WO2014094542A1 - Method and system for web conference authentication - Google Patents

Method and system for web conference authentication Download PDF

Info

Publication number
WO2014094542A1
WO2014094542A1 PCT/CN2013/088487 CN2013088487W WO2014094542A1 WO 2014094542 A1 WO2014094542 A1 WO 2014094542A1 CN 2013088487 W CN2013088487 W CN 2013088487W WO 2014094542 A1 WO2014094542 A1 WO 2014094542A1
Authority
WO
WIPO (PCT)
Prior art keywords
conference
authentication
network
level
network conference
Prior art date
Application number
PCT/CN2013/088487
Other languages
French (fr)
Chinese (zh)
Inventor
谢静宇
Original Assignee
苏州亿倍信息技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 苏州亿倍信息技术有限公司 filed Critical 苏州亿倍信息技术有限公司
Publication of WO2014094542A1 publication Critical patent/WO2014094542A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/16Arrangements for providing special services to substations
    • H04L12/18Arrangements for providing special services to substations for broadcast or conference, e.g. multicast
    • H04L12/1813Arrangements for providing special services to substations for broadcast or conference, e.g. multicast for computer conferences, e.g. chat rooms
    • H04L12/1822Conducting the conference, e.g. admission, detection, selection or grouping of participants, correlating users to one or more conference sessions, prioritising transmission
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security

Definitions

  • the present invention belongs to the field of communications, and in particular, to a method and system for network conference authentication. Background technique
  • the present invention provides a method and system for network conference authentication to solve the above problems.
  • the invention provides a method for network conference authentication.
  • the method includes the following steps: The conference member sends a network conference login request to the network conference server through the corresponding client, where the network conference login request carries the conference member information and the conference confidentiality information of the conference; the network conference server receives the conference member to send After the web conference login request, the conference member level and the authentication method comparison table are used to determine the authentication mode corresponding to the conference member; the conference member authenticates according to the authentication mode and then enters the corresponding confidential network conference; when the network conference is switched, the conference member passes the corresponding
  • the client sends a network conference switching request to the policy selection server and the network conference server, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference switching request, and notifies the network conference server of the authentication switching policy, and the network conference The server notifies the conference member of the target network conference to perform the corresponding authentication according to the authentication switching policy, where the network conference switching request carries the conference of the target network conference.
  • the invention also provides a system for network conference authentication, which comprises a client, a web conference server and a policy selection server.
  • the client connects to the web conference server and the policy selection server, and the web conference server connects to the policy selection server.
  • the conference member initiates a network conference request to the network conference server through the corresponding client, where the network conference request carries the conference member information and the conference confidentiality information of the conference.
  • the network conference server determines the authentication mode corresponding to the conference member according to the conference member level and the authentication mode comparison table. After the conference members are authenticated according to the authentication method, they enter the corresponding confidential network conference.
  • the conference member When the network conference is switched, the conference member sends a network conference handover request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference handover request, and The authentication switching policy notifies the network conference server, and the network conference server notifies the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy, where the network conference switching request carries the conference member information of the target network conference and the target network conference. Confidence level information.
  • the network conference server determines the authentication method corresponding to the conference member according to the conference member level and the authentication mode comparison table. .
  • the conference member sends a network conference handover request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference handover request.
  • the network conference server notifies the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy.
  • FIG. 1 is a flow chart showing a method for network conference authentication according to a preferred embodiment of the present invention
  • FIG. 2 is a schematic diagram of a system for network conference authentication provided in accordance with a preferred embodiment of the present invention. detailed description
  • FIG. 1 is a flow chart of a method of network conference authentication provided in accordance with a preferred embodiment of the present invention. As shown in FIG. 1, the method for network conference authentication provided by the preferred embodiment of the present invention includes steps 101-104.
  • the conference member sends a network conference login request to the network conference server through the corresponding client, where the network conference login request carries the conference member information and the conference confidentiality information of the conference.
  • the conference member information includes, for example, conference member level information.
  • the conference member information includes, for example, a conference member account number, an identity card number, and the like.
  • the network conference server After the network conference server receives the network conference login request sent by the conference member, the network conference server determines the authentication mode corresponding to the conference member according to the conference member level and the authentication mode comparison table.
  • the web conference server stores a conference member level and an authentication mode comparison table, and the comparison table is as shown in the following table.
  • the setting of the conference member level can be set as needed, and the present invention is not limited thereto.
  • the level of the authentication method is from high to low: authentication method 1, authentication method 2, authentication method 3, and authentication method 4.
  • the authentication method 4 is, for example, password authentication
  • the authentication method 3 is, for example, fingerprint authentication
  • the authentication method 2 is, for example, fingerprint + password authentication
  • the authentication method 1 is, for example, password + fingerprint + signature authentication.
  • the present invention is not limited thereto.
  • the network conference server resolves the network conference login request to obtain the conference member level of the conference member A, for example, a ministerial level, and the network conference server is configured according to the The conference member level and authentication method comparison table can determine that the authentication mode of conference member A is authentication mode 2 (for example, fingerprint + password authentication).
  • authentication mode 2 for example, fingerprint + password authentication
  • Step 103 After the conference member performs authentication according to the authentication mode, the member joins the network conference of the corresponding secret level. Specifically, after the network conference server determines the authentication mode corresponding to the conference member, the conference member is notified to perform the authentication according to the corresponding authentication mode, and after the authentication is passed, the network conference of the corresponding secret level is entered.
  • Step 104 When the network conference is switched, the conference member sends a network conference handover request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the target according to the received network conference handover request. Notifying the conference confidentiality and the authentication mode of the network conference, and notifying the network conference server of the authentication switching policy, the network conference server notifying the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy, where The network conference switching request carries the conference member information of the target network conference and the target network conference confidentiality information.
  • the policy selection server stores a conference confidentiality level and an authentication mode comparison table, and the comparison table is as shown in the following table.
  • the setting of the conference confidentiality level can be set as needed, and the present invention is not limited thereto.
  • the level of the authentication method is from high to low: authentication method 1, authentication method 2, authentication method 3, and authentication method 4.
  • the authentication mode in the above table is the same as the authentication mode in the conference member level and the authentication mode comparison table stored in the network conference server, for example.
  • the authentication switching policy is: if the level of the authentication mode corresponding to the conference member level of the conference member is lower than the level of the authentication mode corresponding to the target network conference, the conference member participates in the target network. The conference is re-authenticated by using the authentication mode corresponding to the target network conference. If the level of the authentication mode corresponding to the conference member level of the conference member is equal to or higher than the level of the authentication mode corresponding to the target network conference, the conference is Members directly enter the target network conference.
  • the conference member A (the conference member level is, for example, the section level) is currently participating in the web conference P, and the conference secret level of the network conference P is an internal public conference. If the conference member A needs to switch the network conference P to participate in the network conference S, at this time, if the conference member A sends a network conference switching request to the policy selection server and the network conference server through the corresponding client.
  • the web conference S is, for example, an internal conference or a sub conference in the web conference P.
  • the present invention is not limited thereto.
  • the network conference switching request carries the conference member information and the confidentiality information (for example, the confidential conference) of the target network conference (ie, the network conference S).
  • the policy selection server determines the authentication mode of the network conference S according to the received conference confidentiality level and the authentication mode comparison table according to the received network conference switching request.
  • the authentication method of the network conference S (the conference secret level is a confidential conference) is determined, for example, as the authentication method 2 (for example, fingerprint + password authentication).
  • the policy selection server notifies the network conference server of the confidentiality level, the authentication mode, and the authentication switching policy of the network conference S, and the network conference server notifies the conference member of the network conference S to perform corresponding authentication according to the received information.
  • the level of the authentication method corresponding to the conference member level (the chief level) of the conference member A (the authentication method 3) is lower than the level of the authentication method corresponding to the target network conference (the network conference S).
  • Method 2 Therefore, the conference member A participates in the network conference S and uses the authentication method corresponding to the network conference S (authentication method 2) to re-authenticate.
  • the conference member B (the conference member level is, for example, the general manager level) also participates in the network conference S
  • the level of the authentication method corresponding to the conference member level of the conference member B (authentication method 1) is higher than that corresponding to the network conference S.
  • the level of the authentication method (authentication method 2) therefore, the conference member B can directly enter the network conference S.
  • the network conference server notifies the conference member A to re-authenticate according to the authentication method 2, and notifies the conference member B to directly enter the conference.
  • the system for network conference authentication provided by the preferred embodiment of the present invention includes a client 10, a web conference server 12, and a policy selection server 14.
  • the client 10 connects to the web conference server 12 and the policy selection server 14, and the web conference server 12 connects to the policy selection server 14.
  • the conference member sends a network conference login request to the network conference server 12 through the corresponding client 10.
  • the network conference login request carries the conference member information and the conference confidentiality information of the conference.
  • the network conference server 12 determines the authentication mode corresponding to the conference member according to the conference member level and the authentication mode comparison table. After the conference members authenticate according to the authentication method, they enter the network of the corresponding secret level. Meeting.
  • the conference member sends a network conference handover request to the policy selection server 14 and the network conference server 12 through the corresponding client 10.
  • the policy selection server 14 determines the conference confidentiality level and the authentication of the target network conference according to the received network conference handover request.
  • the method of notifying the network conference server 12 of the authentication switching policy the network conference server 12 notifying the conference member of the target network conference according to the authentication switching policy, wherein the network conference switching request carries the conference member information of the target network conference, Target network conference level information.
  • the network conference server determines the conference member according to the conference member level and the authentication mode comparison table. The way of certification.
  • the conference member sends a network conference switching request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference switching request. And notifying the network conference server of the authentication switching policy, and the network conference server notifies the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy.
  • the conference members are provided with a personalized authentication method, but also the conference member authentication when the network conference is switched, thereby ensuring the security of the conference members to log in to the network conference.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Multimedia (AREA)
  • Telephonic Communication Services (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Provided in the present invention are a method and system for web conference authentication. The method comprises the following steps: a conference member transmits a web conference login request to a web conference server via a corresponding client; when the web conference login request transmitted by the web conference member is received by the web conference server, same determines an authentication mode corresponding to the conference member on the basis of a comparison table of conference member levels and authentication modes; the conference member authenticates according to the authentication mode then enters a web conference of a corresponding security level; when switching over web conferences, the conference member transmits a web conference switchover request to a policy selection server and to the web conference server via the corresponding client, the policy selection server determines, on the basis of the web conference switchover request received thereby, the conference security level and authentication mode of a destination web conference, and notifies the web conference server of an authentication switchover policy, and the web conference server notifies, on the basis of the authentication switchover policy, the conference member of the destination web conference to authenticate correspondingly.

Description

一种网络会议认证的方法及系统 技术领域  Method and system for network conference authentication
本发明属于通信领域, 尤其涉及一种网络会议认证的方法及系统。 背景技术  The present invention belongs to the field of communications, and in particular, to a method and system for network conference authentication. Background technique
随着网络技术的快速发展, 人们的个性信息越来越容易被盗取。 现在人们往往通过双重 甚至多重的认证方法来保障个人信息的安全性。 然而, 这种双重甚至多重的方法往往是固定 的, 也容易被针对而被盗取个人信息。 发明内容  With the rapid development of network technology, people's personalized information is more and more easily stolen. People often use double or even multiple authentication methods to protect the security of personal information. However, this double or even multiple approach is often fixed and easily targeted and stolen. Summary of the invention
本发明提供一种网络会议认证的方法及系统, 以解决上述问题。  The present invention provides a method and system for network conference authentication to solve the above problems.
本发明提供一种网络会议认证的方法。 上述方法包括以下步骤: 会议成员通过对应的客 户端向网络会议服务器发送网络会议登录请求, 其中, 网络会议登录请求中携带了参加会议 的会议成员信息、会议密级信息; 网络会议服务器接收会议成员发送的网络会议登录请求后, 根据会议成员级别及认证方式对照表, 确定会议成员对应的认证方式; 会议成员按照认证方 式进行认证后进入相应密级的网络会议; 网络会议切换时, 会议成员通过对应的客户端向策 略选择服务器及网络会议服务器发送网络会议切换请求, 策略选择服务器根据接收的网络会 议切换请求, 确定目标网络会议的会议密级及认证方式, 并将认证切换策略通知网络会议服 务器, 网络会议服务器根据认证切换策略通知目标网络会议的会议成员进行相应的认证, 其 中, 网络会议切换请求中携带了目标网络会议的会议成员信息、 目标网络会议密级信息。  The invention provides a method for network conference authentication. The method includes the following steps: The conference member sends a network conference login request to the network conference server through the corresponding client, where the network conference login request carries the conference member information and the conference confidentiality information of the conference; the network conference server receives the conference member to send After the web conference login request, the conference member level and the authentication method comparison table are used to determine the authentication mode corresponding to the conference member; the conference member authenticates according to the authentication mode and then enters the corresponding confidential network conference; when the network conference is switched, the conference member passes the corresponding The client sends a network conference switching request to the policy selection server and the network conference server, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference switching request, and notifies the network conference server of the authentication switching policy, and the network conference The server notifies the conference member of the target network conference to perform the corresponding authentication according to the authentication switching policy, where the network conference switching request carries the conference of the target network conference. Member information, target network conference confidential level information.
本发明还提供一种网络会议认证的系统, 包括客户端、 网络会议服务器及策略选择服务 器。 客户端连接网络会议服务器及策略选择服务器, 网络会议服务器连接策略选择服务器。 会议成员通过对应的客户端向网络会议服务器发起网络会议请求, 其中, 网络会议请求中携 带了参加会议的会议成员信息、 会议密级信息。 网络会议服务器接收会议成员发送的网络会 议登录请求后, 根据会议成员级别及认证方式对照表, 确定会议成员对应的认证方式。 会议 成员按照认证方式进行认证后进入相应密级的网络会议。 网络会议切换时, 会议成员通过对 应的客户端向策略选择服务器及网络会议服务器发送网络会议切换请求, 策略选择服务器根 据接收的网络会议切换请求, 确定目标网络会议的会议密级及认证方式, 并将认证切换策略 通知网络会议服务器, 网络会议服务器根据认证切换策略通知目标网络会议的会议成员进行 相应的认证, 其中, 网络会议切换请求中携带了目标网络会议的会议成员信息、 目标网络会 议密级信息。 The invention also provides a system for network conference authentication, which comprises a client, a web conference server and a policy selection server. The client connects to the web conference server and the policy selection server, and the web conference server connects to the policy selection server. The conference member initiates a network conference request to the network conference server through the corresponding client, where the network conference request carries the conference member information and the conference confidentiality information of the conference. After receiving the network conference login request sent by the conference member, the network conference server determines the authentication mode corresponding to the conference member according to the conference member level and the authentication mode comparison table. After the conference members are authenticated according to the authentication method, they enter the corresponding confidential network conference. When the network conference is switched, the conference member sends a network conference handover request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference handover request, and The authentication switching policy notifies the network conference server, and the network conference server notifies the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy, where the network conference switching request carries the conference member information of the target network conference and the target network conference. Confidence level information.
相较于先前技术, 根据本发明提供的网络会议认证的方法及系统, 网络会议服务器接收 会议成员发送的网络会议登录请求后, 根据会议成员级别及认证方式对照表, 确定会议成员 对应的认证方式。 此外, 网络会议切换时, 会议成员通过对应的客户端向策略选择服务器及 网络会议服务器发送网络会议切换请求, 策略选择服务器根据接收的网络会议切换请求, 确 定目标网络会议的会议密级及认证方式, 并将认证切换策略通知网络会议服务器, 网络会议 服务器根据认证切换策略通知目标网络会议的会议成员进行相应的认证。 如此, 不仅为会议 成员提供个性化的认证方式, 而且实现了网络会议切换时的会议成员认证, 从而确保了会议 成员登录网络会议的安全性。 附图说明  Compared with the prior art, according to the method and system for network conference authentication provided by the present invention, after receiving the network conference login request sent by the conference member, the network conference server determines the authentication method corresponding to the conference member according to the conference member level and the authentication mode comparison table. . In addition, when the network conference is switched, the conference member sends a network conference handover request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference handover request. And notifying the network conference server of the authentication switching policy, and the network conference server notifies the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy. In this way, not only the conference members are provided with a personalized authentication method, but also the conference member authentication when the network conference is switched, thereby ensuring the security of the conference members logging in to the network conference. DRAWINGS
此处所说明的附图用来提供对本发明的进一步理解, 构成本申请的一部分, 本发明的示 意性实施例及其说明用于解释本发明, 并不构成对本发明的不当限定。 在附图中:  The drawings are intended to provide a further understanding of the present invention, and are intended to be a part of the present invention, and the description of the present invention is not intended to limit the invention. In the drawing:
图 1所示为根据本发明的较佳实施例提供的网络会议认证的方法的流程图;  1 is a flow chart showing a method for network conference authentication according to a preferred embodiment of the present invention;
图 2所示为根据本发明的较佳实施例提供的网络会议认证的系统的示意图。 具体实施方式  2 is a schematic diagram of a system for network conference authentication provided in accordance with a preferred embodiment of the present invention. detailed description
下文中将参考附图并结合实施例来详细说明本发明。需要说明的是, 在不冲突的情况下, 本申请中的实施例及实施例中的特征可以相互组合。  The invention will be described in detail below with reference to the drawings in conjunction with the embodiments. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict.
图 1所示为根据本发明的较佳实施例提供的网络会议认证的方法的流程图。如图 1所示, 本发明的较佳实施例提供的网络会议认证的方法包括步骤 101~104。  1 is a flow chart of a method of network conference authentication provided in accordance with a preferred embodiment of the present invention. As shown in FIG. 1, the method for network conference authentication provided by the preferred embodiment of the present invention includes steps 101-104.
于步骤 101, 会议成员通过对应的客户端向网络会议服务器发送网络会议登录请求, 其 中, 所述网络会议登录请求中携带了参加会议的会议成员信息、 会议密级信息。 于此, 会议 成员信息例如包括会议成员级别信息。 然而, 本发明并不限定于此。 于其他实施例中, 会议 成员信息例如还包括会议成员账号、 身份证号码等。  In step 101, the conference member sends a network conference login request to the network conference server through the corresponding client, where the network conference login request carries the conference member information and the conference confidentiality information of the conference. Here, the conference member information includes, for example, conference member level information. However, the invention is not limited thereto. In other embodiments, the conference member information includes, for example, a conference member account number, an identity card number, and the like.
于步骤 102, 所述网络会议服务器接收所述会议成员发送的网络会议登录请求后, 根据 会议成员级别及认证方式对照表, 确定所述会议成员对应的认证方式。  After the network conference server receives the network conference login request sent by the conference member, the network conference server determines the authentication mode corresponding to the conference member according to the conference member level and the authentication mode comparison table.
于此, 网络会议服务器存储会议成员级别及认证方式对照表, 所述对照表例如下表所示。 其中, 会议成员级别的设置可根据需要进行设定, 本发明对此并不限定。  Here, the web conference server stores a conference member level and an authentication mode comparison table, and the comparison table is as shown in the following table. The setting of the conference member level can be set as needed, and the present invention is not limited thereto.
会议成员级别 认证方式  Conference member level
总经理级别 认证方式一 部长级别 认证方式二 General manager level certification method Ministerial level certification method 2
科长级别 认证方式三  Section chief certification method three
科员级别 认证方式四  Clerk level certification method four
于本实施例中, 会议成员级别越高, 认证方式的等级越高。 因此, 于上表中, 认证方式 的等级由高至低依次为: 认证方式一、 认证方式二、 认证方式三、 认证方式四。 举例而言, 认证方式四例如为密码认证,认证方式三例如为指纹认证,认证方式二例如为指纹 +密码认证, 认证方式一例如为密码 +指纹 +签名认证。 然而, 本发明对此并不限定。 此外, 举例而言, 若 网络会议服务器接收会议成员 A发送的网络会议登录请求后, 网络会议服务器解析网络会议 登录请求获得会议成员 A的会议成员级别例如为部长级别, 则网络会议服务器根据存储的会 议成员级别及认证方式对照表可确定会议成员 A 的认证方式为认证方式二 (例如为指纹 +密 码认证)。  In this embodiment, the higher the level of the conference member, the higher the level of the authentication method. Therefore, in the above table, the level of the authentication method is from high to low: authentication method 1, authentication method 2, authentication method 3, and authentication method 4. For example, the authentication method 4 is, for example, password authentication, and the authentication method 3 is, for example, fingerprint authentication, and the authentication method 2 is, for example, fingerprint + password authentication, and the authentication method 1 is, for example, password + fingerprint + signature authentication. However, the present invention is not limited thereto. In addition, for example, if the network conference server receives the network conference login request sent by the conference member A, the network conference server resolves the network conference login request to obtain the conference member level of the conference member A, for example, a ministerial level, and the network conference server is configured according to the The conference member level and authentication method comparison table can determine that the authentication mode of conference member A is authentication mode 2 (for example, fingerprint + password authentication).
步骤 103, 所述会议成员按照所述认证方式进行认证后进入相应密级的网络会议。 具体 而言, 网络会议服务器确定会议成员对应的认证方式后, 通知会议成员按照相应的认证方式 进行认证, 并在认证通过后进入相应密级的网络会议。  Step 103: After the conference member performs authentication according to the authentication mode, the member joins the network conference of the corresponding secret level. Specifically, after the network conference server determines the authentication mode corresponding to the conference member, the conference member is notified to perform the authentication according to the corresponding authentication mode, and after the authentication is passed, the network conference of the corresponding secret level is entered.
步骤 104, 网络会议切换时, 所述会议成员通过对应的客户端向策略选择服务器及所述 网络会议服务器发送网络会议切换请求, 所述策略选择服务器根据接收的所述网络会议切换 请求, 确定目标网络会议的会议密级及认证方式, 并将认证切换策略通知所述网络会议服务 器, 所述网络会议服务器根据所述认证切换策略通知所述目标网络会议的会议成员进行相应 的认证, 其中, 所述网络会议切换请求中携带了目标网络会议的会议成员信息、 目标网络会 议密级信息。  Step 104: When the network conference is switched, the conference member sends a network conference handover request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the target according to the received network conference handover request. Notifying the conference confidentiality and the authentication mode of the network conference, and notifying the network conference server of the authentication switching policy, the network conference server notifying the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy, where The network conference switching request carries the conference member information of the target network conference and the target network conference confidentiality information.
于本实施例中, 策略选择服务器存储会议密级与认证方式对照表, 所述对照表例如下表 所示。 其中, 会议密级的设置可根据需要进行设定, 本发明对此并不限定。  In this embodiment, the policy selection server stores a conference confidentiality level and an authentication mode comparison table, and the comparison table is as shown in the following table. The setting of the conference confidentiality level can be set as needed, and the present invention is not limited thereto.
Figure imgf000005_0001
Figure imgf000005_0001
于本实施例中, 会议密级的级别越高, 认证方式的等级越高。 因此, 于上表中, 认证方 式的等级由高至低依次为: 认证方式一、 认证方式二、 认证方式三、 认证方式四。 此外, 上 表中的认证方式与网络会议服务器存储的会议成员级别及认证方式对照表中的认证方式例如 分别对应相同。 于本实施例中, 认证切换策略为: 若所述会议成员所属会议成员级别对应的认证方式的 等级低于所述目标网络会议对应的认证方式的等级, 则所述会议成员参加所述目标网络会议 时采用所述目标网络会议对应的认证方式重新认证, 若所述会议成员所属会议成员级别对应 的认证方式的等级等于或高于所述目标网络会议对应的认证方式的等级, 则所述会议成员直 接进入所述目标网络会议。 In this embodiment, the higher the level of the conference confidentiality level, the higher the level of the authentication method. Therefore, in the above table, the level of the authentication method is from high to low: authentication method 1, authentication method 2, authentication method 3, and authentication method 4. In addition, the authentication mode in the above table is the same as the authentication mode in the conference member level and the authentication mode comparison table stored in the network conference server, for example. In this embodiment, the authentication switching policy is: if the level of the authentication mode corresponding to the conference member level of the conference member is lower than the level of the authentication mode corresponding to the target network conference, the conference member participates in the target network. The conference is re-authenticated by using the authentication mode corresponding to the target network conference. If the level of the authentication mode corresponding to the conference member level of the conference member is equal to or higher than the level of the authentication mode corresponding to the target network conference, the conference is Members directly enter the target network conference.
举例而言, 会议成员 A (会议成员级别例如为科长级别) 当前参加网络会议 P, 且网络 会议 P的会议密级为内部公开会议。若会议成员 A需要将网络会议 P切换为参加网络会议 S, 此时, 若会议成员 A通过对应的客户端向策略选择服务器及网络会议服务器发送网络会议切 换请求。 其中, 网络会议 S例如为网络会议 P中的内部会议或子会议。 然而, 本发明对此并 不限定。  For example, the conference member A (the conference member level is, for example, the section level) is currently participating in the web conference P, and the conference secret level of the network conference P is an internal public conference. If the conference member A needs to switch the network conference P to participate in the network conference S, at this time, if the conference member A sends a network conference switching request to the policy selection server and the network conference server through the corresponding client. The web conference S is, for example, an internal conference or a sub conference in the web conference P. However, the present invention is not limited thereto.
于此, 网络会议切换请求中携带了目标网络会议 (即, 网络会议 S) 的会议成员信息及 密级信息(例如, 机密会议)。 策略选择服务器根据接收的网络会议切换请求, 参照其存储的 会议密级与认证方式对照表确定网络会议 S的认证方式。 于此, 网络会议 S (会议密级为机 密会议) 的认证方式例如确定为认证方式二 (例如, 指纹 +密码认证)。 此外, 策略选择服务 器将网络会议 S的密级、 认证方式及认证切换策略通知网络会议服务器, 网络会议服务器根 据接收的上述信息通知网络会议 S的会议成员进行相应的认证。 于此, 根据认证切换策略可 知, 会议成员 A所属会议成员级别 (科长级别) 对应的认证方式的等级 (认证方式三) 低于 目标网络会议(网络会议 S)对应的认证方式的等级(认证方式二), 因此, 会议成员 A参加 网络会议 S采用网络会议 S对应的认证方式 (认证方式二) 重新认证。 此外, 若会议成员 B (会议成员级别例如为总经理级别) 也参加网络会议 S, 此时, 会议成员 B所属会议成员级 别对应的认证方式的等级 (认证方式一) 高于网络会议 S对应的认证方式的等级 (认证方式 二), 因此, 会议成员 B可直接进入网络会议 S。 此时, 网络会议服务器会通知会议成员 A 按照认证方式二的方式重新进行认证, 并通知会议成员 B直接进入会议。  Here, the network conference switching request carries the conference member information and the confidentiality information (for example, the confidential conference) of the target network conference (ie, the network conference S). The policy selection server determines the authentication mode of the network conference S according to the received conference confidentiality level and the authentication mode comparison table according to the received network conference switching request. Here, the authentication method of the network conference S (the conference secret level is a confidential conference) is determined, for example, as the authentication method 2 (for example, fingerprint + password authentication). In addition, the policy selection server notifies the network conference server of the confidentiality level, the authentication mode, and the authentication switching policy of the network conference S, and the network conference server notifies the conference member of the network conference S to perform corresponding authentication according to the received information. According to the authentication switching policy, the level of the authentication method corresponding to the conference member level (the chief level) of the conference member A (the authentication method 3) is lower than the level of the authentication method corresponding to the target network conference (the network conference S). Method 2) Therefore, the conference member A participates in the network conference S and uses the authentication method corresponding to the network conference S (authentication method 2) to re-authenticate. In addition, if the conference member B (the conference member level is, for example, the general manager level) also participates in the network conference S, the level of the authentication method corresponding to the conference member level of the conference member B (authentication method 1) is higher than that corresponding to the network conference S. The level of the authentication method (authentication method 2), therefore, the conference member B can directly enter the network conference S. At this time, the network conference server notifies the conference member A to re-authenticate according to the authentication method 2, and notifies the conference member B to directly enter the conference.
图 2所示为根据本发明的较佳实施例提供的网络会议认证的系统的示意图。如图 2所示, 本发明的较佳实施例提供的网络会议认证的系统包括客户端 10、 网络会议服务器 12及策略 选择服务器 14。 客户端 10连接网络会议服务器 12及策略选择服务器 14, 网络会议服务器 12连接策略选择服务器 14。  2 is a schematic diagram of a system for network conference authentication provided in accordance with a preferred embodiment of the present invention. As shown in FIG. 2, the system for network conference authentication provided by the preferred embodiment of the present invention includes a client 10, a web conference server 12, and a policy selection server 14. The client 10 connects to the web conference server 12 and the policy selection server 14, and the web conference server 12 connects to the policy selection server 14.
于本实施例中, 会议成员通过对应的客户端 10向网络会议服务器 12发送网络会议登录 请求, 其中, 网络会议登录请求中携带了参加会议的会议成员信息、 会议密级信息。 网络会 议服务器 12接收会议成员发送的网络会议登录请求后, 根据会议成员级别及认证方式对照 表, 确定会议成员对应的认证方式。 会议成员按照认证方式进行认证后进入相应密级的网络 会议。 网络会议切换时, 会议成员通过对应的客户端 10向策略选择服务器 14及网络会议服 务器 12发送网络会议切换请求, 策略选择服务器 14根据接收的网络会议切换请求, 确定目 标网络会议的会议密级及认证方式, 并将认证切换策略通知网络会议服务器 12, 网络会议服 务器 12根据认证切换策略通知目标网络会议的会议成员进行相应的认证, 其中, 网络会议切 换请求中携带了目标网络会议的会议成员信息、 目标网络会议密级信息。 关于上述系统具体 操作过程同上述方法所述, 故于此不再赘述。 In this embodiment, the conference member sends a network conference login request to the network conference server 12 through the corresponding client 10. The network conference login request carries the conference member information and the conference confidentiality information of the conference. After receiving the network conference login request sent by the conference member, the network conference server 12 determines the authentication mode corresponding to the conference member according to the conference member level and the authentication mode comparison table. After the conference members authenticate according to the authentication method, they enter the network of the corresponding secret level. Meeting. When the network conference is switched, the conference member sends a network conference handover request to the policy selection server 14 and the network conference server 12 through the corresponding client 10. The policy selection server 14 determines the conference confidentiality level and the authentication of the target network conference according to the received network conference handover request. The method of notifying the network conference server 12 of the authentication switching policy, the network conference server 12 notifying the conference member of the target network conference according to the authentication switching policy, wherein the network conference switching request carries the conference member information of the target network conference, Target network conference level information. The specific operation process of the above system is the same as that described above, and thus will not be described herein.
综上所述, 根据本发明较佳实施例提供的网络会议认证的方法及系统, 网络会议服务器 接收会议成员发送的网络会议登录请求后, 根据会议成员级别及认证方式对照表, 确定会议 成员对应的认证方式。 此外, 网络会议切换时, 会议成员通过对应的客户端向策略选择服务 器及网络会议服务器发送网络会议切换请求,策略选择服务器根据接收的网络会议切换请求, 确定目标网络会议的会议密级及认证方式, 并将认证切换策略通知网络会议服务器, 网络会 议服务器根据认证切换策略通知目标网络会议的会议成员进行相应的认证。 如此, 不仅为会 议成员提供个性化的认证方式, 而且实现了网络会议切换时的会议成员认证, 从而确保了会 议成员登录网络会议的安全性。  According to the method and system for network conference authentication provided by the preferred embodiment of the present invention, after receiving the network conference login request sent by the conference member, the network conference server determines the conference member according to the conference member level and the authentication mode comparison table. The way of certification. In addition, when the network conference is switched, the conference member sends a network conference switching request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the conference confidentiality level and the authentication mode of the target network conference according to the received network conference switching request. And notifying the network conference server of the authentication switching policy, and the network conference server notifies the conference member of the target network conference to perform corresponding authentication according to the authentication switching policy. In this way, not only the conference members are provided with a personalized authentication method, but also the conference member authentication when the network conference is switched, thereby ensuring the security of the conference members to log in to the network conference.
以上所述仅为本发明的优选实施例而已, 并不用于限制本发明, 对于本领域的技术人员 来说, 本发明可以有各种更改和变化。 凡在本发明的精神和原则之内, 所作的任何修改、 等 同替换、 改进等, 均应包含在本发明的保护范围之内。  The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc., made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

WO 2014/094542 权 利 要 求 书 PCT/CN2013/088487 WO 2014/094542 Claims PCT/CN2013/088487
1、 一种网络会议认证的方法, 其特征在于, 包括以下步骤: 1. A method for network conference authentication, characterized by including the following steps:
会议成员通过对应的客户端向网络会议服务器发送网络会议登录请求, 其中, 所述网络 会议登录请求中携带了参加会议的会议成员信息、 会议密级信息; The conference members send a network conference login request to the network conference server through the corresponding client, where the network conference login request carries the conference member information participating in the conference and the conference confidentiality level information;
所述网络会议服务器接收所述会议成员发送的网络会议登录请求后, 根据会议成员级别 及认证方式对照表, 确定所述会议成员对应的认证方式; After receiving the network conference login request sent by the conference member, the network conference server determines the authentication method corresponding to the conference member according to the conference member level and authentication method comparison table;
所述会议成员按照所述认证方式进行认证后进入相应密级的网络会议; The conference members are authenticated according to the authentication method and then enter the network conference of the corresponding confidentiality level;
网络会议切换时, 所述会议成员通过对应的客户端向策略选择服务器及所述网络会议服 务器发送网络会议切换请求, 所述策略选择服务器根据接收的所述网络会议切换请求, 确定 目标网络会议的会议密级及认证方式, 并将认证切换策略通知所述网络会议服务器, 所述网 络会议服务器根据所述认证切换策略通知所述目标网络会议的会议成员进行相应的认证, 其 中, 所述网络会议切换请求中携带了目标网络会议的会议成员信息、 目标网络会议密级信息。 When switching a network conference, the conference members send a network conference switching request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the target network conference based on the received network conference switching request. Conference confidentiality level and authentication method, and notify the network conference server of the authentication switching strategy. The network conference server notifies the conference members of the target network conference to perform corresponding authentication according to the authentication switching strategy, wherein, the network conference switching The request carries the conference member information of the target network conference and the confidentiality level information of the target network conference.
2、根据权利要求 1所述的方法, 其特征在于, 所述网络会议服务器存储会议成员级别与 认证方式对照表。 2. The method according to claim 1, characterized in that the network conference server stores a comparison table between conference member levels and authentication methods.
3、根据权利要求 1所述的方法, 其特征在于, 所述策略选择服务器存储会议密级与认证 方式对照表。 3. The method according to claim 1, characterized in that the policy selection server stores a comparison table between conference confidentiality levels and authentication methods.
4、 根据权利要求 1所述的方法, 其特征在于, 所述认证切换策略为: 若所述会议成员所 属会议成员级别对应的认证方式的等级低于所述目标网络会议对应的认证方式的等级, 则所 述会议成员参加所述目标网络会议时采用所述目标网络会议对应的认证方式重新认证, 若所 述会议成员所属会议成员级别对应的认证方式的等级等于或高于所述目标网络会议对应的认 证方式的等级, 则所述会议成员直接进入所述目标网络会议。 4. The method according to claim 1, wherein the authentication switching strategy is: if the level of the authentication method corresponding to the conference member level to which the conference member belongs is lower than the level of the authentication method corresponding to the target network conference , then when the conference member participates in the target network conference, the authentication method corresponding to the target network conference is used for re-authentication, if the level of the authentication method corresponding to the conference member level to which the conference member belongs is equal to or higher than the target network conference According to the level of the corresponding authentication method, the conference members directly enter the target network conference.
5、 根据权利要求 1所述的方法, 其特征在于, 所述会议成员级别越高, 所述认证方式的 等级越高。 5. The method according to claim 1, characterized in that the higher the level of the conference member, the higher the level of the authentication method.
6、 根据权利要求 1所述的方法, 其特征在于, 所述会议密级的级别越高, 所述认证方式 的等级越高。 6. The method according to claim 1, characterized in that the higher the level of the conference confidentiality level, the higher the level of the authentication method.
7、 一种网络会议认证的系统, 其特征在于, 包括客户端、 网络会议服务器及策略选择服 务器, 所述客户端连接所述网络会议服务器及所述策略选择服务器, 所述网络会议服务器连 接所述策略选择服务器, 7. A network conference authentication system, characterized in that it includes a client, a network conference server and a policy selection server, the client is connected to the network conference server and the policy selection server, and the network conference server is connected to all The above strategy selects the server,
会议成员通过对应的客户端向网络会议服务器发送网络会议登录请求, 其中, 所述网络 会议登录请求中携带了参加会议的会议成员信息、 会议密级信息, The conference members send a network conference login request to the network conference server through the corresponding client, where the network conference login request carries the conference member information and conference confidentiality information participating in the conference,
所述网络会议服务器接收所述会议成员发送的网络会议登录请求后, 根据会议成员级别 及认证方式对照表, 确定所述会议成员对应的认证方式, 所述会议成员按照所述认证方式进行认证后进入相应密级的网络会议, After receiving the network conference login request sent by the conference member, the network conference server determines the authentication method corresponding to the conference member according to the conference member level and authentication method comparison table, The conference members enter the network conference of the corresponding confidentiality level after being authenticated according to the authentication method.
网络会议切换时, 所述会议成员通过对应的客户端向策略选择服务器及所述网络会议服 务器发送网络会议切换请求, 所述策略选择服务器根据接收的所述网络会议切换请求, 确定 目标网络会议的会议密级及认证方式, 并将认证切换策略通知所述网络会议服务器, 所述网 络会议服务器根据所述认证切换策略通知所述目标网络会议的会议成员进行相应的认证, 其 中, 所述网络会议切换请求中携带了目标网络会议的会议成员信息、 目标网络会议密级信息。 When switching a network conference, the conference members send a network conference switching request to the policy selection server and the network conference server through the corresponding client, and the policy selection server determines the target network conference based on the received network conference switching request. Conference confidentiality level and authentication method, and notify the network conference server of the authentication switching strategy. The network conference server notifies the conference members of the target network conference to perform corresponding authentication according to the authentication switching strategy, wherein, the network conference switching The request carries the conference member information of the target network conference and the confidentiality level information of the target network conference.
8、根据权利要求 7所述的系统, 其特征在于, 所述网络会议服务器存储会议成员级别与 认证方式对照表。 8. The system according to claim 7, characterized in that the network conference server stores a comparison table between conference member levels and authentication methods.
9、根据权利要求 7所述的系统, 其特征在于, 所述策略选择服务器存储会议密级与认证 方式对照表。 9. The system according to claim 7, characterized in that the policy selection server stores a comparison table between conference confidentiality levels and authentication methods.
10、 根据权利要求 7所述的系统, 其特征在于, 所述认证切换策略为: 若所述会议成员 所属会议成员级别对应的认证方式的等级低于所述目标网络会议对应的认证方式的等级, 则 所述会议成员参加所述目标网络会议时采用所述目标网络会议对应的认证方式重新认证, 若 所述会议成员所属会议成员级别对应的认证方式的等级等于或高于所述目标网络会议对应的 认证方式的等级, 则所述会议成员直接进入所述目标网络会议。 10. The system according to claim 7, wherein the authentication switching strategy is: if the level of the authentication method corresponding to the conference member level to which the conference member belongs is lower than the level of the authentication method corresponding to the target network conference , then when the conference member participates in the target network conference, the authentication method corresponding to the target network conference is used for re-authentication, if the level of the authentication method corresponding to the conference member level to which the conference member belongs is equal to or higher than the target network conference According to the level of the corresponding authentication method, the conference members directly enter the target network conference.
PCT/CN2013/088487 2012-12-20 2013-12-04 Method and system for web conference authentication WO2014094542A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210559769.8 2012-12-20
CN2012105597698A CN103051622A (en) 2012-12-20 2012-12-20 Method and system for authenticating network conference

Publications (1)

Publication Number Publication Date
WO2014094542A1 true WO2014094542A1 (en) 2014-06-26

Family

ID=48064121

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/088487 WO2014094542A1 (en) 2012-12-20 2013-12-04 Method and system for web conference authentication

Country Status (2)

Country Link
CN (1) CN103051622A (en)
WO (1) WO2014094542A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103051622A (en) * 2012-12-20 2013-04-17 苏州亿倍信息技术有限公司 Method and system for authenticating network conference
CN105450428A (en) * 2015-12-30 2016-03-30 芜湖乐锐思信息咨询有限公司 Conference network system incorporating social networking site information
CN115001860B (en) * 2022-07-20 2022-11-15 广州市保伦电子有限公司 Safety management system for paperless digital conference

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101986600A (en) * 2009-07-29 2011-03-16 中兴通讯股份有限公司 Multimedia conference authentication joining method and device
CN102316301A (en) * 2010-06-29 2012-01-11 华为终端有限公司 Method, system and device for switching conferences
CN102624536A (en) * 2012-04-17 2012-08-01 苏州阔地网络科技有限公司 Guest inviting method and system for net meeting
CN103051622A (en) * 2012-12-20 2013-04-17 苏州亿倍信息技术有限公司 Method and system for authenticating network conference
CN103051621A (en) * 2012-12-20 2013-04-17 苏州亿倍信息技术有限公司 Method and system for authenticating and processing network conference

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102347929A (en) * 2010-07-28 2012-02-08 阿里巴巴集团控股有限公司 Verification method of user identity and apparatus thereof
CN102457377A (en) * 2011-08-08 2012-05-16 中标软件有限公司 Role-based web remote authentication and authorization method and system thereof

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101986600A (en) * 2009-07-29 2011-03-16 中兴通讯股份有限公司 Multimedia conference authentication joining method and device
CN102316301A (en) * 2010-06-29 2012-01-11 华为终端有限公司 Method, system and device for switching conferences
CN102624536A (en) * 2012-04-17 2012-08-01 苏州阔地网络科技有限公司 Guest inviting method and system for net meeting
CN103051622A (en) * 2012-12-20 2013-04-17 苏州亿倍信息技术有限公司 Method and system for authenticating network conference
CN103051621A (en) * 2012-12-20 2013-04-17 苏州亿倍信息技术有限公司 Method and system for authenticating and processing network conference

Also Published As

Publication number Publication date
CN103051622A (en) 2013-04-17

Similar Documents

Publication Publication Date Title
CN106164922B (en) Self-organizing one-time pairing of remote devices using online audio fingerprinting
US10945127B2 (en) Exclusive preshared key authentication
US8689283B2 (en) Security access control method and system for wired local area network
JP5243593B2 (en) Security link management in dynamic networks
US7587598B2 (en) Interlayer fast authentication or re-authentication for network communication
US9730001B2 (en) Proximity based authentication using bluetooth
US20120260314A1 (en) Uninterrupted virtual private network (vpn) connection service with dynamic policy enforcement
CN101369893A (en) Method for local area network access authentication of casual user
JP2006524005A (en) Technology that provides seamless access at the corporate hotspot for both guest and local users
WO2009094941A1 (en) A method, device and system of id based wireless multi-hop network autentication access
WO2017185450A1 (en) Method and system for authenticating terminal
US9853971B2 (en) Proximity based authentication using bluetooth
JP2005184835A5 (en)
WO2012094841A1 (en) Network access method, apparatus and system
CA2647684A1 (en) Secure wireless guest access
WO2007022731A1 (en) Encryption key negotiation method, system and equipment in the enhanced universal verify frame
WO2015089996A1 (en) Security authentication method and authorization authentication server
CN104869121B (en) A kind of authentication method and device based on 802.1x
WO2011009268A1 (en) Wapi (wlan authentication and privacy infrastructure) -based authentication system and method
JP6699445B2 (en) Information processing apparatus, information processing program, information processing method, and information processing system
WO2014094542A1 (en) Method and system for web conference authentication
WO2022143935A1 (en) Blockchain-based method and system for sdp access control
JP2018505629A (en) User device and method for establishing IOPS
CN103051621A (en) Method and system for authenticating and processing network conference
US20060026433A1 (en) Method and apparatus for minimally onerous and rapid cocktail effect authentication (MORCEAU)

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13865968

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205 DATED 23/11/2015)

122 Ep: pct application non-entry in european phase

Ref document number: 13865968

Country of ref document: EP

Kind code of ref document: A1