CN116257840B

CN116257840B - A login information query management system and method based on big data

Info

Publication number: CN116257840B
Application number: CN202211715701.4A
Authority: CN
Inventors: 李超; 陈羿铭
Original assignee: Nupt Institute Of Big Data Research At Yancheng
Current assignee: Nupt Institute Of Big Data Research At Yancheng
Priority date: 2022-12-28
Filing date: 2022-12-28
Publication date: 2023-10-20
Anticipated expiration: 2042-12-28
Also published as: CN116257840A

Abstract

The invention provides a login information inquiry management system and a login information inquiry management method based on big data, wherein the system comprises the following steps: the identity verification module is used for verifying the identity of the user, and the user passes through a login application of the user after the user is successfully verified; the content confirmation module is used for setting limiting information of the history record to be queried of the user after the user logs in; and the query browsing module is used for obtaining the query result according to the limit information and displaying the query result on a user browsing interface in a classified manner. The method is used for tracking the login information of each login account of the user, and is convenient for tracing abnormal login.

Description

A login information query management system and method based on big data

技术领域Technical field

本发明涉及信息查询技术领域，特别涉及一种基于大数据的登录信息查询管理系统及方法。The present invention relates to the technical field of information query, and in particular to a login information query management system and method based on big data.

背景技术Background technique

随着互联网应用的普及和人们对互联网的依赖，互联网的安全问题也日益凸显。恶意程序、各类钓鱼和欺诈继续保持高速增长，同时黑客攻击和大规模的个人信息泄露事件频发，与各种网络攻击大幅增长相伴的，是大量网民个人信息的泄露与财产损失的不断增加。网络账号盗用时有发生，为方便盗用信息的追查，本发明提出一种基于大数据的登录信息查询管理系统及方法。With the popularity of Internet applications and people's dependence on the Internet, Internet security issues have become increasingly prominent. Malicious programs, various types of phishing, and fraud continue to grow at a rapid pace. At the same time, hacker attacks and large-scale personal information leakage incidents occur frequently. Accompanying the substantial growth of various network attacks, there is the continuous increase in the leakage of personal information of a large number of netizens and the increase in property losses. . Network account theft occurs from time to time. In order to facilitate the tracing of stolen information, the present invention proposes a login information query and management system and method based on big data.

发明内容Contents of the invention

本发明提供一种基于大数据的登录信息查询管理系统及方法，用以追踪用户各个登录账号的的登录信息，方便异常登录的追查。The present invention provides a login information query and management system and method based on big data, which are used to track the login information of each user's login account and facilitate the tracing of abnormal logins.

本发明提供一种基于大数据的登录信息查询管理系统，包括：The present invention provides a login information query and management system based on big data, including:

身份验证模块，用于对用户身份进行验证，验证成功后通过用户的登录申请；The identity verification module is used to verify the user's identity and pass the user's login application after successful verification;

内容确认模块，用于在所述用户登录后，设置所述用户的待查询历史记录的限定信息；A content confirmation module, configured to set the limited information of the user's history record to be queried after the user logs in;

其中，所述待查询历史记录是指用户要查询的登录账号的历史登录信息；Wherein, the history record to be queried refers to the historical login information of the login account that the user wants to query;

查询浏览模块，用于根据所述限定信息获得查询结果，并将所述查询结果分类展示在用户浏览界面上。A query and browsing module is used to obtain query results according to the limited information, and display the query results in categories on the user browsing interface.

优选的，一种基于大数据的登录信息查询管理系统，还包括：Preferably, a login information query and management system based on big data also includes:

权限管理模块，用于：Rights management module, used for:

在所述用户的多个常用登录设备上的个人信息管理中，获取所述用户的全部记住密码服务项目中保存的被记住信息，建立待授权目录；In the management of personal information on multiple commonly used login devices of the user, obtain all the remembered information saved in the remember password service of the user, and establish a directory to be authorized;

基于所述待授权目录，分别向所述用户发送登录信息获取同意书；Based on the directory to be authorized, send login information to the user to obtain a consent form respectively;

采集所述用户确认同意的登录信息获取同意书对应的登录平台的名称及其登录账号以及密码，建立授权目录。Collect the login information that the user has confirmed and agreed to, obtain the name of the login platform corresponding to the consent form and its login account and password, and establish an authorization directory.

优选的，所述权限管理模块，包括：Preferably, the rights management module includes:

账号筛选单元，用于获取所述用户的多个常用登录设备上记住密码服务项目中保存的登录账号以及登录密码，建立第一待授权目录；The account screening unit is used to obtain the login accounts and login passwords saved in the password remembering service on multiple commonly used login devices of the user, and establish a first directory to be authorized;

判断所述第一授权目录中是否存在第一重复账号，若存在，获取所述第一重复账号的记录时间，确定最新记录时间，保留所述最新记录时间对应的第一重复账号，删除剩余第一重复账号，获得第二待授权目录；Determine whether the first duplicate account exists in the first authorized directory. If so, obtain the recording time of the first duplicate account, determine the latest recording time, retain the first duplicate account corresponding to the latest recording time, and delete the remaining third A duplicate account will obtain a second directory to be authorized;

若不存在，将所述第一待授权目录作为第二待授权目录；If it does not exist, use the first directory to be authorized as the second directory to be authorized;

基于所述记住密码服务项目中的被记住信息，确定所述第二待授权目录中各个登录账号对应的登录平台信息，判断所述第二待授权目录中是否存有第二重复账号；Based on the remembered information in the remember password service item, determine the login platform information corresponding to each login account in the second directory to be authorized, and determine whether there is a second duplicate account in the second directory to be authorized;

若有，判断所述第二重复账号是否有同步绑定信息，若所述第二重复账号有同步绑定信息，基于所述同步绑定信息，确定绑定人身份，当所述第二重复账号的绑定人身份与用户身份一致时，判定所述第二待授权目录为最终待授权目录；If so, determine whether the second duplicate account has synchronization binding information. If the second duplicate account has synchronization binding information, determine the identity of the binding person based on the synchronization binding information. When the second duplicate account has synchronization binding information, When the identity of the person bound to the account is consistent with the identity of the user, it is determined that the second directory to be authorized is the final directory to be authorized;

当所述第二重复账号的绑定人身份与用户身份不一致时，删除所述第二重复账号，更新所述第二待授权目录，获得最终待授权目录；When the identity of the person bound to the second duplicate account is inconsistent with the identity of the user, delete the second duplicate account, update the second directory to be authorized, and obtain the final directory to be authorized;

若所述第二重复账号没有同步绑定信息，获取同一目标登录平台的第二重复账号建立账号分组；If the second duplicate account does not have synchronized binding information, obtain the second duplicate account of the same target login platform and establish account grouping;

根据同一账号分组在所述多个常用登录设备上的历史登录记录，确定所述账号分组内第二重复账号的使用频率；Determine the usage frequency of the second duplicate account in the account group based on the historical login records of the same account group on the multiple commonly used login devices;

获取所述账号分组内使用频率大于预设值的备选账号，基于所述备选账号的登录的IP地址，定位得到多个登录地址；Obtain alternative accounts within the account group whose usage frequency is greater than a preset value, and locate multiple login addresses based on the login IP addresses of the alternative accounts;

据用户设置的地址标签，将所述多个登录地址进行分类，获得常用地址对应的历史登录记录，得到常用地址的登录频率；Classify the multiple login addresses according to the address tags set by the user, obtain historical login records corresponding to commonly used addresses, and obtain the login frequency of commonly used addresses;

当所述登录频率大于预设频率值时，判定所述备选账号为保留账号；否则，删除所述备选账号，更新所述第二待授权目录，获得最终待授权目录；When the login frequency is greater than the preset frequency value, it is determined that the alternative account is a reserved account; otherwise, the alternative account is deleted, the second directory to be authorized is updated, and the final directory to be authorized is obtained;

当所述账号分组内第二重复账号的使用频率均小于等于预设值时，获得所述账号分组内使用频率最高的第二重复账号作为保留账号，并删除所述账号分组内剩余第二重复账号，更新所述第二待授权目录，获得最终待授权目录。When the usage frequency of the second duplicate account in the account group is less than or equal to the preset value, obtain the second duplicate account with the highest frequency of use in the account group as a reserved account, and delete the remaining second duplicate account in the account group Account, update the second directory to be authorized, and obtain the final directory to be authorized.

登录监测模块，用于：Login monitoring module, used for:

监测并获取所述授权目录中各个登录账号的登录信息；Monitor and obtain the login information of each login account in the authorized directory;

同时，根据所述授权目录，生成若干个固定信息码，每个登录平台对应一个固定信息码；At the same time, several fixed information codes are generated according to the authorization directory, and each login platform corresponds to one fixed information code;

根据所述固定信息码，分别生成每个登录平台对应的登录起始返回码以及登录结束返回码；According to the fixed information code, the login start return code and the login end return code corresponding to each login platform are generated respectively;

当在登录平台监测到目标账户被登录时，向信息记录模块发送对应的登录起始返回码；When the login platform detects that the target account is logged in, the corresponding login start return code is sent to the information recording module;

当在登录平台监测到目标账户退出登录时，向信息记录模块发送对应的登录结束返回码。When the login platform detects that the target account has logged out, the corresponding login completion return code is sent to the information recording module.

优选的，所述信息记录模块，用于：Preferably, the information recording module is used for:

在接收到登录起始返回码或登录结束返回码后，根据消息数据模板生成对应的存储数据；After receiving the login start return code or login end return code, the corresponding storage data is generated according to the message data template;

同时，识别所述登录起始返回码或登录结束返回码中的固定信息码对应的编码数据段，获得识别结果；At the same time, identify the encoded data segment corresponding to the fixed information code in the login start return code or the login end return code, and obtain the identification result;

根据所述识别结果，将所述存储数据存储至对应的标签下位置。According to the recognition result, the stored data is stored in the corresponding location under the label.

优选的，所述内容确认模块，包括：Preferably, the content confirmation module includes:

范围限定单元，用于设置待查询历史记录的限定类型，其中，所述限定类型是指待查询历史记录对应的登录平台的平台类型；A scope limitation unit, used to set a limitation type of the history record to be queried, where the limitation type refers to the platform type of the login platform corresponding to the history record to be queried;

时间限定单元，用于设置待查询历史记录的限定时间区间；The time limit unit is used to set the limited time interval for the historical records to be queried;

所述限定信息包括限定类型及限定时间区间。The limit information includes a limit type and a limit time interval.

优选的，所述内容确认模块，还包括：Preferably, the content confirmation module also includes:

指定限定设置单元，用于用户直接输入待查询历史记录的目标登录平台名称。Specify a limited setting unit for users to directly enter the name of the target login platform for the history records to be queried.

优选的，所述查询浏览模块，包括：Preferably, the query browsing module includes:

目标确认单元，用于根据所述限定类型在授权目录中锁定查询目标，并根据所述限定时间区间在所述查询目标对应的存储标签下进行数据筛选，获得目标数据；A target confirmation unit, configured to lock the query target in the authorization directory according to the limited type, and perform data screening under the storage tag corresponding to the query target according to the limited time interval to obtain the target data;

结果获取单元，用于基于所述目标数据，生成第一查询结果，并对所述第一查询结果进处理，根据处理结果，向所述第一查询结果添加风险标签，获得第二查询结果；A result acquisition unit is configured to generate a first query result based on the target data, process the first query result, add a risk label to the first query result according to the processing result, and obtain a second query result;

浏览展示单元，用于将所述第二查询结果分块展示在用户浏览界面上。A browsing display unit is configured to display the second query result in blocks on the user browsing interface.

优选的，所述结果获取单元，包括：Preferably, the result acquisition unit includes:

第一生成子单元，用于根据消息展示模板，处理所述目标数据，，生成第一查询结果，并将所述第一查询结果发送至结果处理单元；The first generation subunit is used to process the target data according to the message display template, generate the first query result, and send the first query result to the result processing unit;

结果处理子单元，用于在接收到所述第一查询结果后，基于所述第一查询结果，判断各个目标登录账号的历史登录设备是否发生变更；The result processing subunit is configured to, after receiving the first query result, determine whether the historical login device of each target login account has changed based on the first query result;

若当目标登录账号的历史登录设备发生变更时，基于所述用户的常用设备名单判断变更历史登录设备中是否存在非常用设备，若不存在，向所述目标登录账号对应的第一查询结果上添加第一标签；If the historical login device of the target login account is changed, determine whether there is an unusual device in the changed historical login device based on the user's commonly used device list. If not, search for the first query result corresponding to the target login account. add first tag;

若存在，将所述目标登录账号作为待分析账号，并获取所述待分析设备的非常用设备对应的第一登录信息，基于第一登录信息，确定第一登录时间；If it exists, use the target login account as the account to be analyzed, obtain the first login information corresponding to the non-common device of the device to be analyzed, and determine the first login time based on the first login information;

获取用户在所述目标登录账号的登录时间分布图，基于所述登录时间分布图，确定所述用户在所述目标登录账号点的正常登录时间区间；Obtain the login time distribution diagram of the user at the target login account, and determine the normal login time interval of the user at the target login account point based on the login time distribution diagram;

当所述第一登录时间在所述正常登录时间范围内时，基于所述第一登录信息，获取所述用户在所述第一登录时间内的平台浏览记录；When the first login time is within the normal login time range, obtain the platform browsing record of the user during the first login time based on the first login information;

根据所述平台浏览记录，判断在所述第一登录时间内是否有预设特定信息被浏览，若有，向所述待分析账号对应的第一查询结果上添加第二标签，并将非常用设备对应的部分进行第一突出显示；According to the platform browsing record, it is determined whether preset specific information has been browsed during the first login time. If so, a second label is added to the first query result corresponding to the account to be analyzed, which will be very useful. The corresponding part of the device is highlighted first;

若没有，向所述待分析账号对应的第一查询结果上添加第一标签；If not, add a first label to the first query result corresponding to the account to be analyzed;

当所述第一登录时间不在所述正常登录时间范围内时，判定所述待分析平台登录异常，向所述待分析账号对应的第一查询结果上添加第三标签，并将非常用设备对应的部分进行第二突出显示；When the first login time is not within the normal login time range, it is determined that the login of the platform to be analyzed is abnormal, a third label is added to the first query result corresponding to the account to be analyzed, and the unusual device is The part is highlighted a second time;

若当目标登录账号的历史登录设备未发生变更时，向所述目标登录平台对应的第一查询结果上添加第一标签；If the historical login device of the target login account has not changed, add a first label to the first query result corresponding to the target login platform;

第二生成子单元，用于基于风险标签分类对所述第一查询结果进行分类，获得分类结果，生成第二查询结果；其中，所述风险标签分别包括第一标签、第二标签和第三标签；The second generation subunit is used to classify the first query result based on risk label classification, obtain the classification result, and generate the second query result; wherein the risk labels respectively include a first label, a second label, and a third Label;

将所述第二查询结果进行分块处理后，展示在所述用户的浏览界面。After the second query result is divided into blocks, it is displayed on the user's browsing interface.

本发明提供一种基于大数据的登录信息查询管理方法，包括：The present invention provides a login information query and management method based on big data, including:

步骤1：对用户身份进行验证，验证成功后通过用户的登录申请；Step 1: Verify the user's identity and pass the user's login application after successful verification;

步骤2：在所述用户登录后，设置所述用户的待查询历史记录的限定信息；Step 2: After the user logs in, set the limited information of the user's history record to be queried;

其中，所述待查询历史记录是指用户要查询的登录账号的历史登录信息，所述限定信息包括限定类型及限定时间区间；Wherein, the history record to be queried refers to the historical login information of the login account that the user wants to query, and the limited information includes a limited type and a limited time interval;

步骤3：根据所述限定信息获得查询结果，并将所述查询结果分类展示在用户浏览界面上。Step 3: Obtain the query results according to the limited information, and display the query results in categories on the user browsing interface.

本发明的其它特征和优点将在随后的说明书中阐述，并且，部分地从说明书中变得显而易见，或者通过实施本发明而了解。本发明的目的和其他优点可通过在所写的说明书、权利要求书、以及附图中所特别指出的结构来实现和获得。Additional features and advantages of the invention will be set forth in the description which follows, and in part will be apparent from the description, or may be learned by practice of the invention. The objectives and other advantages of the invention may be realized and attained by the structure particularly pointed out in the written description and claims hereof as well as the appended drawings.

下面通过附图和实施例，对本发明的技术方案做进一步的详细描述。The technical solution of the present invention will be further described in detail below through the accompanying drawings and examples.

附图说明Description of the drawings

附图用来提供对本发明的进一步理解，并且构成说明书的一部分，与本发明的实施例一起用于解释本发明，并不构成对本发明的限制。在附图中：The drawings are used to provide a further understanding of the present invention and constitute a part of the specification. They are used to explain the present invention together with the embodiments of the present invention and do not constitute a limitation of the present invention. In the attached picture:

图1为本发明一种基于大数据的登录信息查询管理系统的结构示意图；Figure 1 is a schematic structural diagram of a login information query and management system based on big data according to the present invention;

图2为本发明一种基于大数据的登录信息查询管理系统内容确认模块的结构示意图；Figure 2 is a schematic structural diagram of a content confirmation module of a login information query management system based on big data according to the present invention;

图3为本发明一种基于大数据的登录信息查询管理系统查询浏览模块的结构示意图；Figure 3 is a schematic structural diagram of the query and browsing module of a login information query management system based on big data according to the present invention;

图4为本发明一种基于大数据的登录信息查询管理系统的步骤流程图。Figure 4 is a step flow chart of a login information query and management system based on big data of the present invention.

具体实施方式Detailed ways

以下结合附图对本发明的优选实施例进行说明，应当理解，此处所描述的优选实施例仅用于说明和解释本发明，并不用于限定本发明。The preferred embodiments of the present invention will be described below with reference to the accompanying drawings. It should be understood that the preferred embodiments described here are only used to illustrate and explain the present invention, and are not intended to limit the present invention.

实施例1：Example 1:

本发明提供一种基于大数据的登录信息查询管理系统，如图1所示，包括：The present invention provides a login information query and management system based on big data, as shown in Figure 1, including:

本实施例中，本发明中的用户是指使用本发明所述的登录信息查询管理系统的用户。In this embodiment, the user in the present invention refers to the user who uses the login information query management system of the present invention.

上述技术方案的有益效果：本发明身份验证模块对登录系统的用户身份进行验证，保证系统数据的安全性，方便根据用户身份信息获取用户关联的授权目录实现统一管理用户各种账号登录信息的目的，内容确认模块在身份验证通过后按照用户的查询需求对查询信息进行限定，提高客户体验感，查询浏览模块将系统根据用户需求查询结果进行展示，方便用户查看，有利于对异常登录的追查。The beneficial effects of the above technical solution: the identity verification module of the present invention verifies the identity of users logging into the system, ensures the security of system data, and facilitates the acquisition of user-associated authorization directories based on user identity information to achieve the purpose of unified management of user login information for various accounts. , the content confirmation module limits the query information according to the user's query needs after the identity authentication is passed, improving the customer experience. The query browsing module displays the system's query results according to the user's needs, which is convenient for users to view and is conducive to tracing abnormal logins.

实施例2：Example 2:

在上述实施例1的基础上，一种基于大数据的登录信息查询管理系统，还包括：Based on the above-mentioned Embodiment 1, a login information query management system based on big data also includes:

权限管理模块，用于：Rights management module, used for:

本实施例中，常用登录设备包括电脑、手机等电子产品。In this embodiment, commonly used login devices include computers, mobile phones and other electronic products.

本实施例中，被记住信息包括登录账号、登录密码及其登录的平台。In this embodiment, the memorized information includes login account number, login password, and login platform.

本实施例中，待授权目录是指根据用户常用登录设备上采集到的全部登录账号以及登录平台生成的列表。In this embodiment, the directory to be authorized refers to a list generated based on all login accounts and login platforms collected on the user's commonly used login devices.

本实施例中，登录信息获取同意书是指用户和本发明所述的登录信息查询管理系统之间的授权协议书，用户确认同意后，本发明搜索的系统才可以对待授权目录中的登录账号进行监测，获取所述登录账号的登录信息。In this embodiment, the login information acquisition consent form refers to the authorization agreement between the user and the login information query management system of the present invention. Only after the user confirms the consent, the system searched by the present invention can treat the login account in the authorized directory. Monitor and obtain the login information of the login account.

本实施例中，授权目录是指根据用户同意被本发明所述的系统监测跟踪的登录账号的信息建立的登录账户列表，给列表包括登录平台的名称及其登录账号以及密码。In this embodiment, the authorization directory refers to a login account list established based on the information of the login account that the user agrees to be monitored and tracked by the system of the present invention. The list includes the name of the login platform, its login account and password.

上述技术方案的有益效果：本发明在用户的的多个常用登录设备上的个人信息管理中，获取所述用户的全部记住密码服务项目中保存的被记住信息，建立待授权目录，并通过登录信息获取同意书获得各个登录账号监测权限，建立授权目录，为登录信息的查询提供基础。Beneficial effects of the above technical solution: in the management of personal information on the user's multiple commonly used login devices, the present invention obtains the remembered information saved in all the remember password services of the user, establishes a directory to be authorized, and Obtain the consent form through login information to obtain monitoring permissions for each login account, establish an authorization directory, and provide a basis for querying login information.

实施例3：Example 3:

在上述实施例2的基础上，一种基于大数据的登录信息查询管理系统，还包括：Based on the above Embodiment 2, a login information query management system based on big data also includes:

所述权限管理模块，包括：The rights management module includes:

本实施例中，第一待授权目录是指直接根据用户常用登录设备上采集到的全部登录账号以及登录平台生成的没有经过处理的列表，该第一待授权目录可能存在多个重复信息。In this embodiment, the first directory to be authorized refers to an unprocessed list generated directly based on all login accounts collected on the user's commonly used login devices and the login platform. The first directory to be authorized may contain multiple duplicate information.

本实施例中，第一重复账号是指同一个登录账号在记住密码服务项目中有多条被记住信息，导致第一待授权目录出现同一登录账号对应多个登录密码的情况。In this embodiment, the first duplicate account means that the same login account has multiple pieces of remembered information in the password remembering service, resulting in the situation that the same login account corresponds to multiple login passwords in the first directory to be authorized.

本实施例中，记录时间是指第一重复账号被常用登录设备上记住密码服务项目记录的时间。In this embodiment, the recording time refers to the time when the first duplicate account is recorded by the password remembering service on the commonly used login device.

本实施例中，最新记录时间是指离当前时间最近的第一重复账号记录时间。In this embodiment, the latest recording time refers to the first duplicate account recording time closest to the current time.

本实施例中，第二待授权目录是指删除了第一重复账号或者确认没有第一重复账号的第一待授权目录。In this embodiment, the second directory to be authorized refers to the first directory to be authorized after deleting the first duplicate account or confirming that there is no first duplicate account.

本实施例中，第二重复账号是指登录账号不同但是属于同一登录平台的登录账号。In this embodiment, the second duplicate account refers to a login account with different login accounts but belonging to the same login platform.

本实施例中，同步绑定信息是指第二重复账号的用户绑定信息，包括用户手机号、身份证号码、第三方平台(例如支付宝)、银行卡等。In this embodiment, the synchronized binding information refers to the user binding information of the second duplicate account, including the user's mobile phone number, ID number, third-party platform (such as Alipay), bank card, etc.

本实施例中，绑定人身份是指跟第二重复账号绑定的人的身份。In this embodiment, the identity of the bound person refers to the identity of the person bound to the second duplicate account.

本实施例中，最终待授权目录是指用于作为向用户发送登录信息获取同意书依据的待授权目录。In this embodiment, the final directory to be authorized refers to the directory to be authorized as a basis for sending login information to the user to obtain a consent form.

本实施例中，账号分组是指将全部第二重复账号进行分组，同一登录平台的登录账号为一组。In this embodiment, account grouping refers to grouping all second duplicate accounts, and the login accounts of the same login platform are one group.

本实施例中，使用频率是账号分组内各个第二重复账号在一定时间(例如，一个月、三个月等)内的使用次数。In this embodiment, the frequency of use is the number of times each second duplicate account in the account group is used within a certain period of time (for example, one month, three months, etc.).

本实施例中，备选账号是指账号分组内使用频率大于预设值(例如，零)的第二重复账号。In this embodiment, the alternative account refers to the second duplicate account in the account group whose usage frequency is greater than a preset value (for example, zero).

本实施例中，登录地址备选账号被登录的地址。地址标签包括公司、家等In this embodiment, the login address is the address where the alternative account is logged in. Address labels include business, home, etc.

本实施例中，常用地址是指用户经常登录该备选账号的地址，例如公司地址和家庭住址。In this embodiment, the common address refers to the address where the user often logs in to the alternative account, such as a company address and a home address.

本实施例中，登录频率是指备选账号在其全部登录记录中常用地址登录的次数。In this embodiment, the login frequency refers to the number of times the candidate account has logged in with a common address in all its login records.

本实施例中，保留账号是指留下了不需要删除的第二重复账号。In this embodiment, retaining the account means leaving a second duplicate account that does not need to be deleted.

上述技术方案的有益效果：本发明通过记住密码服务项目中保存的登录账号以及登录密码，初步建立第一待授权目录，然后，对同一登录账号(第一重复账号)的重复信息进行删除，避免重复发送登录信息获取同意书的同时，确保了待授权目录的简洁，保证了该待授权目录中信息的有效性，其后又对同一登录平台的登录账号(第二重复账号)进行筛选，从使用频率上评估保证保留的登录账号是在使用状态的，又从常用地址的登录频率上评估，避免最终待授权目录出现偶然登录的非用户账号即其他人使用用户设备进行的一次偶然登录，尽可能保证最终待授权目录中都是用户自己的登录账号。Beneficial effects of the above technical solution: The present invention initially establishes the first directory to be authorized by remembering the login account and login password saved in the password service item, and then deletes the duplicate information of the same login account (first duplicate account), While avoiding repeated sending of login information to obtain consent, it also ensures the simplicity of the directory to be authorized and the validity of the information in the directory to be authorized. It then filters the login accounts (second duplicate accounts) of the same login platform. Evaluate from the usage frequency to ensure that the reserved login account is in use, and evaluate from the login frequency of common addresses to avoid accidental login of non-user accounts in the final directory to be authorized, that is, an accidental login by someone else using the user's device. Try to ensure that the final directory to be authorized contains the user's own login account.

实施例4：Example 4:

登录监测模块，用于：Login monitoring module, used for:

本实施例中，固定信息码是指代表登录账号身份的代码，该代码中包含登录账号在授权目录中的编号。In this embodiment, the fixed information code refers to a code representing the identity of the login account, and the code includes the number of the login account in the authorization directory.

本实施例中，登录起始返回码是指监测到目标登录账号被登录时，向系统返回的代码。In this embodiment, the login start return code refers to the code returned to the system when it is detected that the target login account is logged in.

本实施例中，登录结束返回码是指监测到目标登录账号退出登录时，向系统返回的代码。In this embodiment, the login end return code refers to the code returned to the system when it is detected that the target login account logs out.

本实施例中，目标账户是指授权目录中任意一个全部被监测的登录账号。In this embodiment, the target account refers to any login account that is all monitored in the authorization directory.

本实施例中，登录信息包括登录时间(开始和结束的时间)、登录浏览内容、登录地址等。In this embodiment, the login information includes login time (start and end time), login browsing content, login address, etc.

上述技术方案的有益效果：本发明监测并获取所述授权目录中各个登录账号的登录信息，为异常登录的查询提供依据，同时，为每个登录账号设置不同的登录起始返回码以及登录结束返回码，方便系统快速响应、记录目标登录账号的登录信息。Beneficial effects of the above technical solution: the present invention monitors and obtains the login information of each login account in the authorization directory, provides a basis for abnormal login query, and at the same time, sets a different login start return code and login end for each login account The return code facilitates the system to respond quickly and record the login information of the target login account.

实施例5：Example 5:

在上述实施例4的基础上，一种基于大数据的登录信息查询管理系统，还包括：Based on the above Embodiment 4, a login information query management system based on big data also includes:

所述信息记录模块，用于：The information recording module is used for:

上述技术方案的有益效果：本发明根据登录起始返回码或登录结束返回码中的固定信息码，快速确定消息存储数据的存储位置提高了系统工作效率，保证了数据的有序存储。Beneficial effects of the above technical solution: The present invention quickly determines the storage location of message storage data based on the fixed information code in the login start return code or login end return code, improves system work efficiency, and ensures orderly storage of data.

实施例6：Example 6:

所述内容确认模块，如图2所示，包括：The content confirmation module, as shown in Figure 2, includes:

本实施例中，平台类型是指登平台所述的类型，例如检索类、社交类等。In this embodiment, the platform type refers to the type described in the platform, such as search type, social type, etc.

本实施例中，限定时间区间是指查询的登录时间的范围，例如7-8月。In this embodiment, the limited time interval refers to the range of the query login time, for example, July to August.

上述技术方案的有益效果：本发明对查询内容进行限定，在满足用户要求的同时减少数据调用量，降低系统压力，同时也确保了查询结果的简洁方便用户查看，提高客户体验感。Beneficial effects of the above technical solution: the present invention limits the query content, reduces the amount of data calls and reduces system pressure while meeting user requirements. It also ensures that the query results are concise and convenient for users to view, and improves customer experience.

实施例7：Example 7:

在上述实施例6的基础上，一种基于大数据的登录信息查询管理系统，还包括：Based on the above Embodiment 6, a login information query management system based on big data also includes:

所述内容确认模块，如图2所示，还包括：The content confirmation module, as shown in Figure 2, also includes:

上述技术方案的有益效果：本发明用户直接输入待查询历史记录的目标登录平台名称，满足用户的直接搜索需求。Beneficial effects of the above technical solution: In the present invention, users directly input the name of the target login platform whose history records are to be queried, thereby meeting the user's direct search needs.

实施例8：Example 8:

所述查询浏览模块，如图3所示，包括：The query browsing module, as shown in Figure 3, includes:

本实施例中，目标数据是指根据限定信息(包括限定类型和限定时间区间)确定的等待调用的存储数据。In this embodiment, target data refers to stored data waiting to be called determined based on limited information (including limited type and limited time interval).

本实施例中，存储标签数是指在存储数据存储的位置标签，该标签是根据登录账号在授权目录中的编号生成的，与登录账号一一对应。In this embodiment, the number of storage tags refers to the location tag where the stored data is stored. The tag is generated based on the number of the login account in the authorization directory, and corresponds to the login account one-to-one.

本实施例中，第一查询结果是指目标数据通过消息展示模板转化直接生成的没有经过处理(未经过风险评估)的查询结果。In this embodiment, the first query result refers to the query result without processing (without risk assessment) generated directly by converting the target data through the message display template.

本实施例中，第二查询结果是指风险评估后进行分类的第一查询结果。In this embodiment, the second query result refers to the first query result classified after risk assessment.

本实施例中，风险标签包括第一标签、第二标签已经第三标签，不同的风险标签对应的显示框颜色不同。In this embodiment, the risk labels include a first label, a second label and a third label, and different risk labels correspond to different display box colors.

上述技术方案的有益效果：本发明根据所述限定类型在授权目录中锁定查询目标，并根据所述限定时间区间在所述查询目标对应的存储标签下进行数据筛选，获得目标数据，确保调用数据的准确，同时，基于所述目标数据，生成第一查询结果，并对所述第一查询结果进处理，向所述第一查询结果添加风险标签，获得第二查询结果，将所述第二查询结果分块展示在用户浏览界面上，系统提前预测登录风险，更加直观的向用户展示查询结果，有利于用户快速找到异常登录对应的登录信息。The beneficial effects of the above technical solution: the present invention locks the query target in the authorization directory according to the limited type, and performs data screening under the storage tag corresponding to the query target according to the limited time interval to obtain the target data and ensure that the data is called accurate, and at the same time, based on the target data, a first query result is generated, the first query result is processed, a risk label is added to the first query result, a second query result is obtained, and the second query result is The query results are displayed on the user browsing interface in blocks. The system predicts login risks in advance and displays the query results to users more intuitively, which helps users quickly find the login information corresponding to abnormal logins.

实施例9：Example 9:

在上述实施例8的基础上，所述结果获取单元，包括：Based on the above-mentioned Embodiment 8, the result acquisition unit includes:

第一生成子单元，用于根据消息展示模板，处理所述目标数据，生成第一查询结果，并将所述第一查询结果发送至结果处理单元；A first generation subunit, configured to process the target data according to the message display template, generate a first query result, and send the first query result to the result processing unit;

本实施例中，消息展示模板是指向用户展示过程中为了美观设计的查询结果展示的统一模板，在确定目标数据后，根据该模板将所述目标数据转化为统一格式的语句，得到第一查询结果。In this embodiment, the message display template refers to a unified template for displaying query results designed for aesthetics during the user display process. After determining the target data, the target data is converted into a statement in a unified format according to the template to obtain the first query. result.

本实施例中，常用设备名单是指根据用户的常用设备生成的设备列表。In this embodiment, the commonly used device list refers to a device list generated based on the user's commonly used devices.

本实施例中，非常用设备是指不在常用设备名单中的登录设备。In this embodiment, unusual devices refer to login devices that are not in the list of commonly used devices.

本实施例中，目标登录账号是指第第一查询结果包含的登录账号中的任意一个登录账号。In this embodiment, the target login account refers to any login account among the login accounts included in the first query result.

本实施例中，第一标签是无风险标签，其对应的显示框的颜色为绿色；第二标签是低风险标签，其对应的显示框的颜色为蓝色；第三标签是高风险标签，其对应的显示框的颜色为红色。In this embodiment, the first label is a risk-free label, and the color of its corresponding display box is green; the second label is a low-risk label, and the color of its corresponding display box is blue; and the third label is a high-risk label, The color of its corresponding display box is red.

本实施例中，待分析账号是指在第一查询结果中对应的历史登录设备出现变更的目标登录账号。In this embodiment, the account to be analyzed refers to the target login account whose corresponding historical login device has changed in the first query result.

本实施例中，第一登录信息是指待分析账号对应的登录信息。In this embodiment, the first login information refers to the login information corresponding to the account to be analyzed.

本实施例中，第一登录时间是指待分析账号的第一查询结果中的多个登录时间(包含开始登录时间和结束登录时间)。In this embodiment, the first login time refers to multiple login times (including the start login time and the end login time) in the first query result of the account to be analyzed.

本实施例中，登录时间分布图根据目标登录账户的全部历史登录信息(包括限定时间区间以外的登录信息)绘制的每次登录的时间分布图。In this embodiment, the login time distribution graph is a time distribution graph for each login drawn based on all historical login information of the target login account (including login information outside the limited time interval).

本实施例中，正常登录时间区间是指用户在登录时间分布图中登录目标账号的时间范围。In this embodiment, the normal login time interval refers to the time range during which the user logs in to the target account in the login time distribution chart.

本实施例中，平台浏览记录是指目标登录账号在第一登录时间在其对应登录平台上的浏览记录。In this embodiment, the platform browsing record refers to the browsing record of the target login account on its corresponding login platform at the first login time.

本实施例中，预设特定信息是指用户在目标登录账号上设置的重要信息范围内的信息。In this embodiment, the preset specific information refers to information within the range of important information set by the user on the target login account.

本实施例中，第一突出显示是在对带有第二标签的待分析账号中的第一查询结果中的采用非常用设备登录的登录信息进行突出显示。In this embodiment, the first highlighting is to highlight the login information that is logged in using an unusual device in the first query result of the account to be analyzed with the second label.

本实施例中，第二突出显示是在对带有第三标签的待分析账号中的第一查询结果中的采用非常用设备登录的登录信息进行突出显示。In this embodiment, the second highlighting is to highlight the login information that is logged in using an unusual device in the first query result of the account to be analyzed with the third label.

本实施例中，分块处理是指根据第二查询结果上携带的风险标签，将其内容分配至对应的颜色显示框中。In this embodiment, segmentation processing refers to allocating the content to the corresponding color display box according to the risk label carried on the second query result.

上述技术方案的有益效果：本发明基于所述目标数据，根据消息展示模板，生成第一查询结果，确保了浏览界面数据展示的美观，提高客户观感；然后根据第一查询结果中目标登录账号的登录设备的变更情况，对登录风险进行初步评估，获得风险待确定的待分析账号，根据登录时间以及在该登录时间内的平台浏览记录，对待分析账号的登录风险进行二次评估；The beneficial effects of the above technical solution: the present invention generates the first query result based on the target data and the message display template, ensuring the beauty of the data display on the browsing interface and improving the customer perception; and then based on the target login account in the first query result Based on changes in login devices, conduct a preliminary assessment of login risks, obtain accounts to be analyzed whose risks have yet to be determined, and conduct a secondary assessment of login risks of accounts to be analyzed based on the login time and platform browsing records within that login time;

最后根据两次风险评估添加的风险标签对第一查询结果进行分类，并展示在其风险标签对应的显示框内供用户浏览，对不同目标登录账号不同时间的登录进行了风险预测，并通过颜色分块更加直观的向用户展示查询结果，有利于用户快速找到异常登录对应的登录信息。Finally, the first query result is classified according to the risk tags added in the two risk assessments, and displayed in the display box corresponding to the risk tag for users to browse. The risk prediction is made for logins of different target login accounts at different times, and the risk is predicted through the color Blocking displays query results to users more intuitively, which helps users quickly find login information corresponding to abnormal logins.

实施例10：Example 10:

在上述实施例8的基础上，所示浏览展示单元，还用于对目标登录账号进行安全评分：Based on the above-mentioned Embodiment 8, the browsing display unit shown is also used to perform security scoring on the target login account:

获取所述目标登录账号的历史登录信息，并基于结果获取单元对所述历史登录进行风险评估，获得风险评估结果；Obtain the historical login information of the target login account, conduct a risk assessment on the historical login based on the result acquisition unit, and obtain the risk assessment result;

基于所述分线评估结果以及下列公式，计算所述目标登录账号的安全评分：Based on the line evaluation results and the following formula, calculate the security score of the target login account:

其中，P表示目标登录账号的安全评分；α表示系统的误差因子，取值在(0，005)；β表示目标登录账号的历史登录信息条数；β₃表示目标登录账号的全部历史登录信息经过结果获取单元处理后带有第三标签的历史登录信息条数；β₂表示目标登录账号的全部历史登录信息经过结果获取单元处理后带有第二标签的历史登录信息条数；τ₁表示带有第三标签的历史登录信息即高风险登录信息的风险影响系数取值在[0.7，095)；τ₂表示带有第二标签的历史登录信息即低风险登录信息的风险影响系数(0.05，0.3]；Among them, P represents the security score of the target login account; α represents the error factor of the system, with a value of (0, 005); β represents the number of historical login information of the target login account; β ₃ represents all historical login information of the target login account. The number of historical login information with the third label after being processed by the result acquisition unit; β ₂ represents the number of historical login information with the second label after all the historical login information of the target login account has been processed by the result acquisition unit; τ ₁ represents The risk impact coefficient of historical login information with the third label, that is, high-risk login information, is in [0.7, 095); τ ₂ represents the risk impact coefficient (0.05) of historical login information with the second label, that is, low-risk login information. ,0.3];

基于上述公式获得全部目标登录账号的安全评分，当所述安全评分大于预设分数时，采用第一颜色展示；Based on the above formula, the security scores of all target login accounts are obtained. When the security scores are greater than the preset score, the first color is used for display;

当所述安全评分小于等于预设分数时，采用第二颜色展示，并推荐用户更改登录密码。When the security score is less than or equal to the preset score, the second color is displayed and the user is recommended to change the login password.

上述技术方案的有益效果：本发获取目标登录账号的的历史登录信息，并基于结果获取单元对所述历史登录进行风险评估，获得风险评估结果；基于所述分线评估结果以及公式，计算所述目标登录账号的安全评分，对目标登录账号进行综合评价，为目标登录账号的风险评估提高又一依据，同时根据安全评分对分数进行不同的颜色显示，有利于引起用户注意，确保用户迅速看到安全评价较高的目标登录账号。The beneficial effects of the above technical solution: the present invention obtains the historical login information of the target login account, and performs risk assessment on the historical login based on the result acquisition unit to obtain the risk assessment results; based on the line assessment results and formulas, calculate the Describe the security score of the target login account, conduct a comprehensive evaluation of the target login account, and provide another basis for improving the risk assessment of the target login account. At the same time, the scores are displayed in different colors according to the security score, which is conducive to attracting the user's attention and ensuring that the user can quickly see Log in to an account with a higher security rating.

实施例11：Example 11:

本发明提供一种基于大数据的登录信息查询管理方法，如图4所示，包括：The present invention provides a login information query and management method based on big data, as shown in Figure 4, including:

上述技术方案的有益效果：本发明对登录系统的用户身份进行验证，保证系统数据的安全性，方便根据用户身份信息获取用户关联的授权目录实现统一管理用户各种账号登录信息的目的，在身份验证通过后按照用户的查询需求对查询信息进行限定，提高客户体验感，然后，将系统根据用户需求查询结果进行展示，方便用户查看，有利于对异常登录的追查。Beneficial effects of the above technical solution: the present invention verifies the identity of users logging into the system, ensures the security of system data, facilitates the acquisition of user-associated authorization directories based on user identity information, and achieves the purpose of unified management of user login information for various accounts. After passing the verification, the query information is limited according to the user's query needs to improve the customer experience. Then, the system displays the query results according to the user's needs, which is convenient for users to view and is conducive to tracing abnormal logins.

显然，本领域的技术人员可以对本发明进行各种改动和变型而不脱离本发明的精神和范围。这样，倘若本发明的这些修改和变型属于本发明权利要求及其等同技术的范围之内，则本发明也意图包含这些改动和变型在内。Obviously, those skilled in the art can make various changes and modifications to the present invention without departing from the spirit and scope of the invention. In this way, if these modifications and variations of the present invention fall within the scope of the claims of the present invention and equivalent technologies, the present invention is also intended to include these modifications and variations.

Claims

1. A big data based login information query management system, comprising:

the identity verification module is used for verifying the identity of the user, and the user passes through a login application of the user after the user is successfully verified;

The content confirmation module is used for setting limiting information of the history record to be queried of the user after the user logs in;

the history record to be queried refers to historical login information of a login account to be queried by a user;

the query browsing module is used for obtaining a query result according to the limit information and displaying the query result on a user browsing interface in a classified manner;

the system further comprises:

the authority management module is used for:

in the personal information management of a plurality of common login devices of the user, the remembered information stored in all remembered password service items of the user is obtained, and a catalog to be authorized is established;

based on the catalog to be authorized, login information acquisition agreements are respectively sent to the users;

acquiring login information which is confirmed to be agreeable by the user, acquiring the name of a login platform corresponding to the agreeable form, a login account number and a password of the login platform, and establishing an authorization directory;

the rights management module includes:

the account screening unit is used for acquiring login accounts and login passwords stored in password service items remembered on a plurality of common login devices of the user and establishing a first to-be-authorized directory;

Judging whether a first duplicate account exists in the first directory to be authorized, if so, acquiring the recording time of the first duplicate account, determining the latest recording time, reserving the first duplicate account corresponding to the latest recording time, deleting the remaining first duplicate account, and acquiring a second directory to be authorized;

if not, the first directory to be authorized is used as a second directory to be authorized;

determining login platform information corresponding to each login account in the second directory to be authorized based on the memorized information in the memorized password service item, and judging whether a second repeated account exists in the second directory to be authorized;

if yes, judging whether the second repeated account has synchronous binding information, if yes, determining the identity of a binding person based on the synchronous binding information, and when the identity of the binding person of the second repeated account is consistent with the identity of a user, judging that the second directory to be authorized is a final directory to be authorized;

when the identity of the binding person of the second duplicate account is inconsistent with the identity of the user, deleting the second duplicate account, and updating the second catalog to be authorized to obtain a final catalog to be authorized;

If the second repeated account has no synchronous binding information, acquiring a second repeated account establishment account group of the same target login platform;

determining the use frequency of a second repeated account in the account group according to the historical login records of the same account group on the plurality of common login devices;

obtaining an alternative account number with the use frequency larger than a preset value in the account number group, and positioning to obtain a plurality of login addresses based on the login IP address of the alternative account number;

classifying the login addresses according to address labels set by users to obtain historical login records corresponding to common addresses and obtain login frequencies of the common addresses;

when the login frequency is larger than a preset frequency value, judging that the alternative account is a reserved account; otherwise, deleting the alternative account number, and updating the second catalog to be authorized to obtain a final catalog to be authorized;

when the use frequency of the second repeated accounts in the account grouping is smaller than or equal to a preset value, the second repeated account with the highest use frequency in the account grouping is obtained to be used as a reserved account, the remaining second repeated accounts in the account grouping are deleted, the second catalog to be authorized is updated, and the final catalog to be authorized is obtained.

2. The big data based login information query management system according to claim 1, further comprising:

the login monitoring module is used for:

monitoring and acquiring login information of each login account in the authorization directory;

meanwhile, generating a plurality of fixed information codes according to the authorization catalogue, wherein each login platform corresponds to one fixed information code;

according to the fixed information code, respectively generating a login initial return code and a login end return code corresponding to each login platform;

when the login platform monitors that the target account is logged in, a corresponding login initial return code is sent to the information recording module;

and when the login platform monitors that the target account is logged out, a corresponding login ending return code is sent to the information recording module.

3. The big data based login information query management system according to claim 2, wherein:

the information recording module is used for:

after receiving the login initial return code or the login end return code, generating corresponding storage data according to the message data template;

meanwhile, identifying the coded data segment corresponding to the fixed information code in the login initial return code or the login end return code to obtain an identification result;

And storing the storage data to the corresponding position under the label according to the identification result.

4. The big data based login information query management system according to claim 1, wherein said content confirmation module comprises:

the range limiting unit is used for setting limiting types of the history records to be queried, wherein the limiting types refer to platform types of login platforms corresponding to the history records to be queried;

the time limiting unit is used for setting a limiting time interval of the history record to be queried;

the limitation information includes a limitation type and a limitation time interval.

5. The big data based login information query management system according to claim 4, wherein said content confirmation module further comprises:

and the appointed limiting setting unit is used for directly inputting the name of the target login platform of the history record to be queried by the user.

6. The big data based login information query management system according to claim 4, wherein said query browsing module comprises:

the target confirmation unit is used for locking a query target in the authorization directory according to the limiting type, and carrying out data screening under a storage tag corresponding to the query target according to the limiting time interval to obtain target data;

The result acquisition unit is used for generating a first query result based on the target data, processing the first query result, adding a risk tag to the first query result according to the processing result, and obtaining a second query result;

and the browsing display unit is used for displaying the second query result on the user browsing interface in a blocking manner.

7. The big data based login information query management system according to claim 6, wherein said result acquisition unit includes:

the first generation subunit is used for processing the target data according to the message display template, generating a first query result and sending the first query result to the result processing unit;

the result processing subunit is used for judging whether the history login equipment of each target login account is changed or not based on the first query result after receiving the first query result;

if the history login equipment of the target login account is changed, judging whether the changed history login equipment has common equipment or not based on a common equipment list of the user, and if the changed history login equipment has common equipment, adding a first label to a first query result corresponding to the target login account;

If the target login account is present, the target login account is used as an account to be analyzed, first login information corresponding to the unusual equipment of the equipment to be analyzed is obtained, and first login time is determined based on the first login information;

acquiring a login time distribution diagram of a user in the target login account, and determining a normal login time interval of the user in the target login account based on the login time distribution diagram;

when the first login time is within the normal login time interval, acquiring a platform browsing record of the user within the first login time based on the first login information;

judging whether preset specific information is browsed in the first login time according to the platform browsing record, if yes, adding a second label to a first query result corresponding to the account to be analyzed, and performing first highlighting on a part corresponding to common equipment;

if not, adding a first label to a first query result corresponding to the account to be analyzed;

when the first login time is not in the normal login time interval, judging that the platform to be analyzed is abnormal in login, adding a third label to a first query result corresponding to the account to be analyzed, and performing second highlighting on a part corresponding to common equipment;

If the historical login equipment of the target login account is not changed, adding a first label to a first query result corresponding to the target login platform;

the second generation subunit is used for classifying the first query result based on risk tag classification to obtain a classification result and generating a second query result; the risk tag comprises a first tag, a second tag and a third tag respectively;

and after the second query result is subjected to blocking processing, displaying the second query result on a browsing interface of the user.

8. The login information query management method based on big data is characterized by comprising the following steps:

step 1: verifying the identity of the user, and applying for login through the user after the user is successfully verified;

step 2: after the user logs in, setting limit information of the history record to be queried of the user;

the history record to be queried refers to historical login information of a login account to be queried by a user, and the limiting information comprises a limiting type and a limiting time interval;

step 3: obtaining a query result according to the limit information, and displaying the query result on a user browsing interface in a classified manner;

the method further comprises the steps of:

collecting login information which is confirmed to be agreeable by the user, obtaining the name of a login platform corresponding to the agreeable form, a login account and a password of the login platform, and establishing an authorization directory, wherein the login information comprises the following steps:

acquiring login account numbers and login passwords stored in password service items remembered on a plurality of common login devices of the user, and establishing a first directory to be authorized;