696results about How to "Improve information security" patented technology

The invention discloses a voice wake-up method and apparatus, a terminal, and a processing method thereof. The voice wake-up method comprises: a wake-up word voice signal sent out by a terminal user is collected and a wake-up word identification result and a vocal print feature of the wake-up word voice signal are obtained and stored; when a terminal is in a sleep state, a voice signal inputted externally is detected; a voice identification result and a vocal print feature of the voice signal are obtained; the voice identification result and the stored wake-up word identification result as well as a matching result of the vocal print feature and the stored vocal print feature are obtained; and according to the matching result, whether the terminal needs to be woken up is determined; and if so, the terminal is woken up. With the method, technical problems of low user wake-up rate, high wrong wake-up rate, and poor user experience according to the existing voice wake-up technology are solved.

An authentication method and an authentication system are provided. The authentication method includes the following steps. Providing a test image in a first state. Obtaining the test image in a second state in response to a rotating operation. Calculating a difference value between each of image hash values of the test image in the second state and the test image in a third state. Determining that an authentication is successful if the difference value is less than a threshold value, wherein the third state is a state in which the test image is up-right.

The invention discloses a server, a terminal and an authority management and permission method. Identification information of an application program to be inquired from the terminal is obtained; an optimal and reasonable permission policy corresponding to the application program to be inquired is inquired and obtained according to the identification information, and the permission policy is sent to the terminal. The tedious process of judging the application software program manually by a user is avoided, and a server sends the optimal permission policy to the terminal directly through inquiring. In addition, the terminal conducts permission limitation on the corresponding application program through the obtained reasonable permission policy, manual permission selection of a user is avoided, the terminal obtains the reasonable permission policy automatically to limit the application program, and user experience is further improved. Meanwhile, the reasonable permission policy is used, inaccurate permission judgment of the user is avoided, and information safety of the user is protected.

In the method a graphical password is produced for an electronic system, such as a database, a computer program or Internet pages, the password being composed of various identifier images that are clearly distinguishable from each other. The system can be located in a terminal device used by the user, such as a mobile phone or an object separate from the terminal device, to which the user can be connected via the terminal device. For producing the password, the electronic system includes an image archive, in which various partial images representing certain subareas of a whole identifier image have been saved in electronic form. The partial images are divided into subgroups so that the partial images of the same subgroup always represent the same subarea of the identifier image. The identifier images belonging to the graphical password are composed by selecting partial images from different subgroups and by combining the selected partial images into one complete identifier image.

The invention provides a determination method of a pseudo base station and a mobile terminal. The method comprises the steps of sending a base station parameter acquiring request to a base station of the local community through the mobile terminal; receiving the base station parameters from the base station through the mobile terminal; comparing the base station parameters with the preset base station parameters of an operator; if the base station parameters are the same as the base station parameters of the operator, acquiring electric signal strength of the base station; comparing the variable of the electric signal strength of the base station within the preset time quantum with the preset strength variation value; if the variable of the electric signal strength of the base station within the preset time quantum is less than the preset strength variation value, comparing the electric signal strength of the base station with the preset electric signal strength; if the electric signal strength of the base station is more than the preset electric signal strength, determining that the base station is the pseudo base station. With the adoption of the determination method of the pseudo base station and the mobile terminal, the pseudo base station can be quickly and conveniently recognized, and meanwhile, the signaling load of the base station can be reduced; the privacy can be prevented from disclosing; in addition, the pseudo base station can be timely positioned.

The invention aims to provide a method and equipment for defending against a distributed denial of service (DDoS) attack to a multi-service system. The method comprises the following steps of: detecting whether the DDoS attack exists in network access traffic corresponding to the multi-service system according to preset DDoS attack triggering conditions by using network security equipment; when the DDoS attack exists, determining a target service aimed by the DDoS attack according to the DDoS attack triggering conditions corresponding to the DDoS attack; and protecting the network access traffic, corresponding to the target service, in the network access traffic corresponding to the multi-service system according to the service related information of the target service. Compared with the prior art, the invention not only limits the undesirable impact of the DDoS attack on the whole multi-service system, but also effectively supports access requests for other services in the multi-service system by detecting the target service aimed by the DDoS attack and performing corresponding defense processing according to the service related information of the target service, thereby effectively improving the information security capability of the whole multi-service system in defending against the DDoS attack.

The invention provides a secure access terminal for an intranet and an extranet. The secure access terminal comprises intranet and extranet safety equipment and a processing unit, wherein an input-end interface unit of the intranet and extranet safety equipment is connected with a first control unit and a second control unit respectively through a two-channel switch unit; when a client selects an extranet mode, the processing unit controls the two-channel switch unit to gate the second control unit, switches on a second power control switch to enter an extranet system and switches off a first power control switch to cut off connection with an intranet system at the moment; and when the client selects an intranet mode, the processing unit controls the two-channel switch unit to gate the first control unit, switches on the first power control switch to enter the intranet system and switches off the second power control switch to cut off connection with the extranet system at the moment. The secure access terminal for the intranet and the extranet is used for realizing isolation and safety protection of the intranet and extranet systems, and information security of the intranet system can be protected effectively.

Context captured with sensors of an information handling system is applied to selectively lock access to currently unlocked information, with conditions for locking access based upon the context. Nervous states enforce locking of selected information based upon the confidence of the security of the information under sensed external conditions. Increased sensitivity for locking access includes reduced timeouts to a lock command, increased response to sensed conditions, and more rapid response where unlocked access is to sensitive information.

The embodiment of the invention discloses a security authentication method and a terminal. The method comprises the steps of determining a security level of terminal authentication according to usage scenario of the terminal, wherein the usage scenario comprises the distance between the terminal and a user or an application type corresponding to the terminal authentication; and starting different security authentication mechanisms according to the security level of the terminal authentication. The terminal comprises a determining unit for determining the security level of the terminal authentication according to the usage scenario of the terminal, wherein the usage scenario comprises the distance between the terminal and the user or the application type corresponding to the terminal authentication; and an authentication unit for starting different security authentication mechanisms according to the security level of the terminal authentication. According to the method and the terminal provided by the embodiment of the invention, the information security of the user can be improved, and the information security demand of the user can be satisfied.

The embodiment of the invention discloses safety intelligent terminal equipment and an information processing method. The terminal equipment comprises a first operating system, wherein the first operating system is used for processing a sensitive logic. The terminal equipment comprises a safety storage module and a safety processing module, wherein the safety storage module is used for storing sensitive logics of the first operating system and an application program; and the safety processing module is used for switching a current operating system to the first operating system when any sensitive logic in the safety storage module is called, and processing the sensitive logic in the first operating system. According the safety intelligent terminal equipment, the first operating system has a function of protecting the safety of user information to prevent the user information from being invaded by malicious software and the like. Thus, by using the terminal equipment provided by the invention, the safety of the user information can be improved.

The invention provides a login method, a maintenance terminal, data management service equipment and a login system. In the method, the maintenance terminal receives a login request and transmits user authentication information contained in the login request to the data management service equipment; after the data management service equipment returns a verification result that the user identity is legitimate, the maintenance terminal obtains identification information of a server to be logged and transmits the identification information to the data management service equipment which determines whether a user has the authority to manage the server to be logged; and according to a determination result which shows that the user has the authority, the maintenance terminal requests login information for logging on to the server from the data management service equipment and transmits the received login information to the server to be logged, and the user is logged in when the login information is verified by the server to be logged server. The technical scheme of the invention can effectively improve the information security of a data center, reduce the workload to find out login information and improve the information maintenance efficiency of the data center.