Summary of the invention
Technical problem to be solved by this invention provides a kind of method of network ID authentication, and this method can effectively be verified the network user's identity, and have stronger fail safe.
Another object of the present invention provides a kind of system of network ID authentication, and this system can effectively verify the network user's identity, and have stronger fail safe.
The present invention relates to a kind of method of network ID authentication, comprising:
Operation random arrangement command code and authorization code to the requests verification user identity show described command code;
Obtain the telephone number that the user uses communication terminal to send, mate with the telephone number that presets;
As unanimity, return sign indicating number and authorization code are to described communication terminal;
When the command code of the command code of returning and demonstration is consistent, obtain the authorization code of user's input;
Be complementary as the authorization code of user's input and the authorization code of random arrangement, confirm that this user identity is legal.
Preferably, before the operation random arrangement command code and authorization code to the requests verification user identity, also comprise: obtain the username and password of user at this operation input; Checking determines that above-mentioned username and password is complementary.
Preferably, before the operation random arrangement command code and authorization code to the requests verification user identity, also comprise: show that aforesaid operations is a state to be verified.
Preferably, obtain the user and use after the telephone number that communication terminal sends, also comprise: the information of returning on is to described communication terminal.
Preferably, return sign indicating number and authorization code also comprise after the described communication terminal: upgrade that the user is current to be operating as state to be confirmed.
Preferably, return sign indicating number and authorization code arrive before the described communication terminal, also comprise: the pairing command code of operation and the authorization code that obtain the latest requests identifying user identity.
Preferably, obtain before the authorization code of user's input, also comprise: as the command code of command code of returning and demonstration is inconsistent, again obtain the telephone number that the user uses communication terminal to send, mate with the telephone number that presets, as unanimity, return sign indicating number and authorization code are to described communication terminal once more.
Preferably, by following step, return sign indicating number and authorization code are to described communication terminal: aforesaid operations sign indicating number and authorization code are synthesized ring-back tone or be processed into short message, and return described communication terminal.
The invention still further relates to a kind of system of network ID authentication, comprise dispensing unit, display unit, telephone number acquiring unit, telephone number comparing unit, return the unit, authorization code acquiring unit, authorization code comparing unit, and user identification confirmation unit:
Described dispensing unit is used for operation random arrangement command code and authorization code to the requests verification user identity;
Described display unit is used to show described command code;
Described telephone number acquiring unit is used to obtain the telephone number that the user uses communication terminal to send;
Described telephone number comparing unit is used for the telephone number that will obtain and mates with the telephone number that presets, and as unanimity, sends confirmation to the described unit that returns;
The described unit that returns is used for return sign indicating number and authorization code to described authorization code acquiring unit;
Described authorization code acquiring unit is used for command code in the command code of returning and demonstration when consistent, obtains the authorization code of user's input;
The authorization code comparing unit is used for the authorization code of user's input and the authorization code of random arrangement are complementary, and as unanimity, sends confirmation to described user identification confirmation unit;
Described user identification confirmation unit is used to confirm that this user identity is legal.
Preferably, also comprise: the ring-back tone synthesis unit is used for command code and the synthetic ring-back tone of authorization code, and sends to the described unit that returns.
Compared with prior art, the present invention has the following advantages:
The present invention is to the operation random arrangement command code and the authorization code of requests verification user identity, show described command code, obtain the telephone number that the user uses communication terminal to send again, mate with the telephone number that presets, as unanimity, return sign indicating number and authorization code are to described communication terminal; The user imports authorization code after the command code of the command code of confirming to return and demonstration is consistent, obtain the authorization code of user's input, and the authorization code of importing as the user and the authorization code of random arrangement are complementary, and confirm that this user identity is legal.The present invention utilize command code determine authentication this time at operation, utilize authorization code to determine that the user who operates is legal again.If during validated user prepares to dial the authentication phone, the disabled user utilizes the user name of validated user just to authenticate with regard to same operation, the command code that receives after validated user is called is different with the command code that client shows, validated user can judge that in view of the above this time authentication has problem, and the corresponding authorization code of this operation of refusal input.Like this, the disabled user be because of can not obtaining correct authorization code, and can not be by authentication.The present invention can effectively verify the network user's identity, and remedied the not high defective of fail safe in the prior art, has stronger fail safe.
The present invention synthesizes ring-back tone with aforesaid operations sign indicating number and authorization code, and returns described communication terminal.The user just can be user-friendly to by the command code and the authorization code of communication terminal uppick voice suggestion like this, improves sense of experience of users.
Embodiment
For above-mentioned purpose of the present invention, feature and advantage can be become apparent more, the present invention is further detailed explanation below in conjunction with the drawings and specific embodiments.
The present invention is to the operation random arrangement command code and the authorization code of requests verification user identity, show described command code, obtain the telephone number that the user uses communication terminal to send again, mate with the telephone number that presets, as unanimity, return sign indicating number and authorization code are to described communication terminal; When the command code of the command code of returning and demonstration is consistent, obtain the authorization code of user's input, be complementary as the authorization code of user's input and the authorization code of random arrangement, confirm that this user identity is legal.
Consult Fig. 2, the method flow diagram of the network ID authentication that provides for first embodiment of the invention, concrete steps are as described below.
Step S201, to the operation random arrangement command code and the authorization code of requests verification user identity.
The user prepares to carry out a certain operation at networking client, for security needs are verified user's identity.Network authentication server is at the current operation of user, random arrangement command code and authorization code.This command code and authorization code can be numeral, letter and numeral and alphabetical combination.Memory for the convenience of the user, command code preferably adopts 4 bit digital; Command code preferably adopts 6 bit digital.
As, the configuration operation sign indicating number is 1122, authorization code is 198019;
The command code of step S202, configurations shown.
The command code that network authentication server will be finished configuration sends to subscription client, is shown to the user, and the prompting user carries out authentication.The command code that the user shows by client is understood the appointment codes of operation at present.
As, show that in client the command code of operation is 1122 at present.
Step S203, obtain the telephone number that the user uses communication terminal to send.
The user uses communication terminal to dial the authentication phone of network authentication server, and this telephone network of calling out through telecommunications arrives switch, and this switch connects network authentication server by api interface.Switch sends to network authentication server by api interface with the telephone number of communication terminal.
Communication terminal can be mobile phone, Personal Handyphone System, landline telephone etc.
As, the user uses mobile phone dialing authentication phone, and network authentication server gets access to this phone number 1314873362.
Step S204, the telephone number that gets access to and the telephone number that presets are mated.
The webserver carries out matching ratio with telephone number that gets access to and the telephone number that presets, and as unanimity, forwards step S205 to; As inconsistent, return the telephone number error message to switch, switch turns back to communication terminal, is shown to the client.
The telephone number that presets is the telephone number that the user is provided with in advance, and this telephone number can be bound with user's user name, also can bind mutually with the user client identification number.Network authentication server extracts this telephone number according to user's user name or client identification.This telephone number is generally the number of the normal communication terminal that uses of user.
As, preset telephone number is a subscriber phone number 1314873362, and is consistent with the telephone number 1314873362 that gets access to.
Step S205, return sign indicating number and authorization code are to communication terminal.
Network authentication server extracts command code and the authorization code at current operative configuration, and this command code and authorization code are sent to switch, and switch returns to described communication terminal with this command code and authorization code.
As, network authentication server returns command code 1122, authorization code 198019 to communication terminal.
Step S206, when the command code of the command code of returning and demonstration is consistent, obtain the authorization code of user's input.
The user obtains command code and authorization code by communication terminal, and the command code that the contrast client shows as above-mentioned two command code unanimities, shows that this authorization code is the authorization code at present operation, and the user can import this authorization code by client; Inconsistent as above-mentioned two command codes, the command code that the expression user obtains is not the authorization code at present operation, verifies with regard to not needing to import authorization code again.
As, the command code that command code that communication terminal obtains and client show all is 1122, the authorization code 198019 that the user obtains in the client input.
Step S207, be complementary, confirm that this user identity is legal as the authorization code of user input and the authorization code of random arrangement.
After network authentication server gets access to this authorization code, carry out matching ratio,, confirm that then this user identity is legal, allow this user to carry out next step operation as unanimity with the command code of configuration; As inconsistent, confirm that then this user is the disabled user, refuse this user and carry out next step operation.
As, the authorization code that network authentication server gets access to is 198019, the authorization code of random arrangement also is 198019, is consistent, thinks that this user identity is legal.
The present invention utilize command code determine authentication this time at operation, utilize authorization code to determine that the user who operates is legal again.If during validated user prepared to dial the authentication phone, the disabled user utilized the user name of validated user to authenticate with regard to same operation, because of the disabled user can not obtain corresponding authorization code, and can not be by authentication.And the command code that return to validated user this moment is inequality with the command code of demonstration, and validated user will recognize that this time authentication has problems, and can take corresponding counter-measure.Therefore, the present invention can effectively verify the network user's identity, and remedied the not high defective of fail safe in the prior art, has stronger fail safe.
The present invention utilizes client and communication terminal, with authentication carry out process and result feeds back to the user, make each process in the clear authentication of user, be convenient to the operation that the user determines that next step need carry out.
Consult Fig. 3, the method flow diagram of the network ID authentication that provides for second embodiment of the invention, concrete steps are as described below.
Step S301, obtain the username and password of user, and checking determines that above-mentioned username and password is complementary at this operation input.
The user imports username and password before carrying out a certain important operation.The network verification server is verified after getting access to this username and password, as identical with the username and password of storage in advance, determines that this username and password is legal.
Step S302, demonstration aforesaid operations are state to be verified.
The webserver determines that aforesaid operations is a state to be verified, and is shown to the user by client.
Step S303, to the operation random arrangement command code and the authorization code of requests verification user identity.
Network authentication server is at the current operation of user, random arrangement command code and authorization code.This command code and authorization code can be numeral, letter and numeral and alphabetical combination.
The command code of step S304, configurations shown.
The command code that network authentication server will be finished configuration sends to subscription client, is shown to the user, and the prompting user carries out authentication.
Step S305, obtain the telephone number that the user uses communication terminal to send.
The user uses communication terminal to dial the authentication phone of network authentication server, and this telephone network of calling out through telecommunications arrives switch.Switch sends to network authentication server by api interface with the telephone number of communication terminal.
Step S306, the telephone number that gets access to and the telephone number that presets are mated.
The webserver carries out matching ratio with telephone number that gets access to and the telephone number that presets, and as unanimity, forwards step S307 to; As inconsistent, return the telephone number error message to switch, switch turns back to communication terminal, is shown to the client.
Step S307, return sign indicating number and authorization code are to described communication terminal.
Network authentication server extracts command code and the authorization code at current operative configuration, and this command code and authorization code are sent to switch, and switch returns to described communication terminal with this command code and authorization code.
Step S308, upgrade that the user is current to be operating as state to be confirmed.
The webserver is updated to state to be confirmed with the current operation that client shows by state to be verified, and shows authorization code input dialogue frame, the authorization code that prompting user input gets access to.
Step S309, when the command code of the command code of returning and demonstration is consistent, obtain the authorization code of user's input.
The user obtains command code and authorization code by communication terminal, and the command code that the contrast client shows as above-mentioned two command code unanimities, shows that this authorization code is the authorization code at present operation, and the user can import this authorization code by client.
Step S310, be complementary, confirm that this user identity is legal as the authorization code of user input and the authorization code of random arrangement.
After network authentication server gets access to this authorization code, carry out matching ratio,, confirm that then this user identity is legal, allow this user to carry out next step operation as unanimity with the command code of configuration; As inconsistent, confirm that then this user is the disabled user, refuse this user and carry out next step operation.
The present invention points out subscriber phone to connect when the closing of the circuit that the user dials, and returns corresponding information again, and what make that the user knows this time calling carries out degree and whether effective; The degree that the present invention is carried out with regard to the current operation of user also is divided into state to be verified and state to be confirmed, is convenient to the user and distinguishes.Like this, each process in the clear authentication of user is convenient to the operation that the user determines that next step need carry out, and improves sense of experience of users.
The user may carry out the multinomial operation that needs identifying user identity simultaneously in client, at this moment, the network verification server returns to user communication terminal with pairing command code of the operation of latest requests identifying user identity and authorization code, conveniently the current operation of user is verified.
Consult Fig. 4, the method flow diagram of the network ID authentication that provides for third embodiment of the invention, concrete steps are as described below.
Step S401, will respectively need the operation of identifying user identity to write the authentication request table.
At a plurality of operation input username and passwords that need identifying user identity, verify one by one above-mentioned username and password by the network verification server in client for the user, by after, need the operation of checking to write the authentication request table with above-mentioned.This authentication request table comprises telephone number, the user name that presets, and this authentication request table is arranged according to each request of operating time inverted order.
Step S402, to above-mentioned random arrangement command code and the authorization code respectively operated.
Network authentication server is at the current operation of user, random arrangement command code and authorization code.This command code and authorization code can be numeral, letter or numeral and alphabetical combining.And command code and the authorization code that will finish configuration write the authentication request table.
The command code of step S403, configurations shown.
The command code that network authentication server will be finished configuration sends to subscription client, is shown to the user, and the prompting user carries out authentication.
Step S404, obtain the telephone number that the user uses communication terminal to send.
The user uses communication terminal to dial the authentication phone of network authentication server, and this telephone network of calling out through telecommunications arrives switch, and switch sends to network authentication server by api interface with the telephone number of communication terminal.
Step S405, the telephone number that gets access to and the telephone number that presets are mated.
The webserver carries out matching ratio with telephone number that gets access to and the telephone number that presets, and as unanimity, forwards step S406 to; As inconsistent, return the telephone number error message to switch, switch turns back to communication terminal, is shown to the client.
Step S406, pairing command code of the operation of latest requests identifying user identity and authorization code are returned to user communication terminal.
The network verification server extracts first operation corresponding command code and authorization code according to this authentication request table of telephone number searching that obtains in this authentication request table, this command code and authorization code are returned user communication terminal.
Step S407, the command code returned and the command code of demonstration are compared, with the command code identical operations place that returns, the authorization code that input obtains.
Step S408, be complementary, confirm that this user identity is legal as the authorization code of user input and the authorization code of random arrangement.
By after, the network verification server is deleted this operation in the authentication request table, when the user utilizes communication terminal to verify once more, then get access to the command code and the authorization code of next operation.
When the present invention carries out the multinomial operation that needs identifying user identity simultaneously the user, by the authentication request table, all get at every turn and be arranged in preceding pairing command code of operation and authorization code, one by one user identity of above-mentioned each operation is verified, be user-friendly to, further improve sense of experience of users.
The present invention is when the command code of command code of returning and demonstration is inconsistent, the network verification server obtains the telephone number that the user uses communication terminal to send again, mate with the telephone number that presets, as unanimity, in the authentication request table, extract and be arranged in pairing command code of top operation and authorization code, and this command code and authorization code are sent to described communication terminal.
As communication terminal is mobile phone or Personal Handyphone System, and the present invention can the short message form send to communication terminal with command code and authorization code, makes things convenient for the user directly to see this command code and authorization code by communication terminal.
Consult Fig. 5, the method flow diagram of the network ID authentication that provides for fourth embodiment of the invention, concrete steps are as described below.
Step S501, to the operation random arrangement command code and the authorization code of requests verification user identity.
The command code of step S502, configurations shown.
Step S503, obtain the telephone number that the user uses communication terminal to send.
Step S504, the telephone number that gets access to and the telephone number that presets are mated.
Step S505, aforesaid operations sign indicating number and authorization code are processed into short message, and return described communication terminal.
The network verification server is processed into the short message form with command code and authorization code, sends to switch, and switch sends to communication terminal with aforesaid operations sign indicating number and authorization code with the form of short message.
Step S506, when the command code of the command code of returning and demonstration is consistent, obtain the authorization code of user's input.
Step S507, be complementary, confirm that this user identity is legal as the authorization code of user input and the authorization code of random arrangement.
As communication terminal is mobile phone, Personal Handyphone System or landline telephone, and the form that the present invention can ring-back tone sends to communication terminal with command code and authorization code, and the user directly listens to this command code and authorization code by communication terminal, and the response time is short, and user experience is good.
Consult Fig. 6, the method flow diagram of the network ID authentication that provides for fifth embodiment of the invention, concrete steps are as described below.
Step S601, to the operation random arrangement command code and the authorization code of requests verification user identity.
The command code of step S602, configurations shown.
Step S603, obtain the telephone number that the user uses communication terminal to send.
Step S604, the telephone number that gets access to and the telephone number that presets are mated.
Step S605, with the synthetic ring-back tone of aforesaid operations sign indicating number and authorization code, and return described communication terminal.
The network verification server sends to switch with command code and the dynamically synthetic ring-back tone of authorization code, and switch sends to communication terminal with this ring-back tone.For preventing that the user from mishearing, switch repeats repeatedly this ring-back tone to be sent to communication terminal.
Step S606, when the command code of the command code of returning and demonstration is consistent, obtain the authorization code of user's input.
Step S607, be complementary, confirm that this user identity is legal as the authorization code of user input and the authorization code of random arrangement.
Based on said method, the present invention also provides a kind of system of network ID authentication, and this system can effectively verify the network user's identity, and have stronger fail safe.
Consult Fig. 7, the system schematic of the network ID authentication that provides for sixth embodiment of the invention comprises dispensing unit 71, display unit 72, telephone number acquiring unit 73, telephone number comparing unit 74, returns unit 75, authorization code acquiring unit 76, authorization code comparing unit 77, and user identification confirmation unit 78.
The operation random arrangement command code and the authorization code of 71 pairs of requests verification user identity of dispensing unit, and the command code that will finish configuration sends to display unit 72; Send to and return unit 75 finishing the command code of configuration and authorization code.
Display unit 72 shows described command code.
Telephone number acquiring unit 73 obtains the telephone number that the user uses communication terminal to send, and this telephone number is sent to telephone number comparing unit 74.
Telephone number comparing unit 74 mates telephone number that obtains and the telephone number that presets, and as unanimity, sends confirmation to returning unit 75.
Return unit 75 return sign indicating numbers and authorization code to authorization code acquiring unit 76.
Authorization code acquiring unit 76 obtains the authorization code of user's input, and this authorization code is sent to authorization code comparing unit 77 when the command code of the command code of returning and demonstration is consistent.
Authorization code comparing unit 77 is complementary the authorization code of acquisition and the authorization code of random arrangement, as unanimity, sends confirmation to described user identification confirmation unit 78.
User identification confirmation unit 78 confirms that this user identity is legal.
As communication terminal is mobile phone, Personal Handyphone System or landline telephone, this system can re-send to communication terminal by the ring-back tone synthesis unit with command code and the synthetic ring-back tone of authorization code, and the user directly listens to this command code and authorization code by communication terminal, and the response time is short, and user experience is good.
Consult Fig. 8, the system schematic of the network ID authentication that provides for seventh embodiment of the invention comprises dispensing unit 71, display unit 72, telephone number acquiring unit 73, telephone number comparing unit 74, returns unit 75, authorization code acquiring unit 76, authorization code comparing unit 77, user identification confirmation unit 78, and ring-back tone synthesis unit 79.
Ring-back tone synthesis unit 79 gets access to command code and authorization code at dispensing unit 71, and with the synthetic ring-back tone of this command code and authorization code, and sends to and return unit 75, return unit 75 with ring-back tone form return sign indicating number and authorization code to described communication terminal.
Dispensing unit 71, display unit 72, telephone number acquiring unit 73, telephone number comparing unit 74, return unit 75, authorization code acquiring unit 76, authorization code comparing unit 77, user identification confirmation unit 78 effect in the present embodiment and function, repeat no more with embodiment illustrated in fig. 7 identical.
More than the method and system of a kind of network ID authentication provided by the present invention is described in detail, used specific case herein principle of the present invention and execution mode are set forth, the explanation of above embodiment just is used for helping to understand method of the present invention and core concept thereof; Simultaneously, for one of ordinary skill in the art, according to thought of the present invention, the part that all can change in specific embodiments and applications, in sum, this description should not be construed as limitation of the present invention.