CN101034983A - System and method for realizing on-Internet true name of the network access user - Google Patents
System and method for realizing on-Internet true name of the network access user Download PDFInfo
- Publication number
- CN101034983A CN101034983A CN 200610064596 CN200610064596A CN101034983A CN 101034983 A CN101034983 A CN 101034983A CN 200610064596 CN200610064596 CN 200610064596 CN 200610064596 A CN200610064596 A CN 200610064596A CN 101034983 A CN101034983 A CN 101034983A
- Authority
- CN
- China
- Prior art keywords
- user
- certificate server
- internet
- network
- true
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
This invention relates to a realization of network users using Internet real-name system, which includes an authentication server. The server includes users interactive modules for import, modify or delete user account information and the true identity, data-processing module using for dealing with the data, as well as server interface module for connecting landing of users. The data-processing module is connected with the data storage module, and transmit registered users account information and the true identity of its associated information data storage module storage. The present invention also provides a realization of network users to the Internet real-name approach. Since the invention provides the Internet network users to achieve the real-name system and its method of expanding authentication servers it can relate account information to real identity information related to realize the true user control to improve network the security of information transmission.
Description
Technical field
The present invention relates to a kind of system and method thereof, relate in particular to a kind of system and method thereof of using certificate server network access user to be realized on-Internet true name network access user realization on-Internet true name.
Background technology
Along with science and technology development, the network technology is maked rapid progress, and the application of office automation and internet is more and more universal, transmits information mutually by the internet between enterprise or the unit, and enterprise or internal institution transmit information mutually by local area network (LAN).
Now, a lot of enterprises or unit all are the network environments of disposing oneself with RADIUS (Remote Authentication Dial InUser Service) agreement or LDAP (Light Directory Access Protocol) LDAP for the certificate server on basis, enterprise staff needs to land by certificate server earlier, just can use a computer and Internet resources, as No. 02148181.4 patent application of China disclose a kind of by network authentication and checking user and computer method and equipment.Can control employee's related resource that uses a computer in this way effectively, improve the efficient of work, also can guarantee the safety of business event data simultaneously.
Yet, certificate server has just merely been realized the process of a user account number checking, login user account number and user's true identity is not set up contact, and the user lands the internet behavior that uses the network resource accession the Internet to produce in the back and also can not get off by certified server record, cause when the generation data leak, find the discovery data by the authentication historical record of certificate server and how to reveal, fail safe is not high.
Summary of the invention
Technical problem to be solved by this invention is: a kind of system to network access user realization on-Internet true name is provided, and it can realize the correspondence of login user account number and user real identification, guarantees the safety of network information transfer.
The further technical problem to be solved of the present invention is: a kind of method to network access user realization on-Internet true name is provided, and it can realize the correspondence of login user account number and user real identification, guarantees the safety of network information transfer.
For solving the problems of the technologies described above, the technical solution adopted in the present invention is: a kind of system that network access user is realized on-Internet true name, it comprises a certificate server end, described certificate server end comprises connection successively, be used for input, revise or delete the user interaction module that registered user's account reaches the true identity information related with it, be used to carry out the data processing module of data processing, and be used for the registered user and connect the certificate server interface module land, described data processing module also is connected with data memory module, and described registered user's account and true identity message transmission to the data memory module related with it are stored.
Described certificate server interface module is used to obtain the IP address of the computer of the usersaccount information that connects the registered user who lands and use thereof.
Described certificate server end also comprises a communication interface, and it is connected communication with data processing module.
Described system to network access user realization on-Internet true name also comprises an auditing system end, and it comprises communication interface and the data processing module that connects successively, and this communication interface is connected communication with the communication interface of described certificate server end.
The communication interface of described auditing system end connects by the communication interface of TCP/UDP agreement and described certificate server end.
The communication interface of described auditing system end receives associated data, true identity information and the IP address from the registered user account who lands network of the communication interface of certificate server end, through data processing unit associated data and true identity information are sent to the network audit unit, the network audit unit is preserved this user and is landed this IP address generation internet behavior data of back use, and corresponding with this user's true identity information.
Following technical scheme provided by the present invention: a kind of method that network access user is realized on-Internet true name, it may further comprise the steps: A. lands user's registration, modification or the deletion usersaccount information of network by certificate server to request, and writes down related true identity information to stored data base; B. the user lands network by certificate server input usersaccount information; C. certificate server receives the usersaccount information of authenticated user input, after authentication is passed through, goes out corresponding true identity information by the usersaccount information correlation inquiry.
Certificate server also receives request simultaneously and lands the employed IP of network user address among the described step C.
Described certificate server carries out the usersaccount information, true identity information and the IP address that receive to send to an auditing system end after the encryption.
After described auditing system end is deciphered above-mentioned enciphered message, usersaccount information, true identity information and IP address are sent to a network audit unit, the network audit unit will be preserved this user and land this IP address generation internet behavior data of back use, and corresponding with this user's true identity information.
Beneficial effect of the present invention is: because the present invention realizes that to network access user the system of on-Internet true name and method thereof are by expanding certificate server, carry out related with true identity information usersaccount information, can realize the real user of Internet data is supervised, improve the network information transfer fail safe.
Description of drawings
Fig. 1 is the present invention realizes on-Internet true name to network access user a system framework schematic diagram.
Embodiment
See also Fig. 1, the present invention realizes that to network access user the system of on-Internet true name comprises certificate server end 10 and auditing system end 20, wherein certificate server end 10 is made up of the module that program that is installed in the independent operating on the certificate server and certified server program load, auditing system end 20 is made up of the module that the auditing system program loads, module with the SO storehouse of the DLL storehouse of WINDOWS operating system or UNIX/LINUX system pattern loaded by the auditing system program.
Data processing module 12 is used to receive account number log-on message, account number deletion information or the account number of user interaction module 14 and revises information, again account number log-on message, account number deletion information or account number modification information is sent to certificate server interface module 11; Data processing module 12 receives the result that account number is registered, account number is deleted or revised that certificate server interface module 11 sends over, and send to user interaction module 14, simultaneously also obtain Accounts List, Accounts List is sent to the user interaction module from data memory module 13; Data processing module 12 receives IP address and the corresponding account associated data that certificate server interface module 11 sends over, obtain the true identity information of account according to account from data memory module 13, send to communication interface 15 after associated data and real information are integrated; If account number succeeds in registration, data processing module 12 sends to data memory module 13 to employee's true identity information of account and account correspondence; If account number is revised successfully, data processing module 12 sends to data memory module 13 to the employee's of up-to-date account and account correspondence up-to-date true identity information; If account number is deleted successfully, the corresponding account of data processing module 12 notification data memory modules, 13 deletions.
The present invention realizes that to network access user the method for on-Internet true name is as described below: when a new employee need use the computer resource of certificate server control, at first administrative staff are that this employee registers a new account on certificate server by user interaction module 14, are saved in the database if this employee's that succeeds in registration account number and its true identity information all can be sent to data memory module 13; After registration was finished, administrative staff sent to the new employee to new employee's account number and password; When the new employee will use a computer resource, certificate server can point out it to carry out identity validation, the new employee is by remote computer input account number and password, certificate server receives account number and password carries out authentication, after authentication is passed through, certificate server interface module 11 obtains the IP address of the computer of this employee's account number and its use, then these data are sent to data processing module 12, data processing module 12 receives IP address and the corresponding account associated data that certificate server interface module 11 sends over, obtain the true identity information of account according to account from data memory module 13, send to communication interface 15 after associated data and real information are integrated.
Simultaneously, when the program start of certificate server end 10, the communication interface 15 on the certificate server end 10 connects by the communication interface 25 of TCP/UDP agreement and auditing system end 20.After the communication interface on the certificate server end 10 15 receives the associated data that sends over from data memory module 13 and real information, earlier data are carried out encryption, by the connection of setting up data are sent to the communication interface 25 of auditing system end 20 then.
Secondly, the communication interface module 25 of auditing system end 20 is decrypted processing to data earlier after getting access to associated data and real information, then data are sent to the data processing module 22 of auditing system end 20, data processing module 22 receives associated data and the true identity information that communication interface 11 sends over, associated data and true identity information are sent to network audit unit 30, this user that network audit unit 30 will be preserved lands the back and uses these IP address generation internet behavior data corresponding with this user's true identity information, has finally realized on-Internet true name.
Be appreciated that, the present invention realizes on-Internet true name to network access user method has realized the system of real name of internet behavior daily record by the internet behavior daily record of 30 li preservations of real user identity information and network audit unit of the account of preservation in the certificate server and account number correspondence is associated.When the network audit unit 30 li when illegal network data having occurred, the internet behavior daily record that administrative staff can set up according to the present invention and the related information of real user navigate to the generation people of this internet behavior daily record fast, and this user taked corresponding measure, guaranteed the safety of network information transfer.
The above is preferred embodiment of the present invention only, is not to be used to limit protection scope of the present invention, all any modifications of being made within the spirit and principles in the present invention, is equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1, a kind of system that network access user is realized on-Internet true name, it comprises a certificate server end, it is characterized in that: described certificate server end comprises successively and to connect, be used for input, revise or delete the user interaction module that registered user's account reaches the true identity information related with it, be used to carry out the data processing module of data processing, and be used for the registered user and connect the certificate server interface module land, described data processing module also is connected with data memory module, and described registered user's account and true identity message transmission to the data memory module related with it are stored.
2, as claimed in claim 1 network access user is realized it is characterized in that the system of on-Internet true name: described certificate server interface module is used to obtain the IP address of the computer of the usersaccount information that connects the registered user who lands and use thereof.
3, the system to network access user realization on-Internet true name as claimed in claim 2, it is characterized in that: described certificate server end also comprises a communication interface, and it is connected communication with data processing module.
4, the system that network access user is realized on-Internet true name as claimed in claim 2, it is characterized in that: described system to network access user realization on-Internet true name also comprises an auditing system end, it comprises communication interface and the data processing module that connects successively, and this communication interface is connected communication with the communication interface of described certificate server end.
5, the system to network access user realization on-Internet true name as claimed in claim 4, it is characterized in that: the communication interface of described auditing system end connects by the communication interface of TCP/UDP agreement and described certificate server end.
6, the system that network access user is realized on-Internet true name as claimed in claim 5, it is characterized in that: the communication interface of described auditing system end receives associated data, true identity information and the IP address from the registered user account who lands network of the communication interface of certificate server end, through data processing unit associated data and true identity information are sent to the network audit unit, the network audit unit is preserved this user and is landed this IP address generation internet behavior data of back use, and corresponding with this user's true identity information.
7, a kind of method to network access user realization on-Internet true name is characterized in that may further comprise the steps:
A. land user's registration, modification or the deletion usersaccount information of network by certificate server to request, and write down related true identity information to stored data base;
B. the user lands network by certificate server input usersaccount information;
C. certificate server receives the usersaccount information of authenticated user input, after authentication is passed through, goes out corresponding true identity information by the usersaccount information correlation inquiry.
8, the method to network access user realization on-Internet true name as claimed in claim 7 is characterized in that: certificate server also receives request simultaneously and lands the employed IP of network user address among the described step C.
9, the method to network access user realization on-Internet true name as claimed in claim 8, it is characterized in that: described certificate server carries out the usersaccount information, true identity information and the IP address that receive to send to an auditing system end after the encryption.
10, the method that network access user is realized on-Internet true name as claimed in claim 9, it is characterized in that: after described auditing system end is deciphered above-mentioned enciphered message, usersaccount information, true identity information and IP address are sent to a network audit unit, the network audit unit will be preserved this user and land this IP address generation internet behavior data of back use, and corresponding with this user's true identity information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200610064596 CN101034983A (en) | 2006-12-31 | 2006-12-31 | System and method for realizing on-Internet true name of the network access user |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200610064596 CN101034983A (en) | 2006-12-31 | 2006-12-31 | System and method for realizing on-Internet true name of the network access user |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101034983A true CN101034983A (en) | 2007-09-12 |
Family
ID=38731303
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200610064596 Pending CN101034983A (en) | 2006-12-31 | 2006-12-31 | System and method for realizing on-Internet true name of the network access user |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101034983A (en) |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102055748A (en) * | 2009-11-05 | 2011-05-11 | 中兴通讯股份有限公司 | Electronic bulletin board management method and system |
| CN102055749A (en) * | 2009-11-05 | 2011-05-11 | 中兴通讯股份有限公司 | Electronic bulletin board management method and system |
| WO2011153850A1 (en) * | 2010-06-07 | 2011-12-15 | 中兴通讯股份有限公司 | System, method and terminal for implementing real-name system management |
| CN102647430A (en) * | 2012-05-09 | 2012-08-22 | 司文 | Real-name certification system and method capable of hiding identity information |
| CN103188241A (en) * | 2011-12-31 | 2013-07-03 | 上海第九城市信息技术有限公司 | User account management method based on mobile intelligent terminal number |
| CN104159225A (en) * | 2014-09-02 | 2014-11-19 | 解芳 | Wireless network based real-name registration system management method and system |
| CN104184583A (en) * | 2013-05-23 | 2014-12-03 | 中国电信股份有限公司 | Method and system for distributing IP address |
| CN104901930A (en) * | 2014-04-21 | 2015-09-09 | 孟俊 | Traceable network behavior management method based on CPK identity authentication |
| WO2016169438A1 (en) * | 2015-04-22 | 2016-10-27 | 腾讯科技(深圳)有限公司 | Method and apparatus for acquiring user account |
| CN106126539A (en) * | 2016-06-15 | 2016-11-16 | 百度在线网络技术(北京)有限公司 | A kind of user behavior data treating method and apparatus |
| CN106507383A (en) * | 2016-11-16 | 2017-03-15 | 迈普通信技术股份有限公司 | Real name auditing method, equipment and system |
| CN107124424A (en) * | 2017-05-22 | 2017-09-01 | 迈普通信技术股份有限公司 | Real name auditing method, equipment and system |
| CN104158824B (en) * | 2014-09-02 | 2018-03-16 | 解芳 | Genuine cyber identification authentication method and system |
| CN109714448A (en) * | 2018-12-26 | 2019-05-03 | 深圳创维数字技术有限公司 | The internet information statistical method and device of PON terminal |
| CN110391905A (en) * | 2019-08-07 | 2019-10-29 | 北京盛世光明软件股份有限公司 | A kind of internet behavior auditing system and method based on quantum key encryption technology |
| CN111338922A (en) * | 2020-03-02 | 2020-06-26 | 武汉思普崚技术有限公司 | DLL failure detection method and device |
| CN114189366A (en) * | 2019-06-12 | 2022-03-15 | 腾讯科技(深圳)有限公司 | Account correlation method, terminal and server |
| CN114531295A (en) * | 2022-03-01 | 2022-05-24 | 中国光大银行股份有限公司 | User behavior auditing system, method, equipment and storage medium |
| CN114928539A (en) * | 2022-05-13 | 2022-08-19 | 中国广电广州网络股份有限公司 | Broadcasting and television coaxial network data management method |
-
2006
- 2006-12-31 CN CN 200610064596 patent/CN101034983A/en active Pending
Cited By (26)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102055749A (en) * | 2009-11-05 | 2011-05-11 | 中兴通讯股份有限公司 | Electronic bulletin board management method and system |
| CN102055749B (en) * | 2009-11-05 | 2016-03-30 | 中兴通讯股份有限公司 | electronic bulletin board management method and system |
| CN102055748B (en) * | 2009-11-05 | 2016-08-03 | 中兴通讯股份有限公司 | electronic bulletin board management method and system |
| CN102055748A (en) * | 2009-11-05 | 2011-05-11 | 中兴通讯股份有限公司 | Electronic bulletin board management method and system |
| WO2011153850A1 (en) * | 2010-06-07 | 2011-12-15 | 中兴通讯股份有限公司 | System, method and terminal for implementing real-name system management |
| CN103188241A (en) * | 2011-12-31 | 2013-07-03 | 上海第九城市信息技术有限公司 | User account management method based on mobile intelligent terminal number |
| CN102647430A (en) * | 2012-05-09 | 2012-08-22 | 司文 | Real-name certification system and method capable of hiding identity information |
| CN104184583B (en) * | 2013-05-23 | 2017-09-12 | 中国电信股份有限公司 | Method and system for distributing IP address |
| CN104184583A (en) * | 2013-05-23 | 2014-12-03 | 中国电信股份有限公司 | Method and system for distributing IP address |
| CN104901930A (en) * | 2014-04-21 | 2015-09-09 | 孟俊 | Traceable network behavior management method based on CPK identity authentication |
| CN104159225A (en) * | 2014-09-02 | 2014-11-19 | 解芳 | Wireless network based real-name registration system management method and system |
| CN104158824B (en) * | 2014-09-02 | 2018-03-16 | 解芳 | Genuine cyber identification authentication method and system |
| US10462257B2 (en) | 2015-04-22 | 2019-10-29 | Tencent Technology (Shenzhen) Company Limited | Method and apparatus for obtaining user account |
| WO2016169438A1 (en) * | 2015-04-22 | 2016-10-27 | 腾讯科技(深圳)有限公司 | Method and apparatus for acquiring user account |
| CN106126539A (en) * | 2016-06-15 | 2016-11-16 | 百度在线网络技术(北京)有限公司 | A kind of user behavior data treating method and apparatus |
| CN106507383A (en) * | 2016-11-16 | 2017-03-15 | 迈普通信技术股份有限公司 | Real name auditing method, equipment and system |
| CN107124424A (en) * | 2017-05-22 | 2017-09-01 | 迈普通信技术股份有限公司 | Real name auditing method, equipment and system |
| CN109714448A (en) * | 2018-12-26 | 2019-05-03 | 深圳创维数字技术有限公司 | The internet information statistical method and device of PON terminal |
| CN114189366B (en) * | 2019-06-12 | 2023-02-28 | 腾讯科技(深圳)有限公司 | Account correlation method, terminal and server |
| CN114189366A (en) * | 2019-06-12 | 2022-03-15 | 腾讯科技(深圳)有限公司 | Account correlation method, terminal and server |
| CN110391905A (en) * | 2019-08-07 | 2019-10-29 | 北京盛世光明软件股份有限公司 | A kind of internet behavior auditing system and method based on quantum key encryption technology |
| CN111338922A (en) * | 2020-03-02 | 2020-06-26 | 武汉思普崚技术有限公司 | DLL failure detection method and device |
| CN111338922B (en) * | 2020-03-02 | 2023-04-11 | 武汉思普崚技术有限公司 | DLL failure detection method and device |
| CN114531295A (en) * | 2022-03-01 | 2022-05-24 | 中国光大银行股份有限公司 | User behavior auditing system, method, equipment and storage medium |
| CN114928539A (en) * | 2022-05-13 | 2022-08-19 | 中国广电广州网络股份有限公司 | Broadcasting and television coaxial network data management method |
| CN114928539B (en) * | 2022-05-13 | 2023-08-15 | 中国广电广州网络股份有限公司 | Broadcast television coaxial network data management method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101034983A (en) | System and method for realizing on-Internet true name of the network access user | |
| CN103001999B (en) | For privately owned Cloud Server, intelligent apparatus client and the method for public cloud network | |
| US7665118B2 (en) | Server, computer memory, and method to support security policy maintenance and distribution | |
| US7665125B2 (en) | System and method for distribution of security policies for mobile devices | |
| US8548916B2 (en) | Managing passwords used when detecting information on configuration items disposed on a network | |
| CN103095720B (en) | A kind of method for managing security of cloud storage system of dialogue-based management server | |
| CN102968600B (en) | Full life-cycle management method for sensitive data file based on fingerprint information implantation | |
| US20060190984A1 (en) | Gatekeeper architecture/features to support security policy maintenance and distribution | |
| WO2004028070A1 (en) | Server, computer memory, and method to support security policy maintenance and distribution | |
| CN104410813A (en) | Method and device for binding user account with monitoring equipment in video monitoring system | |
| CN104769908A (en) | LDAP-based multi-tenant in-cloud identity management system | |
| US9998439B2 (en) | Mobile device identify factor for access control policies | |
| CN111177480B (en) | Block chain directory archive system | |
| CN1588853A (en) | Uniform identication method and system based on network | |
| CN1601954A (en) | Moving principals across security boundaries without service interruption | |
| Ahmed et al. | A Method for Eliciting Security Requirements from the Business Process Models. | |
| CN109600395A (en) | A kind of device and implementation method of terminal network access control system | |
| Yan et al. | Location-based services and privacy protection under mobile cloud computing | |
| CN112291244A (en) | Multi-tenant method for industrial production data real-time processing platform system | |
| CN108933678A (en) | O&M auditing system | |
| CN111861383A (en) | An online home office security platform | |
| CN113343273B (en) | User login method, first server and computer readable storage medium | |
| CN117527840A (en) | All-purpose card management platform system for resident service | |
| CN110727490B (en) | Windows account remote management method, device and storage medium | |
| CN115314218A (en) | Cross-domain authentication system and method for industrial Internet |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Open date: 20070912 |