CN103457991B - A kind of terminal safety protection method and system - Google Patents

Abstract

The invention discloses a terminal safety protection method and system, and relates to the technical field of network communication. The method includes: adding at least one first contact to a secure contact database for the target contact; wherein, the target contact corresponds to the target terminal; and analyzing the target contact pointed to by the information data received by the target server and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and determine whether the content of the information data matches the predetermined content; if the first contact corresponding to the first terminal If the person belongs to the secure contact database of the target contact, and the content of the information data matches the predetermined content, the target terminal is notified to start the corresponding password reset operation or start the corresponding security protection operation according to the matching result. Improve the security of the user terminal, reduce the chance of the terminal being stolen, and easily reset the user's password.

Description

A terminal security protection method and system

technical field

The invention relates to the technical field of network communication, in particular to a terminal security protection method and system.

Background technique

With the development of information and data technology, people pay more and more attention to the security of information and data. If the user forgets the password or loses the mobile phone, he hopes to process the password or control the information, data or equipment in the mobile phone to ensure security. .

For example, if the user forgets the password, he will not be able to enter the encrypted area. Generally speaking, the first contact person for privacy is usually the first contact person who is more important to the user, such as the order records of important customers, etc. If you cannot enter to view Communication records, such as for mobile phones, cannot be accessed to view text messages and call records, which will have a major impact on users. In the prior art, there are basically the following ways to retrieve the password: 1. In the user's terminal, set a password question for the encrypted area. When the user forgets the password, activate the password question reset process, and answer the password question in the terminal. Password question, reset password. 2. Set up a secure mailbox associated with the terminal. When the user forgets the password, activate the mailbox password reset process, automatically generate a new password, call the mailbox interface, and send it to the user's secure mailbox. These methods of retrieving passwords also have problems such as users forgetting the answers to password questions, and forgetting the account number and password of the secure mailbox; The function of the mailbox, its operation process is cumbersome.

For another example, if the user loses his mobile phone, he will not be able to control the information, data or equipment in his mobile phone to ensure its security.

Contents of the invention

In view of the above problems, the present invention is proposed to provide a terminal security protection device and a corresponding terminal security protection method that overcome the above problems or at least partially solve the above problems.

According to one aspect of the present invention, a terminal security protection method is provided, including:

adding at least one first contact to the secure contact database for the target contact; wherein, the target contact corresponds to the target terminal;

For the information data received by the target server, analyze the target contact it points to, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and determine the content of the information data Whether it matches the predetermined content;

If the first contact corresponding to the first terminal belongs to the secure contact database of the target contact, and the content of the information data matches the predetermined content, then notify the target terminal to start a corresponding password reset operation according to the matching result or Start the corresponding security protection operation.

Optionally, adding at least one first contact to the secure contact database for the target contact includes:

Log in the web page of the target server through the target contact, and send the first contact to be added to the safe contact database to the target server; the target server adds the first contact to the safe contact database corresponding to the target contact;

Or, notify the first terminal corresponding to at least one security contact identifier, and send the specified security verification information data to the target server; when the target server receives the information data sent by any first terminal, it determines whether the information data is If the designated security verification information data is yes, adding the first contact corresponding to the first terminal into the corresponding security contact database.

Optionally, the logging into the website of the target server through the target contact, and sending the first contact to be added to the secure contact database to the target server includes:

Call its address book interface through the target terminal, select the first contact to be added to the secure contact database from the address book, and send it to the target server;

The notifying the first terminal corresponding to at least one security contact identifier, and sending the specified security verification information data to the target server includes:

The target terminal invokes its address book interface, selects a first contact from the address book, and notifies the first terminal corresponding to the first contact to send designated security verification information data to the target server.

Optionally, analyzing the target contact pointed to by the information data received by the target server, and judging whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and judging Whether the content of the information data matches the predetermined content includes:

For the information data received by the target server, analyze the target contact pointed to by the information data, and search for a corresponding security contact database according to the target contact;

judging whether the first contact corresponding to the first terminal sending the information data belongs to the secure contact database;

If the first contact belongs to a secure contact database, matching the content in the information data with the predetermined content recorded in the target server.

Optionally, the notifying the target terminal to start a security protection operation on the target terminal includes:

Notify the target terminal to delete the personalized information data in the specified storage area;

And/or, notify the target terminal to upload the personalized information data in the specified area to the specified server, and delete the personalized information data in the target terminal;

And/or, notify the target terminal to send the location information data to the designated second terminal;

And/or, notify the target terminal to lock the screen;

And/or, notify the target terminal to start the camera to take pictures and/or video;

And/or, notify the target terminal to activate the sound system for alarming.

Optionally, for the information data received by the target server, analyze the target contact pointed to by it, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and determine whether Before checking whether the content of the above information data matches the predetermined content, it also includes:

Informing the target contact to identify the first terminal corresponding to at least one first contact in the corresponding secure contact database, and sending the information data including the first predetermined character string format and the target contact to the target server.

Optionally, the notifying the target contact identifies the first terminal corresponding to at least one first contact in the corresponding security contact database, and sending the information data including the first predetermined character string format and the target contact to the target server includes :

generate the authentication string;

Select at least one first contact from the secure contact library corresponding to the target contact, and notify the first terminal corresponding to each first contact to send information data including the first predetermined character string format and the target contact to the target server, the information data further includes the verification string.

Optionally, the judging whether the content of the information data matches the predetermined content includes:

judging whether the verification character string is included in the character string in the information data;

If the character string in the information data includes the verification character string, notify the target terminal to start a corresponding password reset operation or start a corresponding security protection operation.

Optionally, before informing the target terminal to start a corresponding password reset operation or start a corresponding security protection operation, it may further include:

Judging whether the time period between the time when the target server sends the notification and the current time of the target server system exceeds the time threshold;

if the time period has not been exceeded, counting the corresponding first contact;

If the time period exceeds, the corresponding first contact is not counted.

Optionally, after the character string in the information data matches the first predetermined character string format recorded in the target server, it further includes:

Judging whether the number of first contacts belonging to the security contact database that have been matched with the information data reaches the threshold value, if so, notify the target terminal to start the corresponding password reset operation or start the corresponding security contact according to the matching result. protection operation.

According to another aspect of the present invention, a terminal security protection system is provided, including:

The secure contact library preset module is adapted to add at least one first contact to the secure contact library for the target contact; wherein, the target contact corresponds to the target terminal;

The information data processing module is adapted to analyze the target contact pointed to by the information data received by the target server, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and judging whether the content of the information data matches the predetermined content;

The first notification module is adapted to notify the target terminal to activate A corresponding password reset operation or a corresponding security protection operation is started.

Optionally, the target terminal includes: a webpage preset module, adapted to log in the webpage of the target server through the target contact, and send the first contact to be added to the secure contact database to the target server;

Further, in the target server, the secure contact library preset module includes:

A first adding module, adapted for the target server to add the first contact to a secure contact database corresponding to the target contact;

Alternatively, in the target terminal include:

Further, in the target server, the secure contact library preset module includes:

The second adding module is adapted to determine whether the information data is the specified security verification information data after the label server receives the information data sent by any first terminal, and if so, send the first terminal The corresponding first contact is added to the corresponding secure contact database.

Optionally, the web page preset module of the website includes:

The first calling module is adapted to call its address book interface through the target terminal, select the first contact from the address book and notify the corresponding first terminal to send specified security verification information data to the target terminal or target server;

The second notification module includes:

The second calling module is adapted to call its address book interface through the target terminal, select the first contact from the address book, and notify the first terminal corresponding to the first contact to send specified security verification information data to the target server.

Optionally, the information data processing module includes:

The parsing module is adapted to analyze the target contact pointed to by the information data received by the target server, and search for a corresponding security contact database according to the target contact;

A safe contact judging module, adapted to judge whether the first contact corresponding to the first terminal sending the information data belongs to the safe contact database;

The content matching module is adapted to match the content in the information data with the predetermined content recorded in the target server if the first contact belongs to a secure contact database.

Optionally, the first notification module includes:

The information data deletion module is suitable for notifying the target terminal to delete the personalized information data in the specified storage area;

And/or, the information data upload and delete module is adapted to notify the target terminal to upload the personalized information data in the specified area to the specified server, and delete the personalized information data in the target terminal;

And/or, the positioning module is adapted to notify the target terminal to send the position information data to the designated second terminal;

And/or, a locking module, adapted to notify the target terminal to lock the screen;

And/or, the shooting module is adapted to notify the target terminal to start the camera to take pictures and/or video;

And/or, the alarm module is adapted to notify the target terminal to activate the sound system for alarming.

Optionally, the said information data processing module also includes:

The third notification module is adapted to notify the first terminal corresponding to at least one first contact in the security contact library corresponding to the target contact identification, and send the information data including the first predetermined character string format and the target contact to the target server .

Optionally, the third notification module includes:

A verification string generation module, adapted to generate a verification string;

The fourth notification module is adapted to select at least one secure first contact from the secure contact library corresponding to the target contact, and notify the first terminal corresponding to each first contact to send a message including the first predetermined character string format. The information data and the target contact are sent to the target terminal, and the information data also includes the verification character string.

Optionally, the fourth information data processing module includes:

The verification character string judging module is adapted to judge whether the verification character string is included in the character string in the information data; if the verification character string is included in the character string in the information data, notify the target according to the matching result The terminal starts a corresponding password reset operation or starts a corresponding security protection operation.

Optionally, the fourth information data processing module includes:

Judging whether the time period between the time when the target server sends the notification and the current time of the target server system exceeds the time threshold;

if the time period has not been exceeded, counting the corresponding first contact;

If the time period exceeds, the corresponding first contact is not counted.

Optionally, before the first notification module, it also includes:

The threshold judging module is suitable for judging whether the number of first contacts belonging to the secure contact database of the matched information data reaches the quantity threshold, and if so, notifies the target terminal to start corresponding password reset according to the matching result Operate or start the corresponding security protection operation.

According to a terminal security protection method and system of the present invention, based on the preset security contact database, the target server can receive information data for various operations of the terminal, and analyze the information data. If the first terminal corresponds to If the first contact of the target contact belongs to the security contact database of the target contact, and the content of the information data matches the predetermined content, the target terminal is notified to start a password reset operation or start a security protection operation for the target terminal, and then the target terminal Then perform corresponding operations according to the notification, such as performing password reset operations, deleting photos, deleting text messages, memos, requesting mobile phone location information data, locking the mobile phone, controlling the mobile phone to alarm, etc., thus solving the problem of lost mobile phone information The problem of data security, the difficulty of finding a stolen mobile phone, and the problem of forgetting the answer to the password question, forgetting the account number and password of the safe mailbox, and the problem of cumbersome password reset operation have been solved, and the security of mobile phones and other user terminals has been improved. The probability of the terminal being stolen is reduced, the security of the user terminal information data is ensured, and the user's password can be easily and conveniently reset.

The above description is only an overview of the technical solution of the present invention. In order to better understand the technical means of the present invention, it can be implemented according to the contents of the description, and in order to make the above and other purposes, features and advantages of the present invention more obvious and understandable , the specific embodiments of the present invention are enumerated below.

Description of drawings

Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiment. The drawings are only for the purpose of illustrating a preferred embodiment and are not to be considered as limiting the invention. Also throughout the drawings, the same reference numerals are used to designate the same parts. In the attached picture:

FIG. 1 shows a schematic flowchart of a terminal security protection method according to Embodiment 1 of the present invention;

FIG. 2 shows a schematic flowchart of a terminal security protection method according to Embodiment 2 of the present invention;

FIG. 3 shows a schematic flowchart of a terminal security protection method according to Embodiment 3 of the present invention;

FIG. 4 shows a schematic flowchart of a terminal security protection method according to Embodiment 4 of the present invention;

FIG. 5 shows a schematic flowchart of a terminal security protection method according to Embodiment 5 of the present invention;

FIG. 6 shows a schematic structural diagram of a device for terminal security protection according to Embodiment 6 of the present invention;

FIG. 7 shows a schematic structural diagram of an apparatus for terminal security protection according to Embodiment 7 of the present invention;

FIG. 8 shows a schematic structural diagram of an apparatus for terminal security protection according to Embodiment 8 of the present invention;

FIG. 9 shows a schematic structural diagram of a device for terminal security protection according to Embodiment 9 of the present invention;

FIG. 10 shows a schematic structural diagram of an apparatus for terminal security protection according to Embodiment 9 of the present invention.

detailed description

Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.

One of the core ideas of the present invention is: add the first security contact designated by the target terminal and agreed by the other party to the security contact database corresponding to the first security contact; and then receive information data for various operations of the terminal through the target server , and parse the information data, if the first contact corresponding to the first terminal belongs to the secure contact database of the target contact, and the content of the information data matches the predetermined content, start the target terminal Password reset operations or start security protection operations on the target terminal, such as resetting the password of the encrypted area in the mobile phone, deleting photos in the mobile phone, deleting text messages in the mobile phone, deleting memos and other information data in the mobile phone, locking the mobile phone screen, sending Mobile phone location information data, etc.

Embodiment one

Referring to FIG. 1 , it shows a schematic flowchart of Embodiment 1 of a terminal security protection method according to the present invention, which may specifically include:

Step 110, adding at least one first contact to the secure contact database for the target contact; wherein, the target contact corresponds to the target terminal;

In the embodiment of the present invention, a secure contact database may be preset in the target server in various manners, and the target contacts are in one-to-one correspondence with the secure contact database. In the embodiment of the present invention, both the first contact person and the target contact person can be mobile phone numbers.

In this embodiment of the present invention, the target terminal itself may also be the first terminal. Target contacts can be added to their own secure contact database.

Preferably, adding at least one first contact to the secure contact database for the target contact includes:

Step S101, log in the website of the target server through the target contact, and send the first contact to be added to the secure contact database to the target server; the target server adds the first contact to the security contact corresponding to the target contact People library;

The first method is that the current user logs in to the website of the target server, and enters the first contacts that need to be added to its secure contact database on the web page of the website, such as the mobile phone numbers of their relatives and friends, and then the server receives these first contacts After the user is identified, the first contact can be added to the secure contact database corresponding to the user's mobile phone number (ie, the target contact).

Optionally, the logging into the website of the target server through the target contact, and sending the first contact to be added to the secure contact database to the target server includes:

In step S1011, the target terminal invokes its address book interface, selects the first contact to be added to the secure contact database from the address book, and sends it to the target server.

After using the target terminal (such as a mobile phone) to log in to the website of the target server, the user can call the address book in the target terminal, select the contacts in the input web page, and then send it to the target server, and the target server can send the first contact received. People can be added to the secure contact database of the mobile phone number.

Or, step S102, notify the first terminal corresponding to at least one security contact identifier, and send the specified security verification information data to the target server; when the target server receives the information data sent by any first terminal, judge the information Whether the data is the specified security verification information data, and if so, adding the first contact corresponding to the first terminal into the corresponding secure contact database.

The second method is that the current user notifies other users to send security verification information to the target server using their mobile phone (namely the first terminal), then the server will send the mobile phone number that meets the requirements of the security verification information, and add the mobile phone number corresponding to the user secure contact library.

In order to preset the secure contact database, the current user can send a short message to one or some mobile phone numbers through his mobile phone, and notify the mobile device (first terminal) where these mobile phone numbers are located to send security verification information data to the target server, such as Sending the specified verification character string and/or the information data in the format of the second predetermined character string. Wherein the verification character string can be generated by the current user's mobile phone device, and the second predetermined character string format can also be pre-agreed, such as agreeing to other mobile phones to send a short message in the format of "*** verification character string %%%" to the target server.

After receiving the information data sent by any first terminal, the target server judges whether the information data is the specified security verification information data, and if so, adds the first contact corresponding to the first terminal to the security contact Person database; the specified security verification information data includes: verification character string and/or information data in a second predetermined character string format.

Optionally, the notifying the first terminal corresponding to at least one security contact identifier, and sending the specified security verification information data to the target server includes:

In step S1021, the target terminal invokes its address book interface, selects a first contact from the address book, and notifies the first terminal corresponding to the first contact to send designated security verification information data to the target server.

For example, after the current user logs in to the website, he calls the address book interface in the mobile phone, selects the first contact from the address book, and then sends it to the target server, and the target server sends the "send specified security verification information data to the target" to these first contacts Server" notification of similar information. For another example, the current user directly calls the address book interface in the mobile phone, selects the first contact from the address book, and then directly sends a notification message similar to "send the specified security verification information data to the target server" to the first contact's mobile phone, For example, *** requests you to be his first security contact. If you confirm, then send information data in the format of "*** verification string %%%" to the mobile phone number (or target server), where security The verification string is *****).

Step 120, analyzing the target contact pointed to by the information data received by the target server, and judging whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and judging that the information Whether the content of the data matches the predetermined content;

In the embodiment of the present invention, the first contact person can send information data to the target server in various ways, such as logging in the target server through the first contact person, and then sending the information data to the target server in the form of webpage data; the target server then Analyzing the information data in the form of web page data, analyzing the target contact it points to, searching the safe contact database according to the target contact, and then judging whether the first contact to which the information data belongs belongs to the described safe contact database; judging Whether the content of the information data matches the predetermined content. For example, whether the corresponding character string is included in the content of the pre-agreed web page data travel.

For another example, the first contact directly uses the first terminal to send a short message to the target server. The target server then parses the note, judges the target contact pointed to in the note, searches the safe contact database according to the target contact, and then judges whether the first contact who sends the note belongs to the safe contact database; Whether the string format of the SMS matches the predetermined string format.

Optionally, analyzing the target contact pointed to by the information data received by the target server, and judging whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and judging Whether the content of the information data matches the predetermined content includes:

Step S121, for the information data received by the target server, analyze the target contact pointed to by the information data, and search the corresponding secure contact database according to the target contact;

In the embodiment of the present invention, since each first contact may be set as the first contact in its secure contact database by multiple target contacts. Therefore, when the first terminal sends information data, it also needs to specify the target contact it points to, and if the target contact is found, then search the corresponding secure contact database. If not found, then stop subsequent processing.

Step S122, judging whether the first contact corresponding to the first terminal sending the information data belongs to the secure contact database;

When the secure contact database is found, it is judged whether the first contact corresponding to the information data belongs to the secure contact database, if yes, then enter step S123, if not, then stop subsequent processing.

Step S123, if the first contact belongs to the secure contact database, match the content in the information data with the predetermined content recorded in the target server.

For example, for information data in the form of web page data, it can be judged whether it includes predetermined instructions such as words such as "suoding"; for example, for short messages, it can be judged whether its string format is "suoding#".

Step 130: If the first contact corresponding to the first terminal belongs to the target contact's secure contact database, and the content of the information data matches the predetermined content, notify the target terminal to start the corresponding password reset according to the matching result. Configure the operation or start the corresponding security protection operation.

In the embodiment of the present invention, there may be multiple types of predetermined content, and each predetermined content may correspond to a certain notification. In the embodiment of the present invention, the corresponding type of notification is selected according to the matching result, and then the corresponding operation is performed on the notification target terminal. Then, in the target terminal, a corresponding execution module will also be set to perform corresponding operations according to the notification. The operations described in the present invention are such as performing a password reset operation, deleting photos, deleting short messages, deleting memos, requesting mobile phone location information data, locking the mobile phone, controlling the mobile phone to give an alarm, and the like. In the embodiment of the present invention, the server sends an instruction to notify the target terminal to start a password reset related thread to perform a secret reset operation or start a corresponding security protection related thread to perform a security protection operation.

Optionally, the notifying the target terminal to start a security protection operation on the target terminal includes:

Notify the target terminal to delete the personalized information data in the specified storage area;

And/or, notify the target terminal to upload the personalized information data in the specified area to the specified server, and delete the personalized information data in the target terminal;

And/or, notify the target terminal to send the location information data to the designated second terminal;

And/or, notify the target terminal to lock the screen;

And/or, notify the target terminal to start the camera to take pictures and/or video;

And/or, notify the target terminal to activate the sound system for alarming.

In the embodiment of the present invention, each notification from the target server can be understood as an instruction, and a corresponding module will be installed on the target terminal to obtain the execution authority of the target terminal system. After receiving the aforementioned instruction, the corresponding module can be executed. Actions.

Optionally, after the character string in the information data matches the first predetermined character string format recorded in the target server, it further includes:

Step A120, judging whether the number of first contacts that have been matched with the information data and belonging to the secure contact database reaches the quantity threshold, and if so, notify the target terminal to start the corresponding password reset operation or start the password reset operation according to the matching result. corresponding security protection operations.

In the embodiment of the present invention, in order to reduce the misoperation of the target terminal, the target server needs to count the number of terminals belonging to the first contact that send information data to the server for each target terminal when sending the notification, and when the number reaches Then, according to the matching result, the target terminal is notified to start a corresponding password reset operation or start a corresponding security protection operation.

In the embodiment of the present invention, based on the preset secure contact database, the target server may receive information data for various operations of the terminal, and analyze the information data. If the first contact corresponding to the first terminal belongs to the The target contact’s security contact database, and the content of the information data matches the predetermined content, then notify the target terminal to start the password reset operation or start the target terminal security protection operation, and then the target terminal performs corresponding operations according to the notification, such as Perform password reset operations, delete photos, delete text messages, memos, request mobile phone location information data, lock mobile phones, control mobile phones to alarm, etc., thus solving the problem of information and data security after the user's mobile phone is lost Difficult problems, but also solve the problems of forgetting the answer to the password question, forgetting the account number and password of the secure mailbox, and the problem of cumbersome password reset operation, which improves the security of user terminals such as mobile phones, reduces the probability of terminal theft, and ensures The user terminal information data is safe, and the user's password can be easily and conveniently reset.

Embodiment two

Referring to FIG. 2 , it shows a schematic flowchart of Embodiment 2 of a terminal security protection method according to the present invention, which may specifically include:

Step 210, adding at least one first contact to the secure contact database for the target contact; wherein, the target contact corresponds to the target terminal;

This step is similar to step 110 and will not be described in detail here.

Step 220, the first terminal logs in to the website where the target server is located;

The first terminal logs in the website where the target server is located through wifi, or GPRS, or other methods.

Step 230, the first terminal transmits information data including target contacts and security instructions to the target server through the webpage of the website;

After the first terminal opens the webpage of the website, it can input the target contact in the webpage and select the operation to be performed, such as performing a password reset operation, deleting photos, deleting text messages, memos, requesting mobile phone location information data, Lock the mobile phone, control the mobile phone to alarm, etc., and then transmit the information data in the form of web pages to the target server.

In the embodiment of the present invention, the aforementioned various operation options may be pre-set in the webpage, waiting for the user to select.

Step 240, for the information data received by the target server, analyze the target contact pointed to by the information data, and search the corresponding secure contact database according to the target contact;

The target server analyzes the target contact in the above information data, and uses the target contact to search for the corresponding security contact database; if found, proceed to step 250; if not found, then stop subsequent processing.

Step 250, according to the login information of the first terminal, judge whether the first contact corresponding to the first terminal belongs to the secure contact database;

If the corresponding secure contact database is found, then according to information such as cookies after the first terminal logs in, extract the first contact corresponding to the first terminal, and judge whether it belongs to the secure contact database; if it does, then enter the step 260. If not, the subsequent processing may be stopped.

Step 260, if the first contact belongs to the secure contact database, match the content in the information data with the predetermined content recorded in the target server.

In the embodiment of the present invention, the content related to the operation in the information data is extracted, such as performing password reset operations, deleting photos, deleting text messages, deleting memos, requesting mobile phone location information data, locking the mobile phone, etc. Then match with the predetermined content, if matched, then enter step 270 . If there is no match, the subsequent processing can be stopped.

In step 270, the target terminal is notified to start a corresponding password reset operation or start a corresponding security protection operation according to the matching result.

This step is similar to step 130 and will not be described in detail here.

In the embodiment of the present invention, the terminal can log in to the website of the target server to perform corresponding operations. It solves the problem of information and data security after the user's mobile phone is lost, and the problem of difficulty in finding a stolen mobile phone. It also solves the problem of forgetting the answer to the password question, forgetting the account number and password of the secure mailbox, and the problem of cumbersome password reset operations.

Embodiment Three

Referring to FIG. 3 , it shows a schematic flowchart of Embodiment 3 of a terminal security protection method according to the present invention, which may specifically include:

Step 310, adding at least one first contact to the secure contact database for the target contact; wherein, the target contact corresponds to the target terminal;

This step is similar to step 110 and will not be described in detail here.

Step 320, the first terminal sends a short message including a first predetermined format to the target server;

That is, the terminal can send a short message to the target server, wherein the short message needs to be edited according to the first predetermined format before the target server can perform subsequent processing.

In the embodiment of the present invention, it may be pre-agreed that character strings in the first predetermined format correspond to different operations. For example, "shanchu#verification string" corresponds to deleting the personalized information data in the specified storage area of the target terminal; "suoding#verification string" corresponds to locking the screen of the target terminal; "paishe#verification string" corresponds to Start the camera of the target terminal to take pictures and/or record videos; corresponding to "baojing#verification string", start the sound system of the target terminal to send an alarm, etc.

In the embodiment of the present invention, the first predetermined format may also add the sending format of the target contact, such as "mubiao#mobile phone number".

Step 330, for the short message received by the target server, analyze the target contact pointed to by the short message, and search the corresponding secure contact database according to the target contact;

As previously mentioned, then analyze the mobile phone number in the short message "mubiao#mobile phone number", and then search for the corresponding safe contact library of the mobile phone number; if found, then enter step 340, if the difference is less than, then the follow-up processing can be stopped .

Step 340, extracting the first contact corresponding to the first device that sent the short message, and judging whether the first contact belongs to the secure contact database;

Each short message can extract its corresponding mobile phone number sent, so it can be judged whether the mobile phone number belongs to the safe contact database; if yes, then enter step 350, if not, then stop subsequent processing.

Step 350, if the first contact belongs to the secure contact database, match the character string of the short message with the first predetermined format character string recorded in the target server;

For example, whether "shanchu#verification character string" is included in the content of the short message, if included, then enter step 360, if not included, then stop subsequent processing.

In step 360, the target terminal is notified to start a corresponding password reset operation or start a corresponding security protection operation according to the matching result.

This step is similar to step 130 and will not be described in detail here.

In the embodiment of the present invention, the terminal sends a short message to the target server, and then the target server performs analysis and notification. It solves the problem of information and data security after the user's mobile phone is lost, and the problem of difficulty in finding a stolen mobile phone. It also solves the problem of forgetting the answer to the password question, forgetting the account number and password of the secure mailbox, and the problem of cumbersome password reset operations.

Embodiment Four

Referring to FIG. 4 , it shows a schematic flowchart of Embodiment 4 of a terminal security protection method according to the present invention, which may specifically include:

Step 410, adding at least one first contact to the secure contact database for the target contact; wherein, the target contact corresponds to the target terminal;

Step 420, notify the target contact to identify the first terminal corresponding to at least one first contact in the corresponding secure contact database, and send the information data including the first predetermined character string format and the target contact to the target server.

In the embodiment of the present invention, for example, if the target terminal needs to reset the password of one of the encrypted areas, it can send a short message to the first terminal corresponding to the first contact in each secure contact database through the local terminal, informing it to send Information data including the first predetermined character string format and the target contact is sent to the target server.

If the user's mobile phone is stolen, the first terminal corresponding to at least one first contact in the safe contact database can also be notified to the target server in other ways, such as using other terminals to send text messages to at least one first contact in the safe contact database. The first terminal corresponding to the contact.

Optionally, the notifying the target contact identifies the first terminal corresponding to at least one first contact in the corresponding security contact database, and sending the information data including the first predetermined character string format and the target contact to the target server includes :

Step S421, generating a verification character string;

In this embodiment of the present invention, the first terminal may be required to send the information including the first specified format string of the verification string. Such as 123.

Of course, this step can be eliminated in the embodiment of the present invention, and a constant verification character string is used, such as an anti-theft password set by the user.

Step S422, select at least one first contact from the secure contact library corresponding to the target contact, and notify the first terminal corresponding to each first contact to send information including the first predetermined character string format and the target contact data to the target server, the information data also includes the verification string.

For example, if the user needs to lock the screen of the mobile phone, the first contact is notified to send suoding#123 to the target server.

Step 430: Analyze the target contact pointed to by the information data received by the target server, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and determine whether the information data Whether the content of the data matches the predetermined content;

In the embodiment of the present invention, the target contact pointed to by it can be analyzed first, and then it is judged whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and then the characters in the information The string is matched with the first predetermined string format recorded in the target terminal.

Corresponding to step S422, optionally, the judging whether the content of the information data matches the predetermined content includes:

Step S431, judging whether the character string in the information data includes the verification character string;

It is judged whether the first predetermined format string includes 123.

Step S432, if the character string in the information data includes the verification character string, go to step 440.

Optionally, before informing the target terminal to start a corresponding password reset operation or start a corresponding security protection operation, it may further include:

Step S433, judging whether the time period between the time when the target server sends the notification and the current time of the target server system exceeds the time threshold;

if the time period has not been exceeded, counting the corresponding first contact;

If the time period exceeds, the corresponding first contact is not counted.

For example, if the notification is sent at 11:00 of a certain day but received at 12:00 of the next day, and the time threshold is within 24 hours, then the corresponding first contact will not be counted; if If the notification is sent at 11:00 of a certain day, but the notification is received at 9:00 of the next day, and the time threshold is within 24 hours, then the corresponding first contact is counted, that is, the count is +1.

In this way, the probability of misoperation of the target terminal can be reduced.

Optionally, after the character string in the information data matches the first predetermined character string format recorded in the target server, it further includes:

Step S435 , judging whether the number of first contacts that have been matched with the information data and belonging to the secure contact database reaches the quantity threshold, and if so, proceed to step 440 .

This step can set the number threshold of the first contact, such as 3, when it is judged that the number of the first contact corresponding to the matched information data reaches the threshold, start the password reset operation on the target terminal or start The security protection operation of the target terminal can further reduce the misoperation of the target terminal.

Step 440: If the first contact corresponding to the first terminal belongs to the secure contact database of the target contact, and the content of the information data matches the predetermined content, notify the target terminal to start the corresponding password reset according to the matching result. Configure the operation or start the corresponding security protection operation.

As mentioned above, in the embodiment of the present invention, there are multiple processing methods for the target terminal, and various methods or combinations of several methods can correspond to a type of the first predetermined character string format. For example, "shanchu#verification string" corresponds to deleting the personalized information data in the specified storage area of the target terminal; "suoding#verification string" corresponds to locking the screen of the target terminal; "paishe#verification string" corresponds to Start the camera of the target terminal to take pictures and/or record videos; corresponding to "baojing#verification string", start the sound system of the target terminal to send an alarm, etc.

That is, in the embodiment of the present invention, the target server notifies the target terminal to start a corresponding password reset operation or start a corresponding security protection operation for the target terminal according to the type of the first predetermined string format; wherein, different first predetermined The string format corresponds to the corresponding password reset operation or security protection operation.

Wherein, the notifying the target terminal to start the security protection operation for the target terminal includes:

Notify the target terminal to delete the personalized information data in the specified storage area;

And/or, notify the target terminal to upload the personalized information data in the specified area to the specified server, and delete the personalized information data in the target terminal;

And/or, notify the target terminal to send the location information data to the designated second terminal;

And/or, notify the target terminal to lock the screen;

And/or, notify the target terminal to start the camera to take pictures and/or video;

And/or, notify the target terminal to activate the sound system for alarming.

In the embodiment of the present invention, a corresponding module is installed on the target terminal, which can obtain the execution authority of the target terminal system, and can execute the corresponding action after receiving the aforementioned instruction.

Embodiment five

Referring to FIG. 5 , it shows a schematic flowchart of Embodiment 6 of a terminal security protection method according to the present invention, which may specifically include:

Step 500, adding at least one first contact to the secure contact database for the target contact; wherein, the target contact corresponds to the target terminal;

This step is similar to step 110 and will not be described in detail here.

Step 510, randomly selecting the first predetermined string format from the string format library;

In the embodiment of the present invention, a string format library can be preset, which can include a variety of string formats, such as: start with *reset*", start with #reset#, start with &&reset¥¥, etc., then After the user activates the process of the present invention, the target server randomly selects the first predetermined string format from the string format library, for example, the string format beginning with #reset# is selected.

Step 520, generating a verification character string;

In the embodiment of the present invention, in order to improve security and reduce the interference of daily information data, a verification character string can also be generated, for example, the character string 437131 is randomly generated.

Step 530, notify the first terminal corresponding to at least one secure first contact in the secure contact library corresponding to the target contact to send the information data including the first predetermined character string format and the target contact to the target server, the information data Also includes the verification string.

In the embodiment of the present invention, the target server will store a first predetermined character string format, and the first predetermined character string format can basically distinguish the user's information data from common information data. Wherein, the terminal includes smart terminals such as mobile phones.

In the embodiment of the present invention, the user of the target terminal may log in to the website of the target server to perform the above notification.

In the preceding steps, the first predetermined string format is selected, such as starting with #reset#, and a random verification string is obtained, such as 437131, then in this step, at least one safe first contact is selected from the safe contact library, and Informing the first terminal corresponding to the security first contact of the information data in the specified string format to the target server, where the information data further includes the verification string. For example, the mobile phone that notifies the first contact of privacy sends a text message starting with #reset#, and puts the verification string 437131 in a certain position after #reset# in the text message, such as the text message of #reset#437131, and its target contact is 13100001121.

Step 540, for each piece of information data received by the target server, analyze the target contact pointed to by the piece of information data, and search the corresponding secure contact database according to the target contact;

Then, in the embodiment of the present invention, each piece of information data sent by each first terminal to the target server is analyzed. When the target server receives the information data, it first analyzes the target contact pointed to by the piece of information data, and searches the corresponding secure contact database according to the target contact.

Step 550, judging whether the first contact corresponding to the terminal sending the information data belongs to the secure contact database;

It is monitored whether the first contact who sends the information data belongs to the secure contact database corresponding to the target contact. If it belongs, then enter step 660, if not, do not perform subsequent processing on the short message.

Step 560, if the first contact belongs to the secure contact database, then parse the character string of the information data;

For a piece of information data, after obtaining the first contact who sent the piece of information data, if it is determined that it belongs to the secure contact database, then the character string of the information data can be parsed. For example, for a mobile phone, for a received text message, judge Whether the mobile phone number sending the short message belongs to the privacy first contact, if so, then extract the character string for obtaining the short message.

Step 570, matching the parsed character string with the first predetermined character string format recorded in the target server; if the parsed character string is in accordance with the first predetermined character string format recorded in the target server If it matches, go to step 571;

As in the aforementioned example, when #reset# is selected from the string format library, the parsed string will be matched with #reset#. If it matches, then enter step 571. If it does not match, then end this item. Information Data Processing.

Step 571, judging whether the analyzed character string includes the verification character string; if the parsed character string includes the verification character string, proceed to step 572;

In the character string obtained by parsing the information data, the verification character string is matched with the character string obtained by the parsing. If they match, it can be judged that the character string obtained by parsing includes the verification character string, then Go to step 572. If no match is found, it may be determined that the verified character string is not included in the character string obtained through parsing, and the processing of the piece of information data ends.

Step 572, judging whether the time period between the time when the target server notifies the first terminal to send the first predetermined character string format information data and the current time of the target server exceeds the time threshold; if the time period does not exceed, proceed to step 580 ;

In the embodiment of the present invention, the sending time of "notifying the first terminal corresponding to each security first contact to specify the information data in the string format to the target server" can be recorded, and in judging the string obtained by the analysis , whether to include the verification character string, if the verification includes the verification character string, calculate the time period between the sending time and the current system time, and then judge whether the time period exceeds the time threshold (such as 1 day), if If it is not exceeded, go to step 580; if it is exceeded, the count of the piece of information data will be invalidated, and the corresponding first contact will not be counted.

Of course, if there is no record in an embodiment of the sending time of "notifying the first terminal corresponding to each security first contact to specify the information data in the format of a character string to the target server", step 572 and step 580 can be removed. .

Step 580, judging whether the number of valid first contacts corresponding to the matched information data reaches the quantity threshold, and if so, proceed to step 590;

Through the preceding steps, for the information data belonging to the security first contact, the string format of the information data matches the predetermined string format, and also includes the random string, if the information data does not exceed the time period threshold, then it is Valid and matched information data; if the information data exceeds the time period threshold, it is invalid and matched information data. Then this step counts whether the number of first contacts corresponding to the valid and matched information data exceeds the quantity threshold. For example, if the number threshold is set to 3, then if there are 3 valid and matched information data For the corresponding first contact, go to step 590.

This step is set in order to prevent the terminal of the same security first contact from repeatedly generating information data that meets the requirements, so as to further improve security.

In addition, in the above judgment process, if it belongs to the information data sent by the first terminal corresponding to the first security contact, but the subsequent judgment conditions do not meet the requirements, the user can be prompted to send the data to the user corresponding to the first contact in the safe contact database. Informational data but does not meet formatting requirements.

For example, if the conditions are not met, some friendly instructions (optional) can be displayed to the user. For example, if the user has chosen to reset the password, but the format of the SMS sent by the privacy first contact does not conform to the format of the reset password SMS, then Give a prompt: "After you choose to retrieve your password, your privacy first contact sent you a text message, but the text message does not meet the conditions for resetting your password."

Step 590, start a password reset operation on the target terminal.

In the embodiment of the present invention, for the preset encrypted storage area, starting the password reset process includes:

In step S592, a new password is automatically generated to replace the original password, and the user is prompted for the new password.

Alternatively, in step S593, the user is prompted to input a new password; the new password input by the user is received to replace the original password.

That is, the way to reset the password can be that the system automatically generates a new password and displays it to the user, allowing the user to log in with the new password; or the user can directly enter a new password and save the new password as the login password.

In the embodiment of the present invention, when the user sets a dedicated encrypted area in the terminal to store the user's communication records corresponding to the first contact in the secure contact database, for example, the user sets one or some mobile phone numbers to For the privacy first contact, and then correspondingly set the password of the encrypted storage space, if the user's mobile phone and the privacy first contact's SMS, phone and other communication records can be stored in the preset encrypted storage space. Then when the user forgets the password, he only needs to activate the system of the present invention, and then notify the terminal (such as a mobile phone) corresponding to at least one safe first contact (such as the privacy first contact) to send a message including the first predetermined character string format. information data to the target server. The embodiment of the present invention provides a new password retrieval method, using the user's privacy first contact (safety first contact) as a "certifier" to send verification information data to the terminal used by the user, then through the above technical solution , the user does not need to memorize any verification that is the same as retrieving the password, and does not need to memorize the prompt information data such as the account and password of the verification mailbox that are suitable for retrieving the password, but only needs to enable the present invention to notify the terminal where the first privacy contact is located to send the second The information data in a predetermined string format is sent to the user's terminal, and the password can be reset when the conditions are met. For the user, the operation process of password retrieval is simple and convenient, and there is no need to memorize any prompt information suitable for password retrieval Data can also reduce the probability of misoperation of the target terminal.

Embodiment six

Referring to FIG. 6 , it shows a schematic structural diagram of Embodiment 6 of an apparatus for terminal security protection according to the present invention, which may specifically include:

The secure contact library preset module 610 is adapted to add at least one first contact to the secure contact library for the target contact; wherein the target contact corresponds to the target terminal;

The information data processing module 620 is adapted to analyze the target contact pointed to by the information data received by the target server, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, And judging whether the content of the information data matches the predetermined content;

The first notification module 630 is adapted to notify the target terminal according to the matching result if the first contact corresponding to the first terminal belongs to the safe contact database of the target contact and the content of the information data matches predetermined content Start the corresponding password reset operation or start the corresponding security protection operation.

Optionally, the target terminal includes: a webpage preset module, adapted to log in the webpage of the target server through the target contact, and send the first contact to be added to the secure contact database to the target server;

Further, in the target server, the secure contact library preset module includes:

A first adding module, adapted for the target server to add the first contact to a secure contact database corresponding to the target contact;

Alternatively, in the target terminal include:

Further, in the target server, the secure contact library preset module includes:

The second adding module is adapted to determine whether the information data is the specified security verification information data after the label server receives the information data sent by any first terminal, and if so, send the first terminal The corresponding first contact is added to the corresponding secure contact database.

Optionally, the web page preset module of the website includes:

The first calling module is adapted to call its address book interface through the target terminal, select the first contact from the address book and notify the corresponding first terminal to send specified security verification information data to the target terminal or target server;

The second notification module includes:

The second calling module is adapted to call its address book interface through the target terminal, select the first contact from the address book, and notify the first terminal corresponding to the first contact to send specified security verification information data to the target server.

Optionally, the parsing module is adapted to analyze the target contact pointed to by the information data received by the target server, and search for a corresponding security contact database according to the target contact;

A safe contact judging module, adapted to judge whether the first contact corresponding to the first terminal sending the information data belongs to the safe contact database;

The content matching module is adapted to match the content in the information data with the predetermined content recorded in the target server if the first contact belongs to a secure contact database.

Optionally, the information data deletion module is adapted to notify the target terminal to delete the personalized information data in the specified storage area;

And/or, the information data upload and delete module is adapted to notify the target terminal to upload the personalized information data in the specified area to the specified server, and delete the personalized information data in the target terminal;

And/or, the positioning module is adapted to notify the target terminal to send the position information data to the designated second terminal;

And/or, a locking module, adapted to notify the target terminal to lock the screen;

And/or, the shooting module is adapted to notify the target terminal to start the camera to take pictures and/or video;

And/or, the alarm module is adapted to notify the target terminal to activate the sound system for alarming.

Optionally, before the first notification module, it also includes:

The threshold judging module is suitable for judging whether the number of first contacts belonging to the secure contact database of the matched information data reaches the quantity threshold, and if so, notifies the target terminal to start corresponding password reset according to the matching result Operate or start the corresponding security protection operation.

Embodiment seven

Referring to FIG. 7 , it shows a schematic structural diagram of Embodiment 7 of an apparatus for terminal security protection according to the present invention, which may specifically include:

Target server 710, first terminal 720, target terminal 730;

The first terminal 720 includes:

The login module 721 is suitable for the first terminal to log in to the website where the target server is located;

The transmission module 722 is suitable for the first terminal to transmit the information data including the target contact person and the security instruction to the target server through the webpage of the website;

The target server 710 includes:

The first secure contact library preset module 711 is adapted to add at least one first contact to the secure contact library for the target contact; wherein the target contact corresponds to the target terminal;

The first parsing module 712 is adapted to analyze the target contact pointed to by the information data received by the target server, and search for a corresponding secure contact database according to the target contact;

The first secure contact judging module 713 is adapted to judge whether the first contact corresponding to the first terminal belongs to the secure contact database according to the login information of the first terminal;

The first content matching module 714 is adapted to match the content in the information data with the predetermined content recorded in the target server if the first contact belongs to a secure contact database.

The first notification module 715 is adapted to notify the target terminal to start a corresponding password reset operation or start a corresponding security protection operation according to the matching result.

Embodiment eight

Referring to FIG. 8 , it shows a schematic structural diagram of Embodiment 8 of an apparatus for terminal security protection according to the present invention, which may specifically include:

Target server 810, target terminal 830, first terminal 820;

The first terminal 820 includes:

The first sending module 821 is suitable for the first terminal to send the short message including the first predetermined format to the target server;

The target server 810 includes:

The second secure contact library preset module 811 is adapted to add at least one first contact to the secure contact library for the target contact; wherein the target contact corresponds to the target terminal;

The second parsing module 712 is adapted to analyze the target contact pointed to by the short message for the short message received by the target server, and search for a corresponding secure contact database according to the target contact;

The second safe contact judging module 713 is adapted to extract the first contact corresponding to the first device sending the short message, and judge whether the first contact belongs to the safe contact database;

The second content matching module 714 is adapted to match the character string of the short message with the first predetermined format character string recorded in the target server if the first contact belongs to the secure contact database;

The second notification module 715 is adapted to notify the target terminal to start a corresponding password reset operation or start a corresponding security protection operation according to the matching result.

Embodiment nine

Referring to FIG. 9 , it shows a schematic structural diagram of Embodiment 7 of an apparatus for terminal security protection according to the present invention, which may specifically include:

The secure contact library preset module 910 is adapted to add at least one first contact to the secure contact library for the target contact; wherein the target contact corresponds to the target terminal;

The third notification module 920 is adapted to notify the first terminal corresponding to at least one first contact in the security contact database corresponding to the target contact identification, and send the information data including the first predetermined character string format and the target contact to the target server.

The information data processing module 930 is adapted to analyze the target contact pointed to by the information data received by the target server, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, And judging whether the content of the information data matches the predetermined content;

The first notification module 940 is adapted to notify the target terminal according to the matching result if the first contact corresponding to the first terminal belongs to the safe contact database of the target contact and the content of the information data matches the predetermined content Start the corresponding password reset operation or start the corresponding security protection operation.

Optionally, the third notification module includes:

A verification string generation module, adapted to generate a verification string;

The fourth notification module is adapted to select at least one secure first contact from the secure contact library corresponding to the target contact, and notify the first terminal corresponding to each first contact to send a message including the first predetermined character string format. The information data and the target contact are sent to the target terminal, and the information data also includes the verification character string.

Optionally, the fourth information data processing module includes:

The verification character string judging module is adapted to judge whether the verification character string is included in the character string in the information data; if the verification character string is included in the character string in the information data, notify the target according to the matching result The terminal starts a corresponding password reset operation or starts a corresponding security protection operation.

Optionally, the fourth information data processing module includes:

Judging whether the time period between the time when the target server sends the notification and the current time of the target server system exceeds the time threshold;

if the time period has not been exceeded, counting the corresponding first contact;

If the time period exceeds, the corresponding first contact is not counted.

Optionally, before the first notification module, it also includes:

The threshold judging module is suitable for judging whether the number of first contacts belonging to the secure contact database of the matched information data reaches the quantity threshold, and if so, notifies the target terminal to start corresponding password reset according to the matching result Operate or start the corresponding security protection operation.

Embodiment ten

Referring to Figure 10, it shows a schematic structural diagram of Embodiment 12 of a device for terminal security protection according to the present invention, which may specifically include:

The fourth security database preset module S1210 is adapted to notify the first terminal corresponding to at least one security first contact, send specified security verification information data to the target server, and preset the security contact database; the security contact database Include at least one Safety First Contact;

The fourth notification module S1220, the fourth notification module includes:

The fourth string format selection module 1221 is adapted to randomly select the first predetermined string format from the string format library;

The fourth verification character string generating module 1222 is adapted to generate a verification character string;

The fifth notification module 1223 is adapted to select at least one secure first contact from the secure contact library corresponding to the target contact, and notify the first terminal corresponding to each first contact to send a message containing the first predetermined character string format The information data and the target contact person are sent to the target terminal, and the information data also includes the verification character string;

The fourth information data judging module S1230, the fourth information data judging module includes:

The fourth query module 1231 is adapted for each piece of information data received by the target server, analyzing the target contact pointed to by the piece of information data, and searching the corresponding secure contact database according to the target contact;

The fourth first contact judging module 1232 is adapted to judge whether the first contact corresponding to the terminal sending the information data belongs to the secure contact database for each piece of information data received by the target server;

The fourth format matching module 1233 is adapted to match the character string in the information data with the first predetermined character string format recorded in the target terminal when it is judged that the first contact belongs to the secure contact database;

The fourth character parsing module 1234 is suitable for parsing character strings in the information data;

The fourth verification character string judging module 1235 is adapted to judge whether the character string in the information data matches the first predetermined character string format recorded in the target server, Whether to include the verification character string; if the character string in the information data includes the verification character string, enter the information data processing module;

The fourth time judging module 1236 is adapted to judge whether the time period between the time when the target server generates the verification character string and the current time of the target server exceeds the time threshold; if the time period does not exceed, notify the target terminal to start Resetting the corresponding password or starting the corresponding security protection operation;

The fourth threshold judging module 1237 is adapted to judge the number of first contacts corresponding to the matched information data after the character string in the information data matches the first predetermined character string format recorded in the target server Whether to reach the quantity threshold, if so, enter the fourth information data processing module 1240;

The fourth information data processing module 1240 is adapted to determine that the information data is sent by the first terminal device corresponding to the secure first contact in the secure contact database and includes information data in a first predetermined character string format, Then notify the target terminal to start a corresponding password reset operation or start a corresponding security protection operation.

The algorithms and displays presented herein are not inherently related to any particular computer, virtual system, or other device. Various generic systems can also be used with the teachings based on this. The structure required to construct such a system is apparent from the above description. Furthermore, the present invention is not specific to any particular programming language. It should be understood that various programming languages can be used to implement the contents of the present invention described herein, and the above description of specific languages is for disclosing the best mode of the present invention.

In the description provided herein, numerous specific details are set forth. However, it is understood that embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure the understanding of this description.

Similarly, it should be appreciated that in the foregoing description of exemplary embodiments of the invention, in order to streamline this disclosure and to facilitate an understanding of one or more of the various inventive aspects, various features of the invention are sometimes grouped together in a single embodiment, figure, or its description. This method of disclosure, however, is not to be interpreted as reflecting an intention that the claimed invention requires more features than are expressly recited in each claim. Rather, as the following claims reflect, inventive aspects lie in less than all features of a single foregoing disclosed embodiment. Thus, the claims following the Detailed Description are hereby expressly incorporated into this Detailed Description, with each claim standing on its own as a separate embodiment of this invention.

Those skilled in the art can understand that the modules in the device in the embodiment can be adaptively changed and arranged in one or more devices different from the embodiment. Modules or units or components in the embodiments may be combined into one module or unit or component, and furthermore may be divided into a plurality of sub-modules or sub-units or sub-assemblies. All features disclosed in this specification (including accompanying claims, abstract and drawings) and any method or method so disclosed may be used in any combination, except that at least some of such features and/or processes or units are mutually exclusive. All processes or units of equipment are combined. Each feature disclosed in this specification (including accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.

Furthermore, those skilled in the art will understand that although some embodiments described herein include some features included in other embodiments but not others, combinations of features from different embodiments are meant to be within the scope of the invention. and form different embodiments. For example, in the following claims, any of the claimed embodiments may be used in any combination.

The various component embodiments of the present invention may be implemented in hardware, or in software modules running on one or more processors, or in a combination thereof. Those skilled in the art should understand that a microprocessor or a digital signal processor (DSP) may be used in practice to implement some or all functions of some or all components in a terminal security protection device according to an embodiment of the present invention. The present invention can also be implemented as an apparatus or an apparatus program (for example, a computer program and a computer program product) adapted to perform a part or all of the methods described herein. Such a program for realizing the present invention may be stored on a computer-readable medium, or may be in the form of one or more signals. Such a signal may be downloaded from an Internet site, or provided on a carrier signal, or provided in any other form.

It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention can be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In a unit claim enumerating several means, several of these means can be embodied by one and the same item of hardware. The use of the words first, second, and third, etc. does not indicate any order. These words can be interpreted as names.

The present invention also discloses A1, a terminal security protection method, including:

adding at least one first contact to the secure contact database for the target contact; wherein, the target contact corresponds to the target terminal;

For the information data received by the target server, analyze the target contact it points to, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and determine the content of the information data Whether it matches the predetermined content;

If the first contact corresponding to the first terminal belongs to the secure contact database of the target contact, and the content of the information data matches the predetermined content, then notify the target terminal to start a corresponding password reset operation according to the matching result or Start the corresponding security protection operation.

A2. The method as described in A1, adding at least one first contact to the secure contact database for the target contact includes:

Log in the web page of the target server through the target contact, and send the first contact to be added to the safe contact database to the target server; the target server adds the first contact to the safe contact database corresponding to the target contact;

Or, notify the first terminal corresponding to at least one security contact identifier, and send the specified security verification information data to the target server; when the target server receives the information data sent by any first terminal, it determines whether the information data is If the designated security verification information data is yes, adding the first contact corresponding to the first terminal into the corresponding security contact database.

A3. The method described in A1,

Said logging into the website of the target server through the target contact, and sending the first contact to be added to the secure contact database to the target server includes:

Call its address book interface through the target terminal, select the first contact to be added to the secure contact database from the address book, and send it to the target server;

The notifying the first terminal corresponding to at least one security contact identifier, and sending the specified security verification information data to the target server includes:

The target terminal invokes its address book interface, selects a first contact from the address book, and notifies the first terminal corresponding to the first contact to send specified security verification information data to the target server.

A4. The method as described in A1, wherein the information data received by the target server is analyzed for the target contact it points to, and it is judged whether the first contact to which the information data belongs belongs to the security contact of the target contact People database, and judging whether the content of the information data matches the predetermined content includes:

For the information data received by the target server, analyze the target contact pointed to by the information data, and search for a corresponding security contact database according to the target contact;

judging whether the first contact corresponding to the first terminal sending the information data belongs to the secure contact database;

If the first contact belongs to a secure contact database, matching the content in the information data with the predetermined content recorded in the target server.

A5. The method described in A1, the notifying the target terminal to start the security protection operation on the target terminal includes:

Notify the target terminal to delete the personalized information data in the specified storage area;

And/or, notify the target terminal to upload the personalized information data in the specified area to the specified server, and delete the personalized information data in the target terminal;

And/or, notify the target terminal to send the location information data to the designated second terminal;

And/or, notify the target terminal to lock the screen;

And/or, notify the target terminal to start the camera to take pictures and/or video;

And/or, notify the target terminal to activate the sound system for alarming.

A6. In the method described in A1, for the information data received by the target server, analyze the target contact it points to, and determine whether the first contact to which the information data belongs belongs to the security contact of the target contact Library, and before judging whether the content of the information data matches the predetermined content, it also includes:

Informing the target contact to identify the first terminal corresponding to at least one first contact in the corresponding secure contact database, and sending the information data including the first predetermined character string format and the target contact to the target server.

A7. The method described in A6, wherein the notification target contact identifies the first terminal corresponding to at least one first contact in the corresponding security contact database, and sends information including the first predetermined character string format and the target contact Data to target server includes:

generate the authentication string;

Select at least one first contact from the secure contact library corresponding to the target contact, and notify the first terminal corresponding to each first contact to send information data including the first predetermined character string format and the target contact to the target server, the information data further includes the verification string.

A8. The method as described in A7, the judging whether the content of the information data matches the predetermined content includes:

judging whether the verification character string is included in the character string in the information data;

If the character string in the information data includes the verification character string, notify the target terminal to start a corresponding password reset operation or start a corresponding security protection operation.

A9. The method as described in A8, before informing the target terminal to start the corresponding password reset operation or start the corresponding security protection operation, further includes:

Judging whether the time period between the time when the target server sends the notification and the current time of the target server system exceeds the time threshold;

if the time period has not been exceeded, counting the corresponding first contact;

If the time period exceeds, the corresponding first contact is not counted.

A10. The method described in one of A1 or A9, if the character string in the information data matches the first predetermined character string format recorded in the target server, it further includes:

Judging whether the number of first contacts belonging to the security contact database that have been matched with the information data reaches the threshold value, if so, notify the target terminal to start the corresponding password reset operation or start the corresponding security contact according to the matching result. protection operation.

The present invention also discloses B11, a terminal security protection system, including:

The secure contact library preset module is adapted to add at least one first contact to the secure contact library for the target contact; wherein, the target contact corresponds to the target terminal;

The information data processing module is adapted to analyze the target contact pointed to by the information data received by the target server, and determine whether the first contact to which the information data belongs belongs to the secure contact database of the target contact, and judging whether the content of the information data matches the predetermined content;

The first notification module is adapted to notify the target terminal to activate A corresponding password reset operation or a corresponding security protection operation is started.

B12. A system as described in B11,

The target terminal includes: a webpage preset module, adapted to log in the webpage of the target server through the target contact, and send the first contact to be added to the secure contact database to the target server;

Further, in the target server, the secure contact library preset module includes:

A first adding module, adapted for the target server to add the first contact to a secure contact database corresponding to the target contact;

Alternatively, in the target terminal include:

Further, in the target server, the secure contact library preset module includes:

The second adding module is adapted to determine whether the information data is the specified security verification information data after the label server receives the information data sent by any first terminal, and if so, send the first terminal The corresponding first contact is added to the corresponding secure contact database.

B13. A system as described in B11,

The web page preset modules of the website include:

The first calling module is adapted to call its address book interface through the target terminal, select the first contact from the address book and notify the corresponding first terminal to send specified security verification information data to the target terminal or target server;

The second notification module includes:

The second calling module is adapted to call its address book interface through the target terminal, select the first contact from the address book, and notify the first terminal corresponding to the first contact to send specified security verification information data to the target server.

B14, the system as described in B11, described information data processing module comprises:

The parsing module is adapted to analyze the target contact pointed to by the information data received by the target server, and search for a corresponding security contact database according to the target contact;

A safe contact judging module, adapted to judge whether the first contact corresponding to the first terminal sending the information data belongs to the safe contact database;

The content matching module is adapted to match the content in the information data with the predetermined content recorded in the target server if the first contact belongs to a secure contact database.

B15, the system as described in B11, the first notification module includes:

The information data deletion module is suitable for notifying the target terminal to delete the personalized information data in the specified storage area;

And/or, the information data upload and delete module is adapted to notify the target terminal to upload the personalized information data in the specified area to the specified server, and delete the personalized information data in the target terminal;

And/or, the positioning module is adapted to notify the target terminal to send the position information data to the designated second terminal;

And/or, a locking module, adapted to notify the target terminal to lock the screen;

And/or, the shooting module is adapted to notify the target terminal to start the camera to take pictures and/or video;

And/or, the alarm module is adapted to notify the target terminal to activate the sound system for alarming.

B16, the system as described in B11, described also includes before described information data processing module:

The third notification module is adapted to notify the first terminal corresponding to at least one first contact in the security contact library corresponding to the target contact identification, and send the information data including the first predetermined character string format and the target contact to the target server .

B17, the system as described in B16, the third notification module includes:

A verification string generation module, adapted to generate a verification string;

The fourth notification module is adapted to select at least one secure first contact from the secure contact library corresponding to the target contact, and notify the first terminal corresponding to each first contact to send a message including the first predetermined character string format. The information data and the target contact are sent to the target terminal, and the information data also includes the verification character string.

B18, the system as described in B17, described the 4th information data processing module comprises:

The verification character string judging module is adapted to judge whether the verification character string is included in the character string in the information data; if the verification character string is included in the character string in the information data, notify the target according to the matching result The terminal starts a corresponding password reset operation or starts a corresponding security protection operation.

B19, the system as described in B18, the fourth information data processing module includes:

Judging whether the time period between the time when the target server sends the notification and the current time of the target server system exceeds the time threshold;

if the time period has not been exceeded, counting the corresponding first contact;

If the time period exceeds, the corresponding first contact is not counted.

B20, the system as described in one of B11 to B19, also includes before the first notification module:

The threshold judging module is suitable for judging whether the number of first contacts belonging to the secure contact database of the matched information data reaches the quantity threshold, and if so, notifies the target terminal to start corresponding password reset according to the matching result Operate or start the corresponding security protection operation.

Claims (19)

1. A terminal security protection method comprises the following steps:

adding at least one first contact into a safe contact library aiming at a target contact; the target contact corresponds to a target terminal;

analyzing a target contact person pointed by information data received by a target server, judging whether a first contact person to which the information data belongs to a safety contact person library of the target contact person, judging whether the content of the information data is matched with preset content, logging in a website of the target server by the first contact person, and then sending the information data to the target server in a webpage data mode;

and if the first contact corresponding to the first terminal belongs to the safety contact library of the target contact and the content of the information data is matched with the preset content, informing the target terminal to start the corresponding password resetting operation or starting the corresponding safety protection operation according to the matching result.

2. The method of claim 1, the joining at least one first contact to a secure contact library for a target contact comprising:

logging in a website of a target server through a target contact person, and sending a first contact person to be added into a safety contact person library to the target server; the target server adds the first contact person into a safe contact person library corresponding to the target contact person;

or, notifying the first terminal corresponding to at least one safety contact person identifier, and sending appointed safety verification information data to the target server; and after the beacon server receives the information data sent by any first terminal, judging whether the information data is the designated safety verification information data, and if so, adding a first contact corresponding to the first terminal into a corresponding safety contact library.

3. The method of claim 2, wherein the first and second light sources are selected from the group consisting of a red light source, a green light source, and a blue light source,

the step of logging in a website of a target server through a target contact person and sending a first contact person to be added into a safe contact person library to the target server comprises the following steps:

calling an address book interface of the target terminal, selecting a first contact person to be added into the safe contact person library from the address book, and sending the first contact person to the target server;

the notifying the first terminal corresponding to the at least one security contact identification, and the sending of the designated security verification information data to the target server includes:

and calling an address list interface of the target terminal through the target terminal, selecting a first contact from the address list, and informing the first terminal corresponding to the first contact to send appointed safety verification information data to the target server.

4. The method of claim 1, wherein the analyzing the target contact pointed to by the information data received by the target server, and determining whether the first contact to which the information data belongs to the secure contact library of the target contact, and the determining whether the content of the information data matches the predetermined content comprises:

aiming at information data received by a target server, analyzing a target contact person pointed by the information data, and searching a corresponding safety contact person library according to the target contact person;

judging whether a first contact corresponding to a first terminal which sends the information data belongs to the safety contact library or not;

and if the first contact belongs to a safety contact library, matching the content in the information data with the preset content recorded in the target server.

5. The method of claim 1, the notifying the target terminal to initiate a security protection operation for the target terminal comprising:

informing the target terminal to delete the personalized information data in the designated storage area;

and/or informing the target terminal to upload the personalized information data in the designated area to a designated server and deleting the personalized information data in the target terminal;

and/or informing the target terminal to send the position information data to the appointed second terminal;

and/or, informing the target terminal to lock the screen;

and/or, informing the target terminal to start a camera for photographing and/or recording;

and/or informing the target terminal to start a sound system to alarm.

6. The method as claimed in claim 1, before parsing the target contact pointed to by the information data received by the target server, and determining whether the first contact to which the information data belongs to the secure contact library of the target contact, and determining whether the content of the information data matches the predetermined content, further comprising:

and informing a first terminal corresponding to at least one first contact in a safety contact library corresponding to the target contact identification, and sending information data including a first preset character string format and the target contact to a target server.

7. The method of claim 6, wherein notifying the first terminal corresponding to the at least one first contact in the secure contact library corresponding to the target contact identification, and wherein sending the information data including the first predetermined string format and the target contact to the target server comprises:

generating a verification string;

selecting at least one first contact from a safety contact library corresponding to a target contact, and informing a first terminal corresponding to each first contact to send information data including a first preset character string format and the target contact to a target server, wherein the information data further includes the verification character string.

8. The method of claim 7, the determining whether the content of the information data matches a predetermined content comprising:

judging whether the character string in the information data comprises the verification character string;

and if the character string in the information data comprises the verification character string, informing the target terminal to start corresponding password resetting operation or starting corresponding safety protection operation.

9. The method of claim 8, before notifying the target terminal to initiate a corresponding password reset operation or to initiate a corresponding security protection operation, further comprising:

judging whether the time period from the moment when the target server sends the notification to the current moment of the target server system exceeds a time threshold or not;

if the time period is not exceeded, counting the corresponding first contact;

if the time period is exceeded, the corresponding first contact is not counted.

10. The method according to one of claims 9, further comprising, after matching a string in the information data with the first predetermined string format recorded in the target server:

and judging whether the number of the first contact persons belonging to the safety contact person library and matched information data reaches a number threshold value, and if so, informing the target terminal to start corresponding password resetting operation or corresponding safety protection operation according to the matching result.

11. A terminal security protection system comprising:

the safety contact person library presetting module is suitable for adding at least one first contact person into a safety contact person library aiming at a target contact person; the target contact corresponds to a target terminal;

the information data processing module is suitable for analyzing a target contact person pointed by the information data received by the target server, judging whether a first contact person to which the information data belongs to a safety contact person library of the target contact person, judging whether the content of the information data is matched with preset content, logging in a website of the target server through the first contact person, and then sending the information data to the target server in a webpage data mode;

and the first notification module is suitable for notifying the target terminal to start corresponding password resetting operation or corresponding safety protection operation according to a matching result if the first contact corresponding to the first terminal belongs to the safety contact library of the target contact and the content of the information data is matched with preset content.

12. The system of claim 11, wherein the first and second sensors are arranged in a single unit,

the target terminal comprises: the webpage presetting module is suitable for logging in a website of the target server through the target contact person and sending the first contact person to be added into the safe contact person library to the target server;

further, the preset module of the safe contact library in the target server comprises:

the first adding module is suitable for the target server to add the first contact person into a safety contact person library corresponding to the target contact person;

or,

further, the preset module of the safe contact library in the target server comprises:

and the second adding module is suitable for judging whether the information data is designated safety verification information data or not after the beacon server receives the information data sent by any first terminal, and adding the first contact corresponding to the first terminal into the corresponding safety contact library if the information data is designated safety verification information data.

13. The system of claim 11, the information data processing module comprising:

the analysis module is suitable for analyzing the target contact person pointed by the information data aiming at the information data received by the target server and searching a corresponding safety contact person library according to the target contact person;

the safety contact judging module is suitable for judging whether a first contact corresponding to the first terminal for sending the information data belongs to the safety contact library or not;

and the content matching module is suitable for matching the content in the information data with the preset content recorded in the target server if the first contact belongs to the safe contact library.

14. The system of claim 11, the first notification module comprising:

the information data deleting module is suitable for informing the target terminal to delete the personalized information data in the designated storage area;

and/or the information data uploading and deleting module is suitable for informing the target terminal to upload the personalized information data in the designated area to the designated server and delete the personalized information data in the target terminal;

and/or, the positioning module is suitable for informing the target terminal to send the position information data to the appointed second terminal;

and/or, the locking module is suitable for informing the target terminal to lock the screen;

and/or the shooting module is suitable for informing the target terminal to start a camera to shoot and/or record;

and/or the alarm module is suitable for informing the target terminal to start a sound system to alarm.

15. The system of claim 11, further comprising:

and the third notification module is suitable for notifying the first terminal corresponding to at least one first contact in the safety contact library corresponding to the target contact identification before the information data processing module executes, and sending the information data comprising the first preset character string format and the target contact to the target server.

16. The system of claim 15, the third notification module comprising:

the verification character string generation module is suitable for generating a verification character string;

and the fourth notification module is suitable for selecting at least one safe first contact from a safe contact library corresponding to the target contact, notifying a first terminal corresponding to each first contact to send information data comprising a first preset character string format and the target contact to a target server, wherein the information data further comprises the verification character string.

17. The system of claim 16, the information data processing module comprising:

the verification character string judging module is suitable for judging whether the character string in the information data comprises the verification character string; and if the character string in the information data comprises the verification character string, informing the target terminal to start corresponding password resetting operation or corresponding safety protection operation according to the matching result.

18. The system of claim 17, the information data processing module comprising:

judging whether the time period from the moment when the target server sends the notification to the current moment of the target server system exceeds a time threshold or not;

if the time period is not exceeded, counting the corresponding first contact;

if the time period is exceeded, the corresponding first contact is not counted.

19. The system of one of the claims 11 to 18, further comprising:

and the threshold value judging module is suitable for judging whether the number of the matched information data and the first contact persons belonging to the safety contact person library reaches a number threshold value or not before the first notification module executes, and if so, notifying the target terminal to start corresponding password resetting operation or corresponding safety protection operation according to the matching result.