CN110377848A - Page access method, apparatus, equipment and computer readable storage medium - Google Patents
Page access method, apparatus, equipment and computer readable storage medium Download PDFInfo
- Publication number
- CN110377848A CN110377848A CN201910543197.6A CN201910543197A CN110377848A CN 110377848 A CN110377848 A CN 110377848A CN 201910543197 A CN201910543197 A CN 201910543197A CN 110377848 A CN110377848 A CN 110377848A
- Authority
- CN
- China
- Prior art keywords
- page
- preset
- link
- access
- target pages
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/955—Retrieval from the web using information identifiers, e.g. uniform resource locators [URL]
- G06F16/9566—URL specific, e.g. using aliases, detecting broken or misspelled links
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06V—IMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
- G06V30/00—Character recognition; Recognising digital ink; Document-oriented image-based pattern recognition
- G06V30/40—Document-oriented image-based pattern recognition
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Databases & Information Systems (AREA)
- Computer Security & Cryptography (AREA)
- Computer Vision & Pattern Recognition (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Data Mining & Analysis (AREA)
- Artificial Intelligence (AREA)
- Computer Hardware Design (AREA)
- Multimedia (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The present invention relates to field of information security technology, disclose a kind of page access method, apparatus, equipment and computer readable storage medium, page access method include: when receiving the page access instruction for the target page based on website links triggering, detect in the website links whether include non-terminal terminal identifier;If including the terminal identifier of non-terminal in the website links, the preset access conditions of the target pages is obtained;Current authentication state is obtained, and whether the preset access conditions is currently met according to authentication state detection;If currently meeting the preset access conditions, the target pages are accessed.Through the invention, so that the workflow management to page access more standardizes, the safety of page access is improved.
Description
Technical field
The present invention relates to field of information security technology more particularly to page access method, apparatus, equipment and computer-readable
Storage medium.
Background technique
In existing digital terminal, shares to enhance the information between digital terminal user, can generally provide one
Sharing interface shares certain webpages.By this function, people can share the webpage oneself browsed to friend.
But for the page of some particular services, for example, the purchase page of a certain online shopping business, needs user to pass through
Crossing a series of certifications can just enter.If a user A enters the purchase page after a series of certifications and passing through, then will
The purchase page is shared with user B (such as by the uniform resource position mark URL of the page, UniformResourceLocator
Address is shared with user B), since existing web page does not do the invasion verification of the illegal page, cause user B can be without recognizing
Process is demonstrate,proved, and directly according to the content of user A sharing, into the purchase page.It goes beyond one's commission caused by this abnormal operation, process
Situations such as entanglement, can reduce system performance, increase security risk.
Summary of the invention
The main purpose of the present invention is to provide a kind of page access method, apparatus, equipment and computer-readable storage mediums
Matter, it is intended to solve in the prior art because of situations such as illegally enter specific webpage and caused by go beyond one's commission, process entanglement, lead to system
The technical issues of reduced performance, security risk increase.
To achieve the above object, the present invention provides a kind of page access method, and the page access method includes following step
It is rapid:
When receiving the page access instruction for the target page based on website links triggering, the network address chain is detected
In connecing whether include non-terminal terminal identifier;
If including the terminal identifier of non-terminal in the website links, the preset access of the target pages is obtained
Condition;
Current authentication state is obtained, and whether the preset access item is currently met according to authentication state detection
Part;
If currently meeting the preset access conditions, the target pages are accessed.
Optionally, the step of preset access conditions for obtaining the target pages includes:
Detect whether the target pages are secure page table;
If the target pages are secure page table, the page iden-tity of the target pages is obtained;
Preset access conditions is obtained from the corresponding flow config table of the page iden-tity.
Optionally, described to detect that the step of whether target pages are secure page table includes:
Picture is crawled from the website links by crawler;
OCR identification is carried out to the picture, obtains recognition result;
It whether detects in the recognition result comprising sensitive vocabulary;
If including sensitive vocabulary in the recognition result, it is determined that the target pages are the illegal page;
If not including sensitive vocabulary in the recognition result, detect in the picture with the presence or absence of human body image;
If human body image is not present in the picture, it is determined that the target pages are secure page table;
If identifying that color is the exposed area of human body complexion in the human body image there are human body image in the picture
Domain;
Calculate accounting of the exposed region in the human body image, and detect the accounting whether be greater than or equal to it is pre-
If threshold value;
If the accounting is greater than or equal to preset threshold, it is determined that the target pages are the illegal page;
If the accounting is less than preset threshold, it is determined that the target pages are secure page table.
Optionally, the preset access conditions are as follows: preset certification link is completed, it is described to obtain current authentication state,
And the step of currently whether meeting the preset access conditions according to authentication state detection, includes:
Based on the preset certification link, current authentication state is obtained, and according to the authentication state, determination has been recognized
Demonstrate,prove link;
Link has been authenticated described in detection and whether the preset certification link is consistent;
If described, to have authenticated link consistent with the preset certification link, it is determined that currently meets the preset access item
If part has authenticated link and the preset certification link is inconsistent described, it is determined that be currently unsatisfactory for the preset access item
Part.
Optionally, current authentication state is obtained described, and whether institute is currently met according to authentication state detection
After the step of stating preset access conditions, further includes:
If being currently unsatisfactory for the preset access conditions, it is redirected to pre-set page.
Optionally, if described be currently unsatisfactory for the preset access conditions, the step of being redirected to pre-set page, includes:
Link has been authenticated and the preset certification link is inconsistent if described, it is determined that target link to be certified;
It is redirected to the corresponding pre-set page of the target link.
Optionally, after described the step of being redirected to the target link corresponding pre-set page, further includes:
When detecting that the target link is in verified status, the target pages are accessed.
In addition, to achieve the above object, the present invention also provides a kind of page access device, the page access device packet
It includes:
First detection module receives the page access instruction for the target page based on website links triggering for working as
When, detect in the website links whether include non-terminal terminal identifier;
Module is obtained, if for, comprising the terminal identifier of non-terminal, obtaining the target in the website links
The preset access conditions of the page;
Second detection module, for obtaining current authentication state, and it is current whether full according to authentication state detection
The foot preset access conditions;
Access modules, if accessing the target pages for currently meeting the preset access conditions.
Optionally, the acquisition module includes:
Safety detection unit, for detecting whether the target pages are secure page table;
Mark acquiring unit obtains the page mark of the target pages if being secure page table for the target pages
Know;
Condition acquiring unit, for obtaining preset access conditions from the corresponding flow config table of the page iden-tity.
Optionally, the safety detection unit includes:
Subelement is crawled, for crawling picture from the website links by crawler;
OCR identifies subelement, for carrying out OCR identification to the picture, obtains recognition result;
Sensitive word detection sub-unit, for whether detecting in the recognition result comprising sensitive vocabulary;
First determines subelement, if for including sensitive vocabulary in the recognition result, it is determined that the target pages are
The illegal page;
Human testing subelement, if detecting in the picture is for not including sensitive vocabulary in the recognition result
It is no that there are human body images;
Second determines subelement, if for human body image to be not present in the picture, it is determined that the target pages are peace
Full page;
Image recognition subelement, if identifying color in the human body image for there are human body images in the picture
For the exposed region of human body complexion;
Computation subunit for calculating accounting of the exposed region in the human body image, and detects the accounting
Whether preset threshold is greater than or equal to;
Third determines subelement, if being greater than or equal to preset threshold for the accounting, it is determined that the target pages are
The illegal page;
4th determines subelement, if being less than preset threshold for the accounting, it is determined that the target pages are security page
Face.
Optionally, second detection module includes:
Link determination unit is authenticated, for obtaining current authentication state, and root based on the preset certification link
According to the authentication state, determination has authenticated link;
State detection unit described has authenticated link and whether the preset certification link is consistent for detecting;
Status determining unit, if to have authenticated link consistent with the preset certification link for described, it is determined that current
Meet the preset access conditions, authenticates link and the preset certification link is inconsistent if described, it is determined that currently not
Meet the preset access conditions.
Optionally, the page access device, further includes:
Redirection module, if being redirected to pre-set page for being currently unsatisfactory for the preset access conditions.
Optionally, the redirection module includes:
Target link determination unit, if having authenticated link and the preset certification link is inconsistent for described, really
Fixed target link to be certified;
Unit is redirected, for being redirected to the corresponding pre-set page of the target link.
Optionally, it is also used in the access modules:
When detecting that the target link is in verified status, the target pages are accessed.
In addition, to achieve the above object, the present invention also provides a kind of page access equipment, the page access equipment packet
It includes: memory, processor and being stored in the page access program that can be run on the memory and on the processor, it is described
Page access program realizes the step of page access method as described above when being executed by the processor.
In addition, to achieve the above object, it is described computer-readable the present invention also provides a kind of computer readable storage medium
Page access program is stored on storage medium, the page access program realizes the page as described above when being executed by processor
The step of access method.
In the present invention, when receiving the page access instruction for the target page based on website links triggering, detection
In the website links whether include non-terminal terminal identifier;If in the website links including the terminal of non-terminal
Identifier then obtains the preset access conditions of the target pages;Current authentication state is obtained, and according to the authentication state
Whether detection currently meets the preset access conditions;If currently meeting the preset access conditions, the page object is accessed
Face.Through the invention, so that the workflow management to page access more standardizes, the safety of page access is improved.
Detailed description of the invention
Fig. 1 is the page access device structure schematic diagram for the hardware running environment that the embodiment of the present invention is related to;
Fig. 2 is the flow diagram of one embodiment of page access method of the present invention;
Fig. 3 is the refinement flow diagram of step S30 in Fig. 2;
Fig. 4 is the functional block diagram of one embodiment of page access device of the present invention.
The embodiments will be further described with reference to the accompanying drawings for the realization, the function and the advantages of the object of the present invention.
Specific embodiment
It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not intended to limit the present invention.
The page access device structure for the hardware running environment being related to as shown in FIG. 1, FIG. 1 is the embodiment of the present invention shows
It is intended to.
Page access equipment of the embodiment of the present invention can be PC, be also possible to smart phone, tablet computer, portable computer
Equal terminal devices.
As shown in Figure 1, the page access equipment may include: processor 1001, such as CPU, network interface 1004, user
Interface 1003, memory 1005, communication bus 1002.Wherein, communication bus 1002 is for realizing the connection between these components
Communication.User interface 1003 may include display screen (Display), input unit such as keyboard (Keyboard), optional user
Interface 1003 can also include standard wireline interface and wireless interface.Network interface 1004 optionally may include having for standard
Line interface, wireless interface (such as WI-FI interface).Memory 1005 can be high speed RAM memory, be also possible to stable storage
Device (non-volatile memory), such as magnetic disk storage.Memory 1005 optionally can also be independently of aforementioned processing
The storage device of device 1001.
It will be understood by those skilled in the art that page access device structure shown in Fig. 1 is not constituted to page access
The restriction of equipment may include perhaps combining certain components or different component cloth than illustrating more or fewer components
It sets.
As shown in Figure 1, as may include that operating system, network are logical in a kind of memory 1005 of computer storage medium
Believe module, Subscriber Interface Module SIM and page access program.
In page access equipment shown in Fig. 1, network interface 1004 is mainly used for connecting background server, takes with backstage
Business device carries out data communication;User interface 1003 is mainly used for connecting client (user terminal), carries out data communication with client;
And processor 1001 can be used for calling the page access program stored in memory 1005, and execute following page access method
The step of each embodiment.
It is the flow diagram of one embodiment of page access method of the present invention referring to Fig. 2, Fig. 2.
In one embodiment, page access method includes:
Step S10 detects institute when receiving the page access instruction for the target page based on website links triggering
State in website links whether include non-terminal terminal identifier;
In the present embodiment, target pages can refer to all Webpages, may also mean that certain types of webpage page
Face, such as the commodity purchasing page, the payment page, private data show page etc..
In the present embodiment, page access method be applied to page access equipment, page access equipment can be smart phone,
The terminal devices such as tablet computer, computer.Page access instruction is triggered by user, for example, user clicks website links manually, with
The instruction of page access for the target page is received for smart phone.When smart phone receives page access instruction,
Detect website links in whether include this terminal terminal identifier.
Step S20 obtains the target pages if including the terminal identifier of non-terminal in the website links
Preset access conditions;
In the present embodiment, when some network linking is shared with other terminals by some terminal, the network linking of sharing
The terminal identifier of itself can be carried in information (terminal identifier of different terminals is different).Therefore, if detecting website links
In include non-terminal terminal identifier, then assert that the website links are then to obtain the network address chain by other terminals shares
Connect the preset access conditions of corresponding target pages.Wherein, preset access conditions refers to condition essential to accessing the target pages.
The preset access conditions is configured according to actual needs.Specifically, preset access conditions, which can be, completes preset certification link.
Wherein, preset certification link can have multiple, such as authenticate link 1, certification link 2 and certification link 3.I.e. only when certification ring
Section 1 after the completion of authenticating link 2 and certification link 3, just may have access to target pages.
Whether step S30, obtains current authentication state, and currently met according to authentication state detection described preset
Access conditions;
In the present embodiment, obtains current authentication state and be based on preset access conditions, obtain corresponding authentication state.
In one alternative embodiment, preset access conditions is to complete preset certification link, and preset certification link may include more
A link, such as certification link 1, certification link 2 and certification link 3.Current authentication state is then obtained to include: detecting whether
Certification link 1 is completed, obtains authentication state 1 (certification link 1 is completed or does not complete certification link 1);It detects whether complete
At certification link 2, authentication state 2 (certification link 2 is completed or does not complete certification link 2) is obtained;It detects whether to be completed and recognize
Link 3 is demonstrate,proved, authentication state 3 (certification link 3 is completed or does not complete certification link 3) is obtained.If authentication state 1 is to be completed to recognize
Card link 1, authentication state 2 are certification link 2 to be completed, and authentication state 3 is that certification link 3 is completed, then assert that satisfaction is pre-
Set access conditions;Otherwise, assert and be unsatisfactory for preset access conditions.
Step S40 accesses the target pages if currently meeting the preset access conditions.
In the present embodiment, meet preset access conditions if detecting, illustrates currently have the legal of the access target page
Permission then accesses to target pages.
In an alternative embodiment, it is illustrated with commodity purchasing business.In the business, to access commodity purchasing page
Face, need to carry out account number cipher login authentication, user identity authentication (such as authentication is carried out by way of finger print identifying),
After buying these three certification links of qualification certification, can accessing the commodity purchasing page, (i.e. the commodity purchasing page is corresponding preset
Access conditions).One user A uses the APP of the commodity purchasing business on smart phone A, and completes above three certification link
Afterwards, the commodity purchasing page is entered.Then, which is shared with user B for the commodity purchasing page, i.e., by the system of the page
One address Resource Locator URL (UniformResourceLocator, URL) is shared with the smart phone B of user B.User B exists
It is operated on smart phone, triggering is directed to the access instruction of the commodity purchasing page, and smart phone refers to receiving the access
When enabling, detects the terminal identifier of the terminal in the address URL to be accessed comprising user A, then obtain the commodity purchasing page
Then corresponding preset access conditions detects user whether on smart phone B (specially in the APP of the commodity purchasing business)
Complete account number cipher login authentication, user identity authentication (such as authentication is carried out by way of finger print identifying), purchase
These three certification links of qualification certification, if detecting, these three certification links are completed, and access the commodity purchasing page.Into
One step, in order to improve access security, can be in detection preset time period (from current time forward this section of half an hour when
Between) user whether completed on smart phone B these three certification links, if three certification links within a preset period of time by
It completes, then accesses the commodity purchasing page.
In the present embodiment, when receiving the page access instruction for the target page based on website links triggering, inspection
Survey in the website links whether include non-terminal terminal identifier;If in the website links including the end of non-terminal
Identifier is held, then obtains the preset access conditions of the target pages;Current authentication state is obtained, and according to the certification shape
Whether state detection currently meets the preset access conditions;If currently meeting the preset access conditions, the target is accessed
The page.Through this embodiment, so that the workflow management to page access more standardizes, the safety of page access is improved.
Further, in one embodiment of page access method of the present invention, the preset access item of the target pages is obtained
The step of part includes:
Detect whether the target pages are secure page table;
In the present embodiment, in order to further increase the safety of page access, receive in page access equipment for mesh
When marking the page access instruction of the page, whether detection target pages first are secure page table.Such as detection target pages whether be
The page of some mounted APP in page access equipment, can by detect target pages identification information whether with it is a certain
Mounted APP is identical (webpage opened in wechat can all contain the identification information of Wechat/1.0.1 etc), if so, mesh
The mark page is secure page table, and otherwise, target pages are the illegal page.It can also be the address URL for obtaining target pages, according to mesh
The address URL of the mark page judges whether target pages are secure page table.Such as it detects the addresses URL of the target pages and whether meets
Common URL address specifications, if meeting, target pages are secure page table, and otherwise, target pages are the illegal page.
If the target pages are secure page table, the page iden-tity of the target pages is obtained;
In the present embodiment, if target pages are secure page table, target pages are obtained from the attribute information of target pages
Page iden-tity.
Preset access conditions is obtained from the corresponding flow config table of the page iden-tity.
In the present embodiment, the corresponding access conditions of the pre-configured each page, and configured access conditions is prestored
In the corresponding flow config table of the page.It, can be from the corresponding stream of page iden-tity after getting the page iden-tity of target pages
The corresponding preset access conditions of target pages is obtained in journey allocation list.
In the present embodiment, only when detecting target pages is secure page table, just executes and obtain the preset of target pages
The step of access conditions, improves access security.
Further, in one embodiment of page access method of the present invention, detect whether the target pages are security page
The step of face includes:
Picture is crawled from the website links by crawler;
In the present embodiment, website links include the address URL, and URL is uniform resource locator, to can obtain from internet
The position of the resource arrived and a kind of succinct expression of access method, are the addresses of standard resource on internet.On internet
Each file has a unique URL, and the information that it includes points out how the position of file and browser should handle it.
OCR identification is carried out to the picture, obtains recognition result;
In the present embodiment, OCR identification is optical character identification, carries out OCR identification, obtained knowledge to the picture crawled
Text information in other result, that is, picture.
It whether detects in the recognition result comprising sensitive vocabulary;
In the present embodiment, sensitive vocabulary is the vocabulary often occurred in some unsafe webpages, with specific reference to actual conditions
It is configured.For example, the sensitive vocabulary of setting includes: vocabulary 1, vocabulary 2, vocabulary 3, i.e., it whether include word in detection recognition result
One or more of remittance 1, vocabulary 2, vocabulary 3.
If including sensitive vocabulary in the recognition result, it is determined that the target pages are the illegal page;
In the present embodiment, if in recognition result including one or more of vocabulary 1, vocabulary 2, vocabulary 3, it is determined that the mesh
The mark page is the illegal page.
If not including sensitive vocabulary in the recognition result, detect in the picture with the presence or absence of human body image;
In the present embodiment, if not including sensitive vocabulary in recognition result, further detecting whether there is human body in picture
Image.It specifically can use this obvious characteristic of human skin, i.e., detect whether that there are human body images using colouring information.It is first
Picture is first converted into YCrCb format, detects whether to exist in the picture of YCrCb format and meets 130≤Cr≤160,70≤
The target pixel points of Cb≤120, and the number of target pixel points is greater than preset value, is greater than the object pixel of preset value if it exists
Point, it is determined that there are human body images in picture, otherwise determine and human body image is not present in picture.
If human body image is not present in the picture, it is determined that the target pages are secure page table;
In the present embodiment, if human body picture is not present in picture, it is determined that target pages are secure page table.
If identifying that color is the exposed area of human body complexion in the human body image there are human body image in the picture
Domain;
In the present embodiment, if there are human body images in picture, by human body from picture in such a way that connected domain is extracted
Image zooming-out comes out, and preset table shows that the color of the pixel of human body complexion is 130≤Cr≤160,70≤Cb≤120, then by people
Meet 130≤Cr≤160 in body image, the region that the pixel of 70≤Cb≤120 is constituted is as exposed region.
Calculate accounting of the exposed region in the human body image, and detect the accounting whether be greater than or equal to it is pre-
If threshold value;
In the present embodiment, that is, calculate the ratio of the area S1 of exposed region and the area S of human body imageThen compare this
The size of ratio (i.e. accounting of the exposed region in human body image) and preset threshold.
If the accounting is greater than or equal to preset threshold, it is determined that the target pages are the illegal page;If the accounting
Less than preset threshold, it is determined that the target pages are secure page table.
In the present embodiment, if accounting is greater than or equal to preset threshold, illustrate accounting of the exposed region in human body image
Larger, human body picture may relate to Huang, determine that the target pages are the illegal page;If accounting is less than preset threshold, illustrate
Exposed region accounting in human body image is smaller, and human body picture is normal picture, determines that the target pages are security page
Face.
In the present embodiment, safety detection is carried out to website links, improves access security.
It is the refinement flow diagram of step S30 in Fig. 2 referring to Fig. 3, Fig. 3.
In one embodiment of page access method of the present invention, the preset access conditions is included at least: completing preset to recognize
Link is demonstrate,proved, the step S30 includes:
Step S301 obtains current authentication state based on the preset certification link, and according to the certification shape
State, determination have authenticated link;
In the present embodiment, preset access conditions is to complete preset certification link, and preset certification link may include multiple rings
Section, such as certification link 1, certification link 2 and certification link 3.Then based on preset certification link, current certification shape is obtained
State includes: detecting whether that certification link 1 is completed, obtains authentication state 1 and (certification link 1 is completed or does not complete certification link
1);It detects whether that certification link 2 is completed, obtains authentication state 2 (certification link 2 is completed or does not complete certification link 2);Inspection
It surveys and certification link 3 whether is completed, obtain authentication state 3 (certification link 3 is completed or does not complete certification link 3).Obtain
Authentication state include: authentication state 1, authentication state 2, authentication state 3.
Step S302, detection is described to have authenticated link and whether the preset certification link is consistent;
If authentication state 1 is certification link 1, authentication state 2 to be completed as certification link 2 is completed, and authentication state 3 is
Certification link 3 is completed, that is, has authenticated link are as follows: certification link 1, certification link 2 and certification link 3.And preset certification
Link includes certification link 1, certification link 2 and certification link 3, then it is consistent with preset certification link to have authenticated link.
Step S303, if described, to have authenticated link consistent with the preset certification link, it is determined that meets described preset
Access conditions, otherwise determination is unsatisfactory for the preset access conditions.
In the present embodiment, if it is consistent with preset certification link to have authenticated link, meet preset access conditions, it can be right
The target pages access;Otherwise it is unsatisfactory for preset access conditions, i.e., can not be accessed to the target pages.
Further, in one embodiment of page access method of the present invention, after step S30, further includes:
If step S50 has authenticated link and the preset certification link is inconsistent described, has been redirected to preset page
Face.
In the present embodiment, if having authenticated link and preset certification link is inconsistent, it is redirected to pre-set page.Its
In, pre-set page can be the preset prompt page (to prompt user currently can not the access target page), homepage face (such as
The homepage face of the corresponding APP of target pages) or some unfinished corresponding page of certification link.
Further, in one embodiment of page access method of the present invention, step S50 includes:
If step S501 has authenticated link and the preset certification link is inconsistent described, it is determined that mesh to be certified
Mark link;
In the present embodiment, if preset certification link includes: certification link 1, certification link 2 and certification link 3.?
Authenticate link are as follows: certification link 2 and certification link 3, it is determined that target link to be certified is certification link 1.
If preset certification link includes: certification link 1, certification link 2 and certification link 3, and authentication sequence is to recognize
Demonstrate,prove link 1 → certification link 2 → certification link 3.And link is authenticated are as follows: certification link 2, it is determined that target link to be certified
For certification link 1 and certification link 3.
Step S502 is redirected to the corresponding pre-set page of the target link.
In the present embodiment, if target link only one, be redirected to the corresponding page of target link (i.e. preset page
Face).If target link includes multiple, and there are authentication sequences between multiple target links, then it is forward to be redirected to authentication sequence
The corresponding page of target link (i.e. pre-set page).So that user is authenticated based on the pre-set page of display.
Further, in one embodiment of page access method of the present invention, after step S502, further includes:
When detecting that the target link is in verified status, the target pages are accessed.
In the present embodiment, when detecting that target link is in verified status, the current link of certification and pre- is assert
The certification link set is consistent, currently meets preset access conditions, can access to the target pages.
In the present embodiment, when there are target link to be certified, it is redirected to the corresponding pre-set page of target link, with
It is authenticated for user based on the pre-set page of display, when detecting that target link is in verified status, access target page
Face.Both the safety for having improved page access decreases the repetitive operation (only needing only to need to authenticate to target link) of user.
It is the functional block diagram of one embodiment of page access device of the present invention referring to Fig. 4, Fig. 4.
In one embodiment, page access device includes:
First detection module 10 is referred to for working as the page access for the target page for receiving and being triggered based on website links
When enabling, detect in the website links whether include non-terminal terminal identifier;
Module 20 is obtained, if for, comprising the terminal identifier of non-terminal, obtaining the mesh in the website links
Mark the preset access conditions of the page;
Second detection module 30, for obtaining current authentication state, and according to authentication state detection it is current whether
Meet the preset access conditions;
Access modules 40, if accessing the target pages for currently meeting the preset access conditions.
In the present embodiment, when receiving the page access instruction for the target page based on website links triggering, inspection
Survey in the website links whether include non-terminal terminal identifier;If in the website links including the end of non-terminal
Identifier is held, then obtains the preset access conditions of the target pages;Current authentication state is obtained, and according to the certification shape
Whether state detection currently meets the preset access conditions;If currently meeting the preset access conditions, the target is accessed
The page.Through this embodiment, so that the workflow management to page access more standardizes, the safety of page access is improved.
In addition, the embodiment of the present invention also proposes a kind of computer readable storage medium, the computer readable storage medium
On be stored with page access program, the page access program realizes each of page access method as above when being executed by processor
The step of embodiment.
Each embodiment base of the specific embodiment of computer readable storage medium of the present invention and above-mentioned page access method
This is identical, and this will not be repeated here.
It should be noted that, in this document, the terms "include", "comprise" or its any other variant are intended to non-row
His property includes, so that the process, method, article or the system that include a series of elements not only include those elements, and
And further include other elements that are not explicitly listed, or further include for this process, method, article or system institute it is intrinsic
Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including being somebody's turn to do
There is also other identical elements in the process, method of element, article or system.
The serial number of the above embodiments of the invention is only for description, does not represent the advantages or disadvantages of the embodiments.
Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment side
Method can be realized by means of software and necessary general hardware platform, naturally it is also possible to by hardware, but in many cases
The former is more preferably embodiment.Based on this understanding, technical solution of the present invention substantially in other words does the prior art
The part contributed out can be embodied in the form of software products, which is stored in one as described above
In storage medium (such as ROM/RAM, magnetic disk, CD), including some instructions are used so that terminal device (it can be mobile phone,
Computer, server or network equipment etc.) execute method described in each embodiment of the present invention.
The above is only a preferred embodiment of the present invention, is not intended to limit the scope of the invention, all to utilize this hair
Equivalent structure or equivalent flow shift made by bright specification and accompanying drawing content is applied directly or indirectly in other relevant skills
Art field, is included within the scope of the present invention.
Claims (10)
1. a kind of page access method, which is characterized in that the page access method the following steps are included:
When receiving the page access instruction for the target page based on website links triggering, detect in the website links
Whether include non-terminal terminal identifier;
If including the terminal identifier of non-terminal in the website links, the preset access item of the target pages is obtained
Part;
Current authentication state is obtained, and whether the preset access conditions is currently met according to authentication state detection;
If currently meeting the preset access conditions, the target pages are accessed.
2. page access method as described in claim 1, which is characterized in that the preset access for obtaining the target pages
The step of condition includes:
Detect whether the target pages are secure page table;
If the target pages are secure page table, the page iden-tity of the target pages is obtained;
Preset access conditions is obtained from the corresponding flow config table of the page iden-tity.
3. page access method as claimed in claim 2, which is characterized in that whether the detection target pages are safety
The step of page includes:
Picture is crawled from the website links by crawler;
OCR identification is carried out to the picture, obtains recognition result;
It whether detects in the recognition result comprising sensitive vocabulary;
If including sensitive vocabulary in the recognition result, it is determined that the target pages are the illegal page;
If not including sensitive vocabulary in the recognition result, detect in the picture with the presence or absence of human body image;
If human body image is not present in the picture, it is determined that the target pages are secure page table;
If identifying that color is the exposed region of human body complexion in the human body image there are human body image in the picture;
Accounting of the exposed region in the human body image is calculated, and detects whether the accounting is greater than or equal to default threshold
Value;
If the accounting is greater than or equal to preset threshold, it is determined that the target pages are the illegal page;
If the accounting is less than preset threshold, it is determined that the target pages are secure page table.
4. page access method as described in claim 1, which is characterized in that the preset access conditions are as follows: complete preset
Link is authenticated, it is described to obtain current authentication state, and whether the preset visit is currently met according to authentication state detection
The step of asking condition include:
Based on the preset certification link, current authentication state is obtained, and according to the authentication state, determination has authenticated ring
Section;
Link has been authenticated described in detection and whether the preset certification link is consistent;
If described, to have authenticated link consistent with the preset certification link, it is determined that currently meet the preset access conditions,
Link has been authenticated and the preset certification link is inconsistent if described, it is determined that is currently unsatisfactory for the preset access conditions.
5. page access method as claimed in claim 4, which is characterized in that obtain current authentication state, and root described
After the step of currently whether meeting the preset access conditions according to authentication state detection, further includes:
If being currently unsatisfactory for the preset access conditions, it is redirected to pre-set page.
6. page access method as claimed in claim 5, which is characterized in that if described be currently unsatisfactory for the preset access item
Part, then the step of being redirected to pre-set page include:
Link has been authenticated and the preset certification link is inconsistent if described, it is determined that target link to be certified;
It is redirected to the corresponding pre-set page of the target link.
7. page access method as claimed in claim 6, which is characterized in that be redirected to the target link correspondence described
Pre-set page the step of after, further includes:
When detecting that the target link is in verified status, the target pages are accessed.
8. a kind of page access device, which is characterized in that the page access device includes:
First detection module, for when receive based on website links triggering for the target page page access instruction when,
Detect in the website links whether include non-terminal terminal identifier;
Module is obtained, if for, comprising the terminal identifier of non-terminal, obtaining the target pages in the website links
Preset access conditions;
Whether the second detection module currently meets institute for obtaining current authentication state, and according to authentication state detection
State preset access conditions;
Access modules, if accessing the target pages for currently meeting the preset access conditions.
9. a kind of page access equipment, which is characterized in that the page access equipment includes: memory, processor and is stored in
On the memory and the page access program that can run on the processor, the page access program is by the processor
The step of page access method as described in any one of claims 1 to 7 is realized when execution.
10. a kind of computer readable storage medium, which is characterized in that be stored with page visit on the computer readable storage medium
It asks program, the page access as described in any one of claims 1 to 7 is realized when the page access program is executed by processor
The step of method.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910543197.6A CN110377848A (en) | 2019-06-21 | 2019-06-21 | Page access method, apparatus, equipment and computer readable storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910543197.6A CN110377848A (en) | 2019-06-21 | 2019-06-21 | Page access method, apparatus, equipment and computer readable storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN110377848A true CN110377848A (en) | 2019-10-25 |
Family
ID=68249193
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910543197.6A Pending CN110377848A (en) | 2019-06-21 | 2019-06-21 | Page access method, apparatus, equipment and computer readable storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110377848A (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080127331A1 (en) * | 2006-09-26 | 2008-05-29 | Glenn Robert Seidman | Method, system, and apparatus for linked personas authenticator |
| CN102694772A (en) * | 2011-03-23 | 2012-09-26 | 腾讯科技(深圳)有限公司 | Apparatus, system and method for accessing internet web pages |
| CN104601641A (en) * | 2014-05-23 | 2015-05-06 | 腾讯科技(深圳)有限公司 | Application link sharing method, device and system |
| CN104869142A (en) * | 2014-02-26 | 2015-08-26 | 苏州海博智能系统有限公司 | A link sharing method, system and device based on a social platform |
| US20150381366A1 (en) * | 2014-06-26 | 2015-12-31 | Xiaomi Inc. | Methods and apparatuses for binding token key to account |
| CN105471823A (en) * | 2014-09-03 | 2016-04-06 | 阿里巴巴集团控股有限公司 | Sensitive information processing method, device, server and security determination system |
| CN106055660A (en) * | 2016-06-01 | 2016-10-26 | 努比亚技术有限公司 | Mobile terminal page access method, mobile terminal page access device and mobile terminal |
| CN107016298A (en) * | 2017-03-27 | 2017-08-04 | 北京神州绿盟信息安全科技股份有限公司 | A kind of webpage tamper monitoring method and device |
-
2019
- 2019-06-21 CN CN201910543197.6A patent/CN110377848A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080127331A1 (en) * | 2006-09-26 | 2008-05-29 | Glenn Robert Seidman | Method, system, and apparatus for linked personas authenticator |
| CN102694772A (en) * | 2011-03-23 | 2012-09-26 | 腾讯科技(深圳)有限公司 | Apparatus, system and method for accessing internet web pages |
| CN104869142A (en) * | 2014-02-26 | 2015-08-26 | 苏州海博智能系统有限公司 | A link sharing method, system and device based on a social platform |
| CN104601641A (en) * | 2014-05-23 | 2015-05-06 | 腾讯科技(深圳)有限公司 | Application link sharing method, device and system |
| US20150381366A1 (en) * | 2014-06-26 | 2015-12-31 | Xiaomi Inc. | Methods and apparatuses for binding token key to account |
| CN105471823A (en) * | 2014-09-03 | 2016-04-06 | 阿里巴巴集团控股有限公司 | Sensitive information processing method, device, server and security determination system |
| CN106055660A (en) * | 2016-06-01 | 2016-10-26 | 努比亚技术有限公司 | Mobile terminal page access method, mobile terminal page access device and mobile terminal |
| CN107016298A (en) * | 2017-03-27 | 2017-08-04 | 北京神州绿盟信息安全科技股份有限公司 | A kind of webpage tamper monitoring method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Chin et al. | Measuring user confidence in smartphone security and privacy | |
| US11165793B2 (en) | Method and system for detecting credential stealing attacks | |
| EP2892198B1 (en) | Detecting and breaking captcha automation scripts and preventing image scraping | |
| CN110516173B (en) | Illegal network station identification method, illegal network station identification device, illegal network station identification equipment and illegal network station identification medium | |
| US20170053107A1 (en) | Behavioral Stochastic Authentication (BSA) | |
| US8539335B2 (en) | Entering data into a webpage | |
| CN109257321B (en) | Secure login method and device | |
| CN102789561B (en) | The using method of camera and device in a kind of browser | |
| US11698956B2 (en) | Open data biometric identity validation | |
| US9075981B2 (en) | Non-textual security using portraits | |
| CN105306202B (en) | Auth method, device and server | |
| US20130106916A1 (en) | Drag and drop human authentication | |
| US10887345B1 (en) | Protecting users from phishing attempts | |
| KR101940310B1 (en) | Apparatus for verifying website and method thereof | |
| CN103973649A (en) | Authentication system and authentication method | |
| US10565210B2 (en) | Generating and verifying a reputational profile | |
| CN107085694B (en) | Information display processing method and device | |
| CN106156642A (en) | Data ciphering method and device | |
| CN109413004B (en) | Verification method, device and equipment | |
| JP2008146551A (en) | Password information management system, terminal, program | |
| JP6778988B2 (en) | Authentication information generation program, authentication information generation device, and authentication information generation method | |
| CN110377848A (en) | Page access method, apparatus, equipment and computer readable storage medium | |
| Baldauf et al. | Investigating the user experience of smartphone authentication schemes-the role of the mobile context | |
| WO2018066426A1 (en) | Fake web page determination device, fake web page determination system, fake web page determination method, and fake web page determination program | |
| JP7235114B2 (en) | Vulnerability inspection device, vulnerability inspection method and vulnerability inspection program |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20191025 |
|
| RJ01 | Rejection of invention patent application after publication |