WO2013044569A1 - Procédé d'identification d'utilisateur de réseau et serveur d'application associé - Google Patents

Procédé d'identification d'utilisateur de réseau et serveur d'application associé Download PDF

Info

Publication number
WO2013044569A1
WO2013044569A1 PCT/CN2011/085016 CN2011085016W WO2013044569A1 WO 2013044569 A1 WO2013044569 A1 WO 2013044569A1 CN 2011085016 W CN2011085016 W CN 2011085016W WO 2013044569 A1 WO2013044569 A1 WO 2013044569A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
agent
information
application server
cookie
Prior art date
Application number
PCT/CN2011/085016
Other languages
English (en)
Chinese (zh)
Inventor
郑芳只
罗峰
黄苏支
Original Assignee
北京亿赞普网络技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 北京亿赞普网络技术有限公司 filed Critical 北京亿赞普网络技术有限公司
Publication of WO2013044569A1 publication Critical patent/WO2013044569A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint

Definitions

  • the present application relates to the field of network communication technologies, and in particular, to a method for network user identification and an application server thereof. Background technique
  • the rapid growth of Internet scale and coverage has brought about information overload problems: excessive information and reduced.
  • the first step in recommending information to the user is to identify the user, because only each user is identified, and the information can be further mined, calculated, and recommended based on the user's past behavior.
  • a typical user identification method of the prior art is user identification based on a cookie (a small text file for storing user private information).
  • a cookie a small text file for storing user private information.
  • user cookies are obtained by customizing the Apache log format or JavaScript, a very effective means of user identification has been found.
  • the cookie can be considered to be bound to a certain access client computer without being cleared, so the accuracy of cookie-based user identification is relatively high.
  • cookie-based user identification is of course also flawed. Because the browser automatically saves the cookie to a local directory corresponding to the client, the most common defect is that the cookie is deleted by the client user and the client user cannot The original record implementation corresponds; at the same time, because the client computer will be shared, or the client user will access the website on different computers, the cookie cannot directly correspond to the client user.
  • the technical problem to be solved by the present application is to provide a method for network user identification and an application server, which can improve the accuracy of user identification when a cookie is deleted.
  • the present application discloses a method for network user identification, including the following steps:
  • the corresponding user identity certificate is obtained according to the user identifier and the user agent of the corresponding client user;
  • the information of the corresponding client user is identified.
  • the step of querying the corresponding user identity certificate according to the user identifier and the user agent of the corresponding client user includes:
  • the remote server is queried whether there is a corresponding client user
  • the user identity of the client user is obtained according to the user identifier and the user agent;
  • a new client user's user identity is generated in the remote server according to the user identity and the user agent.
  • the method further Includes:
  • the latest user agent is obtained according to the user identity certificate in the cookie.
  • the step of obtaining the latest user agent according to the user identity certificate in the cookie includes:
  • the local cache user information of the application server is obtained according to the local cache query result of the application server, where the local cache user information of the application server includes a user agent;
  • Matching the user agent in the local cache user information of the application server with the user agent in the user's online behavior information If the matching is successful, the user agent in the locally cached user information of the application server is used as the latest user agent. If the matching fails, updating the user agent in the locally cached user information of the application server according to the user agent in the online behavior information of the user;
  • the identification information of the corresponding client user is queried in the remote server according to the user identity certificate in the cookie, and the remote storage user information is obtained according to the query result, where the remote storage user information includes the user agent;
  • the method further includes:
  • the user identity, the user identity, and the current user agent are stored in association on the application server side and/or the remote server side in the presence of the user identity certificate.
  • the user identifier comprises: a network user name, and/or a user IP address of the dedicated line user.
  • the application also discloses an application server, including:
  • the first querying device is configured to: when the cookie does not exist in the online behavior information of the user of the corresponding client user, according to the user identifier of the corresponding client user and the user agent, the query is used accordingly Household identification certificate;
  • a recovery device configured to restore a corresponding cookie according to the user identity certificate
  • the identifying means is configured to identify the information of the corresponding client user according to the user identity certificate in the restored cookie.
  • the first query device includes:
  • a first cache searching module configured to query, according to the user identifier and the user agent, whether the corresponding client user exists in the local cache of the application server;
  • a first obtaining module configured to acquire, according to the user identifier and the user agent, a user identity certificate of the client user when the cache hit succeeds;
  • a first query requesting module configured to send a first query request to the remote server when the cache hit fails
  • the remote server includes:
  • a first remote querying device configured to query, according to the first query request, by the user identifier and the user agent, whether a corresponding client user exists in the remote server;
  • a certificate obtaining device configured to obtain a user identity certificate of the client user according to the user identifier and the user agent when a corresponding client user exists in the remote server;
  • a certificate generating device configured to generate a user identity certificate of a new client user according to the user identifier and the user agent in the remote server when the corresponding client user does not exist in the remote server;
  • a first returning device configured to return the user identity certificate outputted by the certification obtaining device or the certification generating device to the application server.
  • the application server further includes:
  • the user agent obtaining means is configured to obtain the latest user agent according to the user identity certificate in the cookie when the cookie exists in the online behavior information of the user before the first querying device performs the query operation.
  • the user agent obtaining device includes:
  • a second cache lookup module configured to query, in the local cache of the application server, whether a corresponding client user exists according to the user identity certificate in the cookie
  • a second obtaining module configured to obtain local cache user information of the application server according to the local cache query result of the application server, where the local cache user information of the application server includes a user agent
  • a local matching module configured to match a user agent in the local cache user information of the application server with a user agent in the online behavior information of the user, and if the matching is successful, the user in the local cache user information of the application server
  • the agent acts as the latest user agent; if the match fails, the user agent in the locally cached user information of the application server is updated according to the user agent in the user's online behavior information;
  • a second query requesting module configured to send a second query request to the remote server when the cache hit fails
  • the remote server includes:
  • a second remote search device configured to: when the cache hit fails, query the identification information of the corresponding client user in the remote server according to the user identity certificate in the cookie, and obtain remote storage user information according to the query result, where the remote storage user
  • the information includes a user agent
  • a remote matching device configured to match a user agent in the remote storage user information with a user agent in the user online behavior information, and if the matching is successful, use the user agent in the remote storage user information as the latest a user agent; if the matching fails, updating the user agent in the remote storage user information according to the user agent in the user online behavior information; and the second returning device is configured to output the latest information of the remote matching device User agent, returned to the application server.
  • the application server further includes:
  • the association storage device is configured to store the user identity certificate, the user identifier, and the current user agent on the application server side in the presence of the user identity certificate.
  • the user identifier comprises: a network user name, and/or a user IP of the leased line user.
  • the present application also provides a computer readable recording medium on which a program for performing the above-described method of network user identification is recorded. Compared with the prior art, the present application has the following advantages:
  • the application first recovers the deleted cookie according to the user identifier and the user agent, and then identifies the information of the corresponding client user according to the user identity certificate in the restored cookie;
  • the accuracy of the identification is higher than the accuracy of the user identification based on the IP+ user agent, so the application can improve the accuracy of the user identification in the case where the cookie is deleted;
  • the application can overcome the problem of low user identification accuracy caused by the cookie deletion problem in the prior art, accurately locate and track the client-based user; thus, the user can further recommend the most effective and valuable value according to the recognition result.
  • Information which can solve the problem of user information overload and reduce the cost of users enjoying information;
  • the application can also obtain the latest user agent according to the user identity certificate in the cookie, and obtain the corresponding user identity certificate according to the user identifier of the corresponding client user and the latest user agent query, so as to avoid the user agent changing the cookie.
  • the impact of recovery can further improve the accuracy of user identification.
  • Embodiment 1 is a flowchart of Embodiment 1 of a method for network user identification according to the present application;
  • FIG. 2 is a flow chart of a remote server querying based on a user identifier and a user agent according to the present application
  • Embodiment 3 is a flowchart of Embodiment 2 of a method for network user identification according to the present application;
  • FIG. 4 is a flow chart of a remote server querying based on a user identity certificate in a cookie
  • FIG. 5 is an example of a user identification timing chart of the present application.
  • FIG. 6 is a schematic diagram of interaction between a client 6A and an application server 6B according to the present application
  • FIG. 7 is a structural diagram of an application server embodiment of the present application. detailed description
  • One of the core concepts of the embodiment of the present application is that, in the case that the client user cookie is deleted, the deleted cookie is restored on the application server according to the user identifier and the user agent; specifically, when the cookie is in the corresponding client user
  • the corresponding server user identification UID, User Identification
  • the corresponding user identity certificate is restored according to the user identity certificate.
  • the cookie finally identifies the information of the corresponding client user according to the user identity certificate in the restored cookie.
  • the present application can improve the accuracy of user identification in the case where the cookie is deleted.
  • cookies In order to identify the user and perform session (session) tracking, some websites use cookies to store user private information (usually encrypted) on the client; wherein the most important user private information in the cookie is the user identity that is uniquely identified by the user. prove.
  • the application server assigns a unique user identity to the client user, generates a cookie according to the user identity certificate, and then passes the cookie to the response message.
  • Client user The browser will automatically save the cookie to a local directory. In this way, the cookie can be passed to the application server in each subsequent access request, and the application server can know which client user the access request was sent based on the user identity in the cookie.
  • Embodiment 1 of a method for network user identification is shown, which may specifically include:
  • Step 101 When the cookie does not exist in the online behavior information of the user of the corresponding client user, according to the user identifier of the corresponding client user and the user agent, the corresponding user ID is obtained. Bright.
  • the application server may, according to the packet data in the user access request, parse the online behavior information of the user according to the packet data in the user access request, where the user online behavior information may generally include the user IP ( User—ip), User Agent (UA, User Agent), cookie, access to website domain (host), access to website page information (Uniform Resource Locator), and/or user's last referee.
  • User—ip User IP
  • U Agent User Agent
  • host access to website domain
  • Uniform Resource Locator Uniform Resource Locator
  • User agents are information that helps the server identify the operating system and version of its client, CPU type, browser and version, browser rendering engine, browser language, browser plug-in, and so on.
  • the cookie data does not carry the cookie.
  • the user's cookie is deleted by the client user, and another possibility is that the client The user's identity is a new user or the first time the site is accessed. At this time, the identity of the client user can be identified by applying the present application, further recovering the user and generating a new user.
  • the user ID of the private line user can be used as the user identifier of the client user because the user IP address is fixed and does not change, and the unique user can be identified.
  • ADSL Asymmetric Digital Subscriber Line
  • the IP since the IP is dynamic, it cannot be uniquely marked, and the ADSL account network user name (user_name) is fixed, and The unique user can be identified, so at this time, the ADSL account network user name can be used as the user identifier of the client user.
  • the AAA Authentication, Authorization, Accounting, Accounting
  • the application server receives the accounting
  • the user basic information may be parsed according to the billing message, and the user basic information may specifically include a network user name (ie, an ADSL account network user name) and/or a user IP address.
  • the application server may obtain the network user name or user IP as the user identifier directly from the user basic information for the client user, and access the online behavior from the user.
  • the user agent is obtained from the information, and then, according to the corresponding user identifier and the user agent, the corresponding user identity certificate can be obtained by querying the application server.
  • the user identity certificate, the user identifier, and the current user agent may be stored in association in an offline situation, and correspondingly, the method It can also include:
  • the user identity, the user identity, and the current user agent are stored in association at the application server and/or the remote server.
  • the user identification can be queried by performing a query matching in the application server and/or the remote server-side database by using the combined keyword of the user identifier and the current user agent.
  • the application server may not be able to directly obtain the network user name and user agent. Then, according to the user IP association, the network user name and user agent need to be found, and then the corresponding user identity is obtained according to the corresponding user identifier and user agent query. Proof can be.
  • the user identity certificate, the user identifier, and the current user agent may be associated and stored in an offline situation, and the method may also be performed.
  • the user IP, the user identity, the user identity, and the current user agent are stored in association at the application server and/or the remote server.
  • the step 101 may further include: when the cookie does not exist in the online behavior information of the user of the corresponding client user, according to the user
  • the identifier and the user agent query whether the corresponding client user exists in the local cache of the application server. If the cache hit succeeds, the user identity of the client user is obtained according to the user identifier and the user agent.
  • the local cache of the application server only retains recent data, such as retaining only
  • the data of 1 day or 2 days can also retain only the online user data that is currently online, and the rest of the historical data is stored in the remote server, for example, the user who is currently offline.
  • the preferred embodiment searches the local cache of the application server for the client user based on the user identifier and the user agent. If it can be found, it indicates that the client user recently appears in the application server, and thus can obtain the unique identifier as the user.
  • the user identification (the user identification in the cookie information, as part of the cookie content), also proves that the client user deleted the cookie information and needs to further restore the cookie.
  • the step of obtaining the corresponding user identity certificate according to the user identifier of the corresponding client user and the user agent query may further include:
  • the user identifier and the user agent are queried according to the user identifier to check whether there is a corresponding client user; it should be noted that when the cache hit fails, that is, when the application server's local cache cannot be found. , indicating that the client user has not appeared in the application server recently, so it is necessary to query the historical data of the remote server;
  • the user identity of the client user is obtained according to the user identifier and the user agent; that is, when there is no corresponding client user in the remote server, in the remote server
  • a user identity certificate of a new client user is generated according to the user identifier and the user agent.
  • a cookie is generated based on the user identity and then the cookie is passed to the application server in the response message.
  • the remote server may include a UDC (user data center).
  • UDC user data center
  • the corresponding client user can be found in the UDC database based on the network user name and the user agent, and if found, the user information [network user name, user agent, user-ip, and user identity certificate] is obtained, and the user identity is obtained. Prove feedback to the application server, also said If the client user deletes the cookie information, the user's cookie needs to be further restored. If it is not found, the client user is a new user, and the application server is accessed for the first time. Therefore, a user who globally uniquely identifies a user is assigned. The identity certificate, and initialize the user information [network user name, user agent, user-ip and user identity certificate], and feed the user identity certificate to the application server.
  • a flow chart of a remote server based on a user identifier and a user agent is performed, which may specifically include:
  • Step 201 Receive an adaptation message from an application server, where the adaptation message includes a network user name and a user agent.
  • Step 202 Query whether there is a corresponding client user in the database based on the network user name and the user agent, and if yes, go to step 203; otherwise, go to step 204;
  • Step 203 Obtain user information: a network user name, a user agent, a cookie, and go to step 206;
  • the client user When the client user exists, it indicates that the client user has entered the application server, the user cookie is deleted, and the cookie can be recovered through the network user name and the user agent.
  • Step 204 Generate, according to the network user name and the user agent, a user unique identifier user identity certificate in the database;
  • Step 205 filling the network user name, user agent, cookie in the user table entry of the database, and proceeds to step 206;
  • Step 206 Return the user identity certificate in the cookie to the application server.
  • Step 102 Restore a corresponding cookie according to the user identity certificate;
  • the step of restoring the corresponding cookie according to the user identity certificate may be: the application server generates a corresponding cookie according to the user identity certificate, and grows the cookie to the client. In this way, when the client user accesses the application server again, the client user will carry the cookie information, so that the application server knows which client user sent the access request.
  • the planting process may be: storing a cookie in a fixed text of a client through a P3P protocol (Private preference platform, Platform for Privacy Preferences), where P3P allows a network site to announce them. An agreement collected about browsing users' intent to use them.
  • Step 103 Identify, according to the user identity certificate in the restored cookie, the information of the corresponding client user.
  • the information of the client user as a result of the identification may typically include one or more of the following information:
  • it may include a network user name, a user IP, a user agent, a cookie, and the like.
  • it may include an interest group, a delivery advertisement status, and the like.
  • the user unique identifier may be selected in the following order: When the user registers to log in, the user ID is taken as the user, and when the user browses in the unlogged state, the user's The cookie is used, and the method is used when the user is not logged in and the cookie is deleted, so as to improve the accuracy of the user identification.
  • the prior art can perform user identification based on the IP+ user agent in the case where the cookie is deleted, since the IP and the user agent are constantly changing, the user cannot be accurately located and identified, resulting in low accuracy of recognition.
  • the application first recovers the deleted cookie according to the user identifier and the user agent, and then identifies the information of the corresponding client user according to the user identity certificate in the restored cookie; The accuracy of the user identification is higher than the accuracy of the user identification based on the IP+ user agent, so the application can improve the accuracy of the user identification in the case where the cookie is deleted.
  • Embodiment 2 of a method for network user identification according to the present application is shown, which may specifically include:
  • Step 301 When a cookie exists in the online behavior information of the user, obtain the latest user agent according to the user identity certificate in the cookie;
  • Step 302 When the cookie does not exist in the online behavior information of the user of the corresponding client user, the user identity certificate is obtained according to the user identifier of the corresponding client user and the latest user agent, and the corresponding user identity certificate is obtained;
  • Step 303 Restore the corresponding cookie according to the user identity certificate
  • Step 304 Identify, according to the user identity certificate in the restored cookie, the information of the corresponding client user.
  • the user agent represents browser information, plug-in information, operating system information, etc.
  • the user agent content will change, such as version upgrade, install plug-in, or plug-in upgrade, etc., resulting in user agent content. A change has occurred.
  • the embodiment obtains the latest user agent according to the user identity certificate in the cookie, and updates the user agent in real time to ensure that the user agent is always in the latest state, so that According to the user ID of the corresponding client user and the latest user agent query, the corresponding user identity certificate is obtained to avoid the change of the user agent and affect the cookie recovery, thereby further improving the accuracy of the user identification.
  • the step of obtaining the latest user agent according to the user identity certificate in the cookie may further include:
  • the local cache user information of the application server is obtained according to the local cache query result of the application server, where the local cache user information of the application server may include a user agent;
  • the user agent in the local cache user information of the application server is updated according to the user agent in the user's online behavior information. It should be noted that the matching failure indicates that the user agent has changed, so it needs to be performed. Update
  • the identification information of the corresponding client user is queried in the remote server according to the user identity certificate in the cookie, and the remote storage user information is obtained according to the query result, where the remote storage user information may include a user agent;
  • the user agent in the remote storage user information is updated according to the user agent in the user's online behavior information.
  • the match identification indicates that the user agent has changed, so an update is required.
  • the remote server may include a UDC (user data center).
  • UDC user data center
  • a corresponding client user can be found based on a cookie in the UDC's database.
  • a flow chart of a remote server based on a user identity certificate in a cookie is shown in the following, and specifically includes:
  • Step 401 Receive an adaptation message from an application server, where the adaptation message includes a cookie.
  • Step 402 Query, according to the user identity certificate in the cookie, the identification information of the corresponding client user in the database;
  • the presence of a cookie indicates that the corresponding client user has accessed the application server.
  • Step 403 Obtain user information according to the query result.
  • Step 404 the user agent in the user information is matched with the user agent in the user's online behavior information, if the matching fails, step 405 is performed; if the matching is successful, step 407 is performed; Step 405: Update the user agent in the online behavior information of the user as the latest user agent to the corresponding user entry.
  • the user entry is used to store user information in a database
  • Step 406 Return the latest user agent to the application server.
  • Step 407 The user agent in the user information is used as the latest user agent, and is returned to the application server.
  • the application server receives the latest user agent
  • the user identity certificate, the user identity, and the latest user agent may be stored in association.
  • the application server and the UDC update and associate the user information of the client user to improve the accuracy and real-time of the subsequent user identification.
  • the user identity certificate, the user identity, and the current user agent are stored in association
  • the execution entity of the association store may include one or more of an application server and a UDC, and in addition, the user identity
  • the execution subject performs corresponding update and association processing.
  • the application of the present application in the actual application is shown in FIG. 5, and the user identification timing diagram may specifically include: Step (1), AAA Server receiving The charging request from the client user obtains the fee or balance of the user account according to the network user name in the charging request, and determines whether the client user is allowed to access the Internet further. If allowed, perform step (2) and (3), otherwise, the client user is denied access to the Internet due to insufficient fees;
  • Step (2) allowing the client user to access the Internet
  • Step (3) When the user's fee and balance allow the user to access the Internet, the AAA Server synchronizes the basic information of the user to the Web server (that is, the application server in this embodiment), and the basic information of the user is parsed by the Web server, that is, the network user name.
  • Step (4) when the client user browses the Internet, the Web Server according to the corresponding access request
  • the user online behavior information may be analyzed, where the user online behavior information may include: a user IP, a user agent, a cookie, a website i or a name, a website page information, a referer information, and the like;
  • the Web Server determines the cookie information. If the cookie exists, the Web Server queries the user information through the user identity certificate in the cookie, and queries whether the client user exists. If yes, the matching user's online behavior carries the user agent and passes the user identity certificate. The user agent in the user identity information is matched, and if the matching is successful, the user agent does not change; if the matching is unsuccessful, the user is carried in the Internet to carry the user agent to update the user agent information in the query result, and step (7) is performed; If yes, perform step (5);
  • the Web Server obtains the network user name and the user agent through the IP association, and then queries the network user name and the user agent to check whether the client user exists. If yes, the user identity information is obtained, that is, through the network user. Name and user agent associate the user, and perform step (7); if not, perform step (5);
  • Step (5) UDC (user data center, user data center) according to the message type, the partition is based on the network user name + user agent query, or based on the user identity certificate (user_id) query;
  • the query based on the user identity certificate may include: querying the client user by using the user identity certificate [indicating that the client user has entered the system], obtaining the network user name and the user agent in the user information, and the user carrying the network user this time The name is matched with the user agent. If the matching is successful, step (6) is performed; if the matching is unsuccessful, the network user name and the latest user agent are updated to the user information [user-agent change, association processing], and steps are performed (6) );
  • the query based on the network user name + user agent may specifically include: querying by using the network user name and the user agent. If the database does not exist, it indicates that the client user is a new user, that is, the first time entering the system, the client needs to be the client. The user newly produces a new user identity certificate; if it exists, it indicates that the client user has deleted the planting cookie, so it can be associated with the user agent through the network user name to obtain the user's original user identity certificate, and turn (6);
  • Step (6) the UDC synchronizes the association result to the Web server for convenient service processing
  • Step (7) the Web Server performs user behavior identification according to the identified user information, User interest analysis and accumulation, and analyze the user's required information and interesting information from the user's accumulated information, website content, time and other dimensions, and send it to the user;
  • Steps (8) and (9) when the client user is not accessing the Internet for the first time, since the Web server has stored the user information in the local cache of the application server, the associated storage structure based on the local cache of the application server can be performed.
  • Step (10) when the client user goes offline, the AAA Server synchronizes the corresponding offline message to the Web Server;
  • Step (11) when the Web Server receives the offline message, parses the corresponding user information: the network user name, the user IP, and the offline state; and, for the information persistence requirement, the user information is synchronized to the UDC. , ;
  • Step (12) for the requirement of information persistence, the Web Server synchronizes the user information of the client to the UDC, so as to store the latest user information in the user table in the UDC database to avoid user information loss. happening.
  • any of the foregoing method steps of the user identification method may be implemented as executable software instructions stored on a computer readable medium, wherein the computer readable medium may also include a transmission type medium.
  • FIG. 6 a schematic diagram of interaction between the client 6A and the application server 6B is shown.
  • the user's online behavior information may be parsed according to the packet data in the access request.
  • the application server 6B may directly return a response to the client 6A according to the cookie.
  • the present application further discloses an application server embodiment. Referring to FIG. 7, specifically, the method may include:
  • the first querying device 701 is configured to: when the cookie is in the online behavior of the user of the corresponding client user When the information does not exist, according to the user ID and user agent of the corresponding client user, the query obtains the corresponding user identity certificate;
  • the recovery device 702 is configured to restore the corresponding cookie according to the user identity certificate
  • the identifying means 703 is configured to identify the information of the corresponding client user according to the user identity certificate in the restored cookie.
  • the user identifier may include: a network user name, and/or a user IP of the private line user.
  • the first querying apparatus 701 may further include:
  • a first cache searching module configured to query, according to the user identifier and the user agent, whether the corresponding client user exists in the local cache of the application server;
  • the obtaining module is configured to obtain the user identity of the client user according to the user identifier and the user agent when the cache hit succeeds.
  • the first querying apparatus 701 may further include: a first query requesting module, configured to send a first query request to the remote server when the cache hit fails;
  • the remote server may specifically include:
  • a first remote querying device configured to query, according to the first query request, by the user identifier and the user agent, whether a corresponding client user exists in the remote server;
  • a certificate obtaining device configured to obtain a user identity certificate of the client user according to the user identifier and the user agent when a corresponding client user exists in the remote server;
  • a certificate generating device configured to generate a user identity certificate of a new client user according to the user identifier and the user agent in the remote server when the corresponding client user does not exist in the remote server;
  • a first returning device configured to return the user identity certificate outputted by the certification obtaining device or the certification generating device to the application server.
  • the application server may further include: a user agent obtaining means, configured to be a cookie before the first querying device performs the query operation When the user's online behavior information exists, the latest user agent is obtained according to the user identity certificate in the cookie.
  • the user agent obtaining apparatus may further include:
  • a second cache lookup module configured to query, according to the user identity certificate in the cookie, whether the corresponding client user exists in the local cache of the application server;
  • a second obtaining module configured to obtain local cache user information of the application server according to a local cache query result of the application server, where the local cache user information of the application server includes a user agent;
  • a local matching module configured to match a user agent in the local cache user information of the application server with a user agent in the online behavior information of the user, and if the matching is successful, the user in the local cache user information of the application server
  • the agent acts as the latest user agent; if the match fails, the user agent in the locally cached user information of the application server is updated according to the user agent in the user's online behavior information;
  • a second query requesting module configured to send a second query request to the remote server when the cache hit fails
  • the remote server includes:
  • a second remote search device configured to: when the cache hit fails, query the identification information of the corresponding client user in the remote server according to the user identity certificate in the cookie, and obtain remote storage user information according to the query result, where the remote storage user
  • the information includes a user agent
  • a remote matching device configured to match a user agent in the remote storage user information with a user agent in the user online behavior information, and if the matching is successful, use the user agent in the remote storage user information as the latest a user agent; if the matching fails, updating the user agent in the remote storage user information according to the user agent in the user online behavior information; and the second returning device is configured to output the latest information of the remote matching device User agent, returned to the application server.
  • the application server may further include: an association storage device, configured to be in the application server end in the presence of the user identity certificate
  • an association storage device configured to be in the application server end in the presence of the user identity certificate
  • the user identity certificate, the user identity, and the current user agent are stored in association.
  • the present application also provides a computer readable recording medium on which a program for performing the above-described method of network user identification is recorded.
  • a program for performing the above-described method of network user identification is recorded.
  • the computer readable recording medium includes any mechanism for storing or transmitting information in a form readable by a computer (e.g., a computer).
  • a machine-readable medium includes a read only memory (ROM), a random access memory (RAM), a magnetic disk storage medium, an optical storage medium, a flash storage medium, an electrical, optical, acoustic, or other form of propagated signal (eg, a carrier wave) , infrared signals, digital signals, etc.).
  • This application can be used in a variety of general purpose or special purpose computing system environments or configurations.
  • the application can be described in the general context of computer-executable instructions executed by a computer, such as a program module.
  • program modules include routines, programs, objects, components, data structures, and the like that perform particular tasks or implement particular abstract data types.
  • the present application can also be practiced in distributed computing environments where tasks are performed by remote processing devices that are connected through a communication network.
  • program modules can be located in both local and remote computer storage media including storage devices.
  • component refers to related entities applied to a computer, such as hardware, a combination of hardware and software, software or software in execution, etc.
  • a component can be, but is not limited to being, a process running on a processor, a processor, an object, an executable component, a thread of execution, a program, and/or a computer.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

La présente invention concerne un procédé d'identification d'utilisateur de réseau et un serveur d'application associé. Le procédé consiste de manière spécifique à : lorsqu'un témoin n'existe pas dans des informations de comportement d'accès au réseau d'utilisateur d'un utilisateur client correspondant, obtenir une identité d'utilisateur correspondante par l'intermédiaire d'une interrogation selon un identificateur d'utilisateur et un agent d'utilisateur de l'utilisateur client correspondant ; récupérer le témoin correspondant selon l'identité d'utilisateur ; et obtenir les informations de l'utilisateur client correspondant par l'intermédiaire d'une identification selon l'identité d'utilisateur dans le témoin récupéré. La présente invention peut améliorer la précision d'identification d'utilisateur à condition que le témoin soit supprimé.
PCT/CN2011/085016 2011-09-30 2011-12-30 Procédé d'identification d'utilisateur de réseau et serveur d'application associé WO2013044569A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201110300817.7 2011-09-30
CN201110300817.7A CN102333092B (zh) 2011-09-30 2011-09-30 一种网络用户识别的方法及其应用服务器

Publications (1)

Publication Number Publication Date
WO2013044569A1 true WO2013044569A1 (fr) 2013-04-04

Family

ID=45484697

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/085016 WO2013044569A1 (fr) 2011-09-30 2011-12-30 Procédé d'identification d'utilisateur de réseau et serveur d'application associé

Country Status (2)

Country Link
CN (1) CN102333092B (fr)
WO (1) WO2013044569A1 (fr)

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103297405B (zh) * 2012-03-02 2017-01-18 阿里巴巴集团控股有限公司 一种用户识别和信息投放的方法和装置
CN103051637A (zh) * 2012-12-31 2013-04-17 北京亿赞普网络技术有限公司 用户识别方法与装置
CN103179188B (zh) * 2013-01-17 2015-11-25 北京亿赞普网络技术有限公司 用户识别方法和装置
CN103093377B (zh) * 2013-01-21 2016-02-10 北京亿赞普网络技术有限公司 一种广告投放方法和系统
CN103237094B (zh) * 2013-04-17 2016-04-13 北京亿赞普网络技术有限公司 一种识别用户的方法及装置
CN103427994A (zh) * 2013-07-30 2013-12-04 北京亿赞普网络技术有限公司 一种识别用户的方法和装置
CN103559467B (zh) * 2013-11-05 2016-01-20 张良 二代居民身份证阅读系统
CN104320456B (zh) * 2014-10-22 2018-04-20 迈普通信技术股份有限公司 一种页面推送方法及相关设备
CN105577735A (zh) * 2014-11-07 2016-05-11 阿里巴巴集团控股有限公司 基于浏览器的用户行为追踪方法及装置
CN104639387B (zh) * 2014-12-09 2019-03-01 北京京东尚科信息技术有限公司 一种用户网络行为跟踪方法及设备
CN107111818A (zh) * 2014-12-31 2017-08-29 埃克斯凯利博Ip有限责任公司 减轻cookie扰动的至少一些影响
CN105337990B (zh) * 2015-11-20 2019-06-21 北京奇虎科技有限公司 用户身份的校验方法及装置
CN106933922A (zh) * 2015-12-31 2017-07-07 北京国双科技有限公司 存储用户标识的方法和装置
CN107659602B (zh) * 2016-07-26 2020-12-29 株式会社理光 关联用户访问记录的方法、装置及系统
CN106599981A (zh) * 2017-02-28 2017-04-26 四川建筑职业技术学院 一种身份证明卡片定位系统
CN109246163B (zh) * 2017-07-10 2022-02-08 中国电信股份有限公司 终端信息识别方法及装置
CN107613015A (zh) * 2017-10-11 2018-01-19 成都知道创宇信息技术有限公司 一种网站注册用户首访来源获取方法
CN109257078B (zh) * 2018-09-19 2020-06-05 北京邮电大学 基于QoS的SLNR准则优化多用户通信方法及装置

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040128390A1 (en) * 2002-12-31 2004-07-01 International Business Machines Corporation Method and system for user enrollment of user attribute storage in a federated environment
CN101160599A (zh) * 2004-12-17 2008-04-09 塔科达有限公司 具有通用概况同步的受众目标锁定
CN101291220A (zh) * 2007-04-16 2008-10-22 华为技术有限公司 一种身份安全认证的系统、装置及方法
CN101388773A (zh) * 2007-09-12 2009-03-18 中国移动通信集团公司 身份管理平台、业务服务器、统一登录系统及方法

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040128390A1 (en) * 2002-12-31 2004-07-01 International Business Machines Corporation Method and system for user enrollment of user attribute storage in a federated environment
CN101160599A (zh) * 2004-12-17 2008-04-09 塔科达有限公司 具有通用概况同步的受众目标锁定
CN101291220A (zh) * 2007-04-16 2008-10-22 华为技术有限公司 一种身份安全认证的系统、装置及方法
CN101388773A (zh) * 2007-09-12 2009-03-18 中国移动通信集团公司 身份管理平台、业务服务器、统一登录系统及方法

Also Published As

Publication number Publication date
CN102333092A (zh) 2012-01-25
CN102333092B (zh) 2014-05-28

Similar Documents

Publication Publication Date Title
WO2013044569A1 (fr) Procédé d'identification d'utilisateur de réseau et serveur d'application associé
US8180376B1 (en) Mobile analytics tracking and reporting
US10999384B2 (en) Method and system for identifying website visitors
US7310687B2 (en) Methods and systems for managing class-based condensation
US9141669B2 (en) Configuring an origin server content delivery using a pulled data list
EP2263163B1 (fr) Gestion de contenus
EP2043011B1 (fr) Agrégateur de recherches initiées par un client dirigées vers un serveur
US8838679B2 (en) Providing state service for online application users
RU2630380C2 (ru) Система и способ пуша (push) рекламы, основанные на домашнем шлюзе
WO2015157646A1 (fr) Pré-extraction d'adresse url
US20210258404A1 (en) Generation of a media profile
WO2013181972A1 (fr) Procédé et dispositif d'identification d'un comportement d'accès au réseau
US20150026289A1 (en) Content source discovery
JP5795124B2 (ja) 通信ネットワーク内でユーザがブラウジングする間にユーザを監視する方法およびサーバ
US9398075B2 (en) Communication system, communication apparatus, communication method, and storage medium
WO2014000148A1 (fr) Procédé et dispositif d'obtention d'une ressource
US8713088B2 (en) Identifying users of remote sessions
KR102009020B1 (ko) 검색 엔진으로 웹 사이트 인증 데이터를 제공하기 위한 방법 및 장치
CN110753045A (zh) 不同域之间单点登录的方法
US8862667B2 (en) Network based audience measurement
WO2018228234A1 (fr) Procédé de mise en cache vidéo et dispositif de mise en cache
WO2022057525A1 (fr) Procédé et dispositif de récupération de données, dispositif électronique et support de stockage
CN105279156A (zh) 网络信息通信方法及网络信息浏览装置
CN110300308B (zh) 一种流媒体回播方法及装置
CN110866196A (zh) 一种打印机网络信息采集方法、装置及电子设备

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11873103

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11873103

Country of ref document: EP

Kind code of ref document: A1