CN103428178A - Method and system for protecting network account - Google Patents
Method and system for protecting network account Download PDFInfo
- Publication number
- CN103428178A CN103428178A CN2012101569557A CN201210156955A CN103428178A CN 103428178 A CN103428178 A CN 103428178A CN 2012101569557 A CN2012101569557 A CN 2012101569557A CN 201210156955 A CN201210156955 A CN 201210156955A CN 103428178 A CN103428178 A CN 103428178A
- Authority
- CN
- China
- Prior art keywords
- network account
- service platform
- password
- termination number
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 26
- 230000009471 action Effects 0.000 claims description 23
- 238000012795 verification Methods 0.000 claims description 15
- 238000004519 manufacturing process Methods 0.000 claims description 9
- 230000005540 biological transmission Effects 0.000 description 6
- 238000012790 confirmation Methods 0.000 description 4
- 238000013475 authorization Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 1
Images
Landscapes
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a method and system for protecting a network account. The method comprises the following steps that a service platform monitors an operation event of the network account at a client side and informs a terminal number bound with the network account of the monitored operation event; after a user determines that the network account is embezzled according to the information, the user uses the terminal number to inform the service platform that the network account at the client side is forcedly off line through a terminal, and resets the log-in password of the network account. Under the condition of not increasing the complexity of the log-in operation, the method and system for protecting the network account can master the use conditions of the network account any time and stops the use of the network account according to the needs.
Description
Technical field
The present invention relates to network safety filed, particularly a kind of method and system of protecting network account.
Background technology
The solution of the user's of internet arena protection at present network account is most in the login link, adopting the verification method that is different from traditional text character entry password, as: graphical passwords checking, binding information checking etc.
Wherein, graphical passwords is to utilize people figure to be remembered to a kind of novel cipher be better than the characteristics design of textual memory.The user need not remember tediously long character string, but by identifying or remembeing that figure carries out authentication.But the key space of graphical passwords is limited by the capacity in pattern storehouse, be not suitable for using in the very large internet product of number of users.
And the login authentication mode of binding authorization information has binding computer, mobile phone, several forms such as IP, Ukey usually, this class verification mode can cause normal users under some scenes to login, and can increase the complexity of user login operation, to popularization, cause certain difficulty.
Summary of the invention
The invention provides a kind of method and system of protecting network account, to solve the problem that key space is limited and affect the normal login of user.
The invention discloses a kind of method of protecting network account, described method comprises:
Service platform monitor network account is at the Action Events of client, and notifies the termination number to the network account binding by the Action Events monitored;
The user uses described termination number notification service platform that the network account of client is forced to roll off the production line by terminal after determining that according to notice network account is stolen, and the entry password of replacement network account.
Wherein, described method also comprises:
When the user estimates not use network account for a long time, by terminal, use termination number notification service platform to take safeguard measure to network account.
Wherein, described safeguard measure comprises: the entry password of restriction login and/or replacement network account.
Wherein, the entry password of described replacement network account specifically comprises:
By terminal, use termination number to send reset password message to service platform, this reset password message comprises the new password that the user arranges;
After service platform receives reset password message, the entry password of network account is changed to the new password that reset password message comprises.
Wherein, the entry password of described replacement network account specifically comprises:
By terminal, use termination number to send the reset password instruction to service platform;
After service platform receives the reset password instruction, generate new password;
Service platform changes to the entry password of network account the new password of generation, and described new password is notified to described termination number.
Wherein, described restriction login specifically comprises:
The network account state is made as to the restriction logging status;
Under the restriction logging status, the user uses note dynamic password logging in network account;
Perhaps, under the restriction logging status, service platform forbids that network account login, user lift restrictions by termination number after logging status, and service platform allows the network account login.
Wherein, described user specifically comprises by the termination number logging status that lifts restrictions:
The user uses termination number to receive the short-message verification code that service platform issues by terminal, uses the short-message verification code logging status that lifts restrictions;
Perhaps, the user uses termination number to send the instruction notification service platform logging status that lifts restrictions by terminal.
Wherein, described Action Events comprises login, nullifies and/or business event.
The invention also discloses a kind of system of protecting network account, described system comprises: client, terminal, service platform;
Described service platform, the Action Events for the monitor network account in client, and notify the termination number to the network account binding by the Action Events monitored;
Described terminal, for using described termination number reception notification, and used described termination number notification service platform that the network account of client is forced to roll off the production line, and the entry password of replacement network account.
Wherein, described terminal also when estimating as the user not use network account for a long time, is used termination number notification service platform to take safeguard measure to network account.
The beneficial effect of the embodiment of the present invention is: by network account is carried out to the termination number transmission notice that real-time management is also bound to user's network account at the Action Events of client, situation if any non-user's operation, or non-situation about licensing in person, the user forces network account to roll off the production line by the termination number notification service platform of binding, and the entry password of replacement network account, can normally use not affecting the user, and do not increase under the prerequisite of user login operation complexity, network account is protected in time, after having solved the network account login, the user leaves in the computer situation, when a plurality of users share a computer, and the safety problem of a plurality of users while sharing a network account, make the user can understand at any time the service condition of own network account and stop at any time using.
In addition, when the user estimates that I do not use network account for a long time, the user takes safeguard measure by termination number notification service platform to network account, to prevent network account, by other people, is usurped.
The accompanying drawing explanation
The flow chart of the method that Fig. 1 is protecting network account of the present invention;
Fig. 2 carries out the flow chart of Action Events monitoring and notice in the embodiment of the present invention;
Fig. 3 takes the flow chart of safeguard measure to network account in the embodiment of the present invention;
The structure chart of the system that Fig. 4 is protecting network account of the present invention.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing, embodiment of the present invention is described further in detail.
Referring to Fig. 1, it is the flow process of the method for protecting network account provided by the invention.
Step S100, service platform monitor network account is at the Action Events of client, and notifies the termination number to the network account binding by the Action Events monitored.
Step S200, the user uses described termination number notification service platform that the network account of client is forced to roll off the production line by terminal after determining that according to notice network account is stolen, and the entry password of replacement network account.
Particularly, described Action Events comprises login, nullifies and/or business event.
Further, described method also comprises: step S300, when the user estimates not use network account for a long time, used termination number notification service platform to take safeguard measure to network account by terminal.
Particularly, described safeguard measure comprises: the entry password of restriction login and/or replacement network account.
In an embodiment, described restriction login specifically comprises: the network account state is made as to the restriction logging status; Under the restriction logging status, the user uses note dynamic password logging in network account.
After using note dynamic password logging in network account, the network account state is still the restriction logging status.
This note dynamic password is corresponding with network account, when each user logins, is handed down to the termination number of network account binding by service platform, and the user uses this note dynamic password to be logined.This note dynamic password has the shorter lifetime, and after the lifetime surpasses, this note dynamic password cancels, and can not be used further to login.When therefore, this note dynamic password only can be used for the current login of network account, use.
In another embodiment, under the restriction logging status, service platform forbids that network account login, user lift restrictions by termination number after logging status, and service platform allows the network account login.
In one example, described user specifically comprises by the termination number logging status that lifts restrictions:
The user uses termination number to receive the short-message verification code that service platform issues by terminal, uses the short-message verification code logging status that lifts restrictions.
Wherein, under the restriction logging status, when network account is logined, service platform sends the short-message verification code to the termination number of network account binding, the user inputs this short-message verification code in client after receiving this short-message verification code by terminal, after the short-message verification code of input is correct, the service platform logging status that lifts restrictions, allow the network account login.
In another example, described user specifically comprises by the termination number logging status that lifts restrictions: the user uses termination number to send the instruction notification service platform logging status that lifts restrictions by terminal.
Under the restriction logging status, service platform is forbidden network account login, the user, by terminal, uses the login that lifts restrictions of termination number transmission instruction notification service platform.After service platform receives instruction, remove the restriction logging status of the network account of termination number binding.
In embodiment one, the entry password of described replacement network account specifically comprises the steps.
Step S210A, used termination number to send reset password message to service platform by terminal, and this reset password message comprises the new password that the user arranges.
Step S220A, after service platform receives reset password message, change to by the entry password of network account the new password that reset password message comprises.
In embodiment two, the entry password of described replacement network account specifically comprises the steps.
Step S210B, used termination number to send the reset password instruction to service platform by terminal.
Step S220B, after service platform receives the reset password instruction, generate new password.
Step S230B, service platform changes to the entry password of network account the new password of generation, and this new password is notified to this termination number.
The user can use new password to be logined, and after logining successfully, the entry password of network account is made as and is convenient to another password of oneself remembering.
" entry password of replacement network account " in step S200 and step S300 can be used identical embodiment, also can use different embodiments.
Embodiment
The embodiments of the invention idiographic flow is as Fig. 2 and Fig. 3.
In the present embodiment, service platform monitor network account is at the Action Events of client, and the Action Events monitored is notified to the idiographic flow of the termination number of network account binding as shown in Figure 2.
Wherein, described Action Events comprises login, nullifies and business event.
Step S201, the user inputs network account, entry password by client, to the login module transmission logging request of service platform; Network account, the password information of the network account that the login module of service platform is submitted the user to, entry password and service platform storage are compared, and are verified execution step S202.
Step S202, if by checking, the login module of service platform allows network account to login in client, if not by checking, login module is returned to the login failure prompting to client.
Step S203, network account is after the client login, and login module notice presence administration module user account number state is set to online.
Step S204, the presence administration module sends to event manager module by the log-in events of this network account, execution step S207.
Step S205, login successfully rear client link business module.
Step S206, when the user carries out business operation, business module sends event manager module by business event.
Step S207, after event manager module is received log-in events, business event, in real time or by ad hoc rules call SMS module by fixing short message service number to the termination number of the network account binding note of issuing a notice.
In the present embodiment, terminal is mobile phone, and termination number is phone number.
Described ad hoc rules comprises: the note of issuing a notice when IP address, client place is non-common IP address; And/or the Action Events of the receiving note of issuing a notice while being accumulated to default value; And/or the client note of issuing a notice of reaching the standard grade when address is non-common place.
The time of notifying short breath to comprise Action Events, the event title, and up-on command etc.
For example: on April 18th, 2012,16:34 sold XX article to your account number, if be not you oneself operation R. S. V. P. XX(up-on command) lock your account number.
Step S208, when the user passes through the notified note of terminal, judge that according to the own current network account that whether using whether network account is stolen.
If belong to stolen situation, the user can input instruction, replys and confirms the instruction note, and service platform is protected user's network account after receiving user's confirmation instruction note, forces network account to roll off the production line in client simultaneously.
When the user estimates not use account number for a long time, the user sends confirmation instruction note also can initiatively to the short message service number of service platform, and authoring system is taked safeguard measure to own account number.
The safeguard measure that service platform is taked comprises: network account is set to limit logging status, replacement account number entry password.
Service platform is received and is confirmed that the idiographic flow after the instruction note, user's network account protected as shown in Figure 3.
Step S301, the user judges that the network account of oneself is stolen or estimates will for a long time without network account, by terminal, uses the short message service number of the termination number input instruction reply confirmation instruction note of binding to service platform.
Step S302, SMS module is called Account Administration module user account number state and is set to limit logging status after receiving the confirmation instruction note of the termination number transmission that user's network account is bound, and the entry password of replacement user's network account.
Described restriction login specifically comprises:
The network account state is made as to the restriction logging status;
Under the restriction logging status, the user uses note dynamic password logging in network account;
Perhaps, under the restriction logging status, service platform forbids that network account login, user lift restrictions by termination number after logging status, allow the network account login.
Wherein, described user specifically comprises by the termination number logging status that lifts restrictions: the user uses termination number to receive the short-message verification code that service platform issues by terminal, uses the short-message verification code logging status that lifts restrictions; Perhaps, the user uses termination number to send the instruction notification service platform logging status that lifts restrictions by terminal.
After service platform replacement user account number entry password, steal-number person does not know new entry password, can't continue to use network account.Under the restriction logging status, the user can't use common character password login, and removing the login restriction need have terminal to participate in, so other people can't remove the login restriction.
Step S303, the Account Administration module is invoked at the line states administration module.
Step S304, the line states administration module is forced user account number to roll off the production line.
The present invention can normally use not affecting the user by said method; and do not increase under the prerequisite of user login operation complexity; network account is protected in time; solved that user after the network account login leaves in the computer situation, a plurality of user is while sharing a computer and the safety problem of a plurality of user while sharing a network account, make the user can understand at any time the service condition of own network account and stop at any time using.In addition, when the user estimates that I do not use network account for a long time, the user takes safeguard measure by termination number notification service platform to network account, to prevent network account, by other people, is usurped.
A kind of system of protecting network account as shown in Figure 4.Described system comprises: client 100, terminal 200, service platform 300.
Service platform 300, the Action Events for the monitor network account in client 100, and notify the termination number to the network account binding by the Action Events monitored;
Terminal 200, for using described termination number reception notification, and used described termination number notification service platform 300 that the network account of client 100 is forced to roll off the production line, and the entry password of replacement network account.
Particularly, described Action Events comprises login, nullifies and/or business event.
One preferably in execution mode, described terminal also when estimating as the user not use network account for a long time, is used termination number notification service platform to take safeguard measure to network account.
Particularly, described safeguard measure comprises: the entry password of restriction login and/or replacement network account.
Wherein, described service platform in when login restriction specifically for the network account state is made as to the restriction logging status; And, under the restriction logging status, when network account is logined, to termination number, issue the note dynamic password for the logging in network account;
Perhaps, described service platform in when login restriction specifically for the network account state is made as to the restriction logging status; And under the restriction logging status, forbid the network account login, the user lifts restrictions logging status by termination number after, allow the network account login.。
Further, service platform is used for when network account is the restriction logging status, when network account is logined, to termination number transmitting short message identifying code; And, after receiving the short-message verification code of client transmission, remove the restriction logging status of network account.
Further, service platform is for being while limiting logging status at network account, and after receiving termination number transmission instruction notification, logging status lifts restrictions.
In an embodiment, being achieved as follows of the entry password of replacement network account is described.
Terminal is for being used termination number to send reset password message to service platform, and this reset password message comprises the new password that the user arranges.
Service platform, for after receiving reset password message, changes to by the entry password of network account the new password that reset password message comprises.
In another embodiment, being achieved as follows of the entry password of replacement network account is described.
Terminal is for being used termination number to send the reset password instruction to service platform.
Service platform, for after receiving the reset password instruction, generates new password, the entry password of network account is changed to the new password of generation, and described new password is notified to described termination number.
The foregoing is only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.All any modifications of doing within the spirit and principles in the present invention, be equal to replacement, improvement etc., all be included in protection scope of the present invention.
Claims (10)
1. the method for a protecting network account, is characterized in that, described method comprises:
Service platform monitor network account is at the Action Events of client, and notifies the termination number to the network account binding by the Action Events monitored;
The user uses described termination number notification service platform that the network account of client is forced to roll off the production line by terminal after determining that according to notice network account is stolen, and the entry password of replacement network account.
2. method according to claim 1, is characterized in that,
Described method also comprises:
When the user estimates not use network account for a long time, by terminal, use termination number notification service platform to take safeguard measure to network account.
3. method according to claim 2, is characterized in that,
Described safeguard measure comprises: the entry password of restriction login and/or replacement network account.
4. method according to claim 1, is characterized in that,
The entry password of described replacement network account specifically comprises:
By terminal, use termination number to send reset password message to service platform, this reset password message comprises the new password that the user arranges;
After service platform receives reset password message, the entry password of network account is changed to the new password that reset password message comprises.
5. method according to claim 1, is characterized in that,
The entry password of described replacement network account specifically comprises:
By terminal, use termination number to send the reset password instruction to service platform;
After service platform receives the reset password instruction, generate new password;
Service platform changes to the entry password of network account the new password of generation, and described new password is notified to described termination number.
6. method according to claim 3, is characterized in that,
Described restriction login specifically comprises:
The network account state is made as to the restriction logging status;
Under the restriction logging status, the user uses note dynamic password logging in network account;
Perhaps, under the restriction logging status, service platform forbids that network account login, user lift restrictions by termination number after logging status, and service platform allows the network account login.
7. method according to claim 6, is characterized in that,
Described user specifically comprises by the termination number logging status that lifts restrictions:
The user uses termination number to receive the short-message verification code that service platform issues by terminal, uses the short-message verification code logging status that lifts restrictions;
Perhaps, the user uses termination number to send the instruction notification service platform logging status that lifts restrictions by terminal.
8. method according to claim 1, is characterized in that,
Described Action Events comprises login, nullifies and/or business event.
9. the system of a protecting network account, is characterized in that, described system comprises: client, terminal, service platform;
Described service platform, the Action Events for the monitor network account in client, and notify the termination number to the network account binding by the Action Events monitored;
Described terminal, for using described termination number reception notification, and used described termination number notification service platform that the network account of client is forced to roll off the production line, and the entry password of replacement network account.
10. system according to claim 9, is characterized in that,
Described terminal also when estimating as the user not use network account for a long time, is used termination number notification service platform to take safeguard measure to network account.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012101569557A CN103428178A (en) | 2012-05-18 | 2012-05-18 | Method and system for protecting network account |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012101569557A CN103428178A (en) | 2012-05-18 | 2012-05-18 | Method and system for protecting network account |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103428178A true CN103428178A (en) | 2013-12-04 |
Family
ID=49652359
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012101569557A Pending CN103428178A (en) | 2012-05-18 | 2012-05-18 | Method and system for protecting network account |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103428178A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105245524A (en) * | 2015-10-13 | 2016-01-13 | 联动优势电子商务有限公司 | Account protecting method, client and server |
| CN107040547A (en) * | 2017-05-26 | 2017-08-11 | 北京小米移动软件有限公司 | Method, device and the terminal device of administrator password |
| CN111182547A (en) * | 2020-01-08 | 2020-05-19 | 中国联合网络通信集团有限公司 | Login protection method, device and system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080066190A1 (en) * | 2005-12-13 | 2008-03-13 | Huawei Technologies Co., Ltd. | Method, system and apparatus for protecting service account |
| CN101262347A (en) * | 2008-01-22 | 2008-09-10 | 好旺角(厦门)电子科技有限公司 | Anti-theft method for network account |
| CN101742499A (en) * | 2009-12-31 | 2010-06-16 | 优视科技有限公司 | Account number protection system for mobile communication equipment terminal and application method thereof |
| CN102130893A (en) * | 2010-01-18 | 2011-07-20 | 上海启电信息科技有限公司 | Safety protection method and system for network accounts |
-
2012
- 2012-05-18 CN CN2012101569557A patent/CN103428178A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080066190A1 (en) * | 2005-12-13 | 2008-03-13 | Huawei Technologies Co., Ltd. | Method, system and apparatus for protecting service account |
| CN101262347A (en) * | 2008-01-22 | 2008-09-10 | 好旺角(厦门)电子科技有限公司 | Anti-theft method for network account |
| CN101742499A (en) * | 2009-12-31 | 2010-06-16 | 优视科技有限公司 | Account number protection system for mobile communication equipment terminal and application method thereof |
| CN102130893A (en) * | 2010-01-18 | 2011-07-20 | 上海启电信息科技有限公司 | Safety protection method and system for network accounts |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105245524A (en) * | 2015-10-13 | 2016-01-13 | 联动优势电子商务有限公司 | Account protecting method, client and server |
| CN105245524B (en) * | 2015-10-13 | 2019-01-18 | 联动优势电子商务有限公司 | A kind of method, client and the server of account protection |
| CN107040547A (en) * | 2017-05-26 | 2017-08-11 | 北京小米移动软件有限公司 | Method, device and the terminal device of administrator password |
| CN111182547A (en) * | 2020-01-08 | 2020-05-19 | 中国联合网络通信集团有限公司 | Login protection method, device and system |
| CN111182547B (en) * | 2020-01-08 | 2023-03-14 | 中国联合网络通信集团有限公司 | Login protection method, device and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11836261B2 (en) | Secure credentials control method | |
| Swamy et al. | Security threats in the application layer in IOT applications | |
| KR101718277B1 (en) | Surveillance online identity | |
| CN106453330B (en) | A kind of identity authentication method and system | |
| CN104092542B (en) | A kind of account login method, Apparatus and system | |
| EP2857947B1 (en) | Terminal device and unlocking method thereof | |
| US20130160104A1 (en) | Online account access control by mobile device | |
| CN103856345B (en) | Server account number and password management method and system and server | |
| CN106453361A (en) | A safety protection method and system for network information | |
| US20170171186A1 (en) | Controls and administration of privileged accounts system | |
| CN105320880B (en) | The control method and device of terminal | |
| CN103392328A (en) | Communication terminal work remote control server and method and communication terminal | |
| CN103825863B (en) | A kind of accounts management method and device | |
| CN102333068B (en) | SSH and SFTP (Secure Shell and Ssh File Transfer Protocol)-based tunnel intelligent management and control system and method | |
| CN103428178A (en) | Method and system for protecting network account | |
| CN106685843A (en) | A Method of Security Strengthening Router | |
| CN102411692B (en) | Method, system and equipment for running terminal | |
| CN106934300A (en) | The safety control and method of a kind of data handling system | |
| CN103476025B (en) | Progress management method, progress management system and mobile terminal | |
| CN101854357B (en) | Method and system for monitoring network authentication | |
| JP2011108183A (en) | Communication control system, central device, terminal device, and computer program | |
| CN104348804A (en) | Offline automatic service locking method, apparatus and system | |
| CN103391120A (en) | Friend relation establishing method and device based on near-field communication | |
| CN107153790A (en) | Mobile terminal safety means of defence, device and mobile terminal | |
| CN110225473B (en) | Method, device and terminal device for adding contacts |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20131204 |
|
| RJ01 | Rejection of invention patent application after publication |