mate above-mentioned message; Message attribute can be provided with as required, and this routine message attribute has four, and the one, the IP address of user terminal, the 2nd, the state of user terminal, the 3rd, the reason that heartbeat stops, the 4th, heart time is adjusted at interval.
Among above-mentioned Fig. 2, the 3 described embodiment, the charging certificate server is a radius server.
Claims (4)
1, whether online a kind of WEB authenticated user method that detects is characterized in that comprising:
Between subscriber equipment and portal server, set up the heartbeat handling process;
Step 1: when subscriber equipment carried out network insertion, portal server was sent to network access server after authentication information is handled;
Step 2: the charging certificate server of network access server informing network is handled the authentication information that the portal server transmission comes, and object information is fed back to subscriber equipment, when object information is authentication success message, starts the heartbeat processing capacity of subscriber equipment;
Step 3: portal server by and subscriber equipment between the heartbeat message that mutually sends and heartbeat response message whether detect the WEB authenticated user online.
2, whether online detection according to claim 1 WEB authenticated user method is characterized in that described step 3 further comprises:
Subscriber equipment periodicity or aperiodicity ground send heartbeat message to portal server, portal server is to subscriber equipment feedback heartbeat response message, if portal server is not received the heartbeat message that subscriber equipment sends at the appointed time, then send the subscriber equipment request of rolling off the production line, carry out the subscriber equipment processing of rolling off the production line by network access server to network access server.
3, whether online detection according to claim 1 WEB authenticated user method is characterized in that described step 3 further comprises:
Portal server periodicity or aperiodicity ground send heartbeat message to subscriber equipment, subscriber equipment is to portal server feedback heartbeat response message, if portal server is not received the heartbeat response message that subscriber equipment sends at the appointed time, then send the subscriber equipment request of rolling off the production line, carry out the subscriber equipment processing of rolling off the production line by network access server to network access server.
4, whether online the method according to claim 1,2 or 3 described detection WEB authenticated user, it is characterized in that: described heartbeat message comprises: type of message, message identification, message attribute.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 02152566 CN1225866C (en) | 2002-11-19 | 2002-11-19 | A method for detecting whether or not WEB authentication user is on line |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 02152566 CN1225866C (en) | 2002-11-19 | 2002-11-19 | A method for detecting whether or not WEB authentication user is on line |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1501636A CN1501636A (en) | 2004-06-02 |
| CN1225866C true CN1225866C (en) | 2005-11-02 |
Family
ID=34234798
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 02152566 Expired - Fee Related CN1225866C (en) | 2002-11-19 | 2002-11-19 | A method for detecting whether or not WEB authentication user is on line |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1225866C (en) |
Families Citing this family (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1822599B (en) * | 2005-02-16 | 2010-06-23 | 中兴通讯股份有限公司 | Detecting method of terminal online state of meeting sponsered protocol server |
| CN100438446C (en) * | 2006-07-25 | 2008-11-26 | 杭州华三通信技术有限公司 | Switch-in control equipment, Switch-in control system and switch-in control method |
| CN1917427B (en) * | 2006-08-28 | 2010-08-11 | 杭州华三通信技术有限公司 | Method and equipment for quick recovering environment of portal authentication |
| CN100539516C (en) * | 2006-12-31 | 2009-09-09 | 华为技术有限公司 | Network licence managing method, system and license server and client |
| CN101237361B (en) * | 2007-01-31 | 2011-01-05 | 中兴通讯股份有限公司 | A suspending death method for wireless network controller and B node communication context |
| CN101286860B (en) * | 2007-04-13 | 2010-12-22 | 联想(北京)有限公司 | Method, system for maintaining gateway terminal session and terminal service gateway |
| CN101106535B (en) * | 2007-08-14 | 2011-04-13 | 华为技术有限公司 | A method, server and system for heartbeat mechanism |
| CN101360021B (en) * | 2008-10-14 | 2011-12-21 | 中国电信股份有限公司 | Monitoring method and system for wireless wideband user status |
| CN101741875B (en) * | 2008-11-18 | 2012-09-05 | 中华电信股份有限公司 | Active message informing system and method |
| CN101645907A (en) * | 2009-09-04 | 2010-02-10 | 中兴通讯股份有限公司 | Method and system for processing abnormal off-line of Web authenticated user |
| CN101778107B (en) * | 2010-01-15 | 2014-03-12 | 中兴通讯股份有限公司 | State synchronization processing method and device |
| CN102196434A (en) * | 2010-03-10 | 2011-09-21 | 中国移动通信集团公司 | Authentication method and system for wireless local area network terminal |
| CN101917437B (en) * | 2010-08-20 | 2013-03-20 | 迈普通信技术股份有限公司 | User off-line detection method based on SIP and SIP user state detection system |
| CN102223257B (en) * | 2011-07-25 | 2014-02-19 | 莫雅静 | Heartbeat interval adjusting method, server, client terminal and communication system |
| CN103166803B (en) * | 2011-12-13 | 2015-11-04 | 中国移动通信集团山东有限公司 | The processing method that rolls off the production line of wireless local network user, Apparatus and system |
| CN102647314A (en) * | 2012-05-16 | 2012-08-22 | 深圳市乐唯科技开发有限公司 | Client side on-line state judgment method and system |
| CN103516739B (en) * | 2012-06-21 | 2018-10-26 | 中兴通讯股份有限公司 | The elimination method and device of STA |
| CN103095831B (en) * | 2013-01-15 | 2016-03-16 | 中国联合网络通信集团有限公司 | Maintain the method for heartbeat mechanism, wlan client and program servers |
| CN103401729A (en) * | 2013-07-30 | 2013-11-20 | 上海斐讯数据通信技术有限公司 | Method for detecting abnormal offline of authenticate user |
| CN103546348A (en) * | 2013-10-30 | 2014-01-29 | 上海斐讯数据通信技术有限公司 | Method for detecting abnormal offline of authenticated user |
| CN104767718A (en) * | 2014-01-06 | 2015-07-08 | 中国移动通信集团北京有限公司 | User terminal offline method and device |
| CN104410622A (en) * | 2014-11-25 | 2015-03-11 | 珠海格力电器股份有限公司 | Security Authentication Method, Client and System for Logging in Web System |
| CN105611520B (en) * | 2015-12-25 | 2019-03-05 | 北京奇虎科技有限公司 | Realize the method and device of user's online control |
| CN105722086A (en) * | 2016-03-29 | 2016-06-29 | 上海斐讯数据通信技术有限公司 | Access authentication page locking method, and user terminal |
| CN107948989B (en) * | 2016-10-13 | 2021-02-12 | 北京国双科技有限公司 | Method and device for calculating networking time of mobile terminal |
| CN110974204A (en) * | 2019-12-25 | 2020-04-10 | 杭州涂鸦信息技术有限公司 | Method, system and device for realizing bidirectional heartbeat mechanism |
| CN111405227B (en) * | 2020-04-26 | 2021-09-14 | 云知声智能科技股份有限公司 | Building communication method and system |
-
2002
- 2002-11-19 CN CN 02152566 patent/CN1225866C/en not_active Expired - Fee Related
Also Published As
| Publication number | Publication date |
|---|---|
| CN1501636A (en) | 2004-06-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1225866C (en) | A method for detecting whether or not WEB authentication user is on line | |
| US9021570B2 (en) | System, control method therefor, service providing apparatus, relay apparatus and computer-readable medium | |
| US8966584B2 (en) | Dynamic authentication gateway | |
| Jung et al. | Caller identification system in the internet environment | |
| EP1422904B1 (en) | Method and systems for sharing a network resource with a user without current access | |
| CN104113519B (en) | Network attack detecting method and its device | |
| CN100462977C (en) | Capture server, distribution server, method and system for generating webpage capture | |
| DE60027971T2 (en) | Single sign-on to a network system that includes several separately controllable resources with limited access | |
| CN1658593B (en) | Media streaming home network system and method for operating the same | |
| US7836167B2 (en) | Method for monitoring connection state of user | |
| CN101163000B (en) | Secondary authentication method and system | |
| US20100005512A1 (en) | System and method for validating requests in an identity metasystem | |
| CN106302308B (en) | Trust login method and device | |
| CN1717913A (en) | Relay server, relay server service management method, service providing system, and program | |
| CN1578215A (en) | System and method for automatic negotiation of a security protocol | |
| CN100499524C (en) | Method and device for maintaining DHCP safety property list by detecting customer terminal | |
| EP1650923A1 (en) | Authentication method and devices | |
| CN1214597C (en) | Network access faciity based on protocol 802.1X and method for realizing handshake at client end | |
| CN103051647A (en) | Method, device and system for implementing session | |
| CN103024040A (en) | Method and system for processing repeated log in of webpage authentication user | |
| CN107872445A (en) | Access authentication method, equipment and Verification System | |
| CN107180172A (en) | A kind of IPSAN access control methods and device based on USBKey digital certificate authentications | |
| CN111491351B (en) | Method and system for sensing online of WiFi terminal based on authentication information | |
| CN116827601A (en) | Data transmission method, device, electronic equipment and storage medium | |
| JP2004070814A (en) | Server security management method, device and program |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20051102 Termination date: 20151119 |
|
| EXPY | Termination of patent right or utility model |