[go: up one dir, main page]

CN101267332A - Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client - Google Patents

Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client Download PDF

Info

Publication number
CN101267332A
CN101267332A CNA2007100056948A CN200710005694A CN101267332A CN 101267332 A CN101267332 A CN 101267332A CN A2007100056948 A CNA2007100056948 A CN A2007100056948A CN 200710005694 A CN200710005694 A CN 200710005694A CN 101267332 A CN101267332 A CN 101267332A
Authority
CN
China
Prior art keywords
web
client
current page
network management
management client
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CNA2007100056948A
Other languages
Chinese (zh)
Inventor
刘锋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CNA2007100056948A priority Critical patent/CN101267332A/en
Priority to PCT/CN2008/000474 priority patent/WO2008110069A1/en
Publication of CN101267332A publication Critical patent/CN101267332A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/28Restricting access to network management systems or functions, e.g. using authorisation function to access network configuration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/02Standardisation; Integration
    • H04L41/0246Exchanging or transporting network management information using the Internet; Embedding network management web servers in network elements; Web-services-based protocols
    • H04L41/0253Exchanging or transporting network management information using the Internet; Embedding network management web servers in network elements; Web-services-based protocols using browsers or web-pages for accessing management information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

本发明公开了一种实现Web网管客户端安全锁定方法和Web网管客户端,其检测Web网管客户端的当前页面上是否处于空闲;当检测到当前页面处于空闲,并且持续空闲的时间超过空闲时间阈值时,则将当前页面锁定,因此本发明能够根据Web网管客户端的当前页面空闲状态的持续时间自动锁定当前页面。另外,本发明还可以支持通过安全校验解锁页面,使用户很快就能够获得原有的页面,从而为用户提供良好的体验。而且在锁定和解锁页面时不导致当前页面数据丢失,从而提高了基于Web的网管系统的安全性。另外,本发明的实施例还可以实现用户主动锁定Web网管客户端的当前页面。

Figure 200710005694

The invention discloses a method for realizing security locking of a Web network management client and a Web network management client, which detect whether the current page of the Web network management client is idle; when it is detected that the current page is idle, and the continuous idle time exceeds the idle time threshold , then the current page is locked, so the present invention can automatically lock the current page according to the duration of the current page idle state of the Web network management client. In addition, the present invention can also support unlocking the page through security verification, so that the user can quickly obtain the original page, thereby providing the user with a good experience. Moreover, the current page data will not be lost when the page is locked and unlocked, thereby improving the security of the web-based network management system. In addition, the embodiment of the present invention can also realize that the user actively locks the current page of the Web network management client.

Figure 200710005694

Description

实现Web网管客户端安全锁定的方法和Web网管客户端 Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client

技术领域 technical field

本发明涉及通信领域,尤其涉及安全锁定和解锁技术。The invention relates to the field of communication, in particular to safety locking and unlocking technology.

背景技术 Background technique

为了保证用户数据的安全,各个运营商提供了许多安全保护方案。In order to ensure the security of user data, various operators provide many security protection schemes.

例如,目前的网管客户端一般具备界面锁定功能(类似Windows的计算机锁定功能),以及解锁功能。所述界面锁定功能一般通过两种方式实现:一是通过用户主动锁定;二是通过系统自动锁定,也就是说,在一定时间间隔中如果没有操作界面则系统自动锁定界面。当通过系统自动锁定界面时,允许用户设置是否激活,如果激活则可以设置时间间隔。For example, the current network management client generally has an interface locking function (similar to the computer locking function of Windows) and an unlocking function. The interface locking function is generally realized in two ways: one is active locking by the user; the other is automatic locking by the system, that is to say, if there is no operation interface within a certain time interval, the system will automatically lock the interface. When the interface is automatically locked by the system, the user is allowed to set whether to activate it, and if activated, the time interval can be set.

通过所述界面锁定功能,网管客户端将当前登录用户暂时不使用的操作界面锁定,此时,用户只能看到锁定窗口,而不能看到锁定前界面的内容。当需要再操作所述网管客户端时,用户必须先输入当前用户登录的密码,通过所述网管客户端的解锁功能解锁后才返回锁定前的界面。这样避免了当前登录用户在暂时离开时被其他非授权人员操作。Through the interface locking function, the network management client locks the operation interface temporarily not used by the currently logged-in user. At this time, the user can only see the locked window, but cannot see the content of the interface before locking. When it is necessary to operate the network management client again, the user must first input the current user login password, and then return to the interface before locking after unlocking through the unlocking function of the network management client. This prevents the currently logged-in user from being operated by other unauthorized personnel when he leaves temporarily.

对于目前基于Web的网管系统,可以通过Web网管客户端中的Document对象和页面中嵌入的SVG对象,来检测用户是否操作事件。所述Document对象提供了onmousemove方法检测鼠标的移动,提供了onkeyup事件来检测键盘是否有操作;对于所述SVG对象,当鼠标在其上即使不移动也会不断触发onmousemove事件,表示用户正在操作事件。For the current Web-based network management system, it is possible to detect whether the user operates an event through the Document object in the Web network management client and the SVG object embedded in the page. The Document object provides the onmousemove method to detect the movement of the mouse, and the onkeyup event to detect whether the keyboard is operated; for the SVG object, the onmousemove event will be triggered continuously even if the mouse is not moving on it, indicating that the user is operating the event .

基于上述对象,目前基于Web的网管系统提供了一种数据保护方案,其采用会话失效机制来实现,所述会话失效机制的思想是:Based on the above objects, the current Web-based network management system provides a data protection scheme, which is implemented by using a session invalidation mechanism. The idea of the session invalidation mechanism is:

在注册用户登录后,Web服务器都会自动检测会话的有效性,如果长时间没有检测到用户提交URL(Uniform Resource Locator,统一资源定位符)请求,则服务器会自动使当前Web网管客户端对应的会话无效。之后,无论用户通过鼠标或键盘点击任何URL都会被提示需要重新登录或直接定向到登录页面。After the registered user logs in, the Web server will automatically detect the validity of the session. If it has not detected the user submitting a URL (Uniform Resource Locator, Uniform Resource Locator) request for a long time, the server will automatically make the session corresponding to the current Web network management client invalid. Afterwards, no matter which URL the user clicks through mouse or keyboard, they will be prompted to log in again or directly directed to the login page.

传统的基于Web的网管系统的数据保护方案存在如下的缺陷:The data protection scheme of the traditional web-based network management system has the following defects:

1、只能根据Web网管客户端的当前页面的空闲状态确定当前Web网管客户端对应的会话是否无效,不能根据Web网管客户端的当前页面的空闲状态的持续时间实现自动锁定。1. It can only be determined whether the session corresponding to the current Web network management client is invalid according to the idle state of the current page of the Web network management client, and automatic locking cannot be realized according to the duration of the idle state of the current page of the Web network management client.

2、在Web网管客户端的当前页面被锁定后不能通过安全校验来进行解锁,而需要用户重新登录并重定向到原有页面,这样导致用户等待时间很长,用户体验差。2. After the current page of the Web network management client is locked, it cannot be unlocked through security verification, but the user needs to log in again and be redirected to the original page, which leads to a long waiting time for the user and poor user experience.

3、当会话失效后,原有页面数据丢失,安全性仍然较弱。3. When the session fails, the original page data is lost, and the security is still weak.

4、用户不能对Web网管客户端的当前页面进行主动锁定。4. The user cannot actively lock the current page of the web network management client.

发明内容 Contents of the invention

本发明的实施例提供了一种实现安全锁定的方法和网管客户端,其能够根据Web网管客户端的当前页面空闲状态的持续时间自动锁定当前页面。Embodiments of the present invention provide a method for realizing safe locking and a network management client, which can automatically lock the current page according to the duration of the idle state of the current page of the Web network management client.

本发明的实施例通过如下技术方案实现:Embodiments of the present invention are achieved through the following technical solutions:

本发明的实施例提供一种实现安全锁定方法,其包括:Embodiments of the present invention provide a method for realizing safe locking, which includes:

检测Web网管客户端的当前页面上是否处于空闲状态;Detect whether the current page of the web network management client is idle;

当检测到当前页面处于空闲,并且持续空闲的时间超过空闲时间阈值时,则将Web网管客户端的当前页面锁定。When it is detected that the current page is idle, and the continuous idle time exceeds the idle time threshold, the current page of the Web network management client is locked.

本发明的实施例还提供一种实现Web网管客户端安全锁定的方法,其包括:Embodiments of the present invention also provide a method for realizing secure locking of a Web network management client, which includes:

获取操作锁定窗口的操作信息,并根据所述信息,将Web网管客户端的当前页面锁定。Obtain the operation information of the operation lock window, and lock the current page of the Web network management client according to the information.

本发明的实施例还提供一种Web网管客户端,其包括:Embodiments of the present invention also provide a Web network management client, which includes:

操作检测器、空闲超时检测器以及锁定单元;An operation detector, an idle timeout detector, and a locking unit;

所述操作检测器,用于检测Web网管客户端的当前页面上是否存在空闲状态;The operation detector is used to detect whether there is an idle state on the current page of the Web network management client;

所述空闲超时检测器,用于获取所述操作检测器的检测结果,并当所述检测结果为Web网管客户端的当前页面处于空闲,并且持续空闲的时间超过空闲时间阈值时,则触发锁定单元;The idle timeout detector is used to obtain the detection result of the operation detector, and when the detection result is that the current page of the Web network management client is idle, and when the continuous idle time exceeds the idle time threshold, the locking unit is triggered ;

所述锁定单元,用于根据所述空闲检测器的触发,将当前页面锁定。The locking unit is configured to lock the current page according to the trigger of the idle detector.

本发明的实施例还提供一种Web网管客户端,其包括:Embodiments of the present invention also provide a Web network management client, which includes:

获取单元,用于获取操作锁定窗口的操作信息;An acquisition unit, configured to acquire the operation information of the operation lock window;

主动锁定单元,用于根据所述操作信息,将Web网管客户端的当前页面锁定。The active locking unit is configured to lock the current page of the Web network management client according to the operation information.

由上述本发明的实施例提供的具体实施方案可以看出,其中,检测Web网管客户端的当前页面上是否处于空闲状态;当检测到当前页面处于空闲,并且持续空闲的时间超过空闲时间阈值时,则将Web网管客户端的当前页面锁定,因此本发明的实施例能够根据Web网管客户端的当前页面空闲状态的持续时间自动锁定当前页面。As can be seen from the specific implementation scheme provided by the above-mentioned embodiments of the present invention, wherein, whether the current page of the web network management client is detected is idle; when it is detected that the current page is idle, and the continuous idle time exceeds the idle time threshold, Then the current page of the Web network management client is locked, so the embodiment of the present invention can automatically lock the current page according to the duration of the idle state of the current page of the Web network management client.

附图说明 Description of drawings

图1为本发明提供的第一实施例的结构原理图;Fig. 1 is the structural principle diagram of the first embodiment provided by the present invention;

图2为本发明提供的第二实施例的流程图。Fig. 2 is a flow chart of the second embodiment provided by the present invention.

具体实施方式 Detailed ways

本发明提供的第一实施例是一种Web网管客户端,其结构如图1所示,包括操作检测器、空闲超时检测器、锁定单元和解锁单元;通过上述元器件,所述Web网管客户端可以实现自动锁定功能以及解锁功能。为了保证被锁定的当前页面的数据不丢失,还可以包括心跳定时器;还可以包括锁定功能设置单元,以允许用户设置是否采用自动锁定功能。还可以包括主动锁定单元,以提供给用户进行主动锁定。The first embodiment that the present invention provides is a kind of Web network management client, and its structure is as shown in Figure 1, comprises operation detector, idle timeout detector, locking unit and unlocking unit; Through above-mentioned components and parts, described Web network management client The terminal can realize the automatic locking function and the unlocking function. In order to ensure that the data of the locked current page is not lost, a heartbeat timer may also be included; a locking function setting unit may also be included to allow the user to set whether to use the automatic locking function. An active locking unit may also be included to provide active locking to the user.

下面分别描述所述网管客户端中各个元器件的功能:The functions of each component in the network management client are described below:

1、操作检测器1. Operate the detector

所述操作检测器负责检测鼠标和键盘是否操作。其可以通过在Web网管客户端中的Document对象来实现,该对象提供了监测onmousemove事件的方法来检测鼠标的移动,并提供了监测onkeyup事件的方法来检测键盘是否有操作;也可以通过页面中嵌入的SVG对象来实现,由于当鼠标在所述SVG对象上不移动,也会不断触发onmousemove事件,因此采用所述SVG对象时,必须在onmousemove事件处理中判断鼠标的坐标是否有变化。The operation detector is responsible for detecting whether the mouse and the keyboard are operated. It can be realized through the Document object in the Web network management client, which provides a method of monitoring the onmousemove event to detect the movement of the mouse, and provides a method of monitoring the onkeyup event to detect whether the keyboard is operated; it can also be used in the page The embedded SVG object is implemented, because when the mouse does not move on the SVG object, the onmousemove event will be triggered continuously, so when the SVG object is used, it is necessary to judge whether the coordinates of the mouse have changed in the onmousemove event processing.

当用户进行鼠标、键盘操作时,就被操作检测器发现,并且通知给所述空闲超时检测器。When the user performs a mouse or keyboard operation, it is discovered by the operation detector and notified to the idle timeout detector.

2、空闲超时检测器2. Idle Timeout Detector

所述空闲超时检测器负责获取所述操作检测器的检测结果,并当所述检测结果为没有鼠标或键盘的操作时,表示当前页面处于空闲,并且持续空闲的时间超过空闲时间阈值时,则触发所述锁定单元。The idle timeout detector is responsible for obtaining the detection result of the operation detector, and when the detection result is no mouse or keyboard operation, it means that the current page is idle, and when the continuous idle time exceeds the idle time threshold, then Trigger the locking unit.

为了实现该功能,可以设置一个状态标记和一个计数器。当所述空闲超时检测器接收到所述操作检测器通知后,则设置状态标记为True,并将计数器清零。并且每隔一定的时间间隔,如N秒,定时检测所述状态标记,如果所述状态标记为Ture,则设置为False,并将所述计数器清零;如果状态标记为False,则将所述计数器的计数值加1,并将获得的计数值乘以N,得到相应的计算结果,并将其看作持续空闲的时间,如果所述计算结果值大于空闲时间阈值,则显示锁定窗口。To implement this functionality, a status flag and a counter can be set. After the idle timeout detector receives the notification from the operation detector, it sets the status flag to True and clears the counter. And at regular time intervals, such as N seconds, regularly detect the status flag, if the status tag is True, set to False, and clear the counter; if the status tag is False, then set the The count value of the counter is increased by 1, and the obtained count value is multiplied by N to obtain the corresponding calculation result, which is regarded as the continuous idle time, and if the calculation result value is greater than the idle time threshold, the lock window is displayed.

3、锁定单元和解锁单元3. Locking unit and unlocking unit

所述锁定单元负责根据所述空闲检测器的触发,通过一个锁定窗口将Web网管客户端的当前页面锁定。所述锁定窗口可以覆盖整个Web网管客户端的当前页面。The locking unit is responsible for locking the current page of the Web network management client through a locking window according to the triggering of the idle detector. The lock window can cover the entire current page of the Web network management client.

需要解锁时,用户可以通过解锁窗口输入校验码,和/或,当前登录用户的口令,解锁单元使用异步方式向服务器发起校验请求,校验通过后,则关闭锁定窗口,使被锁定的页面可以重新让用户操作;校验失败则显示错误信息。When unlocking is required, the user can input a verification code through the unlock window, and/or, the password of the currently logged-in user, and the unlocking unit uses an asynchronous method to initiate a verification request to the server. After the verification is passed, the lock window is closed, so that the locked The page can be operated by the user again; if the verification fails, an error message will be displayed.

在自动锁定功能启用的情况下:锁定和解锁窗口显示时,将停止操作检测器;锁定和解锁窗口关闭后,将启动操作检测器。With the Auto-Lock feature enabled: the Action Detector is stopped when the Lock and Unlock window is displayed, and is started when the Lock and Unlock window is closed.

4、会话心跳定时器4. Session heartbeat timer

所述会话心跳定时器负责定时访问Web服务器的指定URL,确保会话一直有效。该会话心跳定时器在获取到用户登录网络成功后启动,在用户注销后停止。如果Web网管客户端中内容由来自多个域的页面组成,则针对每个不同的域提供一个会话心跳记时器。The session heartbeat timer is responsible for regularly accessing the specified URL of the Web server to ensure that the session is always valid. The session heartbeat timer starts after the user successfully logs in to the network, and stops after the user logs out. If the content in the web network management client consists of pages from multiple domains, a session heartbeat timer is provided for each different domain.

5、锁定功能设置单元5. Lock function setting unit

用户通过所述锁定功能设置单元可以设置锁定功能,所述锁定功能包括采用自动锁定功能,或,采用主动锁定功能。如果用户设置为采用自动锁定功能,则还可以设置启动自动锁定功能时的空闲时间阈值。The user can set a locking function through the locking function setting unit, and the locking function includes adopting an automatic locking function, or adopting an active locking function. If the user is set to use the auto-lock feature, they can also set the idle time threshold at which the auto-lock feature will start.

当用户设置锁定功能时,所述锁定功能设置单元会获取用户设置的锁定功能,并保存所获取到的锁定功能,在保存时,可以按照持久化保存方式保存所获取到的锁定功能。When the user sets the locking function, the locking function setting unit will obtain the locking function set by the user and save the obtained locking function. When saving, the obtained locking function can be saved in a persistent storage manner.

当所述Web网管客户端登录到Web服务器后,所述锁定功能设置单元会获取所保存的锁定功能,并当获取到的锁定功能为采用自动锁定功能时,则触发所述操作检测器进行检测。After the Web network management client logs in to the Web server, the locking function setting unit will obtain the saved locking function, and when the obtained locking function is an automatic locking function, it will trigger the operation detector to detect .

6、主动锁定单元6. Active locking unit

所述主动锁定单元负责获取用户操作锁定窗口的操作信息,并根据所述信息,操作所述锁定窗口将Web网管客户端的当前页面锁定。通过所述主动锁定单元,用户可以主动操作所述锁定窗口锁定Web网管客户端的当前页面。The active locking unit is responsible for acquiring the operation information of the user operating the locking window, and operating the locking window to lock the current page of the Web network management client according to the information. Through the active locking unit, the user can actively operate the locking window to lock the current page of the Web network management client.

当所述Web网管客户端进行自动锁定功能时,所述网管客户端中各个元器件之间的信号传递关系如下:When the Web network management client performs the automatic locking function, the signal transmission relationship between each component in the network management client is as follows:

当用户通过网管客户端登录到Web服务器后,所述锁定功能设置单元会获取锁定功能,并当获取到的锁定功能为自动锁定功能时,则触发所述操作检测器进行检测。After the user logs in to the Web server through the network management client, the locking function setting unit will obtain the locking function, and when the obtained locking function is an automatic locking function, then trigger the operation detector to detect.

所述操作检测器检测Web网管客户端的当前页面是否处于空闲。具体实现时可以通过Web网管客户端的Document对象和SVG对象,检测Web网管客户端的当前页面上是否存在鼠标或键盘操作,来确定当前页面是否处于空闲。The operation detector detects whether the current page of the Web network management client is idle. During specific implementation, the Document object and the SVG object of the Web network management client can be used to detect whether there is a mouse or keyboard operation on the current page of the Web network management client to determine whether the current page is idle.

所述空闲超时检测器获取所述操作检测器的检测结果,并当所述检测结果为当前页面处于空闲,并且持续空闲的时间超过空闲时间阈值时,则通过锁定单元将Web网管客户端的当前页面锁定,并停止所述操作检测器。The idle timeout detector obtains the detection result of the operation detector, and when the detection result is that the current page is idle, and the continuous idle time exceeds the idle time threshold, the current page of the Web network management client is locked by the locking unit. locks and stops the manipulation detector.

当Web网管客户端的当前页面被锁定后,所述解锁单元判断是否获取到安全校验信息,并当获取到安全校验信息后,向网络服务器请求所述安全校验信息的有效性,并当确定所述校验信息有效时,将被锁定的当前页面解锁,并启动所述操作检测器继续检测。When the current page of the Web network management client is locked, the unlocking unit judges whether the security check information is obtained, and when the security check information is obtained, requests the network server for the validity of the security check information, and when When it is determined that the verification information is valid, the locked current page is unlocked, and the operation detector is started to continue detection.

所述心跳定时器在获取到Web网管客户端登录网络成功的信息后,按照设定的时间间隔,周期性地访问网络服务器指定的URL。After the heartbeat timer obtains the information that the Web network management client successfully logs into the network, it periodically accesses the URL specified by the network server according to the set time interval.

上述是当所述Web网管客户端的执行自动锁定功能时,各个元器件之间的交互关系,当用户需要主动锁定Web网管客户端的当前页面时,所述网管客户端中的各个元器件之间的交互关系如下:The above is when the automatic locking function of the Web network management client is executed, the interactive relationship between the various components, when the user needs to actively lock the current page of the Web network management client, the interaction between the various components in the network management client The interaction relationship is as follows:

当用户通过Web网管客户端登录到Web服务器后,所述锁定功能设置单元会获取锁定功能,此时获取到的锁定功能为采用主动锁定功能。则不会触发所述操作检测器和所述空闲超时检测器。After the user logs in to the Web server through the Web network management client, the locking function setting unit will obtain the locking function, and the obtained locking function at this time is an active locking function. Then the operation detector and the idle timeout detector will not be triggered.

如果用户需要主动锁定当前页面,则通过所述主动锁定单元输入锁定操作信息,如操作锁定窗口的操作信息,此时所述主动锁定单元会获取所述锁定操作信息,并根据所述锁定操作信息,将Web网管客户端的当前页面锁定。If the user needs to actively lock the current page, then input the lock operation information through the active lock unit, such as the operation information for operating the lock window, at this time the active lock unit will obtain the lock operation information, and according to the lock operation information to lock the current page of the web network management client.

当锁定单元将Web网管客户端的当前页面锁定后,所述解锁单元判断是否获取到安全校验信息,并当获取到安全校验信息后,向网络服务器请求所述安全校验信息的有效性,并当确定所述校验信息有效时,将被锁定的当前页面解锁。After the locking unit locks the current page of the Web network management client, the unlocking unit judges whether the security check information is obtained, and after obtaining the security check information, requests the network server for the validity of the security check information, And when it is determined that the verification information is valid, the locked current page is unlocked.

所述心跳定时器在获取到Web网管客户端登录网络成功的信息后,按照设定的时间间隔,周期性地访问网络服务器指定的URL。After the heartbeat timer obtains the information that the Web network management client successfully logs into the network, it periodically accesses the URL specified by the network server according to the set time interval.

本发明提供的第二实施例是一种实现Web网管客户端安全锁定的方法,其实施流程如图2所示,包括:The second embodiment provided by the present invention is a method for implementing secure locking of a Web network management client, and its implementation process is shown in Figure 2, including:

步骤S101,获取Web网管客户端的锁定功能,并当获取到的锁定功能为采用自动锁定功能时,则触发检测流程。In step S101, the locking function of the web network management client is obtained, and when the obtained locking function is an automatic locking function, a detection process is triggered.

步骤S102,检测Web网管客户端的当前页面上是否处于空闲;当检测到当前页面上处于空闲时,则执行步骤S103;否则,继续执行步骤S102。Step S102, detecting whether the current page of the Web network management client is idle; when it is detected that the current page is idle, then execute step S103; otherwise, continue to execute step S102.

步骤S102可以通过Web网管客户端的Document对象和SVG对象,检测Web网管客户端的当前页面上是否存在鼠标或键盘操作,来确定当前页面是否处于空闲。具体与第一实施例中的相关描述雷同,这里不再详细描述。Step S102 can determine whether the current page is idle by detecting whether there is mouse or keyboard operation on the current page of the Web network management client through the Document object and the SVG object of the Web network management client. The details are the same as those in the first embodiment, and will not be described in detail here.

步骤S103,判断处于空闲的持续时间是否超过空闲时间阈值,若超过,则执行步骤S104,即通过锁定窗口将当前页面锁定;否则,继续执行步骤S103。Step S103 , judging whether the idle duration exceeds the idle time threshold, and if so, execute step S104 , that is, lock the current page by locking the window; otherwise, continue to execute step S103 .

步骤S105,在当前页面被锁定的同时,判断是否获取到安全校验信息,若获取到,则执行步骤S106,即向网络服务器请求校验信息的有效性,并当所述校验信息有效时,将所述锁定窗口关闭;否则,执行步骤S107,继续通过锁定窗口将当前页面锁定。Step S105, while the current page is locked, it is judged whether the security verification information has been obtained, if obtained, then step S106 is executed, that is, the validity of the verification information is requested to the network server, and when the verification information is valid , close the lock window; otherwise, execute step S107 to continue to lock the current page through the lock window.

在上述实施例中,为了保证当前页面数据的不丢失,在获取到Web网管客户端登录网络成功的信息后,按照设定的时间间隔,周期性地访问网络服务器指定的URL。In the above embodiment, in order to ensure that the current page data is not lost, after obtaining the information that the Web network management client successfully logs in to the network, the URL specified by the network server is periodically accessed according to the set time interval.

本发明提供的第三实施例是一种实现Web网管客户端安全锁定的方法,其主要为了实现用户主动锁定Web网管客户端的功能。具体实施过程如下:The third embodiment provided by the present invention is a method for realizing security locking of the Web network management client, which is mainly for realizing the function of the user actively locking the Web network management client. The specific implementation process is as follows:

获取Web网管客户端的锁定功能,并当获取到的锁定功能为采用主动锁定功能时,则获取操作锁定窗口的操作信息;Obtain the locking function of the Web network management client, and when the obtained locking function is an active locking function, then obtain the operation information for operating the locking window;

当获取到操作锁定窗口的操作信息后,根据所述信息,操作所述锁定窗口将当前页面锁定;After obtaining the operation information for operating the lock window, according to the information, operate the lock window to lock the current page;

在当前页面被锁定的同时,判断是否获取到安全校验信息,若获取到,则向网络服务器请求校验信息的有效性,并当所述校验信息有效时,将所述锁定窗口关闭;否则,继续通过锁定窗口将当前页面锁定。While the current page is locked, it is judged whether the security verification information is obtained, if obtained, the validity of the verification information is requested to the network server, and when the verification information is valid, the locking window is closed; Otherwise, continue to lock the current page by locking the window.

在上述实施例中,为了保证当前页面数据的不丢失,在获取到Web网管客户端登录网络成功的信息后,按照设定的时间间隔,周期性地访问网络服务器指定的URL。In the above embodiment, in order to ensure that the current page data is not lost, after obtaining the information that the Web network management client successfully logs in to the network, the URL specified by the network server is periodically accessed according to the set time interval.

由上述本发明的实施例提供的具体实施方案可以看出,其中,检测Web网管客户端的当前页面上是否处于空闲;当检测到当前页面处于空闲,并且持续空闲的时间超过空闲时间阈值时,则将当前页面锁定,因此本发明的实施例能够根据Web网管客户端的当前页面空闲状态的持续时间自动锁定当前页面。As can be seen from the specific implementation scheme provided by the above-mentioned embodiments of the present invention, wherein, it is detected whether the current page of the Web network management client is idle; when it is detected that the current page is idle, and the continuous idle time exceeds the idle time threshold, then The current page is locked, so the embodiment of the present invention can automatically lock the current page according to the duration of the idle state of the current page of the Web network management client.

另外,本发明的实施例还可以实现用户主动锁定Web网管客户端的当前页面。In addition, the embodiment of the present invention can also realize that the user actively locks the current page of the Web network management client.

另外,本发明的实施例还可以支持通过安全校验解锁被锁定的Web网管客户端的页面,使用户很快就能够获得原有的页面,从而为用户提供良好的体验。而且在锁定和解锁Web网管客户端的页面时不导致当前页面数据丢失,从而提高了基于Web的网管系统的安全性。In addition, the embodiments of the present invention can also support unlocking the locked pages of the Web network management client through security verification, so that users can quickly obtain the original pages, thereby providing users with a good experience. Moreover, the current page data will not be lost when locking and unlocking the pages of the Web network management client, thereby improving the security of the Web-based network management system.

显然,本领域的技术人员可以对本发明进行各种改动和变型而不脱离本发明的精神和范围。这样,倘若本发明的这些修改和变型属于本发明权利要求及其等同技术的范围之内,则本发明也意图包含这些改动和变型在内。Obviously, those skilled in the art can make various changes and modifications to the present invention without departing from the spirit and scope of the present invention. Thus, if these modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalent technologies, the present invention also intends to include these modifications and variations.

Claims (14)

1. realize Web NM client safety locking method for one kind, it is characterized in that, comprising:
Whether the current page that detects the Web NM client is in idle condition;
When the current page that detects the Web NM client is in the free time, and continuous idle time surpasses free time during threshold value, then with described current page locking.
2. the method for claim 1 is characterized in that, also comprises:
In the blocked while of the current page of Web NM client, obtain safety check information;
After getting access to safety check information, to the validity of web server requests check information, and when described check information is effective, with blocked page release.
3. the method for claim 1 is characterized in that, also comprises:
After getting access to the information of Web NM client logging in network success, according to the time interval of setting, the periodically uniform resource position mark URL of access web server appointment.
4. as claim 1,2 or 3 described methods, it is characterized in that, before whether the current page that detects the Web NM client is in the process of idle condition, comprising:
Obtain lock function, and when the lock function that gets access to was the employing AutoLock feature, whether the current page that then triggers described detection Web NM client was in the process of idle condition.
5. a method that realizes Web NM client safety locking is characterized in that, comprising:
Obtain lock operation information, and according to described lock operation information, with the current page locking of Web NM client.
6. method as claimed in claim 5 is characterized in that, also comprises:
In the blocked while of the current page of Web NM client, obtain safety check information;
After getting access to safety check information, to the validity of web server requests check information, and when described check information is effective, with blocked page release.
7. as claim 5 or 6 described methods, it is characterized in that, also comprise:
After getting access to the information of Web NM client logging in network success, according to the time interval of setting, the periodically uniform resource position mark URL of access web server appointment.
8. a Web NM client is characterized in that, comprising:
Operations detector, idle overtime detector and lock cell;
Described operations detector, whether the current page that is used to detect the Web NM client is in the free time;
Overtime detector of described free time is used to obtain the testing result of described operations detector, and when described testing result be that the current page of Web NM client is in the free time, and continuous idle time surpasses free time during threshold value, then triggers described lock cell;
Described lock cell is used for the triggering according to described idle detector, and current page is locked.
9. Web NM client as claimed in claim 8 is characterized in that, also comprises:
Separate lock unit, be used for when the current page of Web NM client is locked, obtaining safety check information; And after getting access to safety check information, to the validity of the described safety check information of web server requests; When described check information is effective, with blocked page release.
10. Web NM client as claimed in claim 8 is characterized in that, also comprises:
The heartbeat timer is after being used to get access to the information of Web NM client logging in network success, according to the time interval of setting, the periodically uniform resource position mark URL of access web server appointment.
11. as claim 8,9 or 10 described Web NM clients, it is characterized in that, also comprise:
Lock function is provided with the unit, is used to obtain lock function, and when the lock function that gets access to is the employing AutoLock feature, then triggers described operations detector and detect.
12. a Web NM client is characterized in that, comprising:
Acquiring unit is used to obtain lock operation information;
Initiatively lock cell is used for according to described lock operation information, with the current page locking of Web NM client.
13. Web NM client as claimed in claim 12 is characterized in that, also comprises:
Separate lock unit, be used for when the current page of Web NM client is locked, obtaining safety check information; And after getting access to safety check information, to the validity of the described safety check information of web server requests; When described check information is effective, with blocked current page release.
14. as claim 12 or 13 described Web NM clients, it is characterized in that, also comprise:
The heartbeat timer is after being used to get access to the information of Web NM client logging in network success, according to the time interval of setting, the periodically uniform resource position mark URL of access web server appointment.
CNA2007100056948A 2007-03-13 2007-03-13 Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client Pending CN101267332A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CNA2007100056948A CN101267332A (en) 2007-03-13 2007-03-13 Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client
PCT/CN2008/000474 WO2008110069A1 (en) 2007-03-13 2008-03-10 Method for realizing safety locking of web network management user terminal and the web network management user terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNA2007100056948A CN101267332A (en) 2007-03-13 2007-03-13 Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client

Publications (1)

Publication Number Publication Date
CN101267332A true CN101267332A (en) 2008-09-17

Family

ID=39758999

Family Applications (1)

Application Number Title Priority Date Filing Date
CNA2007100056948A Pending CN101267332A (en) 2007-03-13 2007-03-13 Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client

Country Status (2)

Country Link
CN (1) CN101267332A (en)
WO (1) WO2008110069A1 (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102576401A (en) * 2009-10-09 2012-07-11 日本电气株式会社 Mobile device, and security lock control method and program thereof
CN103177044A (en) * 2011-12-26 2013-06-26 腾讯科技(深圳)有限公司 Webpage display screen locking method and system
CN104883395A (en) * 2015-04-30 2015-09-02 深圳市华讯方舟科技有限公司 Automatic screen locking method and apparatus for WEB network management system
CN105099773A (en) * 2015-07-06 2015-11-25 深圳市华讯方舟科技有限公司 Method for achieving Web network management system of access controller and Web network management system
WO2016074576A1 (en) * 2014-11-14 2016-05-19 阿里巴巴集团控股有限公司 Out-of-date displayed data labelling method, device, client and server
CN116016228A (en) * 2022-12-27 2023-04-25 北京航天情报与信息研究所 Automatic screen locking method, device and storage medium for embedded WEB network management client
CN119544272A (en) * 2024-11-04 2025-02-28 平安科技(深圳)有限公司 Session processing method, device, equipment and storage medium based on timeout locking

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100512561B1 (en) * 2003-01-15 2005-09-05 엘지전자 주식회사 Image display device for informing of operating a screen saver and method thereof
US7315989B2 (en) * 2004-12-07 2008-01-01 International Business Machines Corporation Method, computer program product, and system for a statistical analysis screensaver
US7598959B2 (en) * 2005-06-29 2009-10-06 Intel Corporation Display controller

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102576401A (en) * 2009-10-09 2012-07-11 日本电气株式会社 Mobile device, and security lock control method and program thereof
CN103177044B (en) * 2011-12-26 2017-11-21 腾讯科技(深圳)有限公司 Web page display screen locking means and system
CN103177044A (en) * 2011-12-26 2013-06-26 腾讯科技(深圳)有限公司 Webpage display screen locking method and system
CN105653968B (en) * 2014-11-14 2019-06-28 阿里巴巴集团控股有限公司 For the expired labeling method of shown data, device, client and server
WO2016074576A1 (en) * 2014-11-14 2016-05-19 阿里巴巴集团控股有限公司 Out-of-date displayed data labelling method, device, client and server
CN105653968A (en) * 2014-11-14 2016-06-08 阿里巴巴集团控股有限公司 Overdue marking method, device, client, and server for displayed data
CN104883395B (en) * 2015-04-30 2019-01-15 华讯方舟科技有限公司 A kind of method and device that WEB network management system locks screen automatically
CN104883395A (en) * 2015-04-30 2015-09-02 深圳市华讯方舟科技有限公司 Automatic screen locking method and apparatus for WEB network management system
CN105099773A (en) * 2015-07-06 2015-11-25 深圳市华讯方舟科技有限公司 Method for achieving Web network management system of access controller and Web network management system
CN105099773B (en) * 2015-07-06 2018-09-21 华讯方舟科技有限公司 The implementation method and Web network management systems of the Web network management systems of access controller
CN116016228A (en) * 2022-12-27 2023-04-25 北京航天情报与信息研究所 Automatic screen locking method, device and storage medium for embedded WEB network management client
CN119544272A (en) * 2024-11-04 2025-02-28 平安科技(深圳)有限公司 Session processing method, device, equipment and storage medium based on timeout locking
CN119544272B (en) * 2024-11-04 2025-09-30 平安科技(深圳)有限公司 Session processing method, device, equipment and storage medium based on timeout locking

Also Published As

Publication number Publication date
WO2008110069A1 (en) 2008-09-18

Similar Documents

Publication Publication Date Title
CN101267332A (en) Method for Realizing Security Locking of Web Network Management Client and Web Network Management Client
US10042999B2 (en) Methods and apparatus to manage password security
US20100169957A1 (en) Weak password support in a multi-user environment
US9608881B2 (en) Service compliance enforcement using user activity monitoring and work request verification
EP3991389B1 (en) File upload control for client-side applications in proxy solutions
US9391779B2 (en) Reactive biometric single sign-on utility
US20070255818A1 (en) Method of detecting unauthorized access to a system or an electronic device
CN108295477B (en) Game account safety detection method, system and device based on big data
TWI490726B (en) Method and device for protecting access to multiple applications by using single sign-on
US8214440B2 (en) Controlling the display of sensitive information and managing visual clutter in a live session display area system
WO2008157759A1 (en) Mapping of physical and logical coordinates of users with that of the network elements
WO2015131642A1 (en) Method and device for controlling access permission on terminal device
CN102143226A (en) Time-out control method, time-out control device and time-out control system
CN104809774A (en) Vehicle starting management method
CN103124260A (en) Method and device for logging in Web page
US20100211687A1 (en) Systems and methods for logging user input data for subsequent retrieval
CN113051541B (en) Logoff method and device of target account, electronic equipment and computer readable medium
WO2017113719A1 (en) Remote mobile terminal locking method and system
TWI529291B (en) Touch electronic door lock system
CN105095792B (en) A kind of storage resource management method and system based on multi-user authority
TWI551488B (en) Vehicle activation management method
CN101816162A (en) Content distribution with inherent user-oriented authorization verification
JP5277004B2 (en) Information leakage prevention system
CN112069431A (en) Method and system for realizing intelligent and non-inductive data acquisition
JP4203250B2 (en) ACCESS MANAGEMENT METHOD, ACCESS MANAGEMENT SERVER, ACCESS TERMINAL, ACCESS MANAGEMENT PROGRAM, AND RECORDING MEDIUM

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20080917