[go: up one dir, main page]

WO2015062362A1 - Procédé, dispositif, et système de connexion utilisateur - Google Patents

Procédé, dispositif, et système de connexion utilisateur Download PDF

Info

Publication number
WO2015062362A1
WO2015062362A1 PCT/CN2014/086298 CN2014086298W WO2015062362A1 WO 2015062362 A1 WO2015062362 A1 WO 2015062362A1 CN 2014086298 W CN2014086298 W CN 2014086298W WO 2015062362 A1 WO2015062362 A1 WO 2015062362A1
Authority
WO
WIPO (PCT)
Prior art keywords
account
string
logged
domain name
encrypted
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2014/086298
Other languages
English (en)
Chinese (zh)
Inventor
于富龙
左文品
王有存
于天佐
余鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Qihoo Technology Co Ltd
Qizhi Software Beijing Co Ltd
Original Assignee
Beijing Qihoo Technology Co Ltd
Qizhi Software Beijing Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Qihoo Technology Co Ltd, Qizhi Software Beijing Co Ltd filed Critical Beijing Qihoo Technology Co Ltd
Publication of WO2015062362A1 publication Critical patent/WO2015062362A1/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Definitions

  • the present invention relates to the field of Internet technologies, and in particular, to a method, device, and system for user login.
  • users may run instant messaging software, optimization software, security tools, browsers, etc. locally, and require users to log in to their accounts in order to get a better user experience.
  • the present invention has been made in order to provide a method, apparatus and system suitable for user login that overcomes the above problems or at least partially solves the above problems.
  • a user login method including: acquiring a logged-in account of each client corresponding to a specified domain name, generating a login list composed of the logged-in account; obtaining according to a specific logged-in account in the login list The account information of the specific registered account; use the obtained account information to log in to the specified domain name.
  • a user login device comprising: a memory configured to store a registered account and account information of a user currently in each client; a login list acquirer configured to obtain and specify from a memory The login account of each client corresponding to the domain name generates a login list composed of the logged-in account; the information acquirer is configured to obtain the account information of the specific logged-in account in the memory according to the specific logged-in account in the login list; , configured to use the obtained account information to log in Domain name.
  • a user login system including the user login device described above, and a server for verification.
  • a computer program comprising computer readable code that, when executed on a computing device, causes the computing device to perform the aforementioned user login method.
  • a computer readable medium storing the aforementioned computer program is provided.
  • the present invention provides a method, a device, and a system for logging in a user.
  • the user can detect the account that the user logs in to the local client by adding a plug-in to the browser.
  • the information reminds the user of the existing account information, and the user can select the account to log in to the designated domain name website, thereby eliminating the step of inputting the account password again, simplifying the user operation and having a better user experience.
  • FIG. 1 is a flow chart of a method for user login according to an embodiment of the present invention
  • FIG. 2 is a flow chart of a specific method for user login according to an embodiment of the present invention.
  • FIG. 3 is a schematic diagram of a login list in accordance with one embodiment of the present invention.
  • FIG. 4 is a structural block diagram of a user login device according to an embodiment of the present invention.
  • FIG. 5 is a structural diagram of a user login system according to an embodiment of the present invention.
  • Figure 6 is a schematic block diagram showing a computing device for performing a user login method in accordance with the present invention.
  • Fig. 7 schematically shows a storage unit for holding or carrying program code implementing a user login method according to the present invention.
  • the embodiment of the invention provides a user login method. This method improves on devices that support users logging in on different clients.
  • the device in this embodiment may be a user terminal device such as a PC (Personal Computer), a mobile phone, or a handheld computer.
  • FIG. 1 is a flowchart of a method for user login according to an embodiment of the present invention, where the method includes steps S102 to S106.
  • S104 Acquire, according to the specific registered account in the login list, account information of the specific registered account.
  • the specific registered account in this embodiment is the login account selected by the user.
  • the embodiment of the invention provides a method for user login.
  • the user when the user logs in to the specified domain name, the user can check the account information of the user in the local client by adding a plug-in to the browser, and remind the user of the existing account information, and the user can select the account information.
  • the account is logged in to the designated domain name website, thereby eliminating the step of re-entering the account password, simplifying the user operation and having a better user experience.
  • This embodiment is a specific application scenario of the foregoing first embodiment. Through the embodiment, the method provided by the present invention can be more clearly and specifically illustrated.
  • the account information of the user's logged-in account on each client is obtained, and the account information is obtained.
  • the account information is ciphertext information, which includes at least two parts of the cookieQ string and the cookieT string of the logged-in account, the cookieQ string includes the basic information corresponding to the logged-in account, and the cookieT string includes the encryption of the basic information.
  • the generated check character is ciphertext information, which includes at least two parts of the cookieQ string and the cookieT string of the logged-in account, the cookieQ string includes the basic information corresponding to the logged-in account, and the cookieT string includes the encryption of the basic information.
  • the storage format in the shared memory in this embodiment may be as follows:
  • FIG. 2 is a flowchart of a specific method for user login according to an embodiment of the present invention.
  • the method specifically includes steps S201 to 210, which specifically support users to log in on different clients.
  • S201 Receive an indication from a user to access a specified domain name.
  • the indication mentioned in this embodiment may be triggered by the user entering the specified domain name in the browser and clicking on the access.
  • the domain name accessed is "axlogin.passport.360.cn".
  • step S202 is performed.
  • step S202 the registered account of each client corresponding to the specified domain name is acquired, and a login list composed of the registered account is generated.
  • the specific process may include: first, detecting whether a browser plug-in corresponding to the specified domain name is installed locally, and when detecting that the browser plug-in corresponding to the specified domain name is installed, The browser plug-in is invoked to obtain the registered account of each client corresponding to the specified domain name, and finally, a login list composed of the logged-in accounts is generated.
  • the operation of detecting whether the browser plug-in corresponding to the specified domain name is installed locally is performed by a specific script of the browser.
  • the browser plug-in also performs the following security detection: the first is to verify whether the Microsoft digital signature of the loading process file is passed, and the security check guarantees The security of the operating environment.
  • the second is to verify whether the domain name of the currently loaded plug-in is a specified domain name. For example, if the domain name of the currently loaded plug-in is "axlogin.passport.360.cn", the verification is passed.
  • the browser plugin also provides a method for obtaining a list of logged-in accounts corresponding to the specified domain name, namely the GetUserList method.
  • the specific script of the browser can be invoked by the GetUserList method provided by the browser plug-in to detect the account that the user has logged in on each client, and obtain the logged-in account in the shared memory, and generate a list of the logged-in accounts.
  • the generated registered account list is outputted by step S203 for The user makes a selection.
  • the operation of outputting the generated registered account list is performed by the specific script described above.
  • the specific script may display the login account identifier when displaying the login list ( The user name can be displayed to the user, or the avatar corresponding to the logged-in account can be displayed together with the avatar corresponding to the logged-in account, so that the user can distinguish the logged-in account.
  • the user selects the logged in account.
  • FIG. 3 shows a schematic diagram of a login list.
  • step S204 is performed.
  • step S204 a selection instruction from the user is received, the logged-in account in the corresponding login list is obtained, and the account information is obtained.
  • the user can select the login account by clicking the account avatar shown in FIG. 3.
  • the browser plug-in provides a method for obtaining a list of logged-in accounts corresponding to the specified domain name, that is, the GetUserList method.
  • the browser plugin also provides a way to get account information, namely the GetCode method. Therefore, when the user clicks on the selected account avatar, the GetCode method is invoked by the specific script of the browser to obtain the account information of the user selected account.
  • step S205 is continued.
  • the obtained account information is encrypted and calculated to generate an encrypted character string.
  • the operation of encrypting the account information is also implemented by the GetCode method provided by the browser plug-in.
  • the specific calculation of the account information includes the following three processes:
  • the current timestamp is obtained by sending an HTTP protocol to the server.
  • the server can provide an accurate and reliable time stamp service externally, and adopts a precise time source, high strength and high standard security mechanism to confirm the existence of the system processing data at a certain time and the relative time of related operations.
  • the order provides the basic services for time non-repudiation in the information system.
  • the obtained timestamp, the logged-in account selected by the user, and the account information thereof are spliced in a preset order to obtain a spliced string.
  • the foregoing information may be spliced in the following order, that is, a timestamp, a logged-in account selected by the user, a cookie Q value in the account information, and a cookie T value in the account information.
  • the spliced string is encrypted by using a preset encryption rule and a predetermined encryption key to generate an encrypted string.
  • the preset encryption key is a fixed public key agreed between the server and the login device, and the foregoing preset encryption rule may be AESCB256 encryption and BASE64 encoding, that is, the spliced string is encrypted by using the public key, and It performs the BASE64_ENCODE encoding operation.
  • step S206 is executed to send the generated encrypted character string to the server.
  • the generated encrypted string can be sent to the server through the HTTP protocol.
  • step S207 After receiving the encrypted character string sent by the login device, the server performs step S207.
  • step S207 the encrypted character string is checked by the server and judged whether it has passed. If the verification fails, step S208 is executed, that is, the operation is stopped or the response to the verification failure is returned to the login device. If the verification is successful, step S209 is performed.
  • the method for the server to verify the encrypted string includes:
  • the correct encrypted string is stored in the Memcache as a whole, and the record has been used. Each time the encrypted string is checked for elapsed time, it will check whether the encrypted string already exists in Memcache. If it exists, it indicates that the encrypted string has been used. At this time, the system refuses to access. If it does not exist, then Indicates that the encrypted string has not been used. In this case, verify that the encrypted string is successful.
  • the server decrypts the private key and the decryption method agreed upon by the login device. If the decryption is unsuccessful, the encryption string verification fails. If the decryption is successful, it is determined whether the timestamp obtained after decryption, the specific registered account number and the account information are complete, and the timestamp, the specific registered account and the account number. When the information is complete, it is determined that the encrypted string is verified.
  • the verification process needs to be performed after the verification of the third step above.
  • the time stamp provided by the server will have an expiration date. For example, the validity period is 5 minutes. In this case, check whether the timestamp carried in the encrypted string has exceeded 5 minutes. If it is not exceeded, the timestamp has not expired, that is, the verification is passed. Otherwise, the timestamp has expired. Failure, that is, the verification does not pass.
  • the account information carried in the encrypted string includes at least two parts of the cookieQ string and the cookie T string of the logged-in account. If the account information carried in the encrypted string is valid, the implementation of the cookieQ includes the basic account corresponding to the logged-in account. The information is verified and encrypted, and the encryption result is compared with the cookieT. When the comparison is the same, the account information carried in the encrypted string is valid, that is, the verification is passed, otherwise the account information carried in the encrypted string is invalid, that is, the school The test will not pass.
  • the verification process also needs to be performed after the third step of the above verification, and at this time, the account information is The user account included in the cookieQ string is compared with the user account that has been decrypted. If the comparison is the same, the account information carried in the encrypted string is correct and the check is passed. Otherwise, the account information carried in the encrypted string is incorrect. The verification does not pass.
  • step S209 is continued to generate a cookie encryption string corresponding to the registered account selected by the user, and return it to the login device.
  • the cookie encryption string is generated according to the selected login account selected by the user, and the cookie encryption string is valid for a preset time. For example, the server sets the cookie encryption string to be valid for 10 minutes, and expires.
  • step S210 is performed, that is, the cookie encryption string is set to log in to the specified domain name, and the specified domain name is registered by using the cookie encryption string.
  • the valid time is set for the server, so that the specific script of the browser can automatically save the setting of the cookie encryption string within the valid time, that is, The login device automatically logs in to the specified domain name using the login account selected by the user within the valid time.
  • the server marks the encrypted string as used and stores it in the Memcache.
  • the embodiment of the invention provides a method for the user to log in.
  • the user can add the plug-in for the browser to detect the account information that the user logs in to the local client, and remind the user that the local device exists.
  • the account information the user can select the account to log in to the designated domain name website, thereby eliminating the step of inputting the account password again, simplifying the user operation and having a better user experience.
  • the account information of the user is written into the shared memory in advance, and the access restriction is performed on the data stored in the shared memory, and only the legal plug-in is allowed to be called, thereby preventing the user account information from being acquired by the malicious program, and increasing The security of the user's account information.
  • the plug-in provided by the embodiment of the present invention verifies the Microsoft digital signature of the loading process before acquiring the account information of the user, so as to ensure that the plug-in is invoked by the malicious program, and the account information of the user is leaked.
  • the browser plug-in provided by the embodiment of the present invention displays an avatar corresponding to the user's account when displaying the account list that the user has logged in on the local client, so that the user can more easily identify the account and help improve. user experience.
  • the account information is encrypted and transmitted by the encryption algorithm, and the timestamp information is added, thereby increasing the security of the user account verification. Avoid being intercepted by illegal hackers and causing loss to users.
  • FIG. 4 is a structural block diagram of a user login device according to an embodiment of the present invention.
  • the device 400 includes:
  • the memory 410 is configured to store the currently registered account and account information of the user at each client;
  • the login list acquirer 420 is coupled to the memory 410 and configured to acquire the logged-in account of each client corresponding to the specified domain name from the memory, and generate a login list composed of the logged-in account.
  • the information acquirer 430 is coupled to the memory 410 and the login list acquirer 420, and configured to acquire the account information of the specific registered account from the memory 410 according to the specific registered account in the login list;
  • the account registrar 440 is coupled to the information acquirer 430 and configured to log in to the designated domain name using the acquired account information.
  • the login list acquirer 420 includes:
  • the plug-in detecting unit 421 is configured to detect whether a browser plug-in corresponding to the specified domain name is installed;
  • the account reading unit 422 is configured to, when the plug-in detecting unit 421 detects that the browser plug-in is installed, invoke the browser plug-in to obtain the registered account of each client corresponding to the specified domain name;
  • the list generating unit 423 is configured to generate a login list composed of the registered accounts.
  • the login list includes an identifier of the logged in account and/or an avatar corresponding to the logged in account.
  • the information acquirer 430 is further configured to encrypt the particular logged in account information.
  • the information acquirer 430 includes:
  • the timestamp obtaining unit 431 is configured to acquire a current timestamp.
  • the encryption processing unit 432 is configured to encrypt the time stamp, the specific registered account, and the account information by using a preset encryption rule to generate an encrypted character string.
  • the encryption processing unit 432 is further configured to generate an encrypted string as follows:
  • the timestamp, the specific logged-in account, and the account information thereof are spliced in a preset order to obtain a spliced string;
  • the spliced string is encrypted by using a preset encryption rule and a predetermined encryption key to generate an encrypted string.
  • the account registrar 440 includes:
  • the data sending unit 441 is configured to send the encrypted string to the server for verification by using a hypertext transfer protocol (HTTP);
  • HTTP hypertext transfer protocol
  • the data receiving unit 442 is configured to receive a cookie encryption string returned by the server, where the cookie encryption string corresponds to a specific logged-in account, and is generated by the server after verifying that the encrypted string is passed;
  • the login setting unit 443 is configured to set a cookie encryption string for logging in the specified domain name and using the cookie The encrypted string is logged in to the specified domain name.
  • the login setting unit 443 is further configured to set a cookie encryption string for logging in the specified domain name within a preset time, and log in to the specified domain name by using a cookie encryption string.
  • condition that the encrypted string is verified by the server includes at least one of the following:
  • the encrypted string comes from the specified domain name
  • the encrypted string has not been used
  • the encrypted string is successfully decrypted, and the timestamp, specific registered account, and account information carried are complete;
  • the timestamp carried in the encrypted string has not expired.
  • the account information carried in the encrypted string is valid.
  • the user account in the account information carried in the encrypted string is the same as the registered account selected by the user.
  • the account information stored in the memory 410 includes at least two parts: a cookieQ string and a cookie T string of the logged-in account, the cookieQ string includes basic information corresponding to the logged-in account, and the cookie T string includes a check character generated by encrypting the basic information. .
  • FIG. 5 is a structural diagram of a user login system according to an embodiment of the present invention.
  • the system 500 includes the user login device 400, and further includes a server 600 for verification.
  • An embodiment of the present invention provides a user login device and a system.
  • the user can detect the account that the user logs in to the local client by adding a plug-in to the browser.
  • the information reminds the user of the existing account information, and the user can select the account to log in to the designated domain name website, thereby eliminating the step of inputting the account password again, simplifying the user operation and having a better user experience.
  • numerous specific details are set forth. However, it is understood that the embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures, and techniques are not shown in detail so as not to obscure the understanding of the description.
  • modules in the devices of the embodiments can be adaptively changed and placed in one or more devices different from the embodiment.
  • Modules or units or components in an embodiment may be combined into one module or unit or component, and in addition, they may be divided into multiple sub- Module or subunit or subcomponent.
  • any combination of the features disclosed in the specification, including the accompanying claims, the abstract and the drawings, and any methods so disclosed, or All processes or units of the device are combined.
  • Each feature disclosed in this specification (including the accompanying claims, the abstract and the drawings) may be replaced by alternative features that provide the same, equivalent or similar purpose.
  • the various component embodiments of the present invention may be implemented in hardware, or in a software module running on one or more processors, or in a combination thereof.
  • a microprocessor or digital signal processor may be used in practice to implement some or all of the functionality of some or all of the components of the user login device and user login system in accordance with embodiments of the present invention.
  • the invention can also be implemented as a device or device program (e.g., a computer program and a computer program product) for performing some or all of the methods described herein.
  • a program implementing the invention may be stored on a computer readable medium or may be in the form of one or more signals. Such signals may be downloaded from an Internet website, provided on a carrier signal, or provided in any other form.
  • FIG. 6 illustrates a computing device, such as a personal computer or the like, that can implement a user login method in accordance with the present invention.
  • the computing device conventionally includes a processor 810 and a computer program product or computer readable medium in the form of a memory 820.
  • the memory 820 may be an electronic memory such as a flash memory, an EEPROM (Electrically Erasable Programmable Read Only Memory), an EPROM, a hard disk, or a ROM.
  • Memory 820 has a memory space 830 for program code 831 for performing any of the method steps described above.
  • storage space 830 for program code may include various program code 831 for implementing various steps in the above methods, respectively.
  • the program code can be read from or written to one or more computer program products.
  • Such computer program products include program code carriers such as hard disks, compact disks (CDs), memory cards or floppy disks.
  • Such a computer program product is typically a portable or fixed storage unit as described with reference to FIG.
  • the storage unit may have storage segments, storage spaces, and the like that are similarly arranged to memory 820 in the computing device of FIG.
  • the program code can be compressed, for example, in an appropriate form.
  • the storage unit includes computer readable code 831', ie, code readable by a processor, such as 810, that when executed by a computing device causes the computing device to perform each of the methods described above step.
  • one embodiment means The specific features, structures, or characteristics described in connection with the embodiments are included in at least one embodiment of the invention.
  • the phrase “in one embodiment” is not necessarily referring to the same embodiment.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

La présente invention concerne un procédé, un dispositif, et un système de connexion utilisateur Le procédé consiste à : acquérir des comptes consignés de clients correspondant à un nom de domaine désigné, et générer une liste de connexion contenant les comptes consignés; acquérir, d'après un compte consigné spécifique de la liste de connexion, des informations de compte du compte consigné spécifique; et utiliser les informations de compte acquises pour se connecter au nom de domaine désigné. Selon la présente invention, quand un utilisateur se connecte au nom de domaine désigné, les informations de compte consignées dans un client local par l'utilisateur peuvent être détectées et acquises en ajoutant un plugin à un navigateur. L'utilisateur est informé que les informations de compte sont présentes localement, et il peut choisir parmi les comptes pour se connecter au site Web désigné. Comme l'utilisateur ne doit pas re-saisir de mot de passe de compte, le fonctionnement est simplifié et l'expérience utilisateur améliorée.
PCT/CN2014/086298 2013-11-01 2014-09-11 Procédé, dispositif, et système de connexion utilisateur Ceased WO2015062362A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310535848.XA CN103647746A (zh) 2013-11-01 2013-11-01 用户登录的方法、设备及系统
CN201310535848.X 2013-11-01

Publications (1)

Publication Number Publication Date
WO2015062362A1 true WO2015062362A1 (fr) 2015-05-07

Family

ID=50252902

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/086298 Ceased WO2015062362A1 (fr) 2013-11-01 2014-09-11 Procédé, dispositif, et système de connexion utilisateur

Country Status (2)

Country Link
CN (1) CN103647746A (fr)
WO (1) WO2015062362A1 (fr)

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110287691A (zh) * 2019-05-21 2019-09-27 深圳壹账通智能科技有限公司 应用程序登录方法、装置、设备及存储介质
CN110457203A (zh) * 2019-07-04 2019-11-15 深圳壹账通智能科技有限公司 爬虫业务测试方法、装置、计算机设备和存储介质
CN111786932A (zh) * 2019-04-04 2020-10-16 阿里巴巴集团控股有限公司 账号登录方法、装置、电子设备及计算机存储介质
CN112491839A (zh) * 2020-11-17 2021-03-12 中国平安人寿保险股份有限公司 基于跨系统的登录处理方法、装置、计算机设备及介质
CN113536289A (zh) * 2021-07-26 2021-10-22 未鲲(上海)科技服务有限公司 服务器登录方法、装置、终端设备及介质
CN113987433A (zh) * 2021-10-25 2022-01-28 西安热工研究院有限公司 Dcs后台用户权限配置及校验方法、系统、设备及介质
CN114817897A (zh) * 2021-01-18 2022-07-29 千寻位置网络有限公司 终端设备的安全加固方法
CN115361162A (zh) * 2022-07-06 2022-11-18 华盟科技咨询(深圳)有限公司 系统登录方法及其相关设备
CN115373515A (zh) * 2022-08-19 2022-11-22 中国工商银行股份有限公司 头戴式设备的登录方法、装置、电子设备和介质
CN116112247A (zh) * 2023-01-17 2023-05-12 广州通则康威智能科技有限公司 一种基于浏览器插件的cpe管理后台登录方法及系统
CN117151068A (zh) * 2023-10-23 2023-12-01 国网浙江省电力有限公司 数字化智慧财务共享方法及共享中台
CN118228236A (zh) * 2024-05-24 2024-06-21 四川封面传媒科技有限责任公司 基于svg动画的验证方法、装置、设备、介质及产品

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103647746A (zh) * 2013-11-01 2014-03-19 北京奇虎科技有限公司 用户登录的方法、设备及系统
CN105472608B (zh) * 2014-09-09 2019-01-15 联想(北京)有限公司 一种信息处理方法及第一电子设备
CN104392378B (zh) * 2014-12-10 2018-02-27 北京京东尚科信息技术有限公司 一种添加物品到购物车的方法和系统
CN104660589B (zh) * 2015-01-20 2021-09-10 中兴通讯股份有限公司 一种对信息进行加密控制、解析信息的方法、系统和终端
CN105630302A (zh) * 2015-08-07 2016-06-01 宇龙计算机通信科技(深圳)有限公司 用户域的切换方法、切换系统及移动终端
CN105577651B (zh) * 2015-12-16 2019-04-23 广州酷狗计算机科技有限公司 服务提供方法及装置
CN106330979B (zh) * 2016-11-09 2019-12-17 腾讯科技(深圳)有限公司 路由器的登录方法和装置
CN109309655B (zh) * 2017-07-28 2020-12-04 深圳光峰科技股份有限公司 无状态通信安全签名方法、终端及服务器端
CN108600391A (zh) * 2018-05-15 2018-09-28 北京汉能光伏投资有限公司 一种设置头像的方法及装置
CN109413105A (zh) * 2018-12-12 2019-03-01 深圳市丰巢科技有限公司 一种网络请求处理方法、装置、计算机设备及存储介质
CN110147658B (zh) * 2019-04-16 2024-07-16 平安科技(深圳)有限公司 用户信息加解密方法、系统和计算机设备
CN110602139B (zh) * 2019-09-27 2021-08-13 成都九曲互动科技有限公司 基于腾讯云的充值登录接入方法及其系统
CN114036474A (zh) * 2021-11-05 2022-02-11 秦皇岛泰和安科技有限公司 用户权限验证方法、装置、系统及计算机可读存储介质

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102215232A (zh) * 2011-06-07 2011-10-12 浪潮齐鲁软件产业有限公司 一种单点登录的方法
CN102291456A (zh) * 2011-08-11 2011-12-21 Tcl集团股份有限公司 账号管理方法、装置及系统
WO2012015099A1 (fr) * 2010-07-29 2012-02-02 주식회사 반딧불 Appareil et procédé pour la fourniture de service web au moyen d'un jeton sécurisé à usage unique
CN103036993A (zh) * 2012-12-18 2013-04-10 北京奇虎科技有限公司 实现网站登录的浏览器客户端和方法
CN103647746A (zh) * 2013-11-01 2014-03-19 北京奇虎科技有限公司 用户登录的方法、设备及系统

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101127603B (zh) * 2007-08-16 2010-08-04 中兴通讯股份有限公司 一种实现门户网站单点登录的方法及ims客户端
CN101815291A (zh) * 2010-03-22 2010-08-25 中兴通讯股份有限公司 一种自动登录客户端的方法和系统
CN103124260B (zh) * 2012-12-14 2016-06-29 北京新媒传信科技有限公司 一种Web页面的登录方法和装置

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2012015099A1 (fr) * 2010-07-29 2012-02-02 주식회사 반딧불 Appareil et procédé pour la fourniture de service web au moyen d'un jeton sécurisé à usage unique
CN102215232A (zh) * 2011-06-07 2011-10-12 浪潮齐鲁软件产业有限公司 一种单点登录的方法
CN102291456A (zh) * 2011-08-11 2011-12-21 Tcl集团股份有限公司 账号管理方法、装置及系统
CN103036993A (zh) * 2012-12-18 2013-04-10 北京奇虎科技有限公司 实现网站登录的浏览器客户端和方法
CN103647746A (zh) * 2013-11-01 2014-03-19 北京奇虎科技有限公司 用户登录的方法、设备及系统

Cited By (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111786932B (zh) * 2019-04-04 2023-06-20 阿里巴巴集团控股有限公司 账号登录方法、装置、电子设备及计算机存储介质
CN111786932A (zh) * 2019-04-04 2020-10-16 阿里巴巴集团控股有限公司 账号登录方法、装置、电子设备及计算机存储介质
CN110287691A (zh) * 2019-05-21 2019-09-27 深圳壹账通智能科技有限公司 应用程序登录方法、装置、设备及存储介质
CN110457203A (zh) * 2019-07-04 2019-11-15 深圳壹账通智能科技有限公司 爬虫业务测试方法、装置、计算机设备和存储介质
CN112491839A (zh) * 2020-11-17 2021-03-12 中国平安人寿保险股份有限公司 基于跨系统的登录处理方法、装置、计算机设备及介质
CN112491839B (zh) * 2020-11-17 2022-10-21 中国平安人寿保险股份有限公司 基于跨系统的登录处理方法、装置、计算机设备及介质
CN114817897A (zh) * 2021-01-18 2022-07-29 千寻位置网络有限公司 终端设备的安全加固方法
CN113536289A (zh) * 2021-07-26 2021-10-22 未鲲(上海)科技服务有限公司 服务器登录方法、装置、终端设备及介质
CN113987433A (zh) * 2021-10-25 2022-01-28 西安热工研究院有限公司 Dcs后台用户权限配置及校验方法、系统、设备及介质
CN115361162A (zh) * 2022-07-06 2022-11-18 华盟科技咨询(深圳)有限公司 系统登录方法及其相关设备
CN115373515A (zh) * 2022-08-19 2022-11-22 中国工商银行股份有限公司 头戴式设备的登录方法、装置、电子设备和介质
CN116112247A (zh) * 2023-01-17 2023-05-12 广州通则康威智能科技有限公司 一种基于浏览器插件的cpe管理后台登录方法及系统
CN116112247B (zh) * 2023-01-17 2024-01-16 广州通则康威科技股份有限公司 一种基于浏览器插件的cpe管理后台登录方法及系统
CN117151068A (zh) * 2023-10-23 2023-12-01 国网浙江省电力有限公司 数字化智慧财务共享方法及共享中台
CN117151068B (zh) * 2023-10-23 2024-01-26 国网浙江省电力有限公司 数字化智慧财务共享方法及共享中台
CN118228236A (zh) * 2024-05-24 2024-06-21 四川封面传媒科技有限责任公司 基于svg动画的验证方法、装置、设备、介质及产品

Also Published As

Publication number Publication date
CN103647746A (zh) 2014-03-19

Similar Documents

Publication Publication Date Title
WO2015062362A1 (fr) Procédé, dispositif, et système de connexion utilisateur
JP6282349B2 (ja) ウェブサイトにログインしている端末がモバイル端末であるかどうかを決定するための方法およびシステム
CN107395614B (zh) 单点登录方法及系统
JP5329859B2 (ja) ファーミング・フィッシング攻撃で用いられる不正なssl証明書・dnsリダイレクトの検出方法
KR101948721B1 (ko) 파일 해시 값을 이용한 파일 위변조 검사 방법 및 단말 장치
US10574686B2 (en) Security verification by message interception and modification
US11792221B2 (en) Rest API scanning for security testing
KR102182906B1 (ko) 동기화 통신에서의 서버 인증서 에러의 보안 처리 기법
US9195809B1 (en) Automated vulnerability and error scanner for mobile applications
WO2015062378A1 (fr) Procédé d'enregistrement d'utilisateur, terminal mobile et serveur de programme d'application client
CN107733883B (zh) 一种检测批量注册账号的方法及装置
CN113938886A (zh) 身份认证平台测试方法、装置、设备及存储介质
US20250294364A1 (en) Systems and methods for verified communication between mobile applications
CN109495458A (zh) 一种数据传输的方法、系统及相关组件
TWI546698B (zh) 基於伺服器的登入系統、登入驗證伺服器及其驗證方法
CN105359453B (zh) 基于匿名服务器的用户设置保护
CN115442027B (zh) Scheme请求校验方法、装置及设备
US12307460B2 (en) Systems and methods for verified communication between mobile applications
Chen Vulnerability Testing for WebAuthn
Gautam et al. Passwords and FIDO2 Are Meant To Be Secret: A Practical Secure Authentication Channel for Web Browsers
TWI670618B (zh) 配合一行動裝置實現的無密碼登入系統及方法
Zapata et al. Testing and securing android studio applications
Dijkhof Sending QR-codes as a replacement for scanning

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14858110

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14858110

Country of ref document: EP

Kind code of ref document: A1