CN101097623A - Member identity identification method and device thereof - Google Patents
Member identity identification method and device thereof Download PDFInfo
- Publication number
- CN101097623A CN101097623A CNA200610090764XA CN200610090764A CN101097623A CN 101097623 A CN101097623 A CN 101097623A CN A200610090764X A CNA200610090764X A CN A200610090764XA CN 200610090764 A CN200610090764 A CN 200610090764A CN 101097623 A CN101097623 A CN 101097623A
- Authority
- CN
- China
- Prior art keywords
- information
- authentication
- enterprise
- authenticate device
- service
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a kind of method and device for identifying the member ID, which is used to solve the omission or fussy problems caused by that the present method for identifying ID is single; in the method the member sends service requirement to electric business service processing device, and the data is transmitted to the service processing device, the service processing device divides member into different security rank according to the member data, and the member data and security label is transmitted to the identifying device, and the identifying device returns the identifying result to the service processing device according the security rank. The equipment includes device which is used to detect the member is security member or not, the device which is used to verify the validity of authorization, and the device which is used to identify the unsafe member.
Description
Technical field
The present invention relates to communication and computer realm, particularly at method and the device thereof of long-range realization to member identity identification.
Background technology
Along with the development of Internet technology, people are carrying out various activities, for example internet trade on the internet.People wish with own transaction to as if safety, trustworthy, the process of transaction is safe and reliable, this just need carry out the authentication of identity to the object of concluding the business, consequently the participant who is generalized to All Activity needs to carry out authentication.
Obtain Member Information by telecommunication means such as phone, fax, mailing, networks at present, all data all are that the applicant is unidirectional to be provided, and is difficult to the true and false of judgement data, therefore, need take further to examine means.
In the prior art, E-business service provider provides the member's of service identity verification to adopt not mode to the doorstep to it at present, and long-range realization is to the authentication of its identity.US Patent specification US006466917B1 has disclosed a kind of non-gate-type identity identifying method of going up.It is characterized in that specifying a kind of mode by internet authentication, a network authentication interface is provided, require the member to provide corresponding information or data by network, member's information is passed to the third party, the membership is authenticated according to this information by the third party, then verification result is sent back to the E-business service treating apparatus.
Owing to only specified a kind of membership's of examining mode, for security or the higher member of credit worthiness, this mode is too loaded down with trivial details, for the member brings greater inconvenience, can not enjoy the service that service processing device provides as early as possible, also increase third-party work load simultaneously; Relatively poor for security, dangerous living higher member is difficult to examine the authenticity of its identity, can other member's interests be caused damage.Owing to, may also influence service provider's prestige and economic interests simultaneously because third-party fault causes damage to the member to not supervision of third party.
Summary of the invention
The invention provides a kind of method and apparatus of member identity identification, exist in the prior art because the single authentication that causes of authenticating identity mode is slipped or authenticated loaded down with trivial details problem, so that make the member experience close friend and safety more in order to solve.
The inventive method comprises:
A, member's relevant information and the safe class of composing to the member according to this relevant information are sent to authenticate device;
B, authenticate device start corresponding identifying procedure according to member's safe class, the member is carried out authentication, and obtain authentication result.
Comprise the steps: among the step B
B1, judge according to member's safe class whether it is safe member, if, execution in step B2 then, otherwise, execution in step B3;
B2, indication member submit power of attorney to, and examine the authorization message that the member submits to and obtain authentication result;
B3, authenticate device are gathered membership information and are authenticated, and obtain authentication result.
Comprise the steps: among the step B3
B31, authenticate device gather membership information and the authenticity of the information that provides by the Information Authentication member who collects, if true, and execution in step B2 then, otherwise, carry out step B32;
B32, require the member to give information again, and the data of examining this member and providing obtain authentication result.
The concrete steps of step B32 are: authenticate device is specified multiple certificate scheme, accepts authentication by member's optional one in appointed scheme, and the related data of selected certificate scheme requirement is provided.
The invention provides a kind of system that realizes member identity identification, this system comprises:
Judgment means is used for judging according to member's safe class whether the member is safe member;
First validation apparatus is used for when judging the member for safe member, and the indication member provides power of attorney and verifies its reality;
Second validation apparatus is used for when judging the member for dangerous member it being authenticated.
Described second validation apparatus comprises:
Gather authentication unit, be used to gather membership information and the authenticity of the information that provides by the Information Authentication member who collects;
Examine the unit, the related data that its selected scheme that being used to examine the member provides requires.
The invention provides a kind of Network service method that is used to open, this method step is as follows:
A, member propose service request and membership information are provided to information collecting device;
B, service processing device are composed the corresponding safe class to the member according to member's relevant information, and member's information and safe class are sent to authenticate device;
C, authenticate device start corresponding identifying procedure according to member's safe class, and obtain authentication result;
D, authenticate device return to service processing device with authentication result, and whether described service processing device is described member's turn up service according to this authentication result decision.
Comprise the steps: among the step b
B1, judge according to member's safe class whether it is safe member, if, execution in step b2 then, otherwise, execution in step b3;
B2, indication member submit power of attorney to, and examine the authorization message that the member submits to and obtain authentication result;
B3, authenticate device are gathered membership information and are authenticated, and obtain authentication result.
Comprise the steps: among the step b3
B31, authenticate device gather membership information and the authenticity of the information that provides by the Information Authentication member who collects, if true, and execution in step b2 then, otherwise, carry out step b32;
B32, require the member to give information again, and the data of examining this member and providing obtain authentication result.
The concrete steps of step b32 are: authenticate device is specified multiple certificate scheme, accepts authentication by member's optional one in appointed scheme, and the related data of selected certificate scheme requirement is provided.
The invention provides a kind of service system that is used to open Network, native system comprises information collecting device, service processing device, authenticate device and customer relation management device.
The customer relation management device, the information that is used to store and manage the member;
Information collecting device is used to receive member's service request and gathers membership information;
Service processing device is used to receive information collecting device and transmits membership information, obtains member's relevant information and composes the corresponding safe class to the member according to this relevant information;
Authenticate device is used to receive membership related information and the safe class that service processing device is submitted to, and the member is carried out authentication and authentication result is returned to service processing device.
Described authenticate device comprises as lower device:
Judgment means is used for judging according to member's safe class whether the member is safe member;
First validation apparatus is used for when judging the member for safe member, and the indication member provides power of attorney and verifies its reality;
Second validation apparatus is used for when judging the member for dangerous member it being authenticated.
Described second validation apparatus comprises:
Gather authentication unit, be used to gather membership information and the authenticity of the information that provides by the Information Authentication member who collects;
Examine the unit, the related data that its selected scheme that being used to examine the member provides requires.
Beneficial effect of the present invention is as follows:
Because the present invention judges member's security according to the difference of member's behavior, and is divided into four different grades with security,, guaranteed the justice, just of the reliability of verification process and authentication according to the corresponding verification process of grade different mining.Because the higher member of security is adopted the simplification verification process, thereby reduced the workload of authenticate device, and this class member has been carried out preferential authentication, reduced bothering the member, can make simultaneously member's authentication of passing through early obtain service, make the member feel friendly more.Can do more detailed authentication to the lower member of safe class equally, avoid false member to bring loss on the interests for other member by authentication; Also can avoid making seem false and in fact be real member because of misunderstanding by authentication, thereby do not obtain better service.
Description of drawings
Figure 1A is the system schematic that realizes the member identity identification method in the present embodiment;
Figure 1B is the structural representation of authenticate device in the present embodiment;
Fig. 2 is the basic flow sheet of member identity identification method in the present embodiment;
Fig. 3 is to the process flow diagram of dangerous member's re-authentication in the present embodiment.
Embodiment
Exist in the prior art because the single authentication that causes of authenticating identity mode is slipped or authenticated problems such as loaded down with trivial details in order to solve, the present invention is divided into different brackets according to membership's security with the member, takes corresponding authentication mode according to member's grade difference then.Further, whether decision is that the member opens its requested service according to authentication result.
Present embodiment is an example with the e-commerce field, the E-business service treating apparatus is described before providing service for the member, in conjunction with the method for authenticate device to membership's remote authentication.
Referring to Figure 1A, the service system in the present embodiment comprises information collecting device, E-business service treating apparatus (abbreviation service processing device), authenticate device and customer relation management device.
The customer relation management device is used to store and manage member's full detail.Information comprises applicant's name and contact method, the title of enterprise, address and contact method, enterprise's scope of authority, member's trading activity, member's grade, the service item of enjoyment.Above-mentioned information can increase and decrease the information content according to actual conditions.
Information collecting device is used for the member and realizes service request, completes the application process, and the transmission data is given service processing device and authenticate device.
Service processing device is used for reception, transmission and process information.Particular content is for receiving the service request and the Member Information of information collecting device, data is sent into the customer relation management device, integrate all data of this member, judge this member's safe class, member's data and level of security are together sent to authenticate device, and receive the authentication result of authenticate device, and this result is carried out the whether processing of turn up service, simultaneously authentication result is stored into the customer relation management device.
Authenticate device, be used to finish verification process, comprise the information that service processing device sends that receives, according to the corresponding verification process of the different mining of member's safe class, and obtain authentication result, authentication result is returned to service processing device, and the information that receives information collecting device is in case of necessity operated with necessity of finishing with information collecting device.For example the money authentication operation is beaten to public affairs by bank.
The triangular mode of intelligence transmission of information collecting device, service processing device and authenticate device can be mailing, Email, fax etc.
Referring to Figure 1B, described authenticate device comprises judgment means, first validation apparatus and second validation apparatus.Described judgment means is used for judging according to the safe class that service processing device sends whether the member is safe member; Described first validation apparatus is used for when judgment means is judged the member for safe member, and the indication member provides the power of attorney of acquire full legal force according to the pattern of power of attorney template and verifies its reality, and obtains authentication result; Described second validation apparatus is used for when judging the member for dangerous member it being authenticated, and obtains authentication result.
Described second validation apparatus comprises to be gathered authentication unit and examines the unit, and described collection authentication unit is used to gather membership information and the authenticity of the information that provides by the Information Authentication member who collects; Describedly examine the related data that its selected scheme that the unit is used to examine the member and provides requires, and obtain authentication result.
In the present embodiment, authentication content comprises applicant's identity, the authenticity of enterprise, and whether this application person obtains the mandate of this enterprise, and whether the person that mainly is the authentication application obtains the mandate of enterprise.Generally enterprise licenses to someone, and the people is on behalf of finishing application process thus, and this person is generally the employee of this enterprise, i.e. applicant described in the present embodiment.Member described in the present embodiment makes a general reference the applicant and authorizes enterprise.
The judgement of member's level of security in the present embodiment is according to the behavior in the member subscription verification process.The member will experience a process from free member to the charge member, and E-business service treating apparatus (abbreviation service processing device) adopts the customer relation management device that record is carried out in the behavior of member during this.Service processing device judges and gives the safe class of correspondence to member's security according to the data of this behavior and applicant's submission.Specifically be classified as follows:
1, " 0 " represents safety: be with bank public account to be beaten money, and beat money enterprise and apply for that enterprise's name of serving is consistent, no licensing issue.Normal member all adopts bank that public account is beaten money and pays, and unusual member can't accomplish this point usually.So think that can to use bank public account to be played the security of enterprise of money higher.
2, " 1 " representative is common: beat money or money is posted in the post office with personal account, but non-applicant initiatively requires the application service, but the sales force of E-business service provider promote after just the decision application serve.
3, " 2 " representative is high-risk: beat money or money is posted in the post office with personal account, and be that the applicant initiatively requires the application service, paying requires turn up service in 1 month.But not the enterprise of digital industry.
4, " 3 " represent superelevation danger: beat money or money is posted in the post office with personal account, and be that the applicant initiatively requires the application service, paying requires turn up service in 1 month.And be the enterprise of digital industry.
Above-mentioned personal account and bank are that remittance name length is different to the difference of public account, and personal account remittance name is no more than 4, and bank is longer to the remittance name of public account.Service processing device only needs can judge that according to the difference of remittance name length personal account still is to public account.
The enterprise of above-mentioned digital industry belongs to high-risk enterprise.Because the swindle of digital industry is particularly rampant in e-commerce platform, so will improve its level of security if the member belongs to digital industry.The thinking of discerning digital industry and enterprise is: the exabyte of doing digital industry product usually generally has certain feature, only judge by the exabyte of application authentication, to comprise in the title that following character string promptly is defaulted as be digital industry, number, electronics, science and technology, computer, the world, Hong Kong, trade, electrical equipment, mobile phone, communication, communication, industry, system arranged and comprise English name.Service processing device finds that containing above-mentioned character in the enterprise name assert that just this enterprise belongs to high-risk enterprise.
Referring to Fig. 2, the idiographic flow that the member is carried out identity identifying method is as follows:
Step 201: the member serves by the information collecting device application, register information, and payment corresponding cost.This service can be a link integrity.Information collecting device sends to service processing device with member's information.
Step 202: the service processing device bill kept on file of receiving a remittance completes the application process.Application formality comprises the identity and the related data of registering the member.
The data that described applicant submits to comprises applicant's name, applicant's contact method, enterprise name, enterprise address, the contact method of enterprise.
Step 203: service processing device is judged this member's security according to member's data, and the difference of security can be divided into " 0 ", " 1 ", " 2 ", " 3 " four grades, for the member stamps different grade marks." 0 " represents safety, and " 1 " representative is common, and " 2 " representative is high-risk, and " 3 " represent superelevation danger.
This numbering can be arbitrarily, is intended to distinguish four grades.This grade also can be divided according to actual needs, is four grades in the present embodiment.
Step 204: the E-business service treating apparatus sends to authenticate device with member's whole data and safe class mark.Concrete verification process is finished by authenticate device.
Step 205: member's safety grades mark that authenticate device is stamped according to service processing device, adopt corresponding verification process.Member's level of security is low more, and security is high more, thinks that this member's confidence level is just high more, and authenticate device just can adopt the identifying procedure of comparatively simplifying; Otherwise authenticate device need increase authenticating step and judge accurately whether this member is genuine and believable.If member's safe class is " 0 ", then execution in step 207, take the simple authentication mode, and preferential authentication; Non-if " 0 ", then execution in step 206.
Step 207: other member of " 0 " level has more security than other member of other level, handles the authentication formality so be preferably it.This step is used to examine the mandate whether applicant obtains enterprise.Authenticate device contact applicant sends the power of attorney template to the applicant, requires the power of attorney of applicant according to template style preparation acquire full legal force, and this power of attorney is returned to authenticate device.Implementation is a step 207-step 208-step 209.
Described power of attorney content comprises: the authority that the contact method of applicant's name, applicant's contact method, enterprise name, enterprise address, enterprise and enterprise are authorized.
Step 208: authenticate device is inquired about this enterprise information of registering in Administration for Industry and Commerce in detail by industrial and commercial channel, and power of attorney is examined.The industrial and commercial registration information stores accurately need not be suspected at the industrial and commercial registration register base, if enterprise just proves that in the administration for industry and commerce's registration this enterprise is a necessary being.
Step 209: examine this enterprise whether in the administration for industry and commerce's registration, if registered then think that this enterprise is real, execution in step 215; Otherwise execution in step 214.
Step 206: authenticate device is gathered membership information, and whether the information of carrying out examining the member and providing in the side is true.The content that the side is examined comprises applicant's the identity and the authenticity of enterprise, and whether the applicant obtains the mandate of this enterprise.
If the information that the member provides is false, be difficult to recognize truth by the front approach, so the mode of taking the side to examine is gathered membership information by authenticate device, whether the information that provides by this credit verification member is true.
Step 210: the side is examined can number of ways or method, this step judge side contact business other people, understand the situation of this application person and this enterprise.Examine the both and be really then enter step 211 if carry out the side, as long as otherwise have a side authenticity to fall under suspicion or can't the side relate to enterprise other people just enter step 212.
Step 211: other staff of contact business, confirm whether this application people obtains the mandate of this enterprise.If authorized then execution in step 207, otherwise directly enter step 214.
Obtain the contact method of enterprise by the side mode, and confirm that by this contact method applicant and enterprise are real, and the applicant has obtained the mandate of this enterprise, can improve member's security, reduce level of security, adopt quick-reading flow sheets, execution in step 207.
Step 212: gather membership information again, further examine.Require the member that related data is provided.
Step 213: judge whether the data that the member provides is true, the result is execution in step 215 very then; The result is a then execution in step 214 of vacation.
Step 214: the result of authentification failure is returned to the E-business service treating apparatus, and the reason of return authentication failure.
Step 215: will authenticate the result who passes through and return to the E-business service treating apparatus, service processing device is opened this service.
Result described in the step 214 and 215 comprises that authentication conclusion and member offer the data of authenticate device.
Referring to Fig. 3, still can not be confirmed as safe member and need do further and examine for examining through the side, judge that this member seems false, or itself be exactly false member.Step 212 also comprises following concrete steps among Fig. 2:
Step 301: this step is used for further examining applicant's identity, the authenticity of enterprise and the mandate whether applicant obtains enterprise.Adopt other employees' of contact business mode possibly can't confirm its authenticity for the higher member of harmful grade, must adopt more reliable mode to judge.The contact applicant requires the applicant that necessary material is provided, and the material that the applicant is provided by public information platform is done further and examined.Level of security difference according to the member can adopt different verification process.
Three kinds of schemes are provided in the present embodiment:
Option A: power of attorney+organization mechanism code card;
Option b: power of attorney+legal representative's I.D.;
Scheme C: the money authentication is played to public account by power of attorney+bank.
Also can adopt other scheme, or the associating of such scheme.So long as be difficult in the common commerce and trade behavior obtain or difficult information of defrauding of, can be applied in the identifying procedure of non-level of security as the means of examining.
Step 302: select certificate scheme by the applicant, and the related data that provides selected scheme to need, the scheme scope of selection is specified by authenticate device.Selection scheme A is execution in step 303 and step 304 then, and selection scheme B is execution in step 305 and step 306 then, and selection scheme C is execution in step 307 and step 308 then.
Step 303: authenticate device is inquired about this enterprise information of registering in Administration for Industry and Commerce in detail by the industrial and commercial registration register base, power of attorney is examined, and demonstrate,proved number by the credit verification organization mechanism code in the register base of quality supervision intra-office.
The mode of examining of organization mechanism code card is: the organization mechanism code card just can be used in E-Government usually, general commerce and trade process can not used, and organization mechanism code card is provided by State Quality Supervision Bureau is unified, and whether this business organization's Institution Code card that can provide by the database examination applicant of State Quality Supervision Bureau is number correct.
Step 304: examine this enterprise whether in the administration for industry and commerce's registration, whether the applicant obtains the authorization, and whether the organization mechanism code card of checking enterprise is number correct.If the both correctly the authentication pass through, it is incorrect existing at least a, then authentification failure.
Step 305: authenticate device is examined power of attorney by industrial and commercial registration register base inquiry the said firm information of registering in Administration for Industry and Commerce in detail, and checks in the industrial and commercial registration legal representative's identification card number.
The mode of examining of legal representative's I.D. is: because the legal representative is tighter to the keeping of the I.D. of oneself, generally the I.D. of oneself can not offered other people, so the possibility of being defrauded of is less.Inquire about in the registration storehouse that the checking of legal representative's I.D. true and false can be by the administration for industry and commerce or the register base of Quality Supervision Bureau, whether the comparison ID (identity number) card No. is consistent with name; Also can utilize the residential identity register base of public security department to verify the true and false of I.D., and whether consistent with the legal representative's on registering that registers in Administration for Industry and Commerce name.
Step 306: whether examine this enterprise in the administration for industry and commerce's registration, whether the applicant obtains the authorization, and whether checking legal representative's identification card number is correct.If the both correctly the authentication pass through, it is incorrect existing at least a, then authentification failure.
Step 307: authenticate device is examined power of attorney by industrial and commercial registration register base inquiry the said firm information of registering in Administration for Industry and Commerce in detail, and allows the member carry out bank public account is played the money authentication.
The embodiment that the money authentication is played to public account by bank has two kinds, the one, requirement enterprise operates beating money on the account of public account to authenticate device or E-business service treating apparatus with its bank, if play the money success, and remittance name is identical with enterprise's name of application service, and then the bank of this enterprise beats money to public account and authenticates and pass through; The 2nd, authenticate device or E-business service treating apparatus to application enterprise to public account on carry out the little amount of money the money of beating operate, require this enterprise to find and repay to beat the concrete amount of money of money, if the repayment amount of money thinks then that correctly the bank of this enterprise plays the money authentication to public account and pass through.
Step 308: whether examine this enterprise in the administration for industry and commerce's registration, whether the applicant obtains the authorization, and examines bank public account is played the money authentication.If the both correctly the authentication pass through, it is incorrect existing at least a, then authentification failure.
The side of carrying out in Fig. 2 step 206 is examined and is meant that the data that not exclusively provides by the applicant confirms whether the authenticity of enterprise and applicant obtain enterprise and authorize, but utilize the public information platform Information Monitoring, by the information of collecting the information that the member provides is examined, verification result is returned to authenticate device with the form of parameter.Above-mentioned public information platform comprises industrial and commercial registration register base, Quality Supervision Bureau register base, 114 telephone number query storehouses, network information thesaurus etc.
For example the applicant gives information one for enterprise name, and data two is the contact method of enterprise, and data three is the enterprise address.Pass through the contact method of enterprise's homepage inquiring enterprise in 114 telephone number query storehouses or the network information thesaurus according to the enterprise name of data one; According to enterprise's address validation enterprise name of data three, both whether this address had this enterprise.Concrete side is examined and is described in detail below the mode.
The telephone number of inquiring enterprise, and direct-dial telephone and enterprise communication are confirmed applicant's identity and whether obtain enterprise to authorize.Its embodiment is as follows:
The side is examined applicant's identity and whether is obtained the concrete mode of the mandate of enterprise, can be other employees that the contact method of the enterprise that obtains by the side is got in touch this enterprise, preferably Human Resources Department or general manager's room inquire about whether the personal file storehouse affirmation applicant of this enterprise is its employee, and the contact legal representative confirms whether the applicant obtains legal person's mandate.If can't obtain the contact method of this enterprise by the side channel, the contact method that then adopts the applicant to provide is done further authentication.Get in touch this enterprise with the contact method that the direct request for utilization person of the identity of E-business service provider provides, require to search the applicant,, prove that applicant's identity is suspicious, need vigilant if this enterprise does not have this person.Check the ownership place of the phone number that the applicant provides by telephone number register base http://www.xm100.com/online/mobileaddr.asp in the network information thesaurus,, need vigilant because some region is the network defraud district occurred frequently.If high-risk area then should be examined by emphasis.Verification result is with parametric form return authentication device:
| Relate to other employees of enterprise | The applicant belongs to this enterprise | Obtaining the legal person authorizes | Belong to high-risk area |
| Be (denying) | Be (denying) | Be (denying) | Be (denying) |
The side is examined and is also comprised the authenticity of examining enterprise, comprise the scope of business and the title of the contact method of examining enterprise, address, enterprise, and whether the address that the applicant provides exists this enterprise.
1, the contact method of enterprise is examined in the side.The contact method that can the side obtains enterprise can judge tentatively that enterprise is real.This contact method must be a landline telephone.Inquire about by public information platform according to enterprise name, as telephone number by 114 these enterprises of telephone number query library inquiry.By search engine, network modes such as online 114 inquiry whether the homepage of this enterprise is arranged, in homepage, find the telephone number of this enterprise.Information reliability on non-homepage or the simpler and cruder homepage is relatively poor.Search engine comprises GOOGLE, BAIDU, Yahoo etc.Also can register the phone that the information in contact method one hurdle in storehouse or the Quality Supervision Bureau register base obtains enterprise by the administration for industry and commerce.If can obtain the contact method of enterprise by the way, illustrate that the reliability of this enterprise is higher, can assert that it is safe.If can only obtain Mobile Directory Number, then reliability is relatively poor.
2, the enterprise address that provides according to the applicant verifies whether there is this enterprise to this place, address.The one, seeking help by the internet, other people confirm.The 2nd, seeking help to the locality, other people confirm.
3, the scope of business of examining this enterprise with submit to the whether consistent of service processing device.The webpage of searching enterprise on the net, the business of publishing on the webpage whether with submit to the consistent of service processing device.
4, whether the phone that provides by the applicant title of examining enterprise and the enterprise name of submitting to service processing device or the title in the administration for industry and commerce registration storehouse be consistent.Need hide phone IP when examining by phone does not answer the call because of the false identity of self to prevent the other side.
Verification result is with parametric form return authentication device:
| Enterprise name | The enterprise address | Contact method | The scope of business |
| Very (vacation) | Very (vacation) | Very (vacation) | Very (vacation) |
Mode is examined in above-mentioned side also can have alternate manner or method, examines mode so long as not the side that the present invention mentions that all belongs to that the information that provides according to the applicant is directly examined.
The just necessary but non-whole flow process of above-mentioned identifying procedure, authenticate device can increase step according to actual needs on the basis of this flow process, guarantee the quality and the efficient that authenticate under the friendly prerequisite guaranteeing that the member experiences.
The E-business service treating apparatus needs the verification process of authenticate device is exercised supervision, and prevents because the carelessness of authenticate device or mistake cause damage for member's interests.Relevant supervision standard is as follows:
1, the member who needs authenticate device to examine can not omit.Whether the member that the service processing device periodic retrieval of E-business service treating apparatus need authenticate is through authentication.
2, result and the mode examined of side must be filled in strictly according to the facts.The E-business service treating apparatus is spot-check at each authentication result of returning, examines the foundation of returning by the side and carries out the verification of many-side intersection, if find authenticate device unfounded situation is arranged, and will the quality of authenticate device be detected again;
3, if other member of later stage has complaint to this member, query this member's authentication, confirm that through check this member's authentication has problems, will authenticate device that be responsible for this member authentication process be detected again.
Because the present invention has carried out just declaring to member's security, and security is divided into four different grades, according to the corresponding verification process of grade different mining.Can be lower to safe class, verification process that member that security is higher adopts simplification, thereby reduced the workload of authenticate device, and this class member is carried out preferential authentication, reduced bothering to the member, can make simultaneously member's authentication of passing through early obtain service, make the member feel friendly more.Can member higher to safe class, that security is relatively poor do more detailed authentication equally, avoid false member, bring loss on the interests in the network trading in future, for other member by authentication; Also can avoid making seem false and in fact be real member because of misunderstanding by authentication, thereby do not obtain better service.Through of the supervision of E-business service treating apparatus, reduced the infringement that brings to the member because of the careless omission or the mistake of authenticate device to authenticate device.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these changes and modification interior.
Claims (21)
1, a kind of member identity identification method is characterized in that, may further comprise the steps:
A, member's relevant information and the safe class of composing to the member according to this relevant information are sent to authenticate device;
B, authenticate device start corresponding identifying procedure according to member's safe class, the member is carried out authentication, and obtain authentication result.
2, member identity identification method as claimed in claim 1 is characterized in that, comprises the steps: among the step B
B1, judge according to member's safe class whether it is safe member, if, execution in step B2 then, otherwise, execution in step B3;
B2, indication member submit power of attorney to, and examine the authorization message that the member submits to and obtain authentication result;
B3, authenticate device are gathered membership information and are authenticated, and obtain authentication result.
3, member identity identification method as claimed in claim 2 is characterized in that, comprises the steps: among the step B3
B31, authenticate device gather membership information and the authenticity of the information that provides by the Information Authentication member who collects, if true, and execution in step B2 then, otherwise, carry out step B32;
B32, require the member to give information again, and the data of examining this member and providing obtain authentication result.
4, member identity identification method as claimed in claim 3 is characterized in that, the concrete steps of step B32 are:
Authenticate device is specified multiple certificate scheme, accepts authentication by member's optional one in appointed scheme, and the related data of selected certificate scheme requirement is provided.
5, member identity identification method as claimed in claim 3 is characterized in that, the membership information that described authenticate device collects comprises enterprise's mandate; Or the membership information that collects of described authenticate device comprises that enterprise authorizes, and company information and/or applicant's identity.
6, member identity identification method as claimed in claim 3 is characterized in that, can be power of attorney and organization mechanism code number, legal representative's identification card number, bank beat in the money authentication one or multinomial to public affairs to the data that described member provides again.
7, member identity identification method as claimed in claim 3 is characterized in that, the data that described power of attorney or described member are provided is again checked with the information in the database of corresponding administrative authority, obtains authentication result.
8, as each described member identity identification method of claim 1 to 7, it is characterized in that the information of registration and member's behavioural information when described membership related information comprises the member subscription service.
9, a kind ofly be used to open the Network service method, it is characterized in that, may further comprise the steps:
A, member propose service request and membership information are provided to information collecting device;
B, service processing device are composed the corresponding safe class to the member according to member's relevant information, and member's information and safe class are sent to authenticate device;
C, authenticate device start corresponding identifying procedure according to member's safe class, and obtain authentication result;
D, authenticate device return to service processing device with authentication result, and whether described service processing device is described member's turn up service according to this authentication result decision.
10, as claimed in claim 9ly be used to open the Network service method, it is characterized in that, comprise the steps: among the step b
B1, judge according to member's safe class whether it is safe member, if, execution in step b2 then, otherwise, execution in step b3;
B2, indication member submit power of attorney to, and examine the authorization message that the member submits to and obtain authentication result;
B3, authenticate device are gathered membership information and are authenticated, and obtain authentication result.
11, as claimed in claim 10ly be used to open the Network service method, it is characterized in that, comprise the steps: among the step b3
B31, authenticate device gather membership information and the authenticity of the information that provides by the Information Authentication member who collects, if true, and execution in step b2 then, otherwise, carry out step b32;
B32, require the member to give information again, and the data of examining this member and providing obtain authentication result.
12, as claimed in claim 11ly be used to open the Network service method, it is characterized in that the concrete steps of step b32 are:
Authenticate device is specified multiple certificate scheme, accepts authentication by member's optional one in appointed scheme, and the related data of selected certificate scheme requirement is provided.
13, as claimed in claim 11ly be used to open the Network service method, it is characterized in that, the membership information that described authenticate device collects comprises that enterprise authorizes; Or the membership information that collects of described authenticate device comprises that enterprise authorizes, and company information and/or applicant's identity.
14, as claimed in claim 11ly be used to open the Network service method, it is characterized in that can be power of attorney and organization mechanism code number, legal representative's identification card number, bank beat in the money authentication one or multinomial to public affairs to the data that described member provides again.
15, as claimed in claim 11ly be used to open the Network service method, it is characterized in that, the data that described power of attorney or described member are provided is again checked with the information in the database of corresponding government department, obtains authentication result.
16, each describedly is used to open the Network service method as claim 9 to 15, it is characterized in that the information of registration and member's behavioural information when described membership related information comprises the member subscription service.
17, a kind of system that realizes member identity identification is characterized in that, comprising:
Judgment means is used for judging according to member's safe class whether the member is safe member;
First validation apparatus is used for when judging the member for safe member, and the indication member provides power of attorney and verifies its reality;
Second validation apparatus is used for when judging the member for dangerous member it being authenticated.
18, the system of realization member identity identification as claimed in claim 17 is characterized in that, described second validation apparatus comprises:
Gather authentication unit, be used to gather membership information and the authenticity of the information that provides by the Information Authentication member who collects;
Examine the unit, the related data that its selected scheme that being used to examine the member provides requires.
19, a kind of service system that is used to open Network is characterized in that, comprises
The customer relation management device, the information that is used to store and manage the member;
Information collecting device is used to receive member's service request and gathers membership information;
Service processing device is used to receive the membership information that information collecting device transmits, and obtains member's relevant information and composes the corresponding safe class to the member according to this relevant information;
Authenticate device is used to receive membership related information and the safe class that service processing device is submitted to, and the member is carried out authentication and authentication result is returned to service processing device.
20, the service system that is used to open Network as claimed in claim 19 is characterized in that, described authenticate device comprises as lower device:
Judgment means is used for judging according to member's safe class whether the member is safe member;
First validation apparatus is used for when judging the member for safe member, and the indication member provides power of attorney and verifies its reality;
Second validation apparatus is used for when judging the member for dangerous member it being authenticated.
21, the service system that is used to open Network as claimed in claim 20 is characterized in that, described second validation apparatus comprises:
Gather authentication unit, be used to gather membership information and the authenticity of the information that provides by the Information Authentication member who collects;
Examine the unit, the related data that its selected scheme that being used to examine the member provides requires.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200610090764XA CN101097623A (en) | 2006-06-30 | 2006-06-30 | Member identity identification method and device thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200610090764XA CN101097623A (en) | 2006-06-30 | 2006-06-30 | Member identity identification method and device thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101097623A true CN101097623A (en) | 2008-01-02 |
Family
ID=39011438
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA200610090764XA Pending CN101097623A (en) | 2006-06-30 | 2006-06-30 | Member identity identification method and device thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101097623A (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102270329A (en) * | 2011-06-06 | 2011-12-07 | 辜进荣 | Membership-based accurate classification network interaction platform |
| CN102624724A (en) * | 2012-03-06 | 2012-08-01 | 深信服网络科技(深圳)有限公司 | Security gateway and method for securely logging in server by gateway |
| CN102722779A (en) * | 2012-05-18 | 2012-10-10 | 苏州万图明电子软件有限公司 | Business transaction consultation system |
| CN103093131A (en) * | 2011-10-31 | 2013-05-08 | 达谊股份有限公司 | Method for authenticating identities of enterprise employees |
| CN106572095A (en) * | 2016-11-01 | 2017-04-19 | 腾讯科技(深圳)有限公司 | Account registration method, device and system |
| CN108256876A (en) * | 2016-12-28 | 2018-07-06 | 天津邦新翔科技有限公司 | A kind of member management software |
| CN117853114A (en) * | 2024-03-08 | 2024-04-09 | 布比(北京)网络技术有限公司 | Enterprise identity authentication method and device, storage medium and electronic equipment |
-
2006
- 2006-06-30 CN CNA200610090764XA patent/CN101097623A/en active Pending
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102270329A (en) * | 2011-06-06 | 2011-12-07 | 辜进荣 | Membership-based accurate classification network interaction platform |
| CN103093131A (en) * | 2011-10-31 | 2013-05-08 | 达谊股份有限公司 | Method for authenticating identities of enterprise employees |
| CN102624724A (en) * | 2012-03-06 | 2012-08-01 | 深信服网络科技(深圳)有限公司 | Security gateway and method for securely logging in server by gateway |
| CN102624724B (en) * | 2012-03-06 | 2014-12-17 | 深信服网络科技(深圳)有限公司 | Security gateway and method for securely logging in server by gateway |
| CN102722779A (en) * | 2012-05-18 | 2012-10-10 | 苏州万图明电子软件有限公司 | Business transaction consultation system |
| CN106572095A (en) * | 2016-11-01 | 2017-04-19 | 腾讯科技(深圳)有限公司 | Account registration method, device and system |
| CN106572095B (en) * | 2016-11-01 | 2018-04-10 | 腾讯科技(深圳)有限公司 | Account registration method, apparatus and system |
| WO2018082560A1 (en) * | 2016-11-01 | 2018-05-11 | 腾讯科技(深圳)有限公司 | Account number registration method, related device, and system |
| CN108256876A (en) * | 2016-12-28 | 2018-07-06 | 天津邦新翔科技有限公司 | A kind of member management software |
| CN117853114A (en) * | 2024-03-08 | 2024-04-09 | 布比(北京)网络技术有限公司 | Enterprise identity authentication method and device, storage medium and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8880435B1 (en) | Detection and tracking of unauthorized computer access attempts | |
| US9406067B1 (en) | System and method for verifying identity | |
| US8224753B2 (en) | System and method for identity verification and management | |
| RU2427893C2 (en) | Method of service server authentication (versions) and method of services payment (versions) in wireless internet | |
| CN110226165A (en) | Pass through updatable data structure detection electronic penetration person | |
| US20090320101A1 (en) | System and method for authenticating users in a social network | |
| CN107710258A (en) | System and method for personal identification and checking | |
| US20060080263A1 (en) | Identity theft protection and notification system | |
| JP2002063532A (en) | Order settlement system | |
| JP3228339U (en) | Personal authentication and verification system and method | |
| US20090018934A1 (en) | System and Method for defense ID theft attack security service system in marketing environment | |
| WO2002037358A1 (en) | User authentication method in network | |
| CN101853342A (en) | The anti identity theft and the payment network of protection privacy | |
| JP2018045540A (en) | Deposit account information disclosure system including virtual currency address | |
| CN108074095A (en) | A kind of ticket processing method and device | |
| CN105593869A (en) | Authentication system, method, and program | |
| CN101097623A (en) | Member identity identification method and device thereof | |
| CN107292718A (en) | Houseclearing management method and server | |
| CN107729727A (en) | The real name identification method and device of a kind of account number | |
| Abelson et al. | Digital identity in cyberspace | |
| JP4463497B2 (en) | Point management system | |
| EP1779588A1 (en) | Identity theft protection and notification system | |
| KR101024370B1 (en) | Integrated Messenger Banking Method by Using Personal Financial Management System | |
| JP4211193B2 (en) | Personal authentication device in network | |
| WO2021234476A1 (en) | De-identified identity proofing methods and systems |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1111792 Country of ref document: HK |
|
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20080102 |