CN111445210B - Account cleaning method and device, electronic equipment and storage medium - Google Patents
Account cleaning method and device, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN111445210B CN111445210B CN202010230217.7A CN202010230217A CN111445210B CN 111445210 B CN111445210 B CN 111445210B CN 202010230217 A CN202010230217 A CN 202010230217A CN 111445210 B CN111445210 B CN 111445210B
- Authority
- CN
- China
- Prior art keywords
- information
- account
- account information
- access
- early warning
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/10—Office automation; Time management
- G06Q10/103—Workflow collaboration or project management
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
- G06Q50/40—Business processes related to the transportation industry
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/55—Push-based network services
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Human Resources & Organizations (AREA)
- Strategic Management (AREA)
- Tourism & Hospitality (AREA)
- General Business, Economics & Management (AREA)
- Economics (AREA)
- Marketing (AREA)
- Theoretical Computer Science (AREA)
- Entrepreneurship & Innovation (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Quality & Reliability (AREA)
- Data Mining & Analysis (AREA)
- Operations Research (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Primary Health Care (AREA)
- Information Transfer Between Computers (AREA)
Abstract
本发明实施例提供一种账号清理方法、装置、电子设备及存储介质。在该方法中,获取待管理的账号信息集和历史访问记录信息;基于历史访问记录信息,从待管理的账号信息集中确定是否存在预警账号信息;当存在预警账号信息时,推送针对预警账号信息的预警消息至预设客户端;从预设客户端接收针对预警消息的反馈消息,根据所述反馈消息,对所述预警账号信息进行处理。由此,提醒并协助账号管理人员来进行账号清理操作,而不需要进行全量式的账号清理操作。
Embodiments of the present invention provide an account cleaning method, device, electronic device and storage medium. In this method, the account information set to be managed and historical access record information are obtained; based on the historical access record information, it is determined whether there is early warning account information from the account information set to be managed; when early warning account information exists, the early warning account information is pushed send the early warning message to the preset client; receive a feedback message for the early warning message from the preset client, and process the early warning account information according to the feedback message. As a result, account managers are reminded and assisted to perform account cleanup operations without the need to perform full account cleanup operations.
Description
技术领域Technical field
本发明涉及互联网技术领域,尤其涉及一种账号清理方法、装置、电子设备及存储介质。The present invention relates to the field of Internet technology, and in particular to an account cleaning method, device, electronic equipment and storage medium.
背景技术Background technique
近年来,出于对数据的安全性和可控性的考虑,一些大型实体(例如政府、大企业、学校等)会搭建专属网络或公司内网。In recent years, out of concern for data security and controllability, some large entities (such as governments, large enterprises, schools, etc.) will build dedicated networks or company intranets.
为了便于公司员工处理各种事务,会在网络中配置用于不同业务的应用程序(例如,办公自动化(Office Automation,OA)、企业资源计划(Enterprise ResourcePlanning,ERP)等系统应用),并为员工分配相应的账号。但是,由于存在人员离职、调动等原因,会存在清理无用账号的需求。In order to facilitate company employees to handle various matters, applications for different businesses (for example, office automation (Office Automation, OA), enterprise resource planning (ERP) and other system applications) will be configured in the network and provide employees with Assign the corresponding account. However, due to personnel resignations, transfers and other reasons, there will be a need to clean up useless accounts.
目前,主要依靠账号管理人员来对无用账号进行管理,例如,由部门负责人主动上报人员变动信息以申请清理变动人员的账号,或者由账号管理人员定期动员各部门来对无用账号进行梳理。然而,这种人工管理账号的方式可能会存在人工管理疏忽的问题,而不利于公司敏感数据的安全性。At present, account managers are mainly relied on to manage useless accounts. For example, department heads take the initiative to report personnel change information to apply for cleaning up the accounts of the changed personnel, or account managers regularly mobilize various departments to sort out useless accounts. However, this method of manual account management may lead to the problem of manual management negligence, which is not conducive to the security of the company's sensitive data.
针对上述问题,目前业界暂无较佳的解决方案。In response to the above problems, there is currently no better solution in the industry.
发明内容Contents of the invention
本发明实施例提供一种账号清理方法、装置、电子设备及存储介质,用以解决现有技术中的办公网络中的账号需要人工管理的缺陷,实现了智能筛选及清理账号信息。Embodiments of the present invention provide an account cleaning method, device, electronic device and storage medium to solve the problem in the prior art that accounts in office networks require manual management, and realize intelligent screening and cleaning of account information.
本发明实施例另一方面提供一种账号清理方法,包括:Another aspect of the embodiment of the present invention provides an account cleaning method, which includes:
获取待管理的账号信息集和历史访问记录信息;Obtain the account information set to be managed and historical access record information;
基于所述历史访问记录信息,从所述待管理的账号信息集中确定是否存在预警账号信息;Based on the historical access record information, determine whether there is early warning account information from the account information set to be managed;
当存在所述预警账号信息时,推送针对所述预警账号信息的预警消息至预设客户端;When the early warning account information exists, push an early warning message for the early warning account information to the default client;
从所述预设客户端接收针对所述预警消息的反馈消息;Receive a feedback message for the early warning message from the preset client;
根据所述反馈消息,对所述预警账号信息进行处理。The early warning account information is processed according to the feedback message.
进一步地,基于所述历史访问记录信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Further, based on the historical access record information, determine whether there is early warning account information from the account information set to be managed, specifically including:
基于所述历史访问记录信息,获取访问特征信息,所述访问特征信息包括至少一个维度下的访问特征;Based on the historical access record information, obtain access feature information, where the access feature information includes access features in at least one dimension;
根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息。According to the access characteristic information, it is determined whether there is early warning account information from the account information set to be managed.
进一步地,所述访问特征信息包括访问时间维度下的访问特征;Further, the access characteristic information includes access characteristics in the access time dimension;
相应地,根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Correspondingly, according to the access characteristic information, determine whether there is early warning account information from the account information set to be managed, specifically including:
根据所述待管理的账号信息集中的各个账号信息的历史访问时间信息,确定各个账号信息的未登录持续时长;Determine the non-login duration of each account information based on the historical access time information of each account information in the account information set to be managed;
将各个账号信息的未登录持续时长与预警时间阈值进行比较,以确定是否存在预警账号信息。Compare the non-login duration of each account information with the warning time threshold to determine whether there is warning account information.
进一步地,所述反馈消息中包括有时间修正信息,相应地,所述账号清理方法还包括:Further, the feedback message includes time correction information. Correspondingly, the account cleaning method also includes:
根据针对预设时间段内的预警消息的各个反馈消息中的时间修正信息,确定时间阈值调整值;Determine the time threshold adjustment value based on the time correction information in each feedback message for the warning message within the preset time period;
基于所述时间阈值调整值,对所述预警时间阈值进行调整,其中经调整的预警时间阈值被应用在后续的针对所述待管理的账号信息集的处理操作中。Based on the time threshold adjustment value, the warning time threshold is adjusted, wherein the adjusted warning time threshold is applied in subsequent processing operations for the account information set to be managed.
进一步地,所述反馈消息包括针对所述预警消息的确认信息或否认信息;Further, the feedback message includes confirmation information or denial information for the early warning message;
相应地,根据针对预设时间段的预警消息的各个反馈消息中的时间修正信息,确定时间阈值调整值,具体包括:Correspondingly, the time threshold adjustment value is determined based on the time correction information in each feedback message of the warning message for the preset time period, specifically including:
基于包括确认信息的反馈消息中的时间修正信息,确定相应的时间阈值降低量,或,Determine the corresponding time threshold reduction amount based on the time correction information in the feedback message including the confirmation information, or,
基于包括否认信息的反馈消息中的时间修正信息,确定相应的时间阈值增加量;Determine the corresponding time threshold increment based on the time correction information in the feedback message including the denial information;
基于所确定的对应所述预设时间段的各个反馈消息的时间阈值降低量或时间阈值增加量,确定所述时间阈值调整值。The time threshold adjustment value is determined based on the determined time threshold reduction or time threshold increase of each feedback message corresponding to the preset time period.
进一步地,所述访问特征信息包括访问IP维度下的访问特征;Further, the access characteristic information includes access characteristics under the access IP dimension;
相应地,根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Correspondingly, according to the access characteristic information, determine whether there is early warning account information from the account information set to be managed, specifically including:
根据所述待管理的账号信息集中的各个账号信息的访问IP信息,确定各个账号信息的外网连续访问次数;Determine the number of consecutive external network visits for each account information based on the access IP information of each account information in the account information set to be managed;
将各个账号信息的外网连续访问次数与预警次数阈值进行比较,以确定是否存在所述预警账号信息。Compare the number of consecutive external network visits of each account information with the number of warnings threshold to determine whether the warning account information exists.
进一步地,所述访问特征信息包括访问地理维度下的访问特征;Further, the access characteristic information includes access characteristics under the geographical dimension of access;
相应地,根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Correspondingly, according to the access characteristic information, determine whether there is early warning account information from the account information set to be managed, specifically including:
将所述待管理的账号信息集中的各个账号信息的历史访问地理信息,与各个账号信息预先绑定的常用地理信息进行对比,以判断是否存在异地历史访问地理信息;Compare the historical access geographical information of each account information in the account information set to be managed with the commonly used geographical information pre-bound to each account information to determine whether there is historical access geographical information in different places;
根据针对所述异地历史访问地理信息的判断结果,确定是否存在预警账号信息。Based on the judgment results of the remote historical access geographical information, it is determined whether there is early warning account information.
本发明实施例另一方面提供一种账号清理装置,包括:Another aspect of the embodiment of the present invention provides an account cleaning device, including:
访问数据获取单元,被配置为获取待管理的账号信息集和历史访问记录信息;The access data acquisition unit is configured to acquire the account information set to be managed and historical access record information;
预警账号确定单元,被配置为基于所述历史访问记录信息,从所述待管理的账号信息集中确定是否存在预警账号信息;An early warning account determination unit is configured to determine whether there is early warning account information from the account information set to be managed based on the historical access record information;
预警消息推送单元,被配置为当存在所述预警账号信息时,推送针对所述预警账号信息的预警消息至预设客户端;An early warning message push unit is configured to push an early warning message for the early warning account information to a preset client when the early warning account information exists;
反馈消息接收单元,被配置为从所述预设客户端接收针对所述预警消息的反馈消息;A feedback message receiving unit configured to receive a feedback message for the early warning message from the preset client;
预警账号处理单元,被配置为根据所述反馈消息,对所述预警账号信息进行处理。The early warning account processing unit is configured to process the early warning account information according to the feedback message.
本发明实施例另一方面提供一种电子设备,包括存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,所述处理器执行所述程序时实现如上述账号清理方法的步骤。Another aspect of the embodiment of the present invention provides an electronic device, including a memory, a processor, and a computer program stored in the memory and executable on the processor. When the processor executes the program, the above account cleaning method is implemented. step.
本发明实施例另一方面提供一种非暂态计算机可读存储介质,其上存储有计算机程序,该计算机程序被处理器执行时实现如上述账号清理方法的步骤。Another aspect of the embodiments of the present invention provides a non-transitory computer-readable storage medium on which a computer program is stored. When the computer program is executed by a processor, the steps of the above account cleaning method are implemented.
本发明实施例提供的账号清理方法、装置、电子设备及存储介质,通过网络的历史访问记录信息来从网络的账号信息集中确定预警账号信息,并将预警账号信息发送至预设客户端,进而根据自预设客户端的反馈消息来对预警账号信息进行清理。由此,基于历史访问记录信息来自动识别预警账号信息,实现了提醒并协助账号管理人员来进行账号清理操作,而不需要进行全量式的账号清理操作。The account cleaning method, device, electronic device and storage medium provided by the embodiment of the present invention determine the early warning account information from the account information set of the network through the historical access record information of the network, and send the early warning account information to the preset client, and then Clear the warning account information based on the feedback from the default client. As a result, the early warning account information is automatically identified based on the historical access record information, thereby reminding and assisting account managers to perform account cleanup operations without the need for full account cleanup operations.
附图说明Description of the drawings
为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作一简单地介绍,显而易见地,下面描述中的附图是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the following will briefly introduce the drawings that need to be used in the description of the embodiments or the prior art. Obviously, the drawings in the following description These are some embodiments of the present invention. For those of ordinary skill in the art, other drawings can be obtained based on these drawings without exerting creative efforts.
图1示出了适于应用本发明实施例的账号清理方法的环境的一示例的架构示意图;Figure 1 shows a schematic architectural diagram of an example of an environment suitable for applying the account cleanup method according to an embodiment of the present invention;
图2示出了根据本发明实施例的账号清理方法的一示例的流程图;Figure 2 shows a flow chart of an example of an account cleaning method according to an embodiment of the present invention;
图3示出了根据本发明实施例的确定预警账号信息的一示例的流程图;Figure 3 shows a flow chart of an example of determining early warning account information according to an embodiment of the present invention;
图4示出了根据本发明实施例的账号清理方法的另一示例的流程图;Figure 4 shows a flow chart of another example of an account cleaning method according to an embodiment of the present invention;
图5示出了根据本发明实施例的针对预警时间阈值的调整过程的一示例的流程图;Figure 5 shows a flow chart of an example of an adjustment process for the warning time threshold according to an embodiment of the present invention;
图6示出了根据本发明实施例的账号清理方法的一示例的信号时序流程图;Figure 6 shows a signal timing flow chart of an example of an account cleanup method according to an embodiment of the present invention;
图7示出了根据本发明实施例的确定预警账号信息的另一示例的流程图;Figure 7 shows a flow chart of another example of determining early warning account information according to an embodiment of the present invention;
图8示出了根据本发明实施例的确定预警账号信息的另一示例的流程图;Figure 8 shows a flow chart of another example of determining early warning account information according to an embodiment of the present invention;
图9示出了根据本发明实施例的账号清理装置的一示例的结构框图;Figure 9 shows a structural block diagram of an example of an account cleaning device according to an embodiment of the present invention;
图10示出了根据本发明实施例的账号清理的电子设备的结构示意图。Figure 10 shows a schematic structural diagram of an electronic device for account cleaning according to an embodiment of the present invention.
具体实施方式Detailed ways
为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments These are some embodiments of the present invention, rather than all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without making creative efforts fall within the scope of protection of the present invention.
如本文中使用的,术语“包括”及其变型表示开放的术语,含义是“包括但不限于”。术语“基于”表示“至少部分地基于”。术语“一个实施例”和“一实施例”表示“至少一个实施例”。术语“另一个实施例”表示“至少一个其他实施例”。术语“第一”、“第二”等可以指代不同的或相同的对象。下面可以包括其他的定义,无论是明确的还是隐含的。除非上下文中明确地指明,否则一个术语的定义在整个说明书中是一致的。As used herein, the term "includes" and variations thereof represent an open term meaning "including, but not limited to." The term "based on" means "based at least in part on." The terms "one embodiment" and "an embodiment" mean "at least one embodiment." The term "another embodiment" means "at least one other embodiment". The terms "first", "second", etc. may refer to different or the same object. Other definitions may be included below, whether explicit or implicit. The definition of a term is consistent throughout this specification unless the context clearly dictates otherwise.
此外,如本文中使用的,术语“办公网络”可以表示基于私有云架构或局域网架构而部署的网络。在大型实体中的内网应用程序(例如,OA和ERP系统应用等)的数量众多,如何对变动员工或已离职的账号进行账号清理以保障办公网络信息安全是目前业界的一大难题。Additionally, as used herein, the term "office network" may refer to a network deployed based on a private cloud architecture or a local area network architecture. There are a large number of intranet applications (such as OA and ERP system applications) in large entities. How to clean up the accounts of changed employees or resigned accounts to ensure the security of office network information is currently a major problem in the industry.
现在结合附图来描述本发明实施例的账号清理方法及装置。The account cleaning method and device according to the embodiment of the present invention will now be described with reference to the accompanying drawings.
图1示出了适于应用本发明实施例的账号清理方法的环境的一示例的架构示意图。Figure 1 shows a schematic architectural diagram of an example of an environment suitable for applying the account cleanup method according to the embodiment of the present invention.
如图1所示,在该环境100中,至少一个客户端通过办公网络110可以向办公网络服务端(例如,151和/或152)发送访问请求,以请求办公网络服务端来提供相应的内网服务,例如OA系统应用服务或ERP系统应用服务。这里,客户端可以是诸如台式机132、笔记本电脑136和手机134之类的终端设备,员工可以通过客户端来使用办公网络中所配置的各个应用程序。另外,可以是由办公网络服务器来为办公网络中的应用程序来提供服务,例如服务于OA系统应用和ERP系统应用的办公网络服务器。在本发明实施例的一个示例中,办公网络服务器包括至少一个业务应用服务器,例如在图1中所示的151和152分别可以是专门服务于唯一对应的应用程序的业务应用服务端,例如分别专门服务于OA系统或ERP系统的服务器主机。As shown in Figure 1, in the environment 100, at least one client can send an access request to the office network server (for example, 151 and/or 152) through the office network 110 to request the office network server to provide corresponding content. Internet services, such as OA system application services or ERP system application services. Here, the client can be a terminal device such as a desktop computer 132, a notebook computer 136, and a mobile phone 134, and employees can use various applications configured in the office network through the client. In addition, the office network server may provide services for applications in the office network, such as office network servers serving OA system applications and ERP system applications. In an example of the embodiment of the present invention, the office network server includes at least one business application server. For example, 151 and 152 shown in Figure 1 may respectively be business application server terminals that specifically serve unique corresponding applications, for example, respectively. Server hosts dedicated to serving OA systems or ERP systems.
进一步地,账号清理装置140可以是被部署在任意的可以与办公网络服务器通信交互的服务器(例如,账号清理服务器)上,或者账号清理装置140还可以被部署在办公网络服务器上。这样,办公网络装好清理装置140可以通过分析针对办公网络服务器的历史访问信息来判断是否存在需要进行预警的账号信息,并根据针对预警账号信息的反馈消息来进行相应的账号保留操作或账号清理操作,从而保护办公网络中的信息安全性。Further, the account cleaning device 140 can be deployed on any server that can communicate and interact with the office network server (for example, the account cleaning server), or the account cleaning device 140 can also be deployed on the office network server. In this way, the cleaning device 140 installed in the office network can determine whether there is account information that requires early warning by analyzing the historical access information to the office network server, and perform corresponding account retention operations or account cleaning based on the feedback message for the early warning account information. operations to protect information security in office networks.
图2示出了根据本发明实施例的账号清理方法的一示例的流程图。FIG. 2 shows a flow chart of an example of an account cleaning method according to an embodiment of the present invention.
如图2所示,在步骤210中,获取待管理的账号信息集和历史访问记录信息。As shown in Figure 2, in step 210, the account information set to be managed and historical access record information are obtained.
需说明的是,历史访问记录信息可以是基于上述账号信息集中的全部或部分账号对预设网络(如办公网络)进行访问而产生的记录信息。It should be noted that the historical access record information may be record information generated based on all or part of the accounts in the above account information set accessing a preset network (such as an office network).
此外,待管理的账号信息集可以是办公网络中部分或所有的员工的注册账号信息。在本发明实施例的一个示例中,办公网络中配置有至少一个办公系统,并且待管理的账号信息集为至少一个办公系统的账号信息集,例如分别针对OA系统和ERP系统中注册的账号信息集进行清理。由此,可以针对各个不同的办公系统的账号信息分别进行清理,实现了对办公网络中各个办公系统的个性化账号清理操作。In addition, the account information set to be managed may be the registered account information of some or all employees in the office network. In an example of the embodiment of the present invention, at least one office system is configured in the office network, and the account information set to be managed is the account information set of at least one office system, for example, the account information registered in the OA system and the ERP system respectively. Set for cleaning. As a result, the account information of each different office system can be cleaned separately, realizing personalized account cleaning operations for each office system in the office network.
在步骤220中,基于历史访问记录信息,从待管理的账号信息集中确定是否存在预警账号信息。这里,办公网络的历史访问记录信息可以反映不同的账号信息对办公网络的访问行为,进而可以分析相应的访问行为来确定是否存在预警账号信息。例如,可以分析是否存在账号长时间未登录的情况,或账号异常使用情况等,并据此来判断预警账号信息,更多细节将在下文中展开。In step 220, based on the historical access record information, it is determined whether there is early warning account information from the account information set to be managed. Here, the historical access record information of the office network can reflect the access behavior of different account information to the office network, and then the corresponding access behavior can be analyzed to determine whether there is early warning account information. For example, you can analyze whether there is an account that has not been logged in for a long time, or abnormal usage of the account, etc., and use this to determine the warning account information. More details will be expanded below.
如果步骤220中的判断结果指示存在预警账号信息时跳转至步骤230,此外,如果步骤220中的判断结果指示不存在预警账号信息时跳转至步骤260。If the judgment result in step 220 indicates that there is warning account information, jump to step 230 . In addition, if the judgment result in step 220 indicates that there is no warning account information, jump to step 260 .
在步骤230中,推送针对预警账号信息的预警消息至预设客户端。这里,预警消息可以是以各种消息方式而进行传递的,例如邮件消息、短消息和应用提醒消息等。In step 230, push the warning message for the warning account information to the default client. Here, the warning message may be delivered in various message modes, such as email messages, short messages, application reminder messages, etc.
具体地,预设客户端可以是指预设的用来接收并处理预警消息的客户端。结合应用场景来说,预设客户端可以是账号管理人员的客户端,进而账号管理人员可以根据预警消息来对预警账号信息来作出反应,例如确认该预警账号信息所对应的员工已经离职或调岗。此外,反馈消息中还可以存在一些其他的附加信息,并用以实现相应的功能,更多细节将在下文中展开。Specifically, the default client may refer to a default client used to receive and process the warning message. Based on the application scenario, the default client can be the client of the account manager, and the account manager can react to the alert account information according to the alert message, such as confirming that the employee corresponding to the alert account information has resigned or been transferred. Post. In addition, some other additional information may also exist in the feedback message and be used to implement corresponding functions. More details will be expanded below.
在步骤240中,从预设客户端接收针对预警消息的反馈消息。In step 240, a feedback message for the early warning message is received from a preset client.
在本步骤中,所述反馈消息可以携带针对所述预警消息的删除指示信息,相应地,这种情况下,根据反馈信息,即可对所述预警账号信息进行删除清理的处理。In this step, the feedback message may carry deletion instruction information for the early warning message. Correspondingly, in this case, the early warning account information can be deleted and cleaned based on the feedback information.
在本步骤中,所述反馈信息可以包括预警账号信息的最新账号状态;相应地,这种情况下,根据所述反馈消息中携带的最新账号状态,对所述预警账号信息进行处理,若最新账号状态为预设时间段之前登陆的,则对所述预警账号信息进行删除清理的处理。若最新账号状态为预设时间段内登陆的,则保留所述预警账号信息。In this step, the feedback information may include the latest account status of the early warning account information; accordingly, in this case, the early warning account information is processed according to the latest account status carried in the feedback message. If the latest account status is If the account status is logged in before the preset time period, the warning account information will be deleted and cleaned. If the latest account status is logged in within the preset time period, the warning account information will be retained.
在本步骤中,所述反馈消息可以包括针对预警消息的确认信息或否认信息。继续结合上述的应用场景来说,当账号管理人员确认该预警账号信息时,在相应的反馈消息中存在确认信息,相应地,这种情况下,对所述预警账号信息进行删除清理的处理。另外,当账号管理人否认该预警账号信息时,在相应的反馈消息中存在否认信息,相应地,这种情况下,对所述预警账号信息进行保留处理。In this step, the feedback message may include confirmation information or denial information for the warning message. Continuing with the above application scenario, when the account manager confirms the warning account information, there is confirmation information in the corresponding feedback message. Accordingly, in this case, the warning account information is deleted and cleaned. In addition, when the account manager denies the warning account information, there is denial information in the corresponding feedback message. Accordingly, in this case, the warning account information is retained.
在步骤250中,根据所述反馈消息,对所述预警账号信息进行处理。In step 250, the early warning account information is processed according to the feedback message.
在本步骤中,正如上面所述,根据所述反馈消息反映的不同状况,对所述预警账号信息进行删除、保留等不同的处理。In this step, as mentioned above, the warning account information is deleted, retained, and other different processes are performed according to different situations reflected in the feedback message.
通过本发明实施例,基于历史访问记录信息来从账号信息集中识别预警账号信息,可以自动向账号管理人员提醒存在潜在安全风险(例如,已离职或调岗)的账号信息,相比于人工筛选并清理预警账号,能够避免人工管理疏忽问题。提高了办公网络的数据信息安全性。Through the embodiments of the present invention, early warning account information is identified from the account information set based on historical access record information, and account managers can be automatically reminded of account information that has potential security risks (for example, those who have resigned or have been transferred). Compared with manual screening, And clean up the early warning accounts to avoid manual management negligence. Improved data information security of the office network.
基于上述实施例的内容,在本实施例中,基于所述历史访问记录信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Based on the content of the above embodiment, in this embodiment, based on the historical access record information, it is determined whether there is early warning account information from the account information set to be managed, which specifically includes:
基于所述历史访问记录信息,获取访问特征信息,所述访问特征信息包括至少一个维度下的访问特征;Based on the historical access record information, obtain access feature information, where the access feature information includes access features in at least one dimension;
根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息。According to the access characteristic information, it is determined whether there is early warning account information from the account information set to be managed.
在本实施例中,所述访问特征信息包括至少一个维度下的访问特征,例如,可以是时间维度下的访问特征,IP维度下的访问特征,访问地理维度下的访问特征。其中,对于时间维度下的访问特征可以为各个账号信息的未登录持续时长;对于IP维度下的访问特征可以为各个账号信息的外网连续访问次数;对于访问地理维度下的访问特征可以为各个账号信息的历史访问地理信息。相应地,根据至少一个维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息。如①根据时间维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息;②根据IP维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息;③根据访问地理维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息;④根据时间维度下的访问特征和IP维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息;⑤根据时间维度下的访问特征和访问地理维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息;⑥根据IP维度下的访问特征和访问地理维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息;⑦根据时间维度下的访问特征、IP维度下的访问特征和访问地理维度下的访问特征,从所述待管理的账号信息集中确定是否存在预警账号信息。In this embodiment, the access characteristic information includes access characteristics in at least one dimension. For example, it may be access characteristics in the time dimension, access characteristics in the IP dimension, and access characteristics in the geographical dimension. Among them, the access characteristics under the time dimension can be the non-login duration of each account information; the access characteristics under the IP dimension can be the number of consecutive external network visits for each account information; the access characteristics under the access geography dimension can be each Historical access geographic information of account information. Correspondingly, based on the access characteristics in at least one dimension, it is determined whether there is early warning account information from the account information set to be managed. For example: ① According to the access characteristics in the time dimension, determine whether there is early warning account information from the account information set to be managed; ② Based on the access characteristics under the IP dimension, determine whether there is early warning account information from the account information set to be managed. ; ③ According to the access characteristics under the geographical dimension of access, determine whether there is early warning account information from the account information to be managed; ④ According to the access characteristics under the time dimension and the access characteristics under the IP dimension, from the account information to be managed The information is concentrated to determine whether there is early warning account information; ⑤ According to the access characteristics in the time dimension and the access characteristics in the geographical dimension of access, it is determined from the account information to be managed whether there is early warning account information; ⑥ According to the access characteristics in the IP dimension and the access characteristics under the access geographical dimension, determine whether there is early warning account information from the account information to be managed; ⑦According to the access characteristics under the time dimension, the access characteristics under the IP dimension and the access characteristics under the access geographical dimension, from The account information to be managed is centrally determined to determine whether there is early warning account information.
基于上述实施例的内容,在本实施例中,所述访问特征信息包括访问时间维度下的访问特征;Based on the content of the above embodiment, in this embodiment, the access characteristic information includes access characteristics in the access time dimension;
相应地,根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Correspondingly, according to the access characteristic information, determine whether there is early warning account information from the account information set to be managed, specifically including:
根据所述待管理的账号信息集中的各个账号信息的历史访问时间信息,确定各个账号信息的未登录持续时长;Determine the non-login duration of each account information based on the historical access time information of each account information in the account information set to be managed;
将各个账号信息的未登录持续时长与预警时间阈值进行比较,以确定是否存在预警账号信息。Compare the non-login duration of each account information with the warning time threshold to determine whether there is warning account information.
图3示出了根据本发明实施例的确定预警账号信息的一示例的流程图。如图3所示,在步骤310中,根据历史访问记录信息中的历史访问账号信息和相应的历史访问时间信息,确定待管理的账号信息集中的各个账号信息的未登录持续时长。Figure 3 shows a flow chart of an example of determining early warning account information according to an embodiment of the present invention. As shown in Figure 3, in step 310, the non-login duration of each account information in the account information set to be managed is determined based on the historical access account information and the corresponding historical access time information in the historical access record information.
具体地,可以确定历史访问记录信息中各个历史访问账号信息所对应的最近一次访问所对应的访问时间,并根据该最近一次访问所对应的访问时间来确定各个账号信息的未登录持续时长。Specifically, the access time corresponding to the most recent access corresponding to each historical access account information in the historical access record information can be determined, and the non-login duration of each account information can be determined based on the access time corresponding to the most recent access.
在步骤320中,将待管理的账号信息集中的各个账号信息的未登录持续时长与预警时间阈值进行比较,以确定是否存在预警账号信息。具体地,当一个账号信息所对应的未登录持续时长大于或等于预警时间阈值时,可以确定该账号信息为预警账号信息;当一个账号信息所对应的未登录持续时长小于预警时间阈值时,可以确定该账号信息不是预警账号信息。In step 320, the non-login duration of each account information in the account information set to be managed is compared with the warning time threshold to determine whether there is warning account information. Specifically, when the non-login duration corresponding to an account information is greater than or equal to the warning time threshold, the account information can be determined to be warning account information; when the non-login duration corresponding to an account information is less than the warning time threshold, it can be Make sure that the account information is not the warning account information.
需说明的是,预警时间阈值可以是预先设定的(例如,90天),并且还可以在实际应用操作的过程中进行调整,例如根据反馈消息来进行智能调整,更多细节将在下文中展开。It should be noted that the warning time threshold can be preset (for example, 90 days), and can also be adjusted during the actual application operation, such as intelligent adjustment based on feedback messages. More details will be expanded below. .
通过本发明实施例,可以筛选出长时间没有登录行为的账号信息,并将其确定为预警账号信息,实现了智能筛选长时间未登录的潜在的离职员工或调岗员工的账号信息。Through the embodiments of the present invention, account information that has not been logged in for a long time can be screened out and determined as early warning account information, thereby realizing intelligent screening of account information of potential resigned employees or employees who have been transferred to other positions who have not logged in for a long time.
基于上述实施例的内容,在本实施例中,所述反馈消息中包括有时间修正信息,相应地,所述账号清理方法还包括:Based on the content of the above embodiment, in this embodiment, the feedback message includes time correction information. Correspondingly, the account cleaning method also includes:
根据针对预设时间段内的预警消息的各个反馈消息中的时间修正信息,确定时间阈值调整值;Determine the time threshold adjustment value based on the time correction information in each feedback message for the warning message within the preset time period;
基于所述时间阈值调整值,对所述预警时间阈值进行调整,其中经调整的预警时间阈值被应用在后续的针对所述待管理的账号信息集的处理操作中。Based on the time threshold adjustment value, the warning time threshold is adjusted, wherein the adjusted warning time threshold is applied in subsequent processing operations for the account information set to be managed.
图4示出了根据本发明实施例的账号清理方法的另一示例的流程图。Figure 4 shows a flow chart of another example of an account cleaning method according to an embodiment of the present invention.
在步骤410中,根据针对预设时间段内的预警消息的各个反馈消息中的时间修正信息,确定时间阈值调整值。In step 410, the time threshold adjustment value is determined based on the time correction information in each feedback message for the warning message within the preset time period.
示例性地,当账号管理人员通过预设客户端来发出反馈消息时,除了可以在反馈消息中回复针对预警消息的确认信息或否认信息,还可以在反馈消息中回复时间修正信息,相应地,根据针对预设时间段内的预警消息的各个反馈消息中的时间修正信息,确定时间阈值调整值。For example, when the account manager sends a feedback message through a preset client, in addition to replying with confirmation information or denial information for the warning message in the feedback message, he can also reply with time correction information in the feedback message. Correspondingly, The time threshold adjustment value is determined according to the time correction information in each feedback message for the warning message within the preset time period.
结合应用场景来说,预警消息是在“2020年1月1日”发送至预设客户端的,换言之,也就是说在“2020年1月1日”提醒了账号管理人员是否应当对相应的预警账号信息进行清理。此时,账号管理人员可以反馈消息P“应当对该账号进行清理,并且该员工在2019年12月11日就已经离职了”或者反馈消息S“暂不对该账号进行清理,并且可以延长到2020年1月11日”。Based on the application scenario, the warning message was sent to the default client on "January 1, 2020". In other words, it reminded the account manager whether the corresponding warning should be issued on "January 1, 2020". Account information is cleared. At this time, the account manager can feedback message P "This account should be cleaned up, and the employee has resigned on December 11, 2019" or feedback message S "This account will not be cleaned up temporarily, and it can be extended to 2020 "January 11th."
在本实施例中,反馈消息P中的“该员工在2019年12月11日就已经离职”就属于时间修正信息;同理,反馈消息S中的“可以延长到2020年1月11日”也属于时间修正信息。In this embodiment, "the employee resigned on December 11, 2019" in the feedback message P is time correction information; similarly, "can be extended to January 11, 2020" in the feedback message S Also belongs to time correction information.
在本实施例中,根据针对预警消息的反馈消息中的时间修正信息,确定时间阈值调整值,可以进行如下理解:In this embodiment, the time threshold adjustment value is determined based on the time correction information in the feedback message for the early warning message, which can be understood as follows:
举例来说,对于“应当对该账号进行清理,并且该员工在2019年12月11日就已经离职了”这一反馈消息P,由于预警消息是在2020年1月1日发送的,且通过反馈消息得知员工是在2019年12月11日离职的,则可以确定相应的时间阈值调整值为-20天(2020年1月1日与2019年12月11日中间相差20天)。同理,对于“暂不对该账号进行清理,并且可以延长到2020年1月11日”这一反馈消息S,由于预警消息是在2020年1月1日发送的,且通过该反馈消息得知可以延长到2020年1月11日,则可以确定相应的时间阈值调整值为+10天(2020年1月11日与2020年1月1日中间相差10天)。For example, for the feedback message P "This account should be cleaned up, and the employee has resigned on December 11, 2019", since the warning message was sent on January 1, 2020, and passed If the feedback message indicates that the employee resigned on December 11, 2019, the corresponding time threshold adjustment value can be determined to be -20 days (there is a 20-day difference between January 1, 2020, and December 11, 2019). In the same way, for the feedback message S that "the account will not be cleaned up for the time being and can be extended to January 11, 2020", since the warning message was sent on January 1, 2020, and it was known through this feedback message If it can be extended to January 11, 2020, then the corresponding time threshold adjustment value can be determined to be +10 days (the difference between January 11, 2020 and January 1, 2020 is 10 days).
在本实施例中,在根据针对预警消息的反馈消息中的时间修正信息,确定时间阈值调整值时,可以根据关键词搜索的方式寻找是否存在“离职”、“延长”这类的关键词,若有,则提取与“离职”关键词靠近的时间信息或“离职”关键词有时间关系的信息,如对于“该员工在2019年12月11日就已经离职”这句话来说,“2019年12月11日”就是与“离职”关键词靠近的时间信息或“离职”关键词有时间关系的信息。在得到这一信息后,将该信息与预警消息的发送时间2020年1月1日进行求差处理,即可得到时间阈值调整值。In this embodiment, when determining the time threshold adjustment value based on the time correction information in the feedback message for the early warning message, you can find whether there are keywords such as "resignation" and "extension" based on keyword search. If so, extract the time information that is close to the "resignation" keyword or the information that has a time relationship with the "resignation" keyword. For example, for the sentence "The employee has resigned on December 11, 2019", " "December 11, 2019" is time information close to the keyword "resignation" or information that has a time relationship with the keyword "resignation". After obtaining this information, the difference between this information and the sending time of the warning message on January 1, 2020 can be obtained to obtain the time threshold adjustment value.
在步骤420中,基于所述时间阈值调整值,对所述预警时间阈值进行调整,其中经调整的预警时间阈值被应用在后续的针对所述待管理的账号信息集的处理操作中。In step 420, the warning time threshold is adjusted based on the time threshold adjustment value, where the adjusted warning time threshold is applied in subsequent processing operations for the account information set to be managed.
在本步骤中,基于所述时间阈值调整值,对所述预警时间阈值进行调高和调低的调整。例如,若所述时间阈值调整值为-20天,则应该在所述预警时间阈值的基础上调低20天;若所述时间阈值调整值为+10天,则应该在所述预警时间阈值的基础上调高10天。In this step, the warning time threshold is adjusted upward or downward based on the time threshold adjustment value. For example, if the time threshold adjustment value is -20 days, the warning time threshold should be adjusted lower by 20 days; if the time threshold adjustment value is +10 days, the warning time threshold should be adjusted lower than the warning time threshold by 20 days. on the basis of 10 days.
通过本发明实施例,应用反馈消息中的时间修正信息,可以智能调整预警时间阈值,能够在及时预测出闲置的预警账号信息的同时,还能避免频繁打扰账号管理人员,提高了办公网络中的数据信息安全性。Through the embodiments of the present invention, the time correction information in the feedback message can be used to intelligently adjust the warning time threshold, which can predict idle warning account information in a timely manner and avoid frequently disturbing the account managers, thus improving the efficiency of the office network. Data information security.
基于上述实施例的内容,在本实施例中,所述反馈消息包括针对所述预警消息的确认信息或否认信息;Based on the content of the above embodiment, in this embodiment, the feedback message includes confirmation information or denial information for the early warning message;
相应地,根据针对预设时间段的预警消息的各个反馈消息中的时间修正信息,确定时间阈值调整值,具体包括:Correspondingly, the time threshold adjustment value is determined based on the time correction information in each feedback message of the warning message for the preset time period, specifically including:
基于包括确认信息的反馈消息中的时间修正信息,确定相应的时间阈值降低量,或,Determine the corresponding time threshold reduction amount based on the time correction information in the feedback message including the confirmation information, or,
基于包括否认信息的反馈消息中的时间修正信息,确定相应的时间阈值增加量;Determine the corresponding time threshold increment based on the time correction information in the feedback message including the denial information;
基于所确定的对应所述预设时间段的各个反馈消息的时间阈值降低量或时间阈值增加量,确定所述时间阈值调整值。The time threshold adjustment value is determined based on the determined time threshold reduction or time threshold increase of each feedback message corresponding to the preset time period.
图5示出了根据本发明实施例的针对预警时间阈值的调整过程的一示例的流程图。FIG. 5 shows a flowchart of an example of an adjustment process for a warning time threshold according to an embodiment of the present invention.
在步骤510中,根据针对预设时间段内的预警消息的各个反馈消息中的时间修正信息,确定时间阈值调整值。示例性地,预设时间段可以是一天,例如可以根据一天内所发出的各个预警消息的反馈消息来确定时间阈值调整值,进而基于时间阈值调整值,对预警时间阈值进行调整。例如,提升或降低预警时间阈值。In step 510, the time threshold adjustment value is determined based on the time correction information in each feedback message for the warning message within the preset time period. For example, the preset time period may be one day. For example, the time threshold adjustment value may be determined based on the feedback messages of each warning message sent within a day, and then the warning time threshold may be adjusted based on the time threshold adjustment value. For example, increase or decrease the warning time threshold.
需说明的是,在预设时间段所发出的预警消息和相应的反馈消息一般是多个,并且在多个反馈消息中,可能会存在包含确认信息的反馈消息,也可能会存在包含否认信息的反馈消息。在本发明实施例的一些实施方式中,可以通过以下方式来确定时间阈值调整值:基于包括确认信息的反馈消息中的时间修正信息来确定相应的时间阈值降低量,以及,基于包括否认信息的反馈消息中的时间修正信息来确定相应的时间阈值增加量。进而,可以基于所确定的对应预设时间段的各个反馈消息的时间阈值降低量和时间阈值增加量,确定时间阈值调整值。It should be noted that there are generally multiple warning messages and corresponding feedback messages sent in a preset time period, and among the multiple feedback messages, there may be feedback messages containing confirmation information, and there may also be feedback messages containing denial information. feedback message. In some implementations of the embodiments of the present invention, the time threshold adjustment value may be determined in the following manner: determining the corresponding time threshold reduction amount based on the time correction information in the feedback message including the acknowledgment information, and based on the time correction information including the denial information. The time correction information in the feedback message is used to determine the corresponding time threshold increment. Furthermore, the time threshold adjustment value may be determined based on the determined decrease amount and increase amount of the time threshold value of each feedback message corresponding to the preset time period.
举例来说,如果预警消息是在5月10日发送的,且通过反馈消息得知员工是在5月5日离职的,则可以确定相应的时间阈值降低量T降为-5天;此外,如果预警消息是在5月10日发送的,且通过反馈消息得知员工是请假到5月20日的,则可以确定相应的时间阈值增加量T升为+10天。进而,可以统计各个反馈消息所对应的T降或T升,并综合确定时间阈值调整值。For example, if the warning message is sent on May 10, and it is known from the feedback message that the employee resigned on May 5, it can be determined that the corresponding time threshold reduction amount T is reduced to -5 days; in addition, If the warning message is sent on May 10, and it is known from the feedback message that the employee is taking leave until May 20, it can be determined that the corresponding time threshold increase T rises to +10 days. Furthermore, the T drop or T rise corresponding to each feedback message can be counted, and the time threshold adjustment value can be determined comprehensively.
在步骤520中,基于时间阈值调整值,对预警时间阈值进行调整。例如,提升或降低预警时间阈值。In step 520, the warning time threshold is adjusted based on the time threshold adjustment value. For example, increase or decrease the warning time threshold.
通过本发明实施例,基于在设定时间段内所接收到的各个反馈消息调整预警时间阈值,可以实现对预警时间阈值的定期调整,以保障预警时间阈值的高精确度。Through the embodiments of the present invention, the early warning time threshold is adjusted based on each feedback message received within a set time period, so that the early warning time threshold can be adjusted regularly to ensure high accuracy of the early warning time threshold.
图6示出了根据本发明实施例的账号清理方法的一示例的信号时序流程图。Figure 6 shows a signal timing flow chart of an example of an account cleanup method according to an embodiment of the present invention.
如图6所示,其涉及在账号清理服务器610、账号管理客户端620(或,预设客户端)和办公网络服务器630之间的通信交互。As shown in Figure 6, it involves communication interactions between the account cleanup server 610, the account management client 620 (or, the default client) and the office network server 630.
在步骤601中,办公网络服务器630将待管理的账号信息集和历史访问记录信息发送至账号清理服务器610。In step 601, the office network server 630 sends the account information set to be managed and historical access record information to the account cleanup server 610.
在一些实施方式中,账号清理服务器610可以实时同步办公网络中各个系统(例如OA系统、ERP系统等)的账号信息集,并根据不同系统分表存放于全量账号数据库A中。此外,账号清理服务器610还可以收集所有系统的登录日志信息,分析日志信息,摘取每个系统的账号登录信息(登录系统名称、账号和登录时间),并将该数据根据不同系统分表存放在登录信息数据库B中。In some implementations, the account cleanup server 610 can synchronize the account information sets of various systems in the office network (such as OA systems, ERP systems, etc.) in real time, and store them in the full account database A according to different systems. In addition, the account cleaning server 610 can also collect the login log information of all systems, analyze the log information, extract the account login information of each system (login system name, account number and login time), and store the data in separate tables according to different systems. In login information database B.
接着,在步骤603中,账号清理服务器610利用预警时间阈值在账号信息集中确定预警账号信息。例如,可以将各个账号信息所对应的未登录持续时长与预警时间阈值进行比较以识别预警账号信息。Next, in step 603, the account cleanup server 610 uses the warning time threshold to determine the warning account information in the account information set. For example, the non-login duration corresponding to each account information can be compared with the warning time threshold to identify the warning account information.
接着上面的实施方式来说,账号清理服务器610每天通过比对全量账号数据库A和登录信息数据库B,可以得到每个账号所对应的未登录持续时长T1,比如有的账号60天未登录。此外,可以将各个账号信息的未登录持续时长T1与预警时间阈值T进行对比,当发现存在T1>=T的账号时,可以将该账号信息确定为预警账号信息。Continuing with the above implementation, the account cleanup server 610 can obtain the non-login duration T1 corresponding to each account by comparing the full account database A and the login information database B every day. For example, some accounts have not logged in for 60 days. In addition, the non-login duration T1 of each account information can be compared with the warning time threshold T. When an account with T1 >= T is found, the account information can be determined as warning account information.
接着,在步骤605中,账号清理服务器610发送预警消息至账号管理客户端620。Next, in step 605, the account cleanup server 610 sends an early warning message to the account management client 620.
示例性地,可以通过邮件自动提醒该账号的部门或小组负责人的客户端,并且通过预警消息可以提示“该账号已经T时间未使用,是否可以删除?”。For example, the client of the department or group leader of the account can be automatically reminded through email, and the warning message can prompt "This account has not been used for T time, can it be deleted?".
接着,在步骤607中,账号管理客户端620向账号清理服务器610发送反馈消息。Next, in step 607, the account management client 620 sends a feedback message to the account cleanup server 610.
示例性地,一方面,当负责人通过邮件回复可以删除时,会一并回复该员工调动的时间,进而根据该员工调动的时间以及该提醒邮件的发送时间确定时间差值T2(比如提醒邮件是5月20号发送,员工是5月10号离职,则T2=-10)。另一方面,当负责人通过邮件回复不可以删除时,会一并回复延长至哪一天(例如延长至5月30号),进而根据延长时段的结束日期5月30号该提醒邮件的发送时间5月10号确定时间差值T3=10。For example, on the one hand, when the person in charge replies via email that the employee can be deleted, the time of the employee's transfer will also be replied, and then the time difference T2 is determined based on the time of the employee's transfer and the sending time of the reminder email (such as the reminder email It was sent on May 20, and the employee resigned on May 10, then T2 = -10). On the other hand, when the person in charge replies via email that the deletion is not possible, he or she will also reply with a date to which the extension will be extended (for example, to May 30), and then the sending time of the reminder email will be based on May 30, the end date of the extended period. The time difference T3=10 is determined on May 10th.
需要说明的是,可以在延长时段的结束日期5月30号再次通知负责人是否可以删除账号。It should be noted that the person in charge can be notified again on May 30, the end date of the extended period, whether the account can be deleted.
接着,在步骤609中,账号清理服务器610基于反馈消息来确定是否清理预警账号信息。Next, in step 609, the account clearing server 610 determines whether to clear the warning account information based on the feedback message.
具体地,一方面,当反馈消息中包含针对预警消息的确认信息时,账号清理服务器610可以调用删除账号脚本,来自动删除相应的预警账号信息。另一方面,当反馈消息中包含针对预警消息的否认消息时,账号清理服务器610可以保留该预警账号信息。Specifically, on the one hand, when the feedback message contains confirmation information for the early warning message, the account cleanup server 610 can call the deletion account script to automatically delete the corresponding early warning account information. On the other hand, when the feedback message contains a denial message for the warning message, the account cleanup server 610 can retain the warning account information.
优选地,在步骤611中,基于反馈消息来调整预警时间阈值。Preferably, in step 611, the warning time threshold is adjusted based on the feedback message.
具体地,可以根据反馈消息中的确认消息和否认消息来确定每次针对预警账号信息的预测是成功的还是失败的,并每天智能动态地调整T值。Specifically, it can be determined whether each prediction of the early warning account information is successful or failed based on the confirmation message and denial message in the feedback message, and the T value can be intelligently and dynamically adjusted every day.
一方面,当反馈消息中包含针对预警消息的确认信息时,表示预测是成功的,因此,当对账号N1预测成功时,假设对应该账号的时间阈值调整值为-T2N1,则基于时间阈值调整值,对预警时间阈值T进行调整,使其变为:T-T2N1;同理,当对账号N2预测成功时:调整预警时间阈值为T-T2N2……,当对账号Nn预测成功时:调整预警时间阈值TNn为T-T2Nn,其中n为所有成功预测的账号数量。On the one hand, when the feedback message contains confirmation information for the warning message, it means that the prediction is successful. Therefore, when the prediction for account N1 is successful, assuming that the time threshold adjustment value corresponding to the account is -T2 N1 , based on the time threshold Adjust the value, adjust the warning time threshold T so that it becomes: T-T2 N1 ; similarly, when the prediction of account N2 is successful: adjust the warning time threshold to T-T2 N2 ..., when the prediction of account Nn is successful Time: Adjust the warning time threshold TNn to T-T2 Nn , where n is the number of all successfully predicted accounts.
另一方面,当反馈消息中包含针对预警消息的否认信息时,表示预测是失败的,因此,当对账号M1预测失败时,假设对应该账号的时间阈值调整值为+T3M1,则基于时间阈值调整值,对预警时间阈值T进行调整,使其变为:T+T3M1;同理,当对账号M2预测失败时:调整预警时间阈值TM2为T+T3M2......,当对账号Mm预测失败时:调整预警时间阈值TMm为T+T3Mm,其中m为所有失败预测的账号数量。On the other hand, when the feedback message contains denial information for the warning message, it means that the prediction has failed. Therefore, when the prediction for account M1 fails, assuming that the time threshold adjustment value corresponding to the account is +T3 M1 , based on the time Threshold adjustment value, adjust the warning time threshold T so that it becomes: T+T3 M1 ; similarly, when the prediction of account M2 fails: adjust the warning time threshold TM2 to T+T3 M2 ..., When the prediction of account Mm fails: adjust the warning time threshold TMm to T+T3 Mm , where m is the number of all failed prediction accounts.
进而,结合一天内参与预测的账号修订后的TN1、TN2……TNn和TM1、TM2……TMm,最终根据本次所有账号预测的结果平均计算出调整后的预警时间阈值:T’=(TN1+TN2+…TNn+TM1+TM2+……+TMm)/(n+m)。Furthermore, combined with the revised TN1, TN2...TNn and TM1, TM2...TMm of the accounts participating in the prediction within a day, the adjusted warning time threshold is finally calculated based on the average prediction results of all accounts this time: T' = (TN1 +TN2+…TNn+TM1+TM2+…+TMm)/(n+m).
需说明的是,经调整的(或更新后的)T值作为新的预警时间阈值,第二天进行账号未登录时间扫描时,以新的T值为阈值进行比对,未登录时间大于T值时,发出相应的预警消息。It should be noted that the adjusted (or updated) T value is used as the new warning time threshold. When scanning the account non-login time the next day, the new T value is used as the threshold for comparison. If the non-login time is greater than T When the value is reached, a corresponding warning message is issued.
通过本发明实施例,实现了让账号管理人员有针对性地确认账号是否有效,而不需要全量确认所有账号,降低了账号管理人员的工作量。另外,通过动态自学习的方式来调整预警时间阈值,可以及时删除无效账号。此外,在收到负责人确认消息后,自动删除无效账号,而无需人工删除,提高了账号清理体验。Through the embodiments of the present invention, it is possible to allow account managers to confirm whether the accounts are valid in a targeted manner without fully confirming all accounts, thereby reducing the workload of account managers. In addition, by adjusting the warning time threshold through dynamic self-learning, invalid accounts can be deleted in time. In addition, after receiving the confirmation message from the person in charge, invalid accounts are automatically deleted without manual deletion, which improves the account cleaning experience.
基于上述实施例的内容,在本实施例中,所述访问特征信息包括访问IP维度下的访问特征;Based on the content of the above embodiment, in this embodiment, the access characteristic information includes access characteristics under the access IP dimension;
相应地,根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Correspondingly, according to the access characteristic information, determine whether there is early warning account information from the account information set to be managed, specifically including:
根据所述待管理的账号信息集中的各个账号信息的访问IP信息,确定各个账号信息的外网连续访问次数;Determine the number of consecutive external network visits for each account information based on the access IP information of each account information in the account information set to be managed;
将各个账号信息的外网连续访问次数与预警次数阈值进行比较,以确定是否存在所述预警账号信息。Compare the number of consecutive external network visits of each account information with the number of warnings threshold to determine whether the warning account information exists.
图7示出了根据本发明实施例的确定预警账号信息的另一示例的流程图。在本发明实施例的示例中,历史访问记录信息包括历史访问账号信息与相应的访问IP信息。Figure 7 shows a flow chart of another example of determining early warning account information according to an embodiment of the present invention. In the example of the embodiment of the present invention, the historical access record information includes historical access account information and corresponding access IP information.
如图7所示,在步骤710中,基于历史访问记录信息中的历史访问账号信息和相应的访问IP信息,确定待管理的账号信息集中的各个账号信息的外网连续访问次数。这里,可以将不在办公网络的IP段的访问IP信息定义为外网IP,相应地,该历史访问行为可以被确定为外网访问行为。As shown in Figure 7, in step 710, based on the historical access account information and the corresponding access IP information in the historical access record information, the number of consecutive external network accesses for each account information in the account information set to be managed is determined. Here, access IP information that is not in the IP segment of the office network can be defined as the external network IP. Correspondingly, the historical access behavior can be determined as the external network access behavior.
在步骤720中,将待管理的账号信息集中的各个账号信息的外网连续访问次数与预警次数阈值进行比较,以确定是否存在预警账号信息。具体地,当一个账号信息所对应的外网连续访问次数大于预警次数阈值时,可以确定该账号信息是预警账号信息;另外,当一个账号信息所对应的外网连续访问次数小于或等于预警次数阈值时,可以确定该账号信息不是预警账号信息。In step 720, the number of consecutive external network accesses of each account information in the account information set to be managed is compared with the warning number threshold to determine whether there is warning account information. Specifically, when the number of consecutive external network visits corresponding to an account information is greater than the warning number threshold, the account information can be determined to be warning account information; in addition, when the number of continuous external network visits corresponding to an account information is less than or equal to the warning number When the threshold is exceeded, it can be determined that the account information is not early warning account information.
结合应用场景来说,假设根据某账号的访问IP信息确定该账号的外网连续访问次数超过预警次数阈值如15次,则可以怀疑该账号所属员工已经离职。Based on the application scenario, if it is determined based on the access IP information of an account that the number of consecutive external network visits of the account exceeds the warning threshold, such as 15 times, it can be suspected that the employee to whom the account belongs has resigned.
通过本发明实施例,监测外网用户连续访问行为,并以此推测预警账号信息,实现了对已离职员工非法登录公司系统行为的有效防控,提高了办公网络中数据信息的安全性。Through the embodiments of the present invention, the continuous access behavior of external network users is monitored, and account information is inferred and early-warned, thereby effectively preventing and controlling illegal logins to the company system by resigned employees, and improving the security of data information in the office network.
基于上述实施例的内容,在本实施例中,所述访问特征信息包括访问地理维度下的访问特征;Based on the content of the above embodiment, in this embodiment, the access characteristic information includes access characteristics in the access geographic dimension;
相应地,根据所述访问特征信息,从所述待管理的账号信息集中确定是否存在预警账号信息,具体包括:Correspondingly, according to the access characteristic information, determine whether there is early warning account information from the account information set to be managed, specifically including:
将所述待管理的账号信息集中的各个账号信息的历史访问地理信息,与各个账号信息预先绑定的常用地理信息进行对比,以判断是否存在异地历史访问地理信息;Compare the historical access geographical information of each account information in the account information set to be managed with the commonly used geographical information pre-bound to each account information to determine whether there is historical access geographical information in different places;
根据针对所述异地历史访问地理信息的判断结果,确定是否存在预警账号信息。Based on the judgment results of the remote historical access geographical information, it is determined whether there is early warning account information.
图8示出了根据本发明实施例的确定预警账号信息的另一示例的流程图。在本发明实施例的示例中,历史访问记录信息包括历史访问账号信息与相应的历史访问地理信息,以及待管理的账号信息集中的各个账号信息分别与相应的常用地理信息关联。这里,常用地理信息可以用来反映员工经常登录账号信息的定位信息,例如北京是某个账号的常用地理信息。Figure 8 shows a flow chart of another example of determining early warning account information according to an embodiment of the present invention. In the example of the embodiment of the present invention, the historical access record information includes historical access account information and corresponding historical access geographical information, and each account information in the account information set to be managed is associated with the corresponding common geographical information. Here, commonly used geographical information can be used to reflect the location information of employees' frequently logged in account information. For example, Beijing is the commonly used geographical information of a certain account.
在步骤810中,将历史访问记录信息中的历史访问地理信息分别与相应的历史访问账号信息所关联的常用地理信息进行对比,以判断是否存在异地历史访问地理信息。In step 810, the historical access geographical information in the historical access record information is compared with the common geographical information associated with the corresponding historical access account information to determine whether there is remote historical access geographical information.
在步骤820中,根据针对异地历史访问地理信息的判断结果,确定是否存在预警账号信息。具体地,当一个账号信息的历史访问地理信息与常用地理信息不同时,可以确定针对该账号信息存在异地历史访问地理信息或异地访问行为。进而,可以将该账号信息确定为预警账号信息。In step 820, it is determined whether there is early warning account information based on the judgment results of historical access to geographical information in remote places. Specifically, when the historical access geographical information of an account information is different from the commonly used geographical information, it can be determined that there is remote historical access geographical information or remote access behavior for the account information. Furthermore, the account information can be determined as early warning account information.
在本发明实施例的一些优选实施方式中,一方面,当反馈消息中包含确认信息时(例如,确认账号被盗用了),可以通过调取脚本自动修改账号密码,并将修改后密码邮件通知到账号所属人。另一方面,当反馈消息中包含否认信息时(例如,确认是员工出差等导致的正常异地登录),无需删除账号。In some preferred implementations of the embodiments of the present invention, on the one hand, when the feedback message contains confirmation information (for example, confirming that the account has been stolen), the account password can be automatically modified by calling a script, and the modified password will be notified by email. To the person who owns the account. On the other hand, when the feedback message contains denial information (for example, confirming that it is a normal remote login caused by an employee's business trip, etc.), there is no need to delete the account.
通过本发明实施例,实现了当检测到账号信息存在异地登录的情况时,推送预警消息至相应负责人来提醒对该账号信息进行清理,可以有效避免账号信息被盗用的情况,保障了办公网络中的数据信息的安全性。Through the embodiments of the present invention, when it is detected that the account information is logged in from another place, an early warning message is pushed to the corresponding person in charge to remind the account information to be cleaned up, which can effectively avoid the account information being stolen and ensure the office network. The security of data information in.
图9示出了根据本发明实施例的账号清理装置的一示例的结构框图。Figure 9 shows a structural block diagram of an example of an account cleaning device according to an embodiment of the present invention.
如图9所示,账号清理装置900包括访问数据获取单元910、预警账号确定单元920、预警消息推送单元930、反馈消息接收单元940和预警账号处理单元950。As shown in FIG. 9 , the account cleaning device 900 includes an access data acquisition unit 910 , an early warning account determination unit 920 , an early warning message pushing unit 930 , a feedback message receiving unit 940 and an early warning account processing unit 950 .
访问数据获取单元910被配置为获取待管理的账号信息集和历史访问记录信息。The access data acquisition unit 910 is configured to acquire the account information set to be managed and historical access record information.
预警账号确定单元920被配置为基于所述历史访问记录信息,从所述待管理的账号信息集中确定是否存在预警账号信息。The early warning account determination unit 920 is configured to determine whether there is early warning account information from the account information set to be managed based on the historical access record information.
预警消息推送单元930被配置为当存在所述预警账号信息时,推送针对所述预警账号信息的预警消息至预设客户端。The early warning message pushing unit 930 is configured to push an early warning message for the early warning account information to a preset client when the early warning account information exists.
反馈消息接收单元940被配置为从所述预设客户端接收针对所述预警消息的反馈消息。The feedback message receiving unit 940 is configured to receive a feedback message for the early warning message from the preset client.
预警账号处理单元950被配置为根据所述反馈消息,对所述预警账号信息进行处理。The early warning account processing unit 950 is configured to process the early warning account information according to the feedback message.
关于本发明实施例的账号清理装置900的更多的细节和相应的效果,可以参照上面方法实施例中的描述,在此便不赘述。For more details and corresponding effects of the account cleaning device 900 according to the embodiment of the present invention, please refer to the description in the above method embodiment, and will not be described again here.
图10示例了一种电子设备的实体结构示意图,如图10所示,该电子设备可以包括:处理器(processor)1010、通信接口(Communication Interface)1020、存储器(memory)1030和通信总线1040,其中,处理器1010,通信接口1020,存储器1030通过通信总线1040完成相互间的通信。处理器1010可以调用存储器1030中的逻辑指令,以执行如下方法:获取待管理的账号信息集和历史访问记录信息;基于所述历史访问记录信息,从所述待管理的账号信息集中确定是否存在预警账号信息;当存在所述预警账号信息时,推送针对所述预警账号信息的预警消息至预设客户端;从所述预设客户端接收针对所述预警消息的反馈消息;根据所述反馈消息,对所述预警账号信息进行处理。Figure 10 illustrates a schematic diagram of the physical structure of an electronic device. As shown in Figure 10, the electronic device may include: a processor (processor) 1010, a communication interface (Communication Interface) 1020, a memory (memory) 1030 and a communication bus 1040. Among them, the processor 1010, the communication interface 1020, and the memory 1030 complete communication with each other through the communication bus 1040. The processor 1010 can call logical instructions in the memory 1030 to perform the following method: obtain the account information set to be managed and the historical access record information; based on the historical access record information, determine whether there is an account information set to be managed from the account information set to be managed Early warning account information; when the early warning account information exists, push an early warning message for the early warning account information to a preset client; receive a feedback message for the early warning message from the preset client; according to the feedback message to process the warning account information.
此外,上述的存储器1030中的逻辑指令可以通过软件功能单元的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。基于这样的理解,本发明的技术方案本质上或者说对现有技术做出贡献的部分或者该技术方案的部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质中,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行本发明各个实施例所述方法的全部或部分步骤。而前述的存储介质包括:U盘、移动硬盘、只读存储器(ROM,Read-Only Memory)、随机存取存储器(RAM,Random Access Memory)、磁碟或者光盘等各种可以存储程序代码的介质。In addition, the above-mentioned logical instructions in the memory 1030 can be implemented in the form of software functional units and can be stored in a computer-readable storage medium when sold or used as an independent product. Based on this understanding, the technical solution of the present invention essentially or the part that contributes to the existing technology or the part of the technical solution can be embodied in the form of a software product. The computer software product is stored in a storage medium, including Several instructions are used to cause a computer device (which may be a personal computer, a server, or a network device, etc.) to execute all or part of the steps of the methods described in various embodiments of the present invention. The aforementioned storage media include: U disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic disk or optical disk and other media that can store program code. .
另一方面,本发明实施例还提供一种非暂态计算机可读存储介质,其上存储有计算机程序,该计算机程序被处理器执行时实现以执行上述各实施例提供的传输方法,例如包括:获取待管理的账号信息集和历史访问记录信息;基于所述历史访问记录信息,从所述待管理的账号信息集中确定是否存在预警账号信息;当存在所述预警账号信息时,推送针对所述预警账号信息的预警消息至预设客户端;从所述预设客户端接收针对所述预警消息的反馈消息;根据所述反馈消息,对所述预警账号信息进行处理。On the other hand, embodiments of the present invention also provide a non-transitory computer-readable storage medium on which a computer program is stored. The computer program is implemented when executed by a processor to perform the transmission method provided by the above embodiments, for example, including : Obtain the account information set to be managed and the historical access record information; based on the historical access record information, determine whether there is early warning account information from the account information set to be managed; when the early warning account information exists, push the The early warning message of the early warning account information is sent to a preset client; a feedback message for the early warning message is received from the preset client; and the early warning account information is processed according to the feedback message.
以上所描述的装置实施例仅仅是示意性的,其中所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部模块来实现本实施例方案的目的。本领域普通技术人员在不付出创造性的劳动的情况下,即可以理解并实施。The device embodiments described above are only illustrative. The units described as separate components may or may not be physically separated. The components shown as units may or may not be physical units, that is, they may be located in One location, or it can be distributed across multiple network units. Some or all of the modules can be selected according to actual needs to achieve the purpose of the solution of this embodiment. Persons of ordinary skill in the art can understand and implement the method without any creative effort.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到各实施方式可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件。基于这样的理解,上述技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品可以存储在计算机可读存储介质中,如ROM/RAM、磁碟、光盘等,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行各个实施例或者实施例的某些部分所述的方法。Through the above description of the embodiments, those skilled in the art can clearly understand that each embodiment can be implemented by software plus a necessary general hardware platform, and of course, it can also be implemented by hardware. Based on this understanding, the part of the above technical solution that essentially contributes to the existing technology can be embodied in the form of a software product. The computer software product can be stored in a computer-readable storage medium, such as ROM/RAM, magnetic disk, optical disk, etc., including a number of instructions to cause a computer device (which can be a personal computer, a server, or a network device, etc.) to execute the methods described in various embodiments or certain parts of the embodiments.
最后应说明的是:以上实施例仅用以说明本发明的技术方案,而非对其限制;尽管参照前述实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的精神和范围。Finally, it should be noted that the above embodiments are only used to illustrate the technical solution of the present invention, but not to limit it; although the present invention has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand that it can still be used Modifications are made to the technical solutions described in the foregoing embodiments, or equivalent substitutions are made to some of the technical features; however, these modifications or substitutions do not cause the essence of the corresponding technical solutions to deviate from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (7)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010230217.7A CN111445210B (en) | 2020-03-27 | 2020-03-27 | Account cleaning method and device, electronic equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010230217.7A CN111445210B (en) | 2020-03-27 | 2020-03-27 | Account cleaning method and device, electronic equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111445210A CN111445210A (en) | 2020-07-24 |
| CN111445210B true CN111445210B (en) | 2023-10-20 |
Family
ID=71652622
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010230217.7A Active CN111445210B (en) | 2020-03-27 | 2020-03-27 | Account cleaning method and device, electronic equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111445210B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112070458A (en) * | 2020-08-07 | 2020-12-11 | 新华三信息安全技术有限公司 | Account identification method and device |
Citations (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101159589A (en) * | 2006-07-31 | 2008-04-09 | 费舍-柔斯芒特系统股份有限公司 | Distributed user validation and profile management system |
| CN102223319A (en) * | 2011-03-24 | 2011-10-19 | 东莞中山大学研究院 | Method and device for customized management service of intelligent gateway |
| KR20130116427A (en) * | 2012-03-16 | 2013-10-24 | 삼성전자주식회사 | Apparatus and method for ensuring privacy in contents sharing system |
| CN104104766A (en) * | 2013-04-10 | 2014-10-15 | 三星电子株式会社 | Terminal apparatus, server and method of controlling the same |
| WO2015024476A1 (en) * | 2013-08-23 | 2015-02-26 | Tencent Technology (Shenzhen) Company Limited | A method, server, and computer program product for managing ip address attributions |
| CN104703173A (en) * | 2013-12-06 | 2015-06-10 | 中国移动通信集团公司 | Terminal application account configuration and detection method, device and system |
| CN105787709A (en) * | 2016-03-24 | 2016-07-20 | 深圳竹云科技有限公司 | Method of synchronizing multiple system accounts |
| CN105827572A (en) * | 2015-01-06 | 2016-08-03 | 中国移动通信集团浙江有限公司 | Method and device for inheriting service content of user account |
| CN106534158A (en) * | 2016-11-29 | 2017-03-22 | 努比亚技术有限公司 | Account login control device and method |
| CN106789913A (en) * | 2016-11-23 | 2017-05-31 | 北京云中融信网络科技有限公司 | User account management method and device |
| CN107302540A (en) * | 2017-07-28 | 2017-10-27 | 成都牵牛草信息技术有限公司 | The management method of instant messaging account in management system |
| CN108287863A (en) * | 2017-11-30 | 2018-07-17 | 维沃移动通信有限公司 | A kind of method for cleaning and device of Message Record |
| CN108449327A (en) * | 2018-02-27 | 2018-08-24 | 平安科技(深圳)有限公司 | A kind of account method for cleaning, device, terminal device and storage medium |
| CN108830470A (en) * | 2018-06-01 | 2018-11-16 | 北京金山数字娱乐科技有限公司 | A kind of method and device of account processing |
| CN109656965A (en) * | 2018-10-30 | 2019-04-19 | 平安科技(深圳)有限公司 | A kind of account method for cleaning and device |
| CN110503391A (en) * | 2019-07-31 | 2019-11-26 | 广州竞德信息技术有限公司 | System is verified in recognition of face |
| CN110516144A (en) * | 2019-07-05 | 2019-11-29 | 中国平安财产保险股份有限公司 | A method and device for preventing message sending by mistake, computer equipment and storage medium |
| CN110808839A (en) * | 2019-10-30 | 2020-02-18 | 百度在线网络技术(北京)有限公司 | Processing method, device, equipment and medium for block chain abnormal data |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11134097B2 (en) * | 2017-10-23 | 2021-09-28 | Zerofox, Inc. | Automated social account removal |
-
2020
- 2020-03-27 CN CN202010230217.7A patent/CN111445210B/en active Active
Patent Citations (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101159589A (en) * | 2006-07-31 | 2008-04-09 | 费舍-柔斯芒特系统股份有限公司 | Distributed user validation and profile management system |
| CN102223319A (en) * | 2011-03-24 | 2011-10-19 | 东莞中山大学研究院 | Method and device for customized management service of intelligent gateway |
| KR20130116427A (en) * | 2012-03-16 | 2013-10-24 | 삼성전자주식회사 | Apparatus and method for ensuring privacy in contents sharing system |
| CN104104766A (en) * | 2013-04-10 | 2014-10-15 | 三星电子株式会社 | Terminal apparatus, server and method of controlling the same |
| WO2015024476A1 (en) * | 2013-08-23 | 2015-02-26 | Tencent Technology (Shenzhen) Company Limited | A method, server, and computer program product for managing ip address attributions |
| CN104703173A (en) * | 2013-12-06 | 2015-06-10 | 中国移动通信集团公司 | Terminal application account configuration and detection method, device and system |
| CN105827572A (en) * | 2015-01-06 | 2016-08-03 | 中国移动通信集团浙江有限公司 | Method and device for inheriting service content of user account |
| CN105787709A (en) * | 2016-03-24 | 2016-07-20 | 深圳竹云科技有限公司 | Method of synchronizing multiple system accounts |
| CN106789913A (en) * | 2016-11-23 | 2017-05-31 | 北京云中融信网络科技有限公司 | User account management method and device |
| CN106534158A (en) * | 2016-11-29 | 2017-03-22 | 努比亚技术有限公司 | Account login control device and method |
| CN107302540A (en) * | 2017-07-28 | 2017-10-27 | 成都牵牛草信息技术有限公司 | The management method of instant messaging account in management system |
| CN108287863A (en) * | 2017-11-30 | 2018-07-17 | 维沃移动通信有限公司 | A kind of method for cleaning and device of Message Record |
| CN108449327A (en) * | 2018-02-27 | 2018-08-24 | 平安科技(深圳)有限公司 | A kind of account method for cleaning, device, terminal device and storage medium |
| CN108830470A (en) * | 2018-06-01 | 2018-11-16 | 北京金山数字娱乐科技有限公司 | A kind of method and device of account processing |
| CN109656965A (en) * | 2018-10-30 | 2019-04-19 | 平安科技(深圳)有限公司 | A kind of account method for cleaning and device |
| CN110516144A (en) * | 2019-07-05 | 2019-11-29 | 中国平安财产保险股份有限公司 | A method and device for preventing message sending by mistake, computer equipment and storage medium |
| CN110503391A (en) * | 2019-07-31 | 2019-11-26 | 广州竞德信息技术有限公司 | System is verified in recognition of face |
| CN110808839A (en) * | 2019-10-30 | 2020-02-18 | 百度在线网络技术(北京)有限公司 | Processing method, device, equipment and medium for block chain abnormal data |
Non-Patent Citations (4)
| Title |
|---|
| 基于目录服务的跨平台账户管理;罗振文;石化技术(第02期);33-36 * |
| 沈洪洲 ; 丁志峰 ; .高校统一身份认证系统集用户管理和访问控制于一体,实现单点登录全网通行.中国教育网络.2009,(第09期),63-65. * |
| 王彦辉 ; .中原旧书网电子商务平台设计与实施.电脑编程技巧与维护.2017,(第11期),10-12. * |
| 路欣 ; 张嘉希 ; .应用系统账号权限自动化梳理的研究.数字通信世界.2017,(第10期),166. * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111445210A (en) | 2020-07-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20220353271A1 (en) | Dynamic user access control management | |
| US10897520B2 (en) | Connected contact identification | |
| US8484703B2 (en) | Systems and methods for delegation and notification of administration of internet access | |
| CN111124819B (en) | Method and device for full link monitoring | |
| US7281041B2 (en) | Method and apparatus for providing a baselining and auto-thresholding framework | |
| US9129257B2 (en) | Method and system for monitoring high risk users | |
| US11869014B2 (en) | Physical proximity graphing | |
| US7840576B1 (en) | Flexible rule-based infrastructure for discussion board maintenance | |
| US20050246762A1 (en) | Changing access permission based on usage of a computer resource | |
| US7886053B1 (en) | Self-management of access control policy | |
| US20180337929A1 (en) | Access Control in a Hybrid Cloud Infrastructure - Cloud Technology | |
| US7779113B1 (en) | Audit management system for networks | |
| CN102185841A (en) | Classified data transmission method and system | |
| CN108306846B (en) | A network access anomaly detection method and system | |
| CN106302445A (en) | For the method and apparatus processing request | |
| US8250237B2 (en) | Communication with database client users | |
| CN107786551B (en) | Method for accessing intranet server and device for controlling access to intranet server | |
| US10721236B1 (en) | Method, apparatus and computer program product for providing security via user clustering | |
| WO2024217549A1 (en) | Analysis method and apparatus for network access data, and computer device and storage medium | |
| WO2019052469A1 (en) | Network request processing method and apparatus, electronic device, and storage medium | |
| CN108924086A (en) | A kind of host information acquisition method based on TSM Security Agent | |
| CN111445210B (en) | Account cleaning method and device, electronic equipment and storage medium | |
| JP2019503021A (en) | System environment and user behavior analysis based self-defense security device and its operation method | |
| US8117181B2 (en) | System for notification of group membership changes in directory service | |
| CN113760568B (en) | Data processing method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |