WO2016091002A1 - 在网页上提供认证信息的方法及装置 - Google Patents
在网页上提供认证信息的方法及装置 Download PDFInfo
- Publication number
- WO2016091002A1 WO2016091002A1 PCT/CN2015/091600 CN2015091600W WO2016091002A1 WO 2016091002 A1 WO2016091002 A1 WO 2016091002A1 CN 2015091600 W CN2015091600 W CN 2015091600W WO 2016091002 A1 WO2016091002 A1 WO 2016091002A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- authentication information
- web page
- authentication
- webpage
- script code
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1483—Countermeasures against malicious traffic service impersonation, e.g. phishing, pharming or web spoofing
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/951—Indexing; Web crawling techniques
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/958—Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2119—Authenticating web pages, e.g. with suspicious links
Definitions
- the authentication information related to the webpage is usually directly embedded in the webpage by the third party, and the displayed authentication information content is fixed and single, and the user cannot select and edit the authentication information autonomously, so that the authentication information is on the webpage.
- the display on it is greatly restricted.
- the search engine is a necessary tool for users to perform network search, and also has the function of providing corresponding authentication information for web pages searched by users.
- the search engine receives the retrieval request
- the web page is embedded with a specific script code, and an authentication information request is issued by the specific script code.
- a piece of code is provided in advance to the registered user as the script code for embedding in the registered user web page for requesting and displaying the authentication information.
- it also includes:
- determining whether the webpage that sends the authentication information request passes the related search engine jump includes:
- the step of subsequently determining and providing the authentication information related to the search engine is entered;
- the information is set to provide authentication information for the web page when the page is displayed, otherwise it is not provided.
- the information about the manner in which the authentication information is displayed includes:
- the authentication information is displayed on the web page, the format displayed, and the location on the web page.
- the authentication information is obtained and authenticated by an authentication system associated with the search engine.
- an apparatus for providing authentication information for a webpage by an authentication system includes:
- a first module configured to receive an authentication information request from a webpage
- a third module configured to determine whether the webpage meets the condition for displaying the authentication information
- the script code is used to obtain a URL of a webpage that issues a request for authentication information.
- the third module is used to:
- the recognition is determined Whether the certificate information is set to be displayed on this page;
- an interface for editing the manner in which the authentication information is displayed is also included.
- the manner in which the authentication information is displayed includes:
- the authentication information is displayed on the web page, the format displayed, and the location on the web page.
- the user also includes an interface for batch editing the URLs of all the web pages on which the script code is installed;
- the present invention provides a system for providing authentication information to a website through a search engine, including a search engine and the apparatus for providing authentication information according to any of the above.
- the search engine is configured to receive a retrieval request, and display a search result link according to the retrieval request; and jump to a webpage corresponding to the link based on selecting one of the search result links;
- FIG. 1 is a flow chart of a method for providing authentication information for a web page according to an embodiment of the present invention
- FIG. 2 is a flow chart of a method for issuing an authentication information request to an authentication system, in accordance with one embodiment of the present invention
- FIG. 3 is a flow chart of managing user authentication information according to an embodiment of the present invention.
- FIG. 4 is a schematic diagram of an apparatus for providing authentication information for a web page according to an embodiment of the present invention
- FIG. 5 is a specific diagram of authentication information displayed on a web page according to an embodiment of the present invention.
- the method of the present invention is primarily accomplished by a server in a computer device.
- the server may be referred to as a device that provides authentication information for a web page.
- the computer device includes, but is not limited to, at least one of the following: a database, a network device.
- Databases include, but are not limited to, computers.
- Network devices include but are not limited to a single network server and multiple network servers A server group or a cloud-based cloud consisting of a large number of computers or network servers, where cloud computing is a type of distributed computing, a super-virtual computer composed of a group of loosely coupled computers.
- the method for providing authentication information for a webpage by the authentication system includes the following steps:
- S100 Receive authentication information request data from a webpage.
- the authentication information request from the web page arrives at the authentication system as follows:
- the authentication information sent by the webpage arrives at the authentication system is divided into three steps.
- the search engine receives a retrieval request of the user; specifically, the user initiates a retrieval request, a user equipment, and a network device to the search engine through the user equipment and/or the network device.
- User equipment includes, but is not limited to, computers, smart phones, PDAs, and the like.
- the advantage of obtaining the URL of the web page on which the script code is installed by the specific script code is that the webmaster does not have to know in advance which web pages have the specific script code installed.
- a webmaster can embed the script code assigned by the authentication system in the header or footer file of the website file, so that the web page with the header or footer contains the script code.
- the visitor opens the webpage embedded with the specific script code and automatically requests the authentication system to obtain the authentication information.
- webmasters may not want each page in the website they manage to display authentication information to avoid unnecessary interference with visitors. Therefore, the webmaster can log in to the authentication system, and perform unified management such as selection, setting, and the like of the URL of the webpage on which the script code is installed, so that only the authentication information request from the partial webpage URL is allowed to return the authentication information. Display.
- the purpose of this step is to judge the method of the user opening the webpage and reject the authentication information request of the webpage opened by other methods.
- the user can independently select the display state of the authentication information on the specified web page, it is necessary to determine whether the authentication information on the web page is set to be displayed on the page.
- the authentication information is provided for the web page if and only if the authentication system stores authentication information that matches the URL of the web page and the authentication information is set to be displayed on the web page, otherwise not provided.
- the purpose of this step is to ensure that the authentication information is only pushed to the web page related to the userid of the user, and the security of the authentication information is protected.
- step S130 authentication information is provided for the web page that satisfies the condition. That is, the authentication system pushes the authentication information related to the requested web page to the web page.
- the authentication information is generated by the following steps:
- the user registers the account on the authentication website, generates the userid (user ID), and based on the authentication data filled in by the userid, including at least one of the following: the website address, the ICP record number of the website, the name of the company to which the website belongs, the business scope, and the industry. Etc.
- Each userid corresponds to multiple authentication data.
- the passive authentication data includes: comment data for the website for the netizen, such as: comment content, number of comments, favorable rate, etc., which is provided by the authentication system according to the userid matching of the user.
- the authentication system can retrieve a webpage that does not install the script code associated with its authentication information to the registered user through the network.
- the steps of the user application authentication system are greatly simplified, and the user is provided with real-time dynamic information, which is convenient for the user to manage the webpage belonging to himself.
- the authentication system provides different or the same script code for each registered user, and may provide different authentication information of the registered user to different web pages with the same script code of the specific registered user based on the webpage URL of the installation script code.
- the user can also choose to generate different script codes depending on how the authentication information is displayed. Enables system functions to be flexibly adjusted based on user selection.
- the authentication system provides the user with an interface that can independently edit the authentication information. Enables the user to edit the authentication information style displayed on the web page through the interface.
- the editorial content includes:
- the authentication system provides the user with a variety of display styles of authentication information, and the color, shape, and location on the web page can be selected by the user;
- the color of the authentication information can include a given color provided by the system database, such as red, blue. Color, pink, green, yellow, etc., can also be obtained by the user through the color picker;
- the shape of the authentication information includes various geometric shapes such as a rectangle, a circle, a triangle, a polygon, and the like, wherein the rectangle includes a square and a rectangle, and the circle includes an ellipse;
- the location of the authentication information can be anywhere on the page, including the top, middle, bottom, footer, etc. of the page.
- the user can select in the display position given by the system, or can be specifically set by coordinates.
- 5(a) and 5(b) specifically illustrate two different styles of authentication information that may be present in other embodiments, which are merely illustrative of the invention and are not to be construed as limiting the invention.
- the style displayed by the authentication information on the page also includes direct display and indirect display; the direct display method directly displays the edited information edited by the user on the webpage; and the indirect display displays the authentication information icon on the webpage instead of the content of the authentication information.
- the authentication information icon expands to the entire content of the authentication information; optionally When the user clicks the icon again, or the mouse rolls over the icon, the authentication information is retracted as an icon.
- the authentication information icon may be visible or hidden according to the user's selection; it may exist alone or attached to an existing element on the web page.
- the complete authentication information of the userid is generated, including all the self-filled authentication data and passive authentication data of the user, and the entire content of the authentication information is presented one by one through the interaction module.
- Userid user The user can filter and determine the authentication information provided by the system one by one, and select whether each piece of authentication information is displayed on the webpage.
- the authentication system generates final authentication information based on the user's selection.
- the authentication system retrieves a web page that recommends the user without the installation script code related to the authentication information through the network. So that users can clearly understand that those websites can not display the authentication information, so as to install the script code on the webpage that needs to display the authentication information as needed.
- the authentication system provides the user with an interface for batch editing of the URLs of all web pages on which the script code is installed; wherein the edited content includes: making the selected URL display or not displaying the authentication information. That is, for a webpage with a script code installed, if it is not required to display the authentication information, the batch management selection is performed only through the interaction interface between the user and the authentication system, and the script code already installed in the website is not required to be deleted. Greatly convenient for user operations.
- the user may separately edit the authentication information on multiple URLs corresponding to each userid, that is, the authentication information displayed by different websites belonging to the same userid may be the same or different.
- S100 Receive authentication information request data from a webpage.
- S130 Provide authentication information for a webpage that satisfies the condition.
- receiving the authentication information request from the webpage may be: receiving an authentication information request of the webpage actively pushed by each webpage; and accepting recognition from one webpage at a time
- the information request can also accept authentication information requests from multiple web pages at the same time.
- the authentication information request from the web page arrives at the authentication system as follows:
- step S110 it is determined whether the web page jumps through the relevant search engine.
- the purpose of this step is to implement the function of providing authentication information to the user through the search engine, and to enhance the reliability of the authentication information.
- the script file judges how the webpage is opened, and if the webpage is opened by the above steps, the script code sends a signal requesting the authentication information to the authentication system, and When opened in other ways, the script code does not make a request to the authentication system. The judgment is directly performed by the script code, which avoids the transmission of redundant information between the webpage and the authentication system, thereby reducing the burden on the system. Increased efficiency.
- step S130 authentication information is provided for the web page that satisfies the condition. That is, the authentication system pushes the authentication information related to the requested web page to the web page.
- the above two embodiments provide the authentication information provided by the authentication system for the website through the search engine, and provide the authentication information for the website through the combination of the authentication system and the related search engine, thereby enhancing the reliability of the authentication information. And security.
- step S300 the user registers an account on the authentication website, generates a userid (user ID), and based on the authentication data filled in by the userid, including at least one of the following: a website address, an ICP record number of the website, and a company of the website Name, business scope, industry, etc.
- Each userid corresponds to multiple authentication data.
- the passive authentication data includes: comment data for the website for the netizen, such as: comment content, number of comments, favorable rate, etc., which is provided by the authentication system according to the userid matching of the user.
- step S310 the authentication website generates a unique script code for each userid, wherein the script code is used to be embedded in the user web page to request and display the recognition. A piece of code for the information, the user downloads the script code.
- Vipshop After obtaining the script code, Vipshop will install the script code on its own webpage to establish a real-time communication connection channel between the webpage where the script code is installed and the Baidu authentication system, so as to obtain real-time authentication from the Baidu authentication system. information.
- the webpage will only obtain the authentication information pushed by the Baidu authentication system when it is searched through Baidu search engine and jumped open. For example, if you directly enter the URL to enter the website, directly enter the website through third-party recommendation, etc., the Baidu authentication system will not push the authentication information to the website.
- the authentication system provides an interface for editing the display style of the authentication information, and the user can edit the display style of the authentication information on the webpage through the interface, and the editing content includes:
- 5(a) and 5(b) specifically illustrate two different styles of authentication information that may be present in other embodiments, which are merely illustrative of the invention and are not to be construed as limiting the invention.
- the authentication system searches the webpage for recommending to the user the un-installed script code related to the authentication information. So that users can clearly understand that those websites can not display the authentication information, so as to install the script code on the webpage that needs to display the authentication information as needed.
- the authentication system provides users with An interface for batch editing of URLs of all web pages on which script code is installed; wherein the edited content includes: causing the selected URL to display or not to display authentication information. That is, for a webpage with a script code installed, if it is not required to display the authentication information, the batch management selection is performed only through the interaction interface between the user and the authentication system, and the script code already installed in the website is not required to be deleted. Greatly convenient for user operations.
- the authentication information in the prior art requires the user to manually fill in the URL of the webpage where the authentication information needs to be installed.
- the authentication system directly embeds the relevant authentication information into the webpage, and the parameters such as the content and style of the authentication information displayed on the webpage are fixed, and cannot be customized according to the needs of the user. Make flexible adjustments.
- the technical solution provided by the present invention solves these two problems well.
- the foregoing provides a method for providing website authentication data for a search engine according to the embodiment of the present application. Based on the same idea of the foregoing method, the embodiment of the present application further provides an apparatus for providing website authentication data for a search engine, as shown in FIG. 4 .
- the device mainly includes: a first module 110, configured to receive an authentication information request from a webpage; a second module 120, configured to determine whether the webpage is redirected by a search engine; and a third module 130, configured to determine whether the webpage meets the display The condition of the authentication information; the fourth module 140 is configured to provide authentication information for the webpage that meets the condition.
- the first module 110 is configured to receive an authentication information request from a webpage.
- the authentication information request from the webpage may be: receiving an authentication information request of the webpage actively pushed by each webpage; receiving the authentication information request from one webpage at a time, or accepting the authentication information request from the multiple webpages at the same time.
- the first module also includes means for providing script code for embedding a piece of code in the web page to request and display the authentication information.
- the script code is used to obtain a URL of a webpage that issues a request for authentication information.
- the authentication information request from the web page arrives at the authentication system as follows:
- the search engine receives the user's retrieval request; specifically, the user sets the user through The standby and/or network device initiates a retrieval request, a user device, and a network device to the search engine.
- User equipment includes, but is not limited to, computers, smart phones, PDAs, and the like.
- the search engine displays a search result link according to the search request, and the search result may be sorted according to the relevance, date, classification, and the like retrieved by the user, and the user selects or does not enter a link in the search result.
- the search engine jumps to the webpage corresponding to the link based on the user's selection, and the webpage is embedded with a specific script code, and the authentication information request is sent to the authentication system through the specific script code.
- the script code is a piece of code provided by the authentication system for the registered user for embedding in the user web page to request and display the authentication information, and the script code is generated by the following method:
- the user registers the account on the authentication website, generates the userid (user ID), and based on the authentication data filled in by the userid, including at least one of the following: the website address, the ICP record number of the website, the name of the company to which the website belongs, the business scope, and the industry. Etc.
- Each userid corresponds to multiple authentication data.
- the authentication website generates a unique script code for each userid.
- the user installs the script code onto an associated web page, and the script code establishes a connection channel for real-time communication between the web page and the authentication system.
- the script code obtains the URL of the webpage in which the script code is embedded and feeds back to the authentication system.
- the authentication system provides the information of all the URLs to the user, and the user can edit the authentication information displayed on the webpage through the connection channel.
- the content of the authentication information includes the authentication data and the passive authentication data filled out by the user.
- the passive authentication data includes: comments data of the website for the netizens, such as: comment content, number of comments, favorable rate, etc., which are matched by the authentication system according to the userid of the user. provide.
- the authentication system stores and integrates all of the above authentication information to generate complete authentication information about the user.
- the authentication system provides an interface for editing the content and format displayed by the authentication information, and the user can edit the content displayed on the webpage by the user through the interface, and the editing content includes:
- the website where the script code is installed may have a single page or multiple sub-pages, and the user may edit the authentication information of the website and select the authentication information on the website. Whether it is displayed on each page included, the authentication system displays or does not display the authentication information on the corresponding page according to the user's editing.
- the complete authentication information of the userid is generated, including all the self-filled authentication data and passive authentication data of the user, and the entire content of the authentication information is presented one by one through the interaction module.
- Userid user The user can filter and determine the authentication information provided by the system one by one, and select whether each piece of authentication information is displayed on the webpage.
- the authentication system generates final authentication information based on the user's selection.
- the user may have an authentication letter on multiple URLs corresponding to each userid.
- the information is edited separately, that is, the authentication information displayed on different websites belonging to the same userid may be the same or different.
- the second module 120 is configured to determine whether the webpage jumps through a search engine.
- the second module is further configured to: when the webpage that issues the authentication information request jumps through the related search engine, go to the third module; otherwise, refuse to provide the authentication information.
- the purpose of this module is to enhance the reliability of authentication information by implementing the function of providing authentication information to users through search engines.
- the third module is configured to: determine whether the authentication information matching the URL of the webpage is stored; and when the authentication information matching the URL of the webpage is stored, determine whether the authentication information is set to be The page displays; if and only if the authentication information matching the URL of the web page is stored and the authentication information is set to be displayed on the page, then the fourth module is passed; otherwise the authentication information is denied.
- the purpose of this module is to ensure that the authentication information is only pushed to the web page related to the userid of the user, and the security of the authentication information is protected.
- the authentication system further determines the web page for the determination by the second module 120, that is, the authentication information request from the web page that is redirected by the search engine.
- the user can independently select the display state of the authentication information on the specified web page, it is necessary to determine whether the authentication information on the web page is set to be displayed on the page.
- the authentication information is provided for the web page if and only if the authentication system stores authentication information that matches the URL of the web page and the authentication information is set to be displayed on the web page, otherwise not provided.
- the authentication system further includes an interface for the user to batch edit the URLs of all webpages with script code installed; wherein the registered user can select the URL of all webpages with script code installed through the URL batch editing interface.
- the authentication system further includes means for searching for a webpage that does not install the script code related to the authentication information to the user through the network search.
- the authentication system provided by the embodiment of the present application provides an authentication letter for the website through a search engine.
- the method of information through the combination of the authentication system and the related search engine to provide authentication information for the website, enhances the reliability and security of the authentication information.
- the user is provided with an interface for editing the content and format displayed by the authentication information, so that the user can independently edit and manage the style of the authentication information, thereby overcoming the shortcomings of the existing authentication information display style and the inconvenience of management.
- strict restrictions are imposed on the push conditions of the authentication information, and the push security of the authentication information is ensured.
- the present invention can be implemented in software and/or a combination of software and hardware, for example, using an application specific integrated circuit (ASIC), a general purpose computer, or any other similar hardware device.
- the software program of the present invention may be executed by a processor to implement the steps or functions described above.
- the software program (including related data structures) of the present invention can be stored in a computer readable recording medium such as a RAM memory, a magnetic or optical drive or a floppy disk and the like.
- some of the steps or functions of the present invention may be implemented in hardware, for example, as a circuit that cooperates with a processor to perform various steps or functions.
- a portion of the invention can be applied as a computer program product, such as computer program instructions, which, when executed by a computer, can invoke or provide a method and/or solution in accordance with the present invention.
- the program instructions for invoking the method of the present invention may be stored in a fixed or removable recording medium and/or transmitted by a data stream in a broadcast or other signal bearing medium, and/or stored in a The working memory of the computer device in which the program instructions are run.
- an embodiment in accordance with the present invention includes a device including a memory for storing computer program instructions and a processor for executing program instructions, wherein when the computer program instructions are executed by the processor, triggering
- the apparatus operates based on the aforementioned methods and/or technical solutions in accordance with various embodiments of the present invention.
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Databases & Information Systems (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Data Mining & Analysis (AREA)
- Computer Hardware Design (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Software Systems (AREA)
- Computing Systems (AREA)
- Information Transfer Between Computers (AREA)
Abstract
Description
Claims (29)
- 一种在网页上提供认证信息的方法,包括:接收来自网页的认证信息请求;判断该网页是否通过相关的搜索引擎跳转;判断该网页是否满足显示认证信息的条件;为满足上述条件的网页提供认证信息。
- 根据权利要求1所述的方法,其中,所述认证信息请求通过如下步骤发出:搜索引擎接收检索请求;根据检索请求显示搜索结果链接;基于选择其中一个搜索结果链接跳转到该链接对应的网页,所述网页内嵌有特定脚本代码,通过该特定脚本代码发出认证信息请求。
- 根据权利要求2所述的方法,其中,预先向注册用户提供一段代码作为用于嵌入在该注册用户网页中的所述脚本代码,用于请求和显示认证信息。
- 根据权利要求3所述的方法,其中,通过所述脚本代码获取嵌入有该脚本代码的网页的URL。
- 根据权利要求3所述的方法,其中,还包括:通过网络检索向注册用户推荐与其认证信息相关的未安装脚本代码的网页。
- 根据权利要求1所述的方法,其中,判断发出认证信息请求的网页是否通过相关的搜索引擎跳转的步骤包括:若该网页通过相关的搜索引擎跳转,则进入后续判断和提供与该搜索引擎相关的认证信息的步骤;若该网页不是通过相关的搜索引擎跳转,则拒绝提供认证信息。
- 根据权利要求4所述的方法,其中,显示认证信息的条件包括:判断是否存储有与发出认证信息请求的网页的URL相匹配的认证信息;以及该认证信息是否被设置为在该页面显示;当且仅当存储有与该网页的URL相匹配的认证信息且该认证信息被设置为在该页面显示时,为该网页提供认证信息,否则不提供。
- 根据权利要求1所述的方法,其中,向注册用户提供对所述认证信息的显示方式进行编辑的接口。
- 根据权利要求8所述的方法,其中,所述认证信息的显示方式包括:认证信息在网页上是否显示、显示的格式以及在网页上的位置。
- 根据权利要求4或8所述的方法,其中,向注册用户提供对所有安装有脚本代码的网页的URL进行批量编辑的接口;其中,注册用户可以通过该URL批量编辑接口对所有安装有脚本代码的网页的URL进行选择,以显示或不显示认证信息。
- 根据权利要求1所述的方法,其中所述认证信息是通过与所述搜索引擎相关的认证***获取和认证的。
- 根据权利要求3所述的方法,为每个注册用户提供唯一的脚本代码,可以基于安装脚本代码的网页URL不同,对安装有特定注册用户相同脚本代码的不同网页提供该注册用户的不同认证信息。
- 一种在网页上提供认证信息的装置,包括:第一模块,用于接收来自网页的认证信息请求;第二模块,用于判断该网页是否通过相关的搜索引擎跳转;第三模块,用于判断该网页是否满足显示认证信息的条件;第四模块,用于为满足条件的网页提供认证信息。
- 根据权利要求13所述的装置,其中,还包括用于提供脚本代码的模块,所述脚本代码用于嵌入在网页中以请求和显示认证信息的一段代码。
- 根据权利要求14所述的装置,其中,所述脚本代码用于获取发出认证信息请求的网页的URL。
- 根据权利要求13所述的装置,其中,所述第二模块还用于当发出认证信息请求的网页通过相关的搜索引擎跳转时,转至所述第三模 块;否则拒绝提供认证信息。
- 根据权利要求13所述的装置,其中,所述第三模块用于:判断是否存储有与该网页的URL相匹配的认证信息;以及当存储有与该网页的URL相匹配的所述认证信息时,判断该认证信息是否被设置为在该页面显示;当且仅当存储与该网页的URL相匹配的认证信息且该认证信息被设置为在该页面显示时,转至第四模块;否则拒绝提供认证信息。
- 根据权利要求13所述的装置,还包括用户对所述认证信息的显示方式进行编辑的接口。
- 根据权利要求18所述的装置,其中,所述认证信息的显示方式包括:认证信息在网页上是否显示、显示的格式以及在网页上的位置。
- 根据权利要求13所述的装置,其中,还包括用户对所有安装有脚本代码的网页的URL进行批量编辑的接口;其中,注册用户可以通过该URL批量编辑接口对所有安装有脚本代码的网页的URL进行选择,以显示或不显示认证信息。
- 根据权利要求13所述的装置,其中,还包括用于通过网络搜索向用户推荐与认证信息相关的未安装脚本代码的网页的模块。
- 根据权利要求13所述的装置,其中所述认证信息是通过与所述搜索引擎相关的认证***获取和认证的。
- 根据权利要求15所述的装置,为每个注册用户提供唯一的脚本代码,可以基于安装脚本代码的网页URL不同,对安装有特定注册用户相同脚本代码的不同网页提供该注册用户的不同认证信息。
- 根据权利要求14所述的装置,其中,还包括:通过网络检索向注册用户推荐与其认证信息相关的未安装脚本代码的网页。
- 一种通过搜索引擎为网站提供认证信息的***,包括搜索引擎和权利要求13-23中的任何一项所述的提供认证信息的装置。
- 根据权利要求24所述的***,其中,所述搜索引擎用于接收检索请求,并根据检索请求显示搜索结果 链接;并基于选择其中一个搜索结果链接跳转到该链接对应的网页;所述的提供认证信息的装置用于接收所述网页发出认证信息请求以及向该网页提供或不提供认证信息。
- 一种计算机可读存储介质,所述计算机可读存储介质存储有计算机指令,当所述计算机指令被执行时,如权利要求1至12中任一项所述的方法被执行。
- 一种计算机程序产品,当所述计算机程序产品被执行时,如权利要求1至12中任一项所述的方法被执行。
- 一种计算机设备,所述计算机设备包括存储器和处理器,所述存储器中存储有计算机代码,所述处理器被配置来通过执行所述计算机代码以执行如权利要求1至12中任一项所述的方法。
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP15866861.6A EP3232335B1 (en) | 2014-12-10 | 2015-10-10 | Method and device for providing authentication information on web page |
US15/535,043 US10686835B2 (en) | 2014-12-10 | 2015-10-10 | Method and device for providing authentication information on web page |
KR1020177018913A KR101977624B1 (ko) | 2014-12-10 | 2015-10-10 | 웹 페이지 상에 인증 정보를 제공하기 위한 방법 및 장치 |
JP2017531739A JP6422583B2 (ja) | 2014-12-10 | 2015-10-10 | ウェブページ上で認証情報を提供する方法、装置、システム、記憶媒体、プログラム、及びコンピュータ装置 |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410759242.9 | 2014-12-10 | ||
CN201410759242.9A CN104572837B (zh) | 2014-12-10 | 2014-12-10 | 在网页上提供认证信息的方法及装置 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2016091002A1 true WO2016091002A1 (zh) | 2016-06-16 |
Family
ID=53088899
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2015/091600 WO2016091002A1 (zh) | 2014-12-10 | 2015-10-10 | 在网页上提供认证信息的方法及装置 |
Country Status (6)
Country | Link |
---|---|
US (1) | US10686835B2 (zh) |
EP (1) | EP3232335B1 (zh) |
JP (1) | JP6422583B2 (zh) |
KR (1) | KR101977624B1 (zh) |
CN (1) | CN104572837B (zh) |
WO (1) | WO2016091002A1 (zh) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107368718A (zh) * | 2017-07-06 | 2017-11-21 | 同济大学 | 一种用户浏览行为认证方法及*** |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
SG11201703834SA (en) * | 2014-11-14 | 2017-06-29 | Fujitsu Ltd | Recording medium, data verification method, and data verification device |
CN104572837B (zh) * | 2014-12-10 | 2019-07-26 | 百度在线网络技术(北京)有限公司 | 在网页上提供认证信息的方法及装置 |
CN107968762A (zh) * | 2016-10-19 | 2018-04-27 | 中国电信股份有限公司 | 用于实现安全访问网络的方法、装置和*** |
US20180322465A1 (en) * | 2017-05-05 | 2018-11-08 | A Resume Company Inc. | Embeddable web-authenticated instant job integration system and method |
CN113132340B (zh) * | 2020-01-16 | 2022-06-28 | 中国科学院信息工程研究所 | 一种基于视觉与主机特征的钓鱼网站识别方法及电子装置 |
CN111931088B (zh) * | 2020-10-13 | 2021-01-26 | 北京拓课网络科技有限公司 | 一种网页链接处理方法、装置和电子设备 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110283174A1 (en) * | 2010-05-13 | 2011-11-17 | Verisign, Inc. | Optimizing Security Seals on Web Pages |
CN102375952A (zh) * | 2011-10-31 | 2012-03-14 | 北龙中网(北京)科技有限责任公司 | 在搜索引擎结果中显示网站是否为可信验证的方法 |
CN102611707A (zh) * | 2012-03-21 | 2012-07-25 | 北龙中网(北京)科技有限责任公司 | 一种网站可信标识安装及识别方法 |
CN102937977A (zh) * | 2012-10-17 | 2013-02-20 | 北京奇虎科技有限公司 | 一种搜索服务器及搜索方法 |
CN104572837A (zh) * | 2014-12-10 | 2015-04-29 | 百度在线网络技术(北京)有限公司 | 在网页上提供认证信息的方法及装置 |
Family Cites Families (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2001018636A1 (en) * | 1999-09-09 | 2001-03-15 | American Express Travel Related Services Company, Inc. | System and method for authenticating a web page |
JP3923247B2 (ja) * | 2000-10-12 | 2007-05-30 | 株式会社日立製作所 | 電子データの検索システムおよび方法 |
CA2509706A1 (en) * | 2004-06-17 | 2005-12-17 | Ronald Neville Langford | Authenticating images identified by a software application |
WO2006020095A2 (en) * | 2004-07-16 | 2006-02-23 | Geotrust, Inc. | Security systems and services to provide identity and uniform resource identifier verification |
US7698442B1 (en) * | 2005-03-03 | 2010-04-13 | Voltage Security, Inc. | Server-based universal resource locator verification service |
US8635535B2 (en) * | 2007-10-16 | 2014-01-21 | D&B Business Information Solutions Limited | Third-party-secured zones on web pages |
US9338166B2 (en) * | 2008-11-04 | 2016-05-10 | Adobe Systems Incorporated | System and method for a single request and single response authentication protocol |
JP5378026B2 (ja) * | 2009-03-27 | 2013-12-25 | 三菱スペース・ソフトウエア株式会社 | 検索リスト提供サーバ及び検索リスト提供方法及びプログラム |
US20110055249A1 (en) * | 2009-08-28 | 2011-03-03 | The Go Daddy Group, Inc. | Social website account authentication via search engine based domain name control validation |
CN102375925B (zh) | 2011-07-12 | 2015-03-11 | 武汉理工大学 | 考虑微动疲劳的斜拉桥钢绞线斜拉索抗力退化评估方法 |
US9819687B2 (en) | 2012-01-26 | 2017-11-14 | Qualcomm Incorporated | Reducing web browsing overheads with external code certification |
JP5425995B2 (ja) * | 2012-10-26 | 2014-02-26 | 韓國電子通信研究院 | 信頼リンク認証システムとその認証方法及び認証表示方法 |
CN103856438B (zh) * | 2012-11-28 | 2018-03-06 | 卡巴斯克 | 具安全性保护的自动转址及网络身份验证方法 |
US9276869B2 (en) * | 2013-01-02 | 2016-03-01 | International Business Machines Corporation | Dynamically selecting an identity provider for a single sign-on request |
WO2015010550A1 (zh) * | 2013-07-26 | 2015-01-29 | 北京奇虎科技有限公司 | 客户端访问认证网址的方法、装置及*** |
AU2015266653A1 (en) * | 2014-05-30 | 2016-09-15 | Beestripe Llc | Method of redirecting search queries |
CN104503983A (zh) * | 2014-11-27 | 2015-04-08 | 百度在线网络技术(北京)有限公司 | 为搜索引擎提供网站认证数据的方法及装置 |
CN104572873B (zh) | 2014-12-19 | 2019-04-09 | 百度在线网络技术(北京)有限公司 | 信息处理方法及装置 |
-
2014
- 2014-12-10 CN CN201410759242.9A patent/CN104572837B/zh active Active
-
2015
- 2015-10-10 JP JP2017531739A patent/JP6422583B2/ja active Active
- 2015-10-10 KR KR1020177018913A patent/KR101977624B1/ko active IP Right Grant
- 2015-10-10 WO PCT/CN2015/091600 patent/WO2016091002A1/zh active Application Filing
- 2015-10-10 US US15/535,043 patent/US10686835B2/en active Active
- 2015-10-10 EP EP15866861.6A patent/EP3232335B1/en active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110283174A1 (en) * | 2010-05-13 | 2011-11-17 | Verisign, Inc. | Optimizing Security Seals on Web Pages |
CN102375952A (zh) * | 2011-10-31 | 2012-03-14 | 北龙中网(北京)科技有限责任公司 | 在搜索引擎结果中显示网站是否为可信验证的方法 |
CN102611707A (zh) * | 2012-03-21 | 2012-07-25 | 北龙中网(北京)科技有限责任公司 | 一种网站可信标识安装及识别方法 |
CN102937977A (zh) * | 2012-10-17 | 2013-02-20 | 北京奇虎科技有限公司 | 一种搜索服务器及搜索方法 |
CN104572837A (zh) * | 2014-12-10 | 2015-04-29 | 百度在线网络技术(北京)有限公司 | 在网页上提供认证信息的方法及装置 |
Non-Patent Citations (1)
Title |
---|
See also references of EP3232335A4 * |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107368718A (zh) * | 2017-07-06 | 2017-11-21 | 同济大学 | 一种用户浏览行为认证方法及*** |
CN107368718B (zh) * | 2017-07-06 | 2022-08-16 | 同济大学 | 一种用户浏览行为认证方法及*** |
Also Published As
Publication number | Publication date |
---|---|
CN104572837B (zh) | 2019-07-26 |
EP3232335A1 (en) | 2017-10-18 |
US20180034853A1 (en) | 2018-02-01 |
CN104572837A (zh) | 2015-04-29 |
US10686835B2 (en) | 2020-06-16 |
JP2018504681A (ja) | 2018-02-15 |
EP3232335A4 (en) | 2018-03-14 |
KR101977624B1 (ko) | 2019-05-14 |
EP3232335B1 (en) | 2019-07-10 |
JP6422583B2 (ja) | 2018-11-14 |
KR20170095292A (ko) | 2017-08-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11783059B2 (en) | Collection folder for collecting file submissions | |
CN110663040B (zh) | 用于将仪表板安全嵌入内容管理***的方法及*** | |
WO2016091002A1 (zh) | 在网页上提供认证信息的方法及装置 | |
US10601916B2 (en) | Collection folder for collecting file submissions via a customizable file request | |
US11038861B2 (en) | Techniques for security artifacts management | |
KR102006396B1 (ko) | 브라우징 액티비티에 기초하여 정합 애플리케이션을 식별하는 기법 | |
US9430449B2 (en) | Systems, methods, and media for managing editable previews of webpages | |
US9756039B2 (en) | Document rendering service | |
US7752207B2 (en) | Crawlable applications | |
US9495557B2 (en) | Methods and systems for managing access to data in an on-demand system | |
CN105357027B (zh) | 基于大数据的轻量级数据服务总线*** | |
CN101441688A (zh) | 一种用户权限分配方法和一种用户权限控制方法 | |
US9769159B2 (en) | Cookie optimization | |
US10599681B2 (en) | Configurable search categories including related information and related action functionality over a relational database | |
JP2008083906A (ja) | サーバ及びプログラム | |
JP2008015733A (ja) | ログ管理計算機 | |
JP5641175B2 (ja) | 検索対象管理システム及び検索対象管理方法 | |
JP6338909B2 (ja) | コンテンツ制御システム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 15866861 Country of ref document: EP Kind code of ref document: A1 |
|
ENP | Entry into the national phase |
Ref document number: 2017531739 Country of ref document: JP Kind code of ref document: A |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 20177018913 Country of ref document: KR Kind code of ref document: A |
|
REEP | Request for entry into the european phase |
Ref document number: 2015866861 Country of ref document: EP |