Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Session user tracking method and device

A user and user information technology, applied in the field of social applications, can solve the problems of network application security risks, cookies are easily stolen, forged and other problems

Active Publication Date: 2017-08-08
新浪财经移动网络科技(北京)有限公司
View PDF7 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] However, cookies are easy to be stolen, or forged, or deleted. In this way, the corresponding session may be hijacked, which brings greater security risks to network applications.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Session user tracking method and device
  • Session user tracking method and device
  • Session user tracking method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0068] Embodiment 1. In this embodiment, the interactive session is based on SSL, the user identification information is cookie information, and the session identification information is SSL session id.

[0069] figure 2 is a flow chart of a method for tracking session users according to an exemplary embodiment 1, see figure 2 , the process of session user tracking in this embodiment includes:

[0070] Step 201: Receive the current session information sent by the current session user in the interactive session.

[0071] Step 202: Determine whether the current session information carries cookie information? If yes, go to step 203; otherwise, go to step 204.

[0072] Step 203: According to the current session information, obtain the current cookie information in the current user information corresponding to the current session user. Go to step 205.

[0073] Step 204: Assign current cookie information to the current session user, and obtain the current cookie information i...

Embodiment 2

[0085] Embodiment 2. In this embodiment, the interactive session is based on SSL, the user identification information is cookie information, and the session identification information is an SSL session ticket.

[0086] image 3 It is a flowchart of a method for tracking session users according to an exemplary embodiment 2, see image 3 , the process of session user tracking in this embodiment includes:

[0087] Step 301: Receive the current session information sent by the current session user in the interactive session.

[0088] Step 302: Obtain current user information corresponding to the current session user, where the current user information includes current cookie information and current SSL session ticket.

[0089] Step 303: Determine whether there is first user information in the stored user information database corresponding to the interactive session? If yes, go to step 304; otherwise, go to step 307.

[0090] Here, the cookie information in the first user inform...

Embodiment 3

[0115] Embodiment three, Figure 5 According to a structural diagram of a session user tracking device shown in a third exemplary embodiment, in this embodiment, the interactive session is based on SSL, the user identification information is cookie information, and the session identification information is an SSL session ticket. see Figure 5 , the device includes: a receiving unit 410 , an acquiring unit 420 , a determining unit 430 , and a storage unit 440 .

[0116] Specifically, the receiving unit 410 receives the current session information sent by the current session user in the interactive session. The obtaining unit 420 obtains current user information corresponding to the current session user, wherein the current user information includes current cookie information and current SSL session ticket.

[0117] In this way, when the first user information exists in the stored user information database corresponding to the interactive session, the determining unit 430 may ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a session user tracking method and device and is used for improving the security of a network application. The method comprises the steps of receiving current session information sent by a current session user in an interaction session; obtaining current user information corresponding to the current session user according to the current session information, wherein the current user information comprises current user identification information and current session identification information; and determining that a risk exists in a tracked current session user when stored user information incompletely matching the current user identification information and the current session identification information exists in a user information database corresponding to the interaction session. In this way, the session user can be tracked relatively accurately, a probability that the session is hijacked or damaged is reduced, and the security of the network application is improved.

Description

technical field [0001] The present invention relates to the technical field of social applications, in particular to a method and device for tracking session users. Background technique [0002] With the development of Internet technology, some social applications and financial applications are increasingly widely used, such as: Weibo, topic discussion, instant messaging, online transactions and so on. [0003] At present, some social applications based on Secure Sockets Layer (Secure Sockets Layer, SSL) and Transport Layer Security (Transport Layer Security, TLS), such as conversational applications such as topic discussion and instant messaging, are stored on the user's local terminal The data (cookie) to identify the session user, so that the session user can be tracked through the identification of the cookie. [0004] However, cookies are easy to be stolen, or forged, or deleted. In this way, the corresponding session may be hijacked, which brings greater security risk...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L12/58
CPCH04L51/216H04L51/23
Inventor 黄旭
Owner 新浪财经移动网络科技(北京)有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products