HK1224456B - Method and device for information processing based on instant messaging - Google Patents

Description

Information processing method and device based on instant messaging

【Technical field】

The present application relates to the field of communication technology, and in particular to an information processing method and device based on instant messaging.

[Background Technology]

Instant messaging is a popular communication method on the Internet. Various instant messaging software are emerging one after another, and service providers are also providing more and more abundant communication service functions.

In the prior art, if user A wants to conduct instant messaging with user B, he needs to add user B as a friend. At this time, user B will appear in the address book of user A's instant messaging software. Similarly, user A will also appear in the address book of user B's instant messaging software. After that, user A and user B can conduct instant messaging.

However, in practice, there are some special scenarios where user A needs to instant message user B but doesn't want user B to see user A's information to prevent information leakage. This situation often arises within enterprises. For example, some companies have temporary or outsourced employees, and they need to be notified of internal news. Therefore, there is a need to add temporary or outsourced employees to a company group. However, current instant messaging software allows employees in a company group to see each other's registered personal information and the company's organizational structure, posing an information security risk. This is a problem that current instant messaging software urgently needs to address.

[Summary of the invention]

Multiple aspects of the present application provide an information processing method and device based on instant messaging, which are used to solve information security issues while meeting instant messaging needs.

In one aspect of the present application, a method for processing information based on instant messaging is provided, comprising:

receiving a group joining request, wherein the group joining request is used to request that a first user be added to a first group;

Determining whether the first user needs to join the first group with a specific identity;

If the result of the judgment is yes, the group information of the first group is shielded according to the group authority corresponding to the specific identity to obtain shielded group information, and the shielded group information is sent to the instant messaging client of the first user

Another aspect of the present application provides an information processing device based on instant messaging, comprising:

A receiving module, configured to receive a group joining request, wherein the group joining request is used to request that a first user be added to a first group;

a determination module, configured to determine whether the first user needs to join the first group with a specific identity;

The processing module is used to, when the judgment result of the judgment module is yes, shield the group information of the first group according to the group authority corresponding to the specific identity to obtain shielded group information, and send the shielded group information to the instant messaging client of the first user.

In this application, when a group join request is received to join a first user to a first group, a determination is made as to whether the first user needs to join the first group with a specific identity. If so, the group information of the first group is shielded according to the group permissions corresponding to the specific identity, and the shielded group information is sent to the first user's instant messaging client. The first user joins the first group with a specific identity to meet the instant messaging needs of other users with the first user, while shielding the group information of the first group can block information that is not suitable for users with a specific identity, thereby achieving information security.

【Brief Description of the Drawings】

In order to more clearly illustrate the technical solutions in the embodiments of the present application, a brief introduction is given below to the drawings required for use in the embodiments or descriptions of the prior art. Obviously, the drawings described below are some embodiments of the present application. For ordinary technicians in this field, other drawings can be obtained based on these drawings without any creative work.

FIG1 is a flow chart of an instant messaging-based information processing method according to an embodiment of the present application;

FIG2 is a schematic diagram of an interface for configuring visitor identities between groups according to an embodiment of the present application;

FIG3 is a schematic diagram of a group interface in a DingTalk application scenario provided by an embodiment of the present application;

FIG4 is a schematic diagram of an interface after a first user joins a first group as a visitor according to an embodiment of the present application;

FIG5 is a schematic structural diagram of an instant messaging-based information processing device provided by another embodiment of the present application;

FIG6 is a schematic structural diagram of an instant messaging-based information processing device provided in yet another embodiment of the present application.

[Specific implementation method]

To make the purpose, technical solutions, and advantages of the embodiments of this application more clear, the technical solutions in the embodiments of this application will be clearly and completely described below in conjunction with the drawings in the embodiments of this application. Obviously, the described embodiments are part of the embodiments of this application, not all of the embodiments. Based on the embodiments in this application, all other embodiments obtained by ordinary technicians in this field without making creative efforts are within the scope of protection of this application.

In response to the problems faced by existing instant messaging applications, this application provides a technical solution. The main principle is: for users who have instant messaging needs and want to prevent information security risks, set specific identities and allow such users to join groups with specific identities to meet the needs of instant messaging between other users in the group and such users. In addition, corresponding group permissions are configured for the specific identity, allowing such users to only see group information within the group permissions and prohibiting such users from seeing group information outside the group permissions, thereby achieving the purpose of information security.

FIG1 is a flow chart of an instant messaging-based information processing method provided by an embodiment of the present application. As shown in FIG1 , the method includes:

101. Receive a group joining request, where the group joining request is used to request that a first user be added to a first group.

102. Determine whether the first user needs to join the first group with a specific identity. If yes, execute step 103; if no, execute step 104.

103. According to the group authority corresponding to the specific identity, shield the group information of the first group to obtain shielded group information, and send the shielded group information to the instant messaging client of the first user.

104. End the operation or proceed according to the existing process.

For ease of description and distinction, this embodiment uses the example of a first user applying to join a first group. The first user can be any user, and the first group can also be any group. For example, the first group can be a group consisting of a company, a department, a project team, or a group consisting of people with similar interests.

Optionally, the first user can actively apply to join the first group. In this case, the first user can send a group joining request to the information processing device based on instant messaging (hereinafter referred to as the information processing device). Specifically, the first user can send a group joining request to the information processing device through his own instant messaging client. The group joining request carries the group identifier of the first group requested to join, such as the group number, group name, etc. In addition, the group joining request also carries the information of the first user, such as the account number and mobile phone number registered by the first user. The information processing device here can be an instant messaging server, or it can be other devices that are independent of the instant messaging server but can communicate and exchange information with the instant messaging server. For the information processing device, it can receive a group joining request sent by the first user to join the first group.

In addition, the administrator of the first group can also directly add new members to the first group, such as adding an intern to a department group. Based on this, the administrator of the first group can send a group joining request to the information processing device to request the first user to join the first group. The group joining request carries the group identifier of the first group requested to join, such as the group number, group name, etc. In addition, the group joining request also carries the information of the first user, such as the account number registered by the first user, mobile phone number, etc. For the information processing device, it can receive the group joining request sent by the administrator of the first group. This embodiment allows the group administrator of the instant messaging software to directly add new members to the group, which is particularly suitable for scenarios such as enterprises and other office scenarios where new employees join. At this time, the administrator can automatically add new members to the group of the instant messaging software, and can automatically set their group permissions according to the identity of the employee, which is conducive to the development of instant messaging software into a mobile office platform and facilitates the connection between instant messaging software and multiple OA systems within the enterprise, so that unified management of leave, reimbursement, salary and other services can be achieved through instant messaging software.

The information processing device receives a group joining request requesting the first user to join the first group, can obtain information about the first user and information about the first group, and then can determine whether the first user needs to join the first group with a specific identity.

In an optional embodiment, the administrator of the first group can configure a specific identity for the first group, such as a visitor or guest identity, and assign group permissions to this specific identity, such as being able to see the group's address book, being unable to see the group's address book, being able to see only information other than the address book, or being able to see only the group's name. Furthermore, the administrator of the first group is responsible for registering accounts for members within the first group and determining which members need to join with a specific identity and which do not. For example, temporary employees or outsourced employees of an enterprise may need to join the enterprise group with a specific identity. For another example, members of one group may be allowed to join another group with a specific identity, whereby the first user is a member of the second group, which is a different group from the first. For example, if the specific identity is a visitor or guest identity, an interface for configuring a visitor identity between groups is shown in Figure 2. For example, in a DingTalk application scenario, as shown in Figure 3, members of two groups, Product Team A and Product Team B, may be allowed to join the DingTalk user community group with a guest identity. In this case, members of both Product Team A and Product Team B can be considered outsourced roles within the DingTalk user community group.

Furthermore, the administrator can configure an identity weight for each member, and configure different identity weights for users who need to join the first group with a specific identity and users who do not need to join the first group with a specific identity to distinguish them. In addition, the administrator can also pre-configure the weight conditions corresponding to specific identities, such as a weight range or a weight threshold. When a user's identity weight meets the weight condition, for example, it is within the weight range or lower than the weight threshold, it is considered that the user needs to join the first group with a specific identity. The administrator can upload the account and identity weight of each user in the first group to the instant messaging server.

Based on the above, the information processing device can obtain the identity weight of the first user, for example, it can obtain the identity weight of the first user through the instant messaging server based on the account of the first user; then, it determines whether the identity weight of the first user meets the weight condition corresponding to the specific identity, for example, it determines whether the identity weight of the first user is within the preset weight range, or determines whether the identity weight of the first user is less than the preset weight threshold. If the judgment result is yes, it is determined that the first user needs to join the first group with a specific identity; if the judgment result is no, it is determined that the first user does not need to join the first group with a specific identity.

When it is determined that the first user does not need to join the first group with a specific identity, the operation can be terminated, or the process can be processed according to the existing technology. The existing technology process will not be described in detail here.

When it is determined that the first user needs to join the first group with a specific identity, the first user can be added to the first group according to the specific identity. Adding the first user to the first group according to the specific identity mainly includes, on the one hand, masking the group information of the first group according to the group permissions corresponding to the specific identity to obtain masked group information, and sending the masked group information to the instant messaging client of the first user, so that other users in the first group can communicate with the first user in an instant messaging manner while ensuring the security of the group information.

For example, if the group permission corresponding to the specific identity means that the address book information within the group cannot be seen, the information processing device can block the address book information of the first group according to the group permission corresponding to the specific identity to obtain the blocked group information. At this time, the blocked group information does not include the address book of the first group, so that before other users who join the first group with a non-specific identity actively contact the first user, the first user cannot see the information of other users in the first group on his instant messaging client, such as nicknames, avatars, real names, phone numbers, email addresses, information about other groups or companies or departments, etc. In conjunction with Figure 3 above, the members of the two groups A Product Team and B Product Team are taken as the first users, and the DingTalk user community group is taken as the first group. The interface after the members of the two groups A Product Team and B Product Team join the DingTalk user community group as visitors or guests is shown in Figure 4. In the interface shown in Figure 4, the members of the two groups A Product Team and B Product Team cannot see the information of any members under the DingTalk user community group. The other users in this embodiment mainly refer to users who join the first group with a non-specific identity.

In addition, in order to facilitate other users who have joined the first group with a non-specific identity to initiate communications with the first user in a timely manner, the group information of the first group can be updated according to the information of the first user (mainly referring to adding the first user's information to the address book of the first group) to obtain the updated group information, and the updated group information is sent to the instant messaging clients of other users who have joined the first group with a non-specific identity, so that other users can see the first user's information on their instant messaging clients, such as nickname, real name, avatar, phone number, email address, information about other groups or companies or departments, etc.

Optionally, after updating the group information of the first group according to the information of the first user, the information processing device may send the updated group information to other users.

Optionally, each time a user logs out of an instant messaging client and logs back in, the client typically requests group information from the server again. Based on this, the information processing device can provide updated group information to the user each time the user logs out of the instant messaging client and logs back in. This implementation is relatively simple, has good compatibility with existing technologies, and minimally alters the instant messaging process. Specifically, upon receiving a login request from another user's instant messaging client, the information processing device can send updated group information to the other user's instant messaging client.

Optionally, a user may proactively request to update group information, for example, by sending an information update request through his instant messaging client. Upon receiving an information update request from another user's instant messaging client, the information processing device may send the updated group information to the instant messaging client of the other user.

Optionally, the information processing device may set an information update cycle and provide updated group information to users whenever the cycle arrives. That is, the information processing device may send updated group information to other users' instant messaging clients when the preset information update cycle arrives.

Furthermore, after the first user joins the first group with a specific identity, other users can see the first user's information, but the first user cannot see the information of other users. Based on this, other users in the first group can initiate communications with the first user. After other users initiate communications with the first user, the first user may see or obtain the other users' information. To ensure the information security of other users, after other users initiate communications with the first user, information security control measures can be performed on the first user based on the group permissions corresponding to the specific identity.

When another user initiates a communication with the first user, the other user's information is typically leaked during the communication process, potentially causing unnecessary interference to the other user after or during the communication. For example, the first user might obtain the other user's phone number during a communication and then call the other user during or after the communication, thereby causing interference to the other user.

Based on the above analysis, after another user initiates a communication with the first user, information security prevention and control processing for the first user may be performed based on the group permissions corresponding to the specific identity, using at least one of the following methods:

During the communication between other users and the first user, disabling the communication method of the first user and/or blocking the information of other users according to the group permissions corresponding to the specific identity;

After the communication between the other users and the first user ends, the communication method of the first user is disabled and/or the information of the other users is blocked according to the group authority corresponding to the specific identity.

It is worth noting that, depending on the instant messaging application, the above-mentioned method of disabling the communication method and/or blocking the information of other users may also be different. This application is not limited to instant messaging applications, for example, it can be QQ, WeChat, DingTalk, Wangwang, etc.

Taking DingTalk as an example, in addition to allowing users to communicate with each other through instant messaging windows, DingTalk also allows users to communicate with each other through non-instant messaging windows such as phone calls or Ding messages.

In the instant messaging window mode, an entry to a non-instant messaging window mode is generally displayed on the instant messaging window between users, such as a button or function option. In this embodiment, to facilitate basic information exchange between other users and the first user, other users are allowed to actively initiate communications with the first user in any instant messaging mode, and the first user is allowed to actively initiate communications with other users in the instant messaging window mode after obtaining information from other users. Therefore, group permissions corresponding to specific identities can be set to allow the first user to actively communicate with other users in the instant messaging window mode after obtaining information from other users, but prohibit the first user from actively initiating communications with other users in non-instant messaging window modes.

Based on the above analysis, the above implementation methods of disabling the communication method of the first user and/or blocking the information of other users according to the group permissions corresponding to the specific identity during the communication between the other users and the first user include the following two situations:

In one embodiment, if another user initiates a communication with the first user via an instant messaging window, during the communication between the other user and the first user, the non-instant messaging window entrance displayed in the instant messaging window provided by the first user's instant messaging client is blocked, and only the other user's avatar information is displayed in the instant messaging window provided by the first user's instant messaging client. Blocking the entrance may include not displaying a button or function option representing the entrance, or rendering the button representing the entrance unavailable.

Another situation is: if other users initiate communication with the first user in a non-instant messaging window mode, then during the communication process between the other users and the first user, the active initiation function of the non-instant messaging window mode is blocked for the first user, and the information of the other users carried in the communication process is replaced with predetermined information.

In the second case, by blocking the active initiation function of the non-instant messaging window mode, this means that the first user can receive communication requests initiated by other users in the non-instant messaging window mode, but because it does not have the active initiation function, it cannot actively initiate communications with other users in the non-instant messaging window mode. The method of blocking the active initiation function of the non-instant messaging window mode can be to cancel or make the entrance of the non-instant messaging function, such as a button or function menu, unavailable, so as to achieve the purpose of prohibiting the first user from using the non-instant messaging window mode to actively initiate communications. In addition, in this embodiment, the information of other users carried in the communication process, such as the phone number of other users carried in the communication process, is replaced with specified information, such as a 400 number, or the phone number or name of other users carried in the short message is replaced with specified information, such as a 400 number, etc., so as to prevent the first user from obtaining information about other users during the communication process, which is beneficial to prevent the first user from communicating with other users by means other than the instant messaging client, such as by phone or text message, and thus avoid unnecessary interference to other users.

Furthermore, if other users initiate a communication with the first user via an instant messaging window, the first user's instant messaging client will retain the instant messaging window with the other users during the communication process between the other users and the first user, so that the first user can actively initiate a communication with the other users via the instant messaging window. In addition, the avatar information of the other user who initiated the communication with the first user will be displayed in the instant messaging window, and the avatar information will point to the personal details page of the other user. For example, by clicking on the avatar information, the first user is equivalent to issuing a request to obtain the personal details page of the other user, and will jump to the personal details page of the other user. The personal details page generally includes more detailed information about the user, such as email address, department, employee level, avatar information, nickname, real name, etc. In addition, under normal circumstances, the personal details page will also display an entrance in a non-instant messaging window mode, so that the user can directly initiate a non-instant messaging window mode communication with the user pointed to by the personal details page through the entrance. However, in this embodiment, it is necessary to prohibit the first user from communicating with other users in a non-instant messaging window mode.

Based on the above analysis, in order to keep other users' information confidential, if other users initiate communication with the first user in the form of an instant messaging window, then after the communication between the other users and the first user ends, based on the first user's request to obtain the personal details page of the other user through the avatar information of the other user in the instant messaging window, the personal details page of the other user is shielded, and the non-instant messaging window-based entrance displayed on the personal details page of the other user is shielded. For example, all information other than the avatar information on the personal details page can be shielded. The specific shielding method can be not displaying it, or covering the relevant information with a cover bar. The method of shielding the non-instant messaging window-based entrance displayed on the personal details page can be not displaying the button representing the entrance or making the button representing the entrance unavailable, etc.

As can be seen from the above, this embodiment blocks the group information of the first group according to the group permissions corresponding to the specific identity when the first user joins the first group with a specific identity. While meeting the instant communication needs between other users and the first user, information that is not suitable for the specific identity to see can be blocked, thereby achieving the purpose of information security; in addition, by disabling the communication method of the first user and/or blocking the information of other users during or after the communication between other users and the first user, the information security of other users can be further guaranteed, unnecessary interference to other users in the first group can be avoided, and the problems existing in the prior art can be solved.

It should be noted that for the aforementioned method embodiments, for the sake of simplicity, they are all expressed as a series of action combinations, but those skilled in the art should be aware that this application is not limited by the order of the actions described, because according to this application, certain steps can be performed in other orders or simultaneously. Secondly, those skilled in the art should also be aware that the embodiments described in the specification are all preferred embodiments, and the actions and modules involved are not necessarily required by this application.

In the above embodiments, the description of each embodiment has its own focus. For parts that are not described in detail in a certain embodiment, reference can be made to the relevant descriptions of other embodiments.

FIG5 is a schematic diagram of the structure of an instant messaging-based information processing device provided by an embodiment of the present application. As shown in FIG5 , the device includes: a receiving module 51 , a judging module 52 , and a processing module 53 .

The receiving module 51 is configured to receive a group joining request, where the group joining request is used to request that a first user be added to a first group.

The determination module 52 is configured to determine whether the first user needs to join the first group with a specific identity.

The processing module 53 is configured to, when the judgment result of the judgment module 52 is yes, shield the group information of the first group according to the group authority corresponding to the specific identity to obtain shielded group information, and send the shielded group information to the instant messaging client of the first user.

In an optional embodiment, the receiving module 51 is configured to:

receiving a group joining request sent by the first user; or

A group joining request sent by an administrator of the first group is received.

In an optional implementation manner, the determination module 52 is specifically configured to:

Obtain the identity weight of the first user;

Determining whether the identity weight of the first user meets the weight condition corresponding to the specific identity;

If the judgment result is yes, it is determined that the first user needs to join the first group with a specific identity.

In an optional implementation manner, the processing module 53 is specifically configured to: according to the group authority corresponding to the specific identity, shield the contact information of the first group to obtain shielded group information.

In an optional implementation, as shown in FIG6 , the apparatus further includes: an updating module 54 .

The updating module 54 is configured to update the group information of the first group according to the information of the first user to obtain updated group information, and send the updated group information to the instant messaging clients of other users who have joined the first group with non-specific identities.

Furthermore, the update module 54 may be specifically configured to:

When receiving a login request from another user's instant messaging client, sending updated group information to the other user's instant messaging client; or

When receiving an information update request from an instant messaging client of another user, sending the updated group information to the instant messaging client of the other user; or

When the preset information update period arrives, the updated group information is sent to the instant messaging clients of other users.

Furthermore, as shown in FIG6 , the device further includes: a safety control module 55 .

The security control module 55 is used to perform information security control processing on the first user according to the group authority corresponding to the specific identity after other users initiate communication with the first user.

Furthermore, the security control module 55 is specifically used to:

During the communication between the first user and other users, disabling the first user's communication method and/or blocking other users' information based on the group permissions corresponding to the specific identity; or

After the communication between the other users and the first user ends, the communication method of the first user is disabled and/or the information of the other users is blocked according to the group authority corresponding to the specific identity.

Furthermore, during the communication between the first user and other users, the security control module 55 may disable the communication method of the first user and/or block the information of other users according to the group permissions corresponding to the specific identity. Specifically, it is used to:

If another user initiates a communication with the first user in the form of an instant messaging window, during the communication between the other user and the first user, the non-instant messaging window entrance displayed on the instant messaging window provided by the first user's instant messaging client is blocked, and only the other user's avatar information is displayed in the instant messaging window;

If other users initiate communication with the first user in a non-instant messaging window mode, during the communication process between the other users and the first user, the active initiation function of the non-instant messaging window mode is blocked for the first user, and the information of the other users carried in the communication process is replaced with predetermined information.

Furthermore, after the communication between the other users and the first user ends, the security control module 55 disables the communication method of the first user and/or blocks the information of other users according to the group authority corresponding to the specific identity, specifically for:

If other users initiate communication with the first user in the form of an instant messaging window, after the communication between the other users and the first user ends, based on the request made by the first user to obtain the personal details page of the other users through the avatar information of the other users in the instant messaging window, the personal details page of the other users is blocked, and the entrance not in the form of an instant messaging window displayed on the personal details page of the other users is blocked.

The instant messaging-based information processing device provided in this embodiment may be an instant messaging server, or may be another device that is independent of the instant messaging server but can communicate and exchange information with the instant messaging server.

The instant messaging-based information processing device provided in this embodiment blocks the group information of the first group according to the group permissions corresponding to the specific identity when a first user joins the first group with a specific identity. While meeting the instant messaging needs between other users and the first user, information that is not suitable for the specific identity to see can be blocked, thereby achieving the purpose of information security.

Furthermore, the instant messaging-based information processing device of this embodiment can further ensure the information security of other users and avoid unnecessary interference to other users in the first group by disabling the communication method of the first user and/or shielding the information of other users during or after the communication between other users and the first user, thereby solving the problems existing in the prior art.

Those skilled in the art will clearly understand that, for the convenience and brevity of description, the specific working processes of the systems, devices and units described above can refer to the corresponding processes in the aforementioned method embodiments and will not be repeated here.

In the several embodiments provided in this application, it should be understood that the disclosed systems, devices and methods can be implemented in other ways. For example, the device embodiments described above are merely schematic. For example, the division of the units is merely a logical function division. In actual implementation, there may be other division methods, such as multiple units or components can be combined or integrated into another system, or some features can be ignored or not executed. Another point is that the mutual coupling or direct coupling or communication connection shown or discussed can be an indirect coupling or communication connection through some interfaces, devices or units, which can be electrical, mechanical or other forms.

The units described as separate components may or may not be physically separate, and the components shown as units may or may not be physical units, that is, they may be located in one place or distributed across multiple network units. Some or all of these units may be selected to achieve the purpose of this embodiment according to actual needs.

In addition, the functional units in the various embodiments of the present application may be integrated into a single processing unit, or each unit may exist physically separately, or two or more units may be integrated into a single unit. The aforementioned integrated units may be implemented in the form of hardware or in the form of hardware plus software functional units.

The above-mentioned integrated unit implemented in the form of a software functional unit can be stored in a computer-readable storage medium. The above-mentioned software functional unit is stored in a storage medium and includes a number of instructions for causing a computer device (which can be a personal computer, server, or network device, etc.) or a processor to perform some steps of the method described in each embodiment of the present application. The aforementioned storage medium includes: a USB flash drive, a mobile hard disk, a read-only memory (ROM), a random access memory (RAM), a magnetic disk or an optical disk, and other media that can store program code.

Finally, it should be noted that the above embodiments are only used to illustrate the technical solutions of the present application, rather than to limit them. Although the present application has been described in detail with reference to the aforementioned embodiments, those skilled in the art should understand that they can still modify the technical solutions described in the aforementioned embodiments, or make equivalent replacements for some of the technical features therein. However, these modifications or replacements do not deviate the essence of the corresponding technical solutions from the spirit and scope of the technical solutions of the embodiments of the present application.

Claims (18)

1. An information processing method based on instant messaging, characterized in that it includes: Receive a group join request, the group join request being used to request that the first user be added to the first group; Determine whether the first user needs to join the first group with a specific identity; If the determination result is yes, according to the group permissions corresponding to the specific identity, the group information of the first group is blocked to obtain the blocked group information, and the blocked group information is sent to the instant messaging client of the first user. After other users who joined the first group without a specific identity initiate communication with the first user, information security control measures are taken against the first user based on the group permissions corresponding to the specific identity. This includes: during the communication between the other user and the first user, if the other user initiates communication with the first user via an instant messaging window, during the communication between the other user and the first user, the entry point for non-instant messaging window mode displayed on the instant messaging window provided by the first user's instant messaging client is blocked, and only the avatar information of the other user is displayed in the instant messaging window. 2. The method according to claim 1, wherein determining whether the first user needs to join the first group with a specific identity includes: Obtain the identity weight of the first user; Determine whether the identity weight of the first user satisfies the weight condition corresponding to the specific identity; If the determination result is yes, it is determined that the first user needs to join the first group with the specific identity. 3. The method according to claim 1, characterized in that, the step of masking the group information of the first group according to the group permissions corresponding to the specific identity to obtain the masked group information includes: Based on the group permissions corresponding to the specific identity, the contact information of the first group is blocked to obtain the blocked group information. 4. The method according to claim 1, characterized in that it further comprises: The group information of the first group is updated based on the information of the first user to obtain the updated group information, and the updated group information is sent to the instant messaging clients of other users who joined the first group without a specific identity. 5. The method according to claim 4, wherein sending the updated group information to the instant messaging clients of other users who joined the first group without a specific identity includes: When a login request is received from another user's instant messaging client, the updated group information is sent to that user's instant messaging client; or When a message update request is received from the instant messaging client of another user, the updated group information is sent to the instant messaging client of that other user; or When the preset information update cycle is reached, the updated group information is sent to the instant messaging clients of the other users. 6. The method according to claim 1, characterized in that, after the other user initiates communication with the first user, the step of performing information security control processing on the first user according to the group permissions corresponding to the specific identity further includes: After the communication between the other users and the first user ends, based on the group permissions corresponding to the specific identity, the communication method of the first user is disabled and/or the information of the other users is blocked. 7. The method according to claim 1, characterized in that, during the communication process between the other users and the first user, disabling the communication method for the first user and/or blocking the information of the other users according to the group permissions corresponding to the specific identity, further includes: If other users initiate communication with the first user via a non-instant messaging window, during the communication between the other users and the first user, the active initiation function of the non-instant messaging window is blocked for the first user, and the information of the other users carried in the communication is replaced with predetermined information. 8. The method according to claim 6, characterized in that, after the communication between the other users and the first user ends, disabling the communication method for the first user and/or blocking the information of the other users according to the group permissions corresponding to the specific identity, includes: If the other user initiates communication with the first user via an instant messaging window, after the communication between the other user and the first user ends, based on the request from the first user to obtain the other user's personal details page through the other user's avatar information in the instant messaging window, the information on the other user's personal details page is blocked, and the non-instant messaging window entry displayed on the other user's personal details page is also blocked. 9. The method according to any one of claims 1-8, characterized in that receiving the group join request includes: Receive the group join request sent by the first user; or Receive the group join request sent by the administrator of the first group. 10. An information processing device based on instant messaging, characterized in that it comprises: The receiving module is used to receive group join requests, which are used to request that the first user be added to the first group; The determination module is used to determine whether the first user needs to join the first group with a specific identity; The processing module is used to, when the judgment result of the judgment module is yes, to perform a masking process on the group information of the first group according to the group permissions corresponding to the specific identity to obtain the masked group information, and to send the masked group information to the instant messaging client of the first user. The security control module is used to perform information security control measures on the first user based on the group permissions corresponding to the specific identity after other users initiate communication with the first user. The security control module is specifically used to: if other users initiate communication with the first user via an instant messaging window, during the communication between the other users and the first user, block the entry point of non-instant messaging window mode displayed on the instant messaging window provided by the first user's instant messaging client, and only display the avatar information of the other users in the instant messaging window. 11. The apparatus according to claim 10, wherein the determining module is specifically used for: Obtain the identity weight of the first user; Determine whether the identity weight of the first user satisfies the weight condition corresponding to the specific identity; If the determination result is yes, it is determined that the first user needs to join the first group with the specific identity. 12. The apparatus according to claim 10, wherein the processing module is specifically used for: Based on the group permissions corresponding to the specific identity, the contact information of the first group is blocked to obtain the blocked group information. 13. The apparatus according to claim 10, characterized in that it further comprises: The update module is used to update the group information of the first group according to the information of the first user, so as to obtain the updated group information, and to send the updated group information to the instant messaging clients of other users who joined the first group without a specific identity. 14. The apparatus according to claim 13, wherein the updating module is specifically used for: When a login request is received from another user's instant messaging client, the updated group information is sent to that user's instant messaging client; or When a message update request is received from the instant messaging client of another user, the updated group information is sent to the instant messaging client of that other user; or When the preset information update cycle is reached, the updated group information is sent to the instant messaging clients of the other users. 15. The apparatus according to claim 10, wherein the safety control module is further configured to: After the communication between the other users and the first user ends, based on the group permissions corresponding to the specific identity, the communication method of the first user is disabled and/or the information of the other users is blocked. 16. The apparatus according to claim 10, wherein the security control module is further configured to: If other users initiate communication with the first user via a non-instant messaging window, during the communication between the other users and the first user, the active initiation function of the non-instant messaging window is blocked for the first user, and the information of the other users carried in the communication is replaced with predetermined information. 17. The apparatus according to claim 10, wherein the safety control module is specifically used for: If the other user initiates communication with the first user via an instant messaging window, after the communication between the other user and the first user ends, based on the request from the first user to obtain the other user's personal details page through the other user's avatar information in the instant messaging window, the information on the other user's personal details page is blocked, and the non-instant messaging window entry displayed on the other user's personal details page is also blocked. 18. The apparatus according to any one of claims 10-17, wherein the receiving module is specifically used for: Receive the group join request sent by the first user; or Receive the group join request sent by the administrator of the first group.