Method and device for enhancing security of user security model

摘要

The disclosure discloses a method and system for enhancing the security of a user security model. In the solution of the disclosure, after a Simple Network Managing Protocol (SNMP) server acquires a multi-byte original password of a user, detects whether the original password is composed of a specific byte string repeated multiple times; and if so, the user is prompted to reconfigure a password. In accordance with the solution provided by the disclosure, the disclosure greatly enhances the security of version V3 for the SNMP server side, solves the problem that the vulnerability exists in the security defined in version V3 in the prior art, and avoids the security hidden danger caused by the fact that illegal users can use the password different from the password of the authorized user to log on the SNMP server.

主权项

1. A method for enhancing security of a user security model, comprising:
detecting, by execution on a processor, of software instructions stored in a memory of a Simple Network Managing Protocol Version 3 (SNMP V3) server, whether a multi-byte original password is composed of a specific byte string repeated multiple times, after the SNMP V3 server obtains the multi-byte original password of a user; and prompting the user to reconfigure a password when the multi-byte original password is composed of a specific byte string repeated multiple times, wherein the detecting whether the original password is composed of a specific byte string repeated multiple times comprises: detecting, by the SNMP V3 server, whether a first byte content of the password appears repeatedly in the original password byte string; if so, detecting, by the SNMP V3 server, whether the original password is comprised of only the repeating of one substring formed by content of the first byte with bytes preceding the firstly reappeared first byte content one or multiple times, if so, determining that the original password is composed of a specific byte string repeated multiple times; otherwise, determining that the original password is not composed of a specific byte string repeated multiple times.