CN103078863A - Method, device and system for login authentication - Google Patents
Method, device and system for login authentication Download PDFInfo
- Publication number
- CN103078863A CN103078863A CN 201310006232 CN201310006232A CN103078863A CN 103078863 A CN103078863 A CN 103078863A CN 201310006232 CN201310006232 CN 201310006232 CN 201310006232 A CN201310006232 A CN 201310006232A CN 103078863 A CN103078863 A CN 103078863A
- Authority
- CN
- China
- Prior art keywords
- information
- login authentication
- user
- account number
- number cipher
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The application discloses a method, a device and a system for login authentication. The method comprises the steps that terminal equipment sequentially obtains account password information input by a user and timestamp information; according to the sequentially obtained timestamp information, password input frequency information is computed; the obtained account password information and the password input frequency information are encrypted, user identity information is carried and the encrypted information is output to a server; according to a user identity, the server inquires to obtain login authentication information which is preset by the user and is stored in the server; and the received information is decrypted to obtain the account password information and the password input frequency information, then matching with the login authentication information obtained through inquiry is conducted, and if the matching is successful, the user passes the login authentication. By using the method, the device and the system for login authentication provided by the application, the login authentication security can be improved and the legitimate rights and interests of users can be guaranteed.
Description
Technical field
The present invention relates to the communication security technology, relate in particular to a kind of method, Apparatus and system of login authentication.
Background technology
Development along with information technology, be communicated with the Internet by terminal equipment, obtain the correlation technique data, carry out online transaction and become requisite mode in people's daily life, the Internet is bringing to people infinitely easily simultaneously, also a lot of beyond thought worries have been brought to people, for example, customer data base is revealed, subscriber data is placed to online open the download, the Stored Value card number, bank account number, the network account that comprise user profile number are stolen by the disabled user, cause user's legitimate rights and interests to suffer damage.
In order to ensure user's legitimate rights and interests, for user data, for example, bank account and network account etc. all adopt the mode of password encryption to carry out login authentication with the identification account, for instance, terminal equipment after receiving the account number cipher that the user arranges, by in advance with symmetric encipherment algorithm or the rivest, shamir, adelman of server negotiate, form the account number cipher of encrypting, export server to, server is stored after adopting corresponding symmetrical decipherment algorithm or the deciphering of asymmetric decipherment algorithm; When the user need to login by account, terminal equipment receives the account number cipher information of user's input, after adopting corresponding cryptographic algorithm to be encrypted, export server to, after server is decrypted, mate with this user's the account number cipher of storage, if coupling is consistent, then by login authentication, otherwise, the login authentication failure.
By as seen above-mentioned, the existing user log-in authentication method that account number cipher is encrypted, by account number cipher being encrypted the realization login authentication, can ensure to a certain extent user's legitimate rights and interests, avoid the disabled user to login, but this encryption method adopts the substance cipher mode to carry out login authentication, the login authentication flow process is comparatively simple, so that account number safety is lower, account number cipher is in case leak, it is stolen that account then very easily occurs, and causes any property loss.
Summary of the invention
Embodiments of the invention provide a kind of method of login authentication, promote fail safe, the guarantee user legitimate rights and interests of login authentication.
Embodiments of the invention also provide a kind of device of login authentication, promote fail safe, the guarantee user legitimate rights and interests of login authentication.
Embodiments of the invention also provide a kind of system of login authentication, promote fail safe, the guarantee user legitimate rights and interests of login authentication.
For achieving the above object, the method for a kind of login authentication that the embodiment of the invention provides, the method comprises:
Terminal equipment sequentially obtains account number cipher information and the timestamp information of user's input;
According to the timestamp information that sequentially obtains, calculate the Password Input frequency information;
The account number cipher information that encryption is obtained and Password Input frequency information carry user totem information, export server to;
Server is according to user ID, and inquiry is obtained this user and set in advance and be stored in login authentication information in the server;
The information that deciphering receives is obtained account number cipher information and Password Input frequency information, mates with the login authentication information that inquiry is obtained, if the match is successful, by login authentication.
Wherein, sequentially obtain at described terminal equipment before the step of the account number cipher information of user input and timestamp information, described method further comprises:
Show that account number cipher arranges control and Password Input set of frequency control;
Monitor the user selection account number cipher control and Password Input set of frequency control are set, trigger the described terminal equipment of execution and sequentially obtain the account number cipher information of user's input and the step of timestamp information.
Wherein, the described terminal equipment account number cipher information and the timestamp information that sequentially obtain user input comprises:
Determine that the user is in login state, obtain the first character of user's input, recording user is inputted the timestamp information of first character;
Sequentially obtain other character of user's input, respectively the timestamp information of recording user input character;
Determine that user inputs character is complete, with sequentially the input character as account number cipher information.
Wherein, the timestamp information that described basis is sequentially obtained, calculate the Password Input frequency information and comprise:
According to the timestamp information that sequentially obtains, the time difference of order timestamp information before and after sequentially calculating;
Obtain the time difference information that sequentially calculates, as the Password Input frequency information.
Wherein, the algorithm that carries out described encryption comprises: symmetric encipherment algorithm and rivest, shamir, adelman.
Wherein, described method further comprises:
Set in advance and store the corresponding relation of login authentication sign and login authentication information;
The login authentication sign of this user's Set For Current is obtained in inquiry, obtains login authentication information corresponding to this login authentication sign.
Wherein, the described login authentication information of obtaining with inquiry is mated, if the match is successful, comprises by login authentication:
Determine that the login authentication information of obtaining comprises account number cipher information and Password Input frequency information, the account number cipher information of coupling deciphering and the account number cipher information of obtaining, if consistent, time difference of the Password Input frequency information of secure processing device encrypts and the Password Input frequency information that obtains sequentially, if the time difference does not exceed the time difference threshold value that sets in advance, by login authentication, if inconsistent, process ends.
A kind of device of login authentication, this device comprises: input message acquisition module, login authentication information generating module and login authentication information sending module, wherein,
The input message acquisition module is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs;
The login authentication information generating module for the timestamp information that sequentially obtains according to the input message acquisition module, is calculated the Password Input frequency information;
The login authentication information sending module be used for to be encrypted the Password Input frequency information that account number cipher information that the input message acquisition module obtains and login authentication information generating module generate, and carries user totem information, exports server to.
Preferably, further comprise:
Monitoring modular, be used for showing that account number cipher arranges control and Password Input set of frequency control, after monitoring the user selection account number cipher control and Password Input set of frequency control be set, to input message acquisition module output trigger message, so that the input message acquisition module according to the trigger message that receives, sequentially obtains account number cipher information and the timestamp information of user's input.
A kind of device of login authentication, this device comprises: login authentication information storage module, enquiry module and matching module, wherein,
The login authentication information storage module is used for the login authentication information that the storage user sets in advance;
Enquiry module is used for according to user ID, and inquiry login authentication information storage module obtains the login authentication information that this user sets in advance and stores;
Matching module is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information, mates with the login authentication information that enquiry module obtains, if the match is successful, by login authentication.
Preferably, described login authentication information storage module is further used for storing the corresponding relation of login authentication sign and login authentication information; Described enquiry module is further used for inquiring about the login authentication sign of obtaining this user's Set For Current, obtains login authentication information corresponding to this login authentication sign.
Preferably, described matching module comprises: decryption unit, login authentication information process unit, the first authentication ' unit and the second authentication ' unit, wherein,
Decryption unit is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information;
The login authentication information process unit, be used for judging whether the login authentication information of obtaining from enquiry module comprises account number cipher information and Password Input frequency information, if, with login authentication information output to the second authentication ' unit, trigger decryption unit and export account number cipher information and the Password Input frequency information that obtains to second authentication ' unit; If not, with login authentication information output to the first authentication ' unit, trigger decryption unit with account number cipher information output to the first authentication ' unit of obtaining;
The first authentication ' unit is used for judging whether the account number cipher information from decryption unit output is consistent with the login authentication information of exporting from the login authentication information process unit, if consistent, login authentication is passed through, otherwise, the login authentication failure;
The second authentication ' unit, be used for judging account number cipher information and Password Input frequency information from decryption unit output, whether account number cipher information is consistent with the account number cipher information that the login authentication information of exporting from the login authentication information process unit comprises: if consistent, sequentially calculate from the time difference of Password Input frequency information with the Password Input frequency information of exporting from the login authentication information process unit of decryption unit output, if the time difference does not exceed the time difference threshold value that sets in advance, by login authentication, otherwise, the login authentication failure; If inconsistent, the login authentication failure.
A kind of system of login authentication, this system comprises: terminal equipment and server, wherein,
Terminal equipment is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs; Timestamp information according to the input message acquisition module sequentially obtains calculates the Password Input frequency information; The Password Input frequency information that the account number cipher information that encryption input message acquisition module obtains and login authentication information generating module generate carries user totem information, exports server to;
Server is used for according to the user ID that receives, and inquiry is obtained this user and set in advance and be stored in login authentication information in the server; The information that deciphering receives is obtained account number cipher information and Password Input frequency information, mates with the login authentication information that inquiry is obtained, if the match is successful, by login authentication.
Preferably, described terminal equipment comprises: input message acquisition module, login authentication information generating module and login authentication information sending module, wherein,
The input message acquisition module is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs;
The login authentication information generating module for the timestamp information that sequentially obtains according to the input message acquisition module, is calculated the Password Input frequency information;
The login authentication information sending module be used for to be encrypted the Password Input frequency information that account number cipher information that the input message acquisition module obtains and login authentication information generating module generate, and carries user totem information, exports server to.
Preferably, described terminal equipment further comprises:
Monitoring modular, be used for showing that account number cipher arranges control and Password Input set of frequency control, after monitoring the user selection account number cipher control and Password Input set of frequency control be set, to input message acquisition module output trigger message, so that the input message acquisition module according to the trigger message that receives, sequentially obtains account number cipher information and the timestamp information of user's input.
Preferably, described server comprises: login authentication information storage module, enquiry module and matching module, wherein,
The login authentication information storage module is used for the login authentication information that the storage user sets in advance;
Enquiry module is used for according to user ID, and inquiry login authentication information storage module obtains the login authentication information that this user sets in advance and stores;
Matching module is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information, mates with the login authentication information that enquiry module obtains, if the match is successful, by login authentication.
Preferably, described matching module comprises: decryption unit, login authentication information process unit, the first authentication ' unit and the second authentication ' unit, wherein,
Decryption unit is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information;
The login authentication information process unit, be used for judging whether the login authentication information of obtaining from enquiry module comprises account number cipher information and Password Input frequency information, if, with login authentication information output to the second authentication ' unit, trigger decryption unit and export account number cipher information and the Password Input frequency information that obtains to second authentication ' unit; If not, with login authentication information output to the first authentication ' unit, trigger decryption unit with account number cipher information output to the first authentication ' unit of obtaining;
The first authentication ' unit is used for judging whether the account number cipher information from decryption unit output is consistent with the login authentication information of exporting from the login authentication information process unit, if consistent, login authentication is passed through, otherwise, the login authentication failure;
The second authentication ' unit, be used for judging account number cipher information and Password Input frequency information from decryption unit output, whether account number cipher information is consistent with the account number cipher information that the login authentication information of exporting from the login authentication information process unit comprises: if consistent, sequentially calculate from the time difference of Password Input frequency information with the Password Input frequency information of exporting from the login authentication information process unit of decryption unit output, if the time difference does not exceed the time difference threshold value that sets in advance, by login authentication, otherwise, the login authentication failure; If inconsistent, the login authentication failure.
As seen from the above technical solution, the method for a kind of login authentication that the embodiment of the invention provides, Apparatus and system, terminal equipment sequentially obtain account number cipher information and the timestamp information of user's input; According to the timestamp information that sequentially obtains, calculate the Password Input frequency information; The account number cipher information that encryption is obtained and Password Input frequency information carry user totem information, export server to; Server is according to user ID, and inquiry is obtained this user and set in advance and be stored in login authentication information in the server; The information that deciphering receives is obtained account number cipher information and Password Input frequency information, mates with the login authentication information that inquiry is obtained, if the match is successful, by login authentication.Like this, when account number cipher is set, the Password Input frequency information of record input account number cipher, account number cipher information is combined with the Password Input frequency information, as user log-in authentication information, by the mode of multiple authentication, effectively promoted the fail safe of login authentication, ensured user's legitimate rights and interests.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art, below will do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art.Apparently, the accompanying drawing in below describing only is some embodiments of the present invention, for those of ordinary skills, can also obtain according to these accompanying drawing illustrated embodiments other embodiment and accompanying drawing thereof.
Fig. 1 is the method flow schematic diagram of embodiment of the invention login authentication.
Fig. 2 is the method idiographic flow schematic diagram of embodiment of the invention login authentication.
Fig. 3 is the apparatus structure schematic diagram of embodiment of the invention login authentication.
Fig. 4 is another apparatus structure schematic diagram of embodiment of the invention login authentication.
Fig. 5 is the system configuration schematic diagram of embodiment of the invention login authentication.
Embodiment
Below with reference to accompanying drawing the technical scheme of various embodiments of the present invention is carried out clear, complete description, obviously, described embodiment only is a part of embodiment of the present invention, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills are resulting all other embodiment under the prerequisite of not making creative work, all belong to the scope that the present invention protects.
The existing login authentication method that account number cipher is encrypted adopts the substance cipher mode that account number cipher is encrypted, and account number safety is lower, and in a single day account number cipher leaks, and it is stolen that account then very easily occurs, so that user's legitimate rights and interests can not get ensureing.
In the embodiment of the invention, be encrypted for account number cipher and cause easily the drawback that password is stolen or leak, consider the user behavior feature of user when account number cipher is set, be the incoming frequency information of account number cipher, the mode of Password Input frequency is set when encrypting by the record account, realizes the double-encryption to account number cipher.That is to say that the account number cipher that the user is arranged is as a heavy password, the Password Input frequency information when account being set encrypting is as doublet code, thereby the user realized the user log-in authentication of double-encryption.Thereby, even user's account number cipher leaks, because the Password Input frequency information that the disabled user can't obtain the user when inputting account number cipher, still can't the login user account, thus realize double-encryption, avoid the disabled user by login authentication.
The method of the embodiment of the invention realizes simple, need not the existing hardware structure is changed, and need not to increase hardware cost, only needs software is upgraded and can be realized; Further, the Password Input frequency information the when user only need to remember account number cipher is set can be realized double-encryption, and is simple to operate, be easy to grasp, and is convenient to promote.
Fig. 1 is the method flow schematic diagram of embodiment of the invention login authentication.Referring to Fig. 1, this flow process comprises:
In this step, account number cipher information comprises: digital and alphabetical, certainly, in the practical application, account number cipher information can also include symbol etc.
Before this step, the method can further include:
Show that account number cipher arranges control and Password Input set of frequency control;
In this step, account number cipher is set at the login authentication interface of server in advance control and Password Input set of frequency control are set, when the user passes through the login authentication interface of terminal equipment logon server, show that to the user account number cipher arranges control and Password Input set of frequency control.
Monitor the user selection account number cipher control and Password Input set of frequency control are set, trigger execution in step 101.
In this step, the user arranges control and Password Input set of frequency control according to the account number cipher of showing, can select to carry out the account number cipher setting, perhaps, carries out account number cipher setting and Password Input set of frequency.In the practical application, if user selection carries out the account number cipher setting, then carry out login authentication according to existing procedure, do not repeat them here.
Certainly, in the practical application, terminal equipment is direct execution in step 101 also, namely need not the user and whether selects account number cipher setting and Password Input set of frequency, and all execution in step 101.
Preferably, step 101 specifically comprises:
A11 determines that the user is in login state, obtains the first character of user's input, and recording user is inputted the timestamp information of first character;
In this step, when the user registered for user account, the register interface that logon server provides was carried out the user account registration.
Character can be numeral, also can be letter, all right is-symbol etc.
A12 sequentially obtains other character of user's input, respectively the timestamp information of recording user input character;
In this step, the user sequentially inputs other character in the account number cipher information according in advance setting, and the user terminal recording user is inputted timestamp information corresponding to each character, so that follow-up generation Password Input frequency information.
A13 determines that user inputs character is complete, with sequentially the input character as account number cipher information.
In this step, if monitor the affirmation control that the user has clicked register interface, show that the user has inputted character, the character that the user is sequentially inputted links to each other, as account number cipher information.
Step 102 according to the timestamp information that sequentially obtains, is calculated the Password Input frequency information;
This step comprises:
According to the timestamp information that sequentially obtains, the time difference of order timestamp information before and after sequentially calculating;
In this step, each character in the account number cipher information, corresponding corresponding timestamp information according to the sequencing of character in the account number cipher information, calculates respectively the time difference of timestamp corresponding to adjacent two characters respectively.
Obtain the time difference information that sequentially calculates, as the Password Input frequency information.
In this step, if the account number cipher packets of information contains n character, the time difference information number that then calculates is (n-1), and the individual time difference information of this (n-1) that sequentially obtains consists of the Password Input frequency information.
Step 103 is encrypted the account number cipher information and the Password Input frequency information that obtain, carries user totem information, exports server to;
In this step, cryptographic algorithm can be existing cryptographic algorithm, for example, and symmetric encipherment algorithm and rivest, shamir, adelman.Wherein, symmetric encipherment algorithm can be DES algorithm, 3DES algorithm, TDEA algorithm, Blowfish algorithm, RC5 algorithm, IDEA algorithm etc., and rivest, shamir, adelman can be RSA Algorithm, Elgamal algorithm, knapsack algorithm, Rabin algorithm, D-H algorithm, ECC algorithm etc.
In this step, login authentication information can be account number cipher information, also can be account number cipher information and Password Input frequency information.Difference according to login authentication information, the user can set in advance corresponding login authentication mode, for example, if choosing account number cipher information, the user carries out user log-in authentication, corresponding existing login authentication flow process then, if the user chooses account number cipher information and the Password Input frequency information carries out user log-in authentication, the login authentication flow process of the corresponding embodiment of the invention then.
Certainly, in the practical application, login authentication information can comprise account number cipher information and Password Input frequency information, and the user can adjust and arrange the login authentication mode according to actual needs, and the method further comprises:
Set in advance and store the corresponding relation of login authentication sign and login authentication information;
In this step, as previously mentioned, the user can adopt account number cipher information or, account number cipher information and Password Input frequency information carry out login authentication, login authentication then can be set be designated 1, corresponding login authentication information is account number cipher information; Login authentication is set is designated 2, corresponding login authentication information is account number cipher information and Password Input frequency information.And current login authentication sign be used to carrying out login authentication is set, and for example, be set to 2, show and adopt account number cipher information and Password Input frequency information to carry out login authentication.
The login authentication sign of this user's Set For Current is obtained in inquiry, obtains login authentication information corresponding to this login authentication sign.
In this step, if the login authentication of user's Set For Current is designated 1, shows and adopt existing login authentication flow process, if the login authentication of user's Set For Current is designated 2, show the login authentication flow process that adopts the embodiment of the invention.
In this step, mate with the login authentication information that inquiry is obtained, if the match is successful, comprise by login authentication:
A21 determines that the login authentication information of obtaining comprises account number cipher information and Password Input frequency information, the account number cipher information of coupling deciphering and the account number cipher information of obtaining, if consistent, execution in step A22, otherwise, process ends;
A22, time difference of the Password Input frequency information of secure processing device encrypts and the Password Input frequency information that obtains sequentially, if the time difference do not exceed the time difference threshold value that sets in advance, by login authentication.
In this step, if the time difference exceed the time difference threshold value that sets in advance, then process ends.
Certainly, in the practical application, also can be after acquisition time be poor, the ratio of the Password Input frequency information that store in difference and the server database computing time, for example, obtain the first password incoming frequency information between first character in the account number cipher information that obtains of deciphering and second character, then, the second Password Input frequency information in the inquiry account number cipher information that obtains storing between first character and second character, the difference of first password incoming frequency information and the second Password Input frequency information is the time difference, this time difference is divided by the second Password Input frequency information, obtain ratio, this ratio and the proportion threshold value that sets in advance are compared, if this ratio is less than the proportion threshold value that sets in advance, then by login authentication.
Comprising the situation of account number cipher information about the login authentication information of obtaining, is existing login authentication flow process.
Fig. 2 is the method idiographic flow schematic diagram of embodiment of the invention login authentication.Referring to Fig. 2, this flow process comprises:
Step 201 is obtained the password of user's input;
In this step, the user is when carrying out login authentication, by terminal equipment input password.
Step 202, the time interval in the recording user input password between the adjacent character;
In this step, by current character input time point and some input time of a upper character calculate time interval between the adjacent character.
In the embodiment of the invention, when accession authorization system arranges login authentication information (account number cipher) the user, interval input time in the record account number cipher between each character, and preserve.This time interval cooperates account number cipher, forms double-encryption, thereby improves the fail safe of login authentication.
Step 203 is judged whether the user inputs to withdraw from button, if so, and execution in step 207, otherwise, execution in step 204;
In this step, if button is withdrawed from user's input in the process of input account number cipher, show and abandon login authentication.
Step 204 judges whether the character of user's input reaches Password Length, if so, and execution in step 205, otherwise, return execution in step 201;
In this step, after the character of user's input reaches Password Length, can initiate login authentication to server.
Step 205, judge time interval of record and password whether with database in the time interval and the password stored mate respectively, if so, execution in step 206, otherwise, execution in step 208;
In this step, when deciphering, require the user in the correct code characters of input, need to be decrypted by correct code characters incoming frequency input code characters.The time interval of namely judging record sequentially and password whether with database in the time interval and the password sequentially stored mate respectively.
Step 206, login authentication is passed through;
Step 207, the Verification System of logging off;
Step 208, the login authentication failure.
In the embodiment of the invention, take 6 passwords as example, the character incoming frequency of---*---* * * * that can adopt * when password arranges arranges password, during deciphering, needs still according to *---*---* * * * order and frequency to decipher.
The false code section that realizes this login authentication is as follows:
By as seen above-mentioned, the method of embodiment of the invention login authentication, when account number cipher is set, the Password Input frequency information of record input account number cipher, account number cipher information is combined with the Password Input frequency information, as user log-in authentication information, so that in the situation that user's account number cipher leaks, because the Password Input frequency information the when disabled user can't obtain the user and inputs account number cipher, still can't the login user account, thus realize double-encryption, avoid the disabled user by login authentication, like this, by multiple authentication mode, can promote the fail safe of login authentication, ensure user's legitimate rights and interests; Further, the method realizes simple, need not the existing hardware structure is changed, and only needs software is upgraded and can be realized.
Fig. 3 is the apparatus structure schematic diagram of embodiment of the invention login authentication.This device is terminal equipment, and referring to Fig. 3, this terminal equipment comprises: input message acquisition module, login authentication information generating module and login authentication information sending module, wherein,
The input message acquisition module is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs;
In the embodiment of the invention, account number cipher information is comprised of a plurality of numerals and letter.
The login authentication information generating module for the timestamp information that sequentially obtains according to the input message acquisition module, is calculated the Password Input frequency information;
In the embodiment of the invention, according to the timestamp information that sequentially obtains, the time difference of order timestamp information before and after sequentially calculating; Obtain the time difference information that sequentially calculates, as the Password Input frequency information.For instance, if the account number cipher packets of information contains n character, corresponding timestamp information of each character then, the difference of the timestamp information of adjacent character is time difference information, the time difference information number that then calculates is (n-1), and the individual time difference information of this (n-1) that sequentially obtains consists of the Password Input frequency information.
The login authentication information sending module be used for to be encrypted the Password Input frequency information that account number cipher information that the input message acquisition module obtains and login authentication information generating module generate, and carries user totem information, exports server to.
Preferably, this terminal equipment can further include:
Monitoring modular, be used for showing that account number cipher arranges control and Password Input set of frequency control, after monitoring the user selection account number cipher control and Password Input set of frequency control be set, to input message acquisition module output trigger message, so that the input message acquisition module according to the trigger message that receives, sequentially obtains account number cipher information and the timestamp information of user's input.
Fig. 4 is another apparatus structure schematic diagram of embodiment of the invention login authentication.This device is server, and referring to Fig. 4, this server comprises: login authentication information storage module, enquiry module and matching module, wherein,
The login authentication information storage module is used for the login authentication information that the storage user sets in advance;
In the embodiment of the invention, the login authentication information storage module is further used for storing the corresponding relation of login authentication sign and login authentication information.
Enquiry module is used for according to user ID, and inquiry login authentication information storage module obtains the login authentication information that this user sets in advance and stores;
In the embodiment of the invention, enquiry module is further used for inquiring about the login authentication sign of obtaining this user's Set For Current, obtains login authentication information corresponding to this login authentication sign.
Matching module is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information, mates with the login authentication information that enquiry module obtains, if the match is successful, by login authentication.
In the embodiment of the invention, matching module comprises: decryption unit, login authentication information process unit, the first authentication ' unit and the second authentication ' unit (not shown), wherein,
Decryption unit is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information;
The login authentication information process unit, be used for judging whether the login authentication information of obtaining from enquiry module comprises account number cipher information and Password Input frequency information, if, with login authentication information output to the second authentication ' unit, trigger decryption unit and export account number cipher information and the Password Input frequency information that obtains to second authentication ' unit; If not, with login authentication information output to the first authentication ' unit, trigger decryption unit with account number cipher information output to the first authentication ' unit of obtaining;
The first authentication ' unit is used for judging whether the account number cipher information from decryption unit output is consistent with the login authentication information of exporting from the login authentication information process unit, if consistent, login authentication is passed through, otherwise, the login authentication failure;
The second authentication ' unit is used for judging account number cipher information and Password Input frequency information from decryption unit output, and whether account number cipher information is consistent with the account number cipher information that the login authentication information of exporting from the login authentication information process unit comprises:
If consistent, sequentially calculate from the Password Input frequency information of decryption unit output and time difference from the Password Input frequency information of login authentication information process unit output, if the time difference do not exceed the time difference threshold value that sets in advance, by login authentication, otherwise, the login authentication failure;
If inconsistent, the login authentication failure.
Fig. 5 is the system configuration schematic diagram of embodiment of the invention login authentication.Referring to Fig. 5, this system comprises: terminal equipment and server, wherein,
Terminal equipment is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs; Timestamp information according to the input message acquisition module sequentially obtains calculates the Password Input frequency information; The Password Input frequency information that the account number cipher information that encryption input message acquisition module obtains and login authentication information generating module generate carries user totem information, exports server to;
Server is used for according to the user ID that receives, and inquiry is obtained this user and set in advance and be stored in login authentication information in the server; The information that deciphering receives is obtained account number cipher information and Password Input frequency information, mates with the login authentication information that inquiry is obtained, if the match is successful, by login authentication.
Wherein,
Terminal equipment comprises: input message acquisition module, login authentication information generating module and login authentication information sending module (not shown), wherein,
The input message acquisition module is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs;
The login authentication information generating module for the timestamp information that sequentially obtains according to the input message acquisition module, is calculated the Password Input frequency information;
The login authentication information sending module be used for to be encrypted the Password Input frequency information that account number cipher information that the input message acquisition module obtains and login authentication information generating module generate, and carries user totem information, exports server to.
Preferably, this terminal equipment can further include:
Monitoring modular, be used for showing that account number cipher arranges control and Password Input set of frequency control, after monitoring the user selection account number cipher control and Password Input set of frequency control be set, to input message acquisition module output trigger message, so that the input message acquisition module according to the trigger message that receives, sequentially obtains account number cipher information and the timestamp information of user's input.
Server comprises: login authentication information storage module, enquiry module and matching module (not shown), wherein,
The login authentication information storage module is used for the login authentication information that the storage user sets in advance;
Enquiry module is used for according to user ID, and inquiry login authentication information storage module obtains the login authentication information that this user sets in advance and stores;
Matching module is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information, mates with the login authentication information that enquiry module obtains, if the match is successful, by login authentication.
In the embodiment of the invention, matching module comprises: decryption unit, login authentication information process unit, the first authentication ' unit and the second authentication ' unit (not shown), wherein,
Decryption unit is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information;
The login authentication information process unit, be used for judging whether the login authentication information of obtaining from enquiry module comprises account number cipher information and Password Input frequency information, if, with login authentication information output to the second authentication ' unit, trigger decryption unit and export account number cipher information and the Password Input frequency information that obtains to second authentication ' unit; If not, with login authentication information output to the first authentication ' unit, trigger decryption unit with account number cipher information output to the first authentication ' unit of obtaining;
The first authentication ' unit is used for judging whether the account number cipher information from decryption unit output is consistent with the login authentication information of exporting from the login authentication information process unit, if consistent, login authentication is passed through, otherwise, the login authentication failure;
The second authentication ' unit, be used for judging account number cipher information and Password Input frequency information from decryption unit output, whether account number cipher information is consistent with the account number cipher information that the login authentication information of exporting from the login authentication information process unit comprises: if consistent, sequentially calculate from the time difference of Password Input frequency information with the Password Input frequency information of exporting from the login authentication information process unit of decryption unit output, if the time difference does not exceed the time difference threshold value that sets in advance, by login authentication, otherwise, the login authentication failure; If inconsistent, the login authentication failure.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also comprises these changes and modification interior.
Claims (10)
1. the method for a login authentication, the method comprises:
Terminal equipment sequentially obtains account number cipher information and the timestamp information of user's input;
According to the timestamp information that sequentially obtains, calculate the Password Input frequency information;
The account number cipher information that encryption is obtained and Password Input frequency information carry user totem information, export server to;
Server is according to user ID, and inquiry is obtained this user and set in advance and be stored in login authentication information in the server;
The information that deciphering receives is obtained account number cipher information and Password Input frequency information, mates with the login authentication information that inquiry is obtained, if the match is successful, by login authentication.
2. method according to claim 1 wherein, is sequentially obtained at described terminal equipment before the step of the account number cipher information of user's input and timestamp information, and described method further comprises:
Show that account number cipher arranges control and Password Input set of frequency control;
Monitor the user selection account number cipher control and Password Input set of frequency control are set, trigger the described terminal equipment of execution and sequentially obtain the account number cipher information of user's input and the step of timestamp information.
3. method according to claim 2, wherein, account number cipher information and timestamp information that described terminal equipment sequentially obtains user's input comprise:
Determine that the user is in login state, obtain the first character of user's input, recording user is inputted the timestamp information of first character;
Sequentially obtain other character of user's input, respectively the timestamp information of recording user input character;
Determine that user inputs character is complete, with sequentially the input character as account number cipher information.
4. method according to claim 1, wherein, the timestamp information that described basis is sequentially obtained, calculate the Password Input frequency information and comprise:
According to the timestamp information that sequentially obtains, the time difference of order timestamp information before and after sequentially calculating;
Obtain the time difference information that sequentially calculates, as the Password Input frequency information.
5. the device of a login authentication is characterized in that, this device comprises: input message acquisition module, login authentication information generating module and login authentication information sending module, wherein,
The input message acquisition module is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs;
The login authentication information generating module for the timestamp information that sequentially obtains according to the input message acquisition module, is calculated the Password Input frequency information;
The login authentication information sending module be used for to be encrypted the Password Input frequency information that account number cipher information that the input message acquisition module obtains and login authentication information generating module generate, and carries user totem information, exports server to.
6. device according to claim 5 is characterized in that, further comprises:
Monitoring modular, be used for showing that account number cipher arranges control and Password Input set of frequency control, after monitoring the user selection account number cipher control and Password Input set of frequency control be set, to input message acquisition module output trigger message, so that the input message acquisition module according to the trigger message that receives, sequentially obtains account number cipher information and the timestamp information of user's input.
7. the device of a login authentication is characterized in that, this device comprises: login authentication information storage module, enquiry module and matching module, wherein,
The login authentication information storage module is used for the login authentication information that the storage user sets in advance;
Enquiry module is used for according to user ID, and inquiry login authentication information storage module obtains the login authentication information that this user sets in advance and stores;
Matching module is used for the information that deciphering receives, and obtains account number cipher information and Password Input frequency information, mates with the login authentication information that enquiry module obtains, if the match is successful, by login authentication.
8. device according to claim 7 is characterized in that, described login authentication information storage module is further used for storing the corresponding relation of login authentication sign and login authentication information; Described enquiry module is further used for inquiring about the login authentication sign of obtaining this user's Set For Current, obtains login authentication information corresponding to this login authentication sign.
9. the system of a login authentication is characterized in that, this system comprises: terminal equipment and server, wherein,
Terminal equipment is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs; Timestamp information according to the input message acquisition module sequentially obtains calculates the Password Input frequency information; The Password Input frequency information that the account number cipher information that encryption input message acquisition module obtains and login authentication information generating module generate carries user totem information, exports server to;
Server is used for according to the user ID that receives, and inquiry is obtained this user and set in advance and be stored in login authentication information in the server; The information that deciphering receives is obtained account number cipher information and Password Input frequency information, mates with the login authentication information that inquiry is obtained, if the match is successful, by login authentication.
10. system according to claim 9 is characterized in that, described terminal equipment comprises: input message acquisition module, login authentication information generating module and login authentication information sending module, wherein,
The input message acquisition module is used for sequentially obtaining account number cipher information and the timestamp information that the user inputs;
The login authentication information generating module for the timestamp information that sequentially obtains according to the input message acquisition module, is calculated the Password Input frequency information;
The login authentication information sending module be used for to be encrypted the Password Input frequency information that account number cipher information that the input message acquisition module obtains and login authentication information generating module generate, and carries user totem information, exports server to.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310006232.3A CN103078863B (en) | 2013-01-08 | 2013-01-08 | The method of login authentication, Apparatus and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310006232.3A CN103078863B (en) | 2013-01-08 | 2013-01-08 | The method of login authentication, Apparatus and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103078863A true CN103078863A (en) | 2013-05-01 |
| CN103078863B CN103078863B (en) | 2015-11-18 |
Family
ID=48155267
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310006232.3A Active CN103078863B (en) | 2013-01-08 | 2013-01-08 | The method of login authentication, Apparatus and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103078863B (en) |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104283679A (en) * | 2013-07-05 | 2015-01-14 | 中国电信股份有限公司 | Method and system for conducting safety certification by input rhythms |
| CN104363087A (en) * | 2014-11-19 | 2015-02-18 | 深圳市中兴移动通信有限公司 | Encryption and decryption method and device |
| CN105577692A (en) * | 2016-02-03 | 2016-05-11 | 杭州朗和科技有限公司 | Website login authentication method and device |
| WO2016112792A1 (en) * | 2015-01-12 | 2016-07-21 | 阿里巴巴集团控股有限公司 | Identity authentication method and device |
| CN106302539A (en) * | 2016-10-12 | 2017-01-04 | 广州市芯德电子技术有限公司 | A kind of embedded type WEB safety certifying method |
| CN107967417A (en) * | 2016-10-19 | 2018-04-27 | 宏碁股份有限公司 | Dynamic verification method and correlative computer system |
| CN108809997A (en) * | 2018-06-19 | 2018-11-13 | 北京多采多宜网络科技有限公司 | A kind of login authentication method |
| CN109639642A (en) * | 2018-11-12 | 2019-04-16 | 平安科技(深圳)有限公司 | Safety certifying method, device and storage medium based on MQTT |
| CN109787950A (en) * | 2018-11-15 | 2019-05-21 | 北京网众共创科技有限公司 | Login method and device, the storage medium and electronic device of system |
| CN111541695A (en) * | 2020-04-24 | 2020-08-14 | 太仓红码软件技术有限公司 | Firewall system based on operation authentication |
| CN111598583A (en) * | 2020-04-28 | 2020-08-28 | 华润守正招标有限公司 | Customer service method, system, electronic device and storage medium |
| CN113962697A (en) * | 2021-10-21 | 2022-01-21 | 北京品诺优创科技有限公司 | Security authentication payment method and device |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1517889A (en) * | 2003-01-14 | 2004-08-04 | 盖内蒂克瓦尔有限公司 | Keyboard device with authentication function for user and ints method |
| CN101621794A (en) * | 2009-07-07 | 2010-01-06 | 董志 | Method for realizing safe authentication of wireless application service system |
-
2013
- 2013-01-08 CN CN201310006232.3A patent/CN103078863B/en active Active
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104283679A (en) * | 2013-07-05 | 2015-01-14 | 中国电信股份有限公司 | Method and system for conducting safety certification by input rhythms |
| CN104363087A (en) * | 2014-11-19 | 2015-02-18 | 深圳市中兴移动通信有限公司 | Encryption and decryption method and device |
| WO2016112792A1 (en) * | 2015-01-12 | 2016-07-21 | 阿里巴巴集团控股有限公司 | Identity authentication method and device |
| CN105847216A (en) * | 2015-01-12 | 2016-08-10 | 阿里巴巴集团控股有限公司 | Identity authentication method and device |
| CN105577692A (en) * | 2016-02-03 | 2016-05-11 | 杭州朗和科技有限公司 | Website login authentication method and device |
| CN106302539A (en) * | 2016-10-12 | 2017-01-04 | 广州市芯德电子技术有限公司 | A kind of embedded type WEB safety certifying method |
| CN107967417A (en) * | 2016-10-19 | 2018-04-27 | 宏碁股份有限公司 | Dynamic verification method and correlative computer system |
| CN108809997A (en) * | 2018-06-19 | 2018-11-13 | 北京多采多宜网络科技有限公司 | A kind of login authentication method |
| CN109639642A (en) * | 2018-11-12 | 2019-04-16 | 平安科技(深圳)有限公司 | Safety certifying method, device and storage medium based on MQTT |
| CN109639642B (en) * | 2018-11-12 | 2022-04-12 | 平安科技(深圳)有限公司 | MQTT-based security authentication method, device and storage medium |
| CN109787950A (en) * | 2018-11-15 | 2019-05-21 | 北京网众共创科技有限公司 | Login method and device, the storage medium and electronic device of system |
| CN111541695A (en) * | 2020-04-24 | 2020-08-14 | 太仓红码软件技术有限公司 | Firewall system based on operation authentication |
| CN111598583A (en) * | 2020-04-28 | 2020-08-28 | 华润守正招标有限公司 | Customer service method, system, electronic device and storage medium |
| CN113962697A (en) * | 2021-10-21 | 2022-01-21 | 北京品诺优创科技有限公司 | Security authentication payment method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103078863B (en) | 2015-11-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103078863B (en) | The method of login authentication, Apparatus and system | |
| US10437469B2 (en) | Secure interactions involving superimposing image of a virtual keypad over image of a touchscreen keypad | |
| US9338163B2 (en) | Method using a single authentication device to authenticate a user to a service provider among a plurality of service providers and device for performing such a method | |
| CN107248075B (en) | Method and device for realizing bidirectional authentication and transaction of intelligent key equipment | |
| WO2020072551A1 (en) | Contactless card emulation system and method | |
| EP2741443A1 (en) | Credential Recovery | |
| CN101631305B (en) | Encryption method and system | |
| CN104331653A (en) | Fingerprint decryption method and fingerprint decryption device | |
| CN105426790A (en) | Touch screen based password security input method and apparatus | |
| CN107809311A (en) | The method and system that a kind of unsymmetrical key based on mark is signed and issued | |
| CN102664898A (en) | Fingerprint identification-based encrypted transmission method, fingerprint identification-based encrypted transmission device and fingerprint identification-based encrypted transmission system | |
| CN103929308B (en) | Information Authentication method applied to rfid card | |
| WO2014141263A1 (en) | Asymmetric otp authentication system | |
| CN104935441A (en) | Authentication method and relevant devices and systems | |
| WO2017050152A1 (en) | Password security system adopted by mobile apparatus and secure password entering method thereof | |
| TWI786039B (en) | Offline payment method, terminal equipment, backstage payment device and offline payment system | |
| KR101792220B1 (en) | Method, mobile terminal, device and program for providing user authentication service of combining biometric authentication | |
| CN113595725B (en) | Communication system and communication method based on quantum key card arrangement | |
| CN109802834A (en) | The method and system that a kind of pair of business layer data is encrypted, decrypted | |
| CN104506509B (en) | A kind of authentication method based on multifunctional safe certification terminal | |
| CN109787747A (en) | Anti- quantum calculation multi-enciphering cloud storage method and system based on multiple unsymmetrical key ponds | |
| CN107548542A (en) | Through the user authen method for strengthening integrality and security | |
| CN111368271A (en) | Method and system for realizing password management based on multiple encryption | |
| EP3276878A1 (en) | Method for the safe authentication of a request made to a remote provider and generated in a personal device with bifurcation of the transmission of an authentication means | |
| US10771970B2 (en) | Method of authenticating communication of an authentication device and at least one authentication server using local factor |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |