CN104104657A

CN104104657A - Information validation method, server, terminal and system

Info

Publication number: CN104104657A
Application number: CN201310117840.1A
Authority: CN
Inventors: 陈梦; 董梁; 常瑞; 张海清; 李德春; 秦雷
Original assignee: Tencent Technology Shenzhen Co Ltd
Current assignee: Tencent Technology Shenzhen Co Ltd; Tencent Cloud Computing Beijing Co Ltd
Priority date: 2013-04-07
Filing date: 2013-04-07
Publication date: 2014-10-15
Anticipated expiration: 2033-04-07
Also published as: CN104104657B

Abstract

The invention discloses an information validation method, a server, a terminal and a system, and belongs to the field of computers. The method comprises steps: content data of a two-dimensional code sent by a validation terminal are received, wherein the content data are data acquired by the validation terminal in the carried two-dimensional code in the information received by the receiving terminal; safety validation is carried out on the information according to the received content data, wherein the content data comprise at least one of anti-fake data or a first user identifier; and the validation result is back to the validation terminal. As at least one of the anti-fake data or the first user identifier contained in the content data with the two-dimensional code in the information is used for carrying out safety validation on the information, the problem that the user has difficulty in accurately distinguishing whether the information is the safety information officially sent in the prior art can be solved, and the purposes that the received information can be automatically distinguished whether to be the safety information officially sent via the validation terminal, and validation accuracy can be improved can be realized.

Description

Information Authentication method, server, terminal and system

Technical field

The present invention relates to computer realm, particularly a kind of Information Authentication method, server, terminal and system.

Background technology

Along with the development of the Internet, disparate networks application becomes inalienable part in people's daily life gradually, such as, people can carry out the work by network, the even shopping online of chatting with friends.At present, increasing lawless person gains user's account number and password by cheating by the mode of counterfeit official information, such as, to user, send counterfeit official's mail, with password change, serve as reasons and require user to input account number and password, thereby reach, gain user's account and the object of password by cheating.Therefore, being badly in need of a kind of effective method verifies the information receiving.

In existing Information Authentication method, when official's server sends information to user, in the information sending, add specific icon indicia, and point out user by naked eyes, to distinguish the true and false of icon indicia, take this information of determining that whether this information issue as official.Such as, when official's server sends mail to user, can in mail, add specific icon, if observing in the mail receiving, user includes this icon, confirm that this mail is the mail that official issues.

In realizing process of the present invention, inventor finds that prior art at least exists following problem:

Existingly to making an addition to the discriminating fashion of the specific icon indicia in information, mainly by user, visually observe, and this type of specific icon indicia is easy to be imitated, therefore, whether user is difficult to accurately differentiate this information is the information that official issues, and checking accuracy is not high.

Summary of the invention

In order to solve user in prior art, be difficult to accurately differentiate the problem whether information that receives be the information that issues of official, the embodiment of the present invention provides a kind of Information Authentication method, server, terminal and system.Described technical scheme is as follows:

First aspect, provides a kind of Information Authentication method, and for authentication server, described method comprises:

The content-data of the Quick Response Code that Receipt Validation terminal sends, described content-data is the data that get in Quick Response Code entrained the information that receives from receiving terminal of described verification terminal;

According to the described content-data receiving, described information is carried out to safety verification, described content-data comprises at least one in false proof data or first user sign, and described first user is designated the user ID corresponding with described information;

To described verification terminal, return to the result.

Second aspect, provides a kind of Information Authentication method, and for verification terminal, described method comprises:

Obtain the content-data of Quick Response Code, described Quick Response Code is the Quick Response Code carrying in the information that receives of receiving terminal;

The described content-data getting is sent to authentication server, so that described authentication server carries out safety verification according to described content-data to described information, described content-data comprises at least one in false proof data or first user sign, and described first user is designated the user ID corresponding with described information;

Receive and show the result that described authentication server returns.

The third aspect, provides a kind of Information Authentication method, and for sending server, described method comprises:

Generation carries the information of Quick Response Code, the content-data that includes described Quick Response Code in described Quick Response Code, described content-data comprises at least one in false proof data or first user sign, and described first user is designated the user ID corresponding with described information;

Described information is sent to receiving terminal, so that verification terminal obtains the content-data of described Quick Response Code and sends to authentication server, so that described authentication server carries out safety verification according to described content-data to described information.

Fourth aspect, provides a kind of authentication server, and described authentication server comprises:

Content-data receiver module, the content-data of the Quick Response Code sending for Receipt Validation terminal, described content-data is to obtain the entrained Quick Response Code of the information that receives from receiving terminal of described verification terminal;

Authentication module, for the described content-data receiving according to described content-data receiver module, described information is carried out to safety verification, described content-data comprises at least one in false proof data or first user sign, and described first user is designated the user ID corresponding with described information;

The result returns to module, for returning to the result to described verification terminal.

The 5th aspect, provides a kind of verification terminal, and described verification terminal comprises:

Content-data acquisition module, for obtaining the content-data of Quick Response Code, described Quick Response Code is the Quick Response Code carrying in the information that receives of receiving terminal;

Content-data sending module, for the described content-data that described content-data acquisition module is got, send to authentication server, so that described authentication server carries out safety verification according to described content-data to described information, described content-data comprises at least one in false proof data or first user sign, and described first user is designated the user ID corresponding with described information;

The result receiver module, the result returning for receiving described authentication server;

The result display module, for the described the result that shows that described the result receiver module receives.

The 6th aspect, provides a kind of transmission server, and described transmission server comprises:

Information generating module, for generating the information that carries Quick Response Code, the content-data that includes described Quick Response Code in described Quick Response Code, described content-data comprises at least one in false proof data or first user sign, described first user is designated the user ID corresponding with described information;

Information sending module, for the information that described information generating module is generated, send to receiving terminal, so that verification terminal obtains the content-data of described Quick Response Code and sends to authentication server, so that described authentication server carries out safety verification according to described content-data to described information.

The 7th aspect, a kind of information authentication system is provided, and described information authentication system comprises: the transmission server as described in above-mentioned the 6th aspect, receiving terminal, verification terminal and the authentication server as described in above-mentioned fourth aspect as described in above-mentioned the 5th aspect.

The beneficial effect that the technical scheme that the embodiment of the present invention provides is brought is:

The content-data obtaining the entrained Quick Response Code of information that send, that receive from receiving terminal by Receipt Validation terminal, and according at least one in the false proof data that comprise in this content-data or first user sign, this information is carried out to safety verification, solve user in prior art and be difficult to the problem whether accurate resolution information be the security information that issues of official, whether can by verification terminal information that automatically resolution receive be security information that official issue, improve the object of checking accuracy if reaching user.

Accompanying drawing explanation

In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, below the accompanying drawing of required use during embodiment is described is briefly described, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skills, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.

Fig. 1 is the method flow diagram of the Information Authentication method that provides of the embodiment of the present invention one;

Fig. 2 is the method flow diagram of the Information Authentication method that provides of the embodiment of the present invention two;

Fig. 3 is the method flow diagram of the Information Authentication method that provides of the embodiment of the present invention three;

Fig. 4 is the method flow diagram of the Information Authentication method that provides of the embodiment of the present invention four;

Fig. 5 is the Quick Response Code scanning schematic diagram that the embodiment of the present invention four provides;

Fig. 6 is that the authorization information that the embodiment of the present invention four provides shows schematic diagram;

Fig. 7 is the method flow diagram of the Information Authentication method that provides of the embodiment of the present invention five;

Fig. 8 is the method flow diagram of the Information Authentication method that provides of the embodiment of the present invention six;

Fig. 9 is the flowing water schematic diagram of the Information Authentication method that provides of the embodiment of the present invention seven;

Figure 10 is the equipment pie graph of the authentication server that provides of the embodiment of the present invention eight;

Figure 11 is the equipment pie graph of the authentication server that provides of the embodiment of the present invention nine;

Figure 12 is the equipment pie graph of the verification terminal that provides of the embodiment of the present invention ten;

Figure 13 is the equipment pie graph of the verification terminal that provides of the embodiment of the present invention 11;

Figure 14 is the equipment pie graph of the transmission server that provides of the embodiment of the present invention 12;

Figure 15 is the equipment pie graph of the transmission server that provides of the embodiment of the present invention 13;

Figure 16 is the system pie graph of the information authentication system that provides of the embodiment of the present invention 14.

Embodiment

For making the object, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing, embodiment of the present invention is described further in detail.

Embodiment mono-

Please refer to Fig. 1, it shows the method flow diagram of the Information Authentication method that the embodiment of the present invention one provides.The information that this Information Authentication method can be applied in authentication server, receiving terminal be received is verified.This Information Authentication method can comprise:

Step 102, the content-data of the Quick Response Code that Receipt Validation terminal sends, the data that get in entrained Quick Response Code the information that this content-data receives from receiving terminal for this verification terminal;

Step 104, carries out safety verification according to this content-data receiving to this information, and this content-data comprises at least one in false proof data or first user sign, and this first user is designated the user ID corresponding with this information;

Step 106, returns to the result to this verification terminal.

In sum, the Information Authentication method that the embodiment of the present invention one provides, by Receipt Validation terminal, send, the content-data obtaining the entrained Quick Response Code of the information that receives from receiving terminal, and according at least one in the false proof data that comprise in this content-data or first user sign, this information is carried out to safety verification, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy.

Embodiment bis-

For the Information Authentication method that the embodiment of the present invention one is provided is described further, please refer to Fig. 2, it shows the method flow diagram of the Information Authentication method that the embodiment of the present invention two provides.The mail that is applied in authentication server, receiving terminal be received with this Information Authentication method is verified as example, and this Information Authentication method can comprise:

Step 202, the content-data of the Quick Response Code that authentication server Receipt Validation terminal sends, the data that get in entrained Quick Response Code the information that this content-data receives from receiving terminal for this verification terminal;

Wherein, verification terminal can be a mobile device that includes camera, such as smart mobile phone or panel computer, receiving terminal is a terminal equipment that can receive the network information, such as desktop computer, notebook computer, another smart mobile phone or another panel computer etc.When receiving terminal receives after the information that carries Quick Response Code, user can use verification terminal to scan this Quick Response Code, obtains the content-data of this Quick Response Code.

Specifically such as, when receiving an envelope being marked as official's mail that send, that carry Quick Response Code in subscriber mailbox, user can be scanned the Quick Response Code in this mail with smart mobile phone, the content-data that obtains Quick Response Code also sends to authentication server.

Step 204, authentication server carries out safety verification according to this content-data receiving to this information;

Wherein, this content-data comprises at least one in false proof data or first user sign, and this first user is designated the user ID corresponding with this information.

Preferably, in order further to improve the fail safe of Quick Response Code checking, the content-data in Quick Response Code can be the content-data after being encrypted according to predetermined cipher mode.Authentication server is before verifying this information according to the content-data receiving, first need to be decrypted by the content-data after to the encryption receiving according to specific manner of decryption, obtain the content-data after deciphering, and according to the content-data after deciphering, this information is carried out to safety verification.

Concrete, when this content-data comprises false proof data, whether authentication server is security information according to this this information of false proof Data Detection, these false proof data can comprise: security code character string.

When this content-data comprises first user sign, authentication server is before carrying out safety verification according to the content-data receiving to this information, also need to obtain the second user ID, and detect this first user sign and whether mate with this second user ID, wherein, this second user ID be in advance with the user ID of this verification terminal binding.

When authentication server obtains the second user ID, can directly receive the second user ID that this verification terminal sends; Or, receive the terminal iidentification that this verification terminal sends, and according to this terminal iidentification in local search and this terminal iidentification the second user ID of corresponding stored in advance, wherein, the sign that this terminal iidentification is this verification terminal.Wherein, before the content-data of the Quick Response Code that authentication server Receipt Validation terminal sends, this second user ID and this terminal iidentification of can first Receipt Validation terminal sending, and by this second user ID receiving and this terminal iidentification corresponding stored in this locality.

Step 206, authentication server returns to the result to this verification terminal.

When this content-data comprises false proof data, whether authentication server can return to this information to verification terminal is the prompting of security information.

When this content-data comprises first user sign, authentication server can return to the prompting whether this first user sign mates with this second user ID to verification terminal.

Further, when detecting the content-data receiving, authentication server do not need deciphering, or, in the time of cannot deciphering according to specific manner of decryption, also can return to the prompting that this information is not security information to verification terminal.Or whether the form that authentication server also can detect the content-data after deciphering meets predetermined format, if the form of the content-data after deciphering does not meet predetermined format, also can return to the prompting that this information is not security information to verification terminal.

As such scheme preferably, in order further to improve checking accuracy, in the content-data that this authentication server receives, can also comprise the critical data of this information, such as the theme of this information, the reception user ID of the theme time of origin of this information, this information and the transmitting time of this information etc.After the content-data successful decryption of authentication server after to the encryption receiving, the critical data of this information comprising in the content-data after deciphering can be returned to verification terminal, so that verification terminal shows the critical data of this information, so that verification terminal respective user judges whether safety of this information according to the critical data of this information.

Concrete, the mail whether the checking mail of take sends as official is example, the content-data of the Quick Response Code that authentication server Receipt Validation terminal sends, according to predetermined manner of decryption, this content-data is decrypted, if decipher unsuccessful, or find that this content-data does not need deciphering, can judge the mail that this information Bu Shi official issues.If successful decryption, authentication server extracts the false proof data in the content-data after this deciphering, such as a security code character string, and verifies according to this security code character string whether this mail is the mail that official issues.Or authentication server also can extract the mail recipient in the content-data after this deciphering, such as, mail recipient can be the mailbox number of addressee mailbox; Simultaneous verification server Receipt Validation terminal that send with mailbox number prefix this verification terminal binding, the mailbox number in content-data and the mailbox number prefix receiving are compared, to detect both, whether mate.In addition, verification terminal can also extract the theme (such as password change) of this mail comprising in the content-data after deciphering, the time of origin of this mail matter topics (such as user sends time of password change application), the reception user ID (such as the prefix of mailbox number) of this mail and the critical datas such as transmitting time of this mail, and the above-mentioned critical data extracting is returned to verification terminal, so that the content that user receives according to these critical datas and receiving terminal is compared one by one, judge accordingly whether this mail is the mail that official issues.

In sum, the Information Authentication method that the embodiment of the present invention two provides, by Receipt Validation terminal, send, the content-data obtaining the entrained Quick Response Code of the information that receives from receiving terminal, and according at least one in the false proof data that comprise in this content-data or first user sign, this information is carried out to safety verification, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy, in addition, the Information Authentication method that the embodiment of the present invention two provides, by the content-data of the Quick Response Code receiving is decrypted, and carries out safety verification according to the content-data after deciphering to this information, reaches the object of the fail safe that improves Quick Response Code checking, finally, the Information Authentication method that the embodiment of the present invention two provides, also by the content-data critical data that comprise, this information after deciphering is returned to verification terminal, so that user judges according to this critical data whether this information is security information voluntarily, reach the object of further raising checking accuracy.

Embodiment tri-

Please refer to Fig. 3, it shows the method flow diagram of the Information Authentication method that the embodiment of the present invention three provides.This Information Authentication method can be applied in verification terminal, and this verification terminal can be the mobile devices such as smart mobile phone or panel computer.This Information Authentication method can comprise:

Step 302, obtains the content-data of Quick Response Code, and this Quick Response Code is the Quick Response Code carrying in the information that receives of receiving terminal;

Step 304, this content-data getting is sent to authentication server, so that this authentication server carries out safety verification according to this content-data to this information, this content-data comprises at least one in false proof data or first user sign, and this first user is designated the user ID corresponding with this information;

Step 306, receives and shows the result that this authentication server returns.

In sum, the Information Authentication method that the embodiment of the present invention three provides, by send the content-data obtaining the entrained Quick Response Code of the information receive from receiving terminal to authentication server, so that this authentication server carries out safety verification according at least one in the false proof data that comprise in this content-data or first user sign to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy.

Embodiment tetra-

For the Information Authentication method that above-described embodiment three is provided is described further, please refer to Fig. 4, it shows the method flow diagram of the Information Authentication method that the embodiment of the present invention four provides.This Information Authentication method can be applied in verification terminal, and this verification terminal can be the mobile devices such as smart mobile phone or panel computer.This Information Authentication method can comprise:

Step 402, verification terminal obtains the content-data of Quick Response Code, and this Quick Response Code is the Quick Response Code carrying in the information that receives of receiving terminal;

Concrete, please refer to Fig. 5, it shows the Quick Response Code scanning schematic diagram that the embodiment of the present invention four provides.Wherein, when receiving an envelope being marked as official's mail that send, that carry Quick Response Code in subscriber mailbox, user can be scanned the Quick Response Code in this mail showing in the display of receiving terminal with smart mobile phone, obtains the content-data of this Quick Response Code and sends to authentication server.

Step 404, verification terminal sends to authentication server by this content-data getting, so that this authentication server carries out safety verification according to this content-data to this information;

Preferably, in order further to improve the fail safe of Quick Response Code checking, the content-data in Quick Response Code can be the content-data after being encrypted according to predetermined cipher mode.

It should be noted that, when content-data comprises first user sign, verification terminal can send to this authentication server by the second user ID, so that detecting this first user sign, this authentication server whether mates with this second user ID, wherein, this second user ID be in advance with the user ID of this verification terminal binding; Or, verification terminal can also send to terminal iidentification this authentication server, so that this authentication server is according to the inquiry of this terminal iidentification and this terminal iidentification the second user ID of corresponding stored in advance, and detect this first user sign and whether mate with this second user ID, wherein, the sign that this terminal iidentification is this verification terminal.

Further, verification terminal is before sending to authentication server by the content-data getting, also need this second user ID and this terminal iidentification to send to this authentication server, so that this authentication server is by this second user ID and this terminal iidentification corresponding stored.

Specifically such as, take this user ID as mailbox number prefix be example, user can the Quick Response Code in using verification terminal scan mail before, the mailbox number prefix of input and this verification terminal binding.Verification terminal receive user input for after the mailbox number prefix of binding, together with the terminal iidentification (such as cell-phone number, cell phone apparatus sequence number or client sequence number etc.) of the mailbox number prefix of binding and this verification terminal, send to authentication server, so that authentication server is by the terminal iidentification corresponding stored of the mailbox number prefix of binding and this verification terminal.

Step 406, verification terminal receives and shows the result that this authentication server returns.

When this content-data comprises false proof data, verification terminal receives and shows whether this information that this authentication server returns is the prompting of security information.

When this content-data comprises first user when sign, verification terminal, receives and show this first user that this authentication server returns and identify the prompting of whether mating with this second user ID.It should be noted that, a verification terminal can be bound a plurality of the second user profile simultaneously, and second user profile also can be bound a plurality of verification terminals simultaneously.

As such scheme preferably, in the content-data of this Quick Response Code, can also comprise the critical data of this information.After content-data verification terminal being sent at authentication server is decrypted, verification terminal can receive and show authentication server return, the critical data of this information; Wherein, this critical data can comprise the theme of this information, at least one in the reception user ID of the theme time of origin of this information, this information and the transmitting time of this information.

Concrete, please refer to Fig. 6, take and verify that the mail whether mail issues as official is example, the authorization information that it shows the embodiment of the present invention four provides shows schematic diagram.Wherein, it is the mail that official issues that authentication server detects this mail, but the recipient of this mail and the user bound of this verification terminal do not mate, and points out user careful operation.Meanwhile, theme, the theme time of origin of this mail that verification terminal also comprises in the content-data of two-dimensional code display, receive subscriber mailbox prefix and post time, so that user distinguishes whether safety of this mail voluntarily.

In sum, the Information Authentication method that the embodiment of the present invention four provides, by send the content-data obtaining the entrained Quick Response Code of the information receive from receiving terminal to authentication server, so that authentication server carries out safety verification according at least one in the false proof data that comprise in this content-data or first user sign to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy, in addition, the Information Authentication method that the embodiment of the present invention four provides, also the critical data by this information that authentication server is returned is shown to user, so that user judges according to this critical data whether this information is security information voluntarily, reaches the object of further raising checking accuracy.

Embodiment five

Please refer to Fig. 7, it shows the method flow diagram of the Information Authentication method that the embodiment of the present invention five provides.This Information Authentication method can be applied in the transmission server of information, and this Information Authentication method can comprise:

Step 502, generates the information that carries Quick Response Code, includes the content-data of this Quick Response Code in this Quick Response Code, and this content-data comprises at least one in false proof data or first user sign, and this first user is designated the user ID corresponding with this information;

Step 504, sends to receiving terminal by this information, so that verification terminal obtains the content-data of this Quick Response Code and sends to authentication server, so that this authentication server carries out safety verification according to this content-data to this information.

In sum, the Information Authentication method that the embodiment of the present invention five provides, by generation, carry the information of Quick Response Code and send to receiving terminal, so that verification terminal obtains the content-data of this Quick Response Code and sends to authentication server, so that at least one in the false proof data that this authentication server comprises according to this content-data or first user sign carried out safety verification to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy.

Embodiment six

For the Information Authentication method that above-described embodiment six is provided is described further, please refer to Fig. 8, it shows the method flow diagram of the Information Authentication method that the embodiment of the present invention six provides.This Information Authentication method can be applied in the transmission server of information, and this Information Authentication method can comprise:

Step 602, send server and generate the information that carries Quick Response Code, the content-data that includes this Quick Response Code in this Quick Response Code, this content-data comprises at least one in false proof data or first user sign, this first user is designated the user ID corresponding with this information;

Concrete, send server and can first generate the information that does not comprise Quick Response Code, the Quick Response Code that regeneration is corresponding with this information, and this Quick Response Code is added in this information.

Step 604, sends server this information is sent to receiving terminal, so that verification terminal obtains the content-data of this Quick Response Code and sends to authentication server, so that this authentication server carries out safety verification according to this content-data to this information.

Wherein, in order further to improve the fail safe of Quick Response Code checking, this content-data can be the content-data after encrypting.In this content-data, also comprise: the critical data of this information, this critical data comprises: at least one in the transmitting time of the theme time of origin of the theme of this information, this information, the reception user ID of this information and this information.Authentication server can return to verification terminal by the key message of this information after the content-data receiving is decrypted, so that user judges according to the key message of this information whether this information is security information voluntarily.

Concrete, it is example that the transmission server of take sends password change mail to receiving terminal, send after server generating cipher change mail, obtain the critical data of the transmitting time of the theme (password change) of this mail, the time of origin of this mail matter topics (can be the time that receives the password change application of user's transmission) and this mail, obtain the prefix of the reception mailbox of this mail simultaneously, and be a unique security code character string of this Quick Response Code generation.Send server and according to predetermined form, generate one section of content-data according to this key message, the prefix that receives mailbox and this security code character string, and this content-data is encrypted to one section of url(Uniform Resource Locator of rear formation according to particular encryption mode, URL(uniform resource locator)), and generate Quick Response Code according to this url, finally this Quick Response Code is embedded in mail, and this mail is sent to receiving terminal.

In sum, the Information Authentication method that the embodiment of the present invention six provides, by generation, carry the information of Quick Response Code and send to receiving terminal, so that verification terminal obtains the content-data of this Quick Response Code and sends to authentication server, so that at least one in the false proof data that this authentication server comprises according to this content-data or first user sign carried out safety verification to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy, in addition, the Information Authentication method that the embodiment of the present invention six provides, by content-data being encrypted before generating Quick Response Code, reaches the object of the fail safe that improves Quick Response Code checking, finally, the Information Authentication method that the embodiment of the present invention six provides, by the critical data of obtaining information, and according to these critical data generating content data, so that the critical data of this information that user returns according to authentication server judges whether safety of this information voluntarily, reach the object of further raising checking accuracy.

Embodiment seven

Please refer to Fig. 9, it shows the flowing water schematic diagram of the Information Authentication method that the embodiment of the present invention seven provides.Whether the mail that receives of checking of take is as official's mail is example, and this Information Authentication method can comprise:

Step 702, sends server generation and carries the information of Quick Response Code, and this information is sent to receiving terminal;

The generating cipher of take change mail is example, when user applies for changing password, send the critical data that server generating cipher changes mail and extracts this mail, wherein, the critical data of this mail comprises the theme of this mail, the transmitting time of the theme time of origin of this mail, this mail recipient and this mail.Send server and generate one section of content-data according to the critical data of security code character string, this mail reception mailbox number and this mail, this content-data is encrypted to one section of url of rear formation according to particular encryption mode, and generate Quick Response Code according to this url, finally this Quick Response Code is embedded in mail, and this mail is sent to receiving terminal.

Step 704, receiving terminal receives and shows this information;

Receiving terminal can be a PC being connected in network, when receiving terminal receives the mail that sends server transmission, shows that this carries the mail of Quick Response Code in display.In the mail of this demonstration, can use verification terminal to scan this Quick Response Code by suitable word or pattern guiding user, so that this mail is verified.

Step 706, verification terminal obtains the content-data of this Quick Response Code from the information of receiving terminal demonstration;

Concrete, this verification terminal can be a smart mobile phone that includes camera.User can open in verification terminal for verifying the APP(Application of mail, third party application), by the built-in camera of this verification terminal, scan the Quick Response Code in this mail, obtain the content-data of this Quick Response Code.

Step 708, verification terminal sends to authentication server by the content-data of this Quick Response Code getting;

Concrete, in this verification terminal for verifying that the content-data of this Quick Response Code that the APP of mail obtains scanning sends to authentication server.

Step 710, authentication server carries out safety verification according to the content-data of this Quick Response Code to this information;

After the content-data of the Quick Response Code that authentication server Receipt Validation terminal sends, according to predetermined manner of decryption, this content-data is decrypted, if decipher unsuccessful, or find this content-data do not need deciphering, can judge the mail that this mail Bu Shi official issues.If successful decryption, authentication server extracts the security code character string in the content-data after this deciphering, and verifies according to this security code character string whether this mail is the mail that official issues.Or authentication server also can extract the mail reception mailbox number in the content-data after this deciphering; Simultaneous verification server Receipt Validation terminal that send with mailbox number prefix this verification terminal binding, the mailbox number in content-data and the mailbox number prefix receiving are compared, to detect both, whether mate.

Step 712, authentication server returns to the result to verification terminal;

Whether authentication server can be the prompting of the secure e-mail of official's transmission according to the testing result of security code character string is returned to this mail to verification terminal, the prompting whether authentication server also can return to this mail reception mailbox number and mate with the mailbox number prefix of verification terminal binding to verification terminal.

Further, if detecting the content-data receiving, authentication server do not need deciphering, or, in the time of cannot deciphering according to specific manner of decryption, also can return to verification terminal the prompting of the mail of this mail Bu Shi official transmission.Or whether the form that authentication server also can detect the content-data after deciphering meets predetermined format, if the form of the content-data after deciphering does not meet predetermined format, also can return to verification terminal the prompting of the mail of this mail Bu Shi official transmission.

Preferably, authentication server can also be by the content-data after deciphering, and the key message of this mail returns to verification terminal.

Step 714, verification terminal shows this result.

Whether this mail that verification terminal can return to authentication server is the prompting of the secure e-mail of official's transmission, and/or, this mail reception mailbox number and the prompting of whether mating with the mailbox number prefix of verification terminal binding show, so that user judges according to the prompting showing whether this mail is the mail that official sends.

Preferably, the critical data of this mail that verification terminal can also return to authentication server is shown to user, so that the critical data that user shows verification terminal is compared with the Mail Contents that receiving terminal shows, take and judge that whether this mail is the mail of official's transmission.

In sum, the Information Authentication method that the embodiment of the present invention seven provides, the content-data that authentication server obtains the entrained Quick Response Code of information that send, that receive from receiving terminal by Receipt Validation terminal, and according to this content-data, this information is carried out to safety verification, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether can by verification terminal information that automatically resolution receive be security information that official issue, improve the object of checking accuracy if reaching user; In addition, the Information Authentication method that the embodiment of the present invention seven provides, authentication server is by the content-data of the Quick Response Code receiving is decrypted, and according to the content-data after deciphering, this information carried out to safety verification, reaches the object of the fail safe that improves Quick Response Code checking; Finally, the Information Authentication method that the embodiment of the present invention seven provides, authentication server is also by returning to verification terminal by the content-data critical data that comprise, this information after deciphering, so that user judges according to this critical data whether this information is security information voluntarily, reach the object of further raising checking accuracy.

Embodiment eight

Please refer to Figure 10, it shows the equipment pie graph of the authentication server that the embodiment of the present invention eight provides.This authentication server can comprise:

Content-data receiver module 801, the content-data of the Quick Response Code sending for Receipt Validation terminal, the data that get in entrained Quick Response Code the information that this content-data receives from receiving terminal for this verification terminal;

Authentication module 802, for the content-data receiving according to content-data receiver module 801, this information is carried out to safety verification, this content-data comprises at least one in false proof data or first user sign, and this first user is designated the user ID corresponding with this information;

The result returns to module 803, for returning to the result to this verification terminal.

In sum, the authentication server that the embodiment of the present invention eight provides, by Receipt Validation terminal, send, the content-data obtaining the entrained Quick Response Code of the information that receives from receiving terminal, and according at least one in the false proof data that comprise in this content-data or first user sign, this information is carried out to safety verification, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy.

Embodiment nine

For the authentication server that above-described embodiment eight is provided is described further, please refer to Figure 11, it shows the equipment pie graph of the authentication server that the embodiment of the present invention nine provides.This authentication server can comprise:

This authentication server also comprises:

Deciphering module 804, before this information being carried out to safety verification for the content-data receiving according to content-data receiver module 801 at authentication module 802, content-data after the encryption that content data reception module 801 is received is decrypted, and obtains the content-data after deciphering;

Authentication module 802, carries out safety verification for the content-data after the deciphering obtaining according to deciphering module 804 to this information; Wherein, the content-data that content-data receiver module 801 receives is the content-data after encrypting.

Authentication module 802 comprises:

Whether the first detecting unit 802a, while comprising false proof data for the content-data receiving when content-data receiver module 801, be security information according to this this information of false proof Data Detection, and these false proof data comprise: security code character string;

The result returns to module 803, comprising:

Whether unit 803a is returned in the first prompting, for return to this information to this verification terminal, be the prompting of security information.

This authentication server also comprises:

User ID acquisition module 805, while comprising first user sign for the content-data receiving when content-data receiver module 801, before the content-data receiving according to content-data receiver module 801 at authentication module 802 carries out safety verification to this information, obtain the second user ID, this second user ID be in advance with the user ID of verification terminal binding;

Authentication module 802 comprises:

The second detecting unit 802b, whether this second user ID getting with user ID acquisition module 805 for detection of this first user sign mates;

The result returns to module 803, comprising:

Unit 803b is returned in the second prompting, the prompting of whether mating with this second user ID for return to this first user sign to verification terminal.

User ID acquisition module 805, comprising:

User ID receiving element 805a, this second user ID sending for receiving this verification terminal;

Terminal iidentification receiving element 805b, the terminal iidentification sending for receiving this verification terminal, the sign that this terminal iidentification is this verification terminal;

User ID query unit 805c, for the terminal iidentification inquiry that receives according to terminal iidentification receiving element 805b and this terminal iidentification this second user ID of corresponding stored in advance.

This authentication server also comprises:

Binding logo receiver module 806, before the content-data for the Quick Response Code in this verification terminals transmission of content-data receiver module 801 receptions, receives this second user ID and this terminal iidentification that this verification terminal sends;

Memory module 807, for this second user ID and this terminal iidentification corresponding stored that binding logo receiver module 806 is received.

This authentication server also comprises:

Critical data is returned to module 808, after being decrypted, the critical data of this information is returned to this verification terminal, so that this verification terminal shows the critical data of this information for the content-data after 804 pairs of encryptions of deciphering module;

Wherein, this content-data also comprises: the critical data of this information; This critical data comprises: at least one in the transmitting time of the theme time of origin of the theme of this information, this information, the reception user ID of this information and this information.

In sum, the authentication server that the embodiment of the present invention nine provides, by Receipt Validation terminal, send, the content-data obtaining the entrained Quick Response Code of the information that receives from receiving terminal, and according at least one in the false proof data that comprise in this content-data or first user sign, this information is carried out to safety verification, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy, in addition, the authentication server that the embodiment of the present invention nine provides, by the content-data of the Quick Response Code receiving is decrypted, and carries out safety verification according to the content-data after deciphering to this information, reaches the object of the fail safe that improves Quick Response Code checking, finally, the authentication server that the embodiment of the present invention nine provides, also by the content-data critical data that comprise, this information after deciphering is returned to verification terminal, so that user judges according to this critical data whether this information is security information voluntarily, reach the object of further raising checking accuracy.

Embodiment ten

Please refer to Figure 12, it shows the equipment pie graph of the verification terminal that the embodiment of the present invention ten provides.This verification terminal can be smart mobile phone or panel computer etc., and this verification terminal can comprise:

Content-data acquisition module 901, for obtaining the content-data of Quick Response Code, this Quick Response Code is the Quick Response Code carrying in the information that receives of receiving terminal;

Content-data sending module 902, for the content-data that content-data acquisition module 901 is got, send to authentication server, so that this authentication server carries out safety verification according to this content-data to this information, this content-data comprises at least one in false proof data or first user sign, and this first user is designated the user ID corresponding with this information;

The result receiver module 903, the result returning for receiving this authentication server;

The result display module 904, for the result that shows that the result receiver module 903 receives.

In sum, the verification terminal that the embodiment of the present invention ten provides, by send the content-data obtaining the entrained Quick Response Code of the information receive from receiving terminal to authentication server, so that this authentication server carries out safety verification according at least one in the false proof data that comprise in this content-data or first user sign to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy.

Embodiment 11

For the verification terminal that above-described embodiment ten is provided is described further, please refer to Figure 13, it shows the equipment pie graph of the verification terminal that the embodiment of the present invention 11 provides.This verification terminal can be smart mobile phone or panel computer etc., and this verification terminal can comprise:

This content-data is the content-data after encrypting.

The result receiver module 903, comprising:

The first prompting receiving element 903a, for when this content-data comprises false proof data, receives whether this information that this authentication server returns is the prompting of security information;

The result display module 904, comprising:

The first prompting display unit 904a, for showing whether the information that the first prompting receiving element 903a receives is the prompting of security information.

This verification terminal, also comprises:

User ID sending module 905, be used for when this content-data comprises first user sign, before the result returning at the result receiver module 903 these authentication servers of reception, the second user ID is sent to this authentication server, so that this authentication server detects this first user, whether sign mates with this second user ID, and this second user ID is the user ID of binding with verification terminal in advance;

Terminal iidentification sending module 906, be used for when this content-data comprises first user sign, before the result returning at the result receiver module 903 these authentication servers of reception, terminal iidentification is sent to this authentication server, so that this authentication server is according to the inquiry of this terminal iidentification and this terminal iidentification the second user ID of corresponding stored in advance, and detect this first user sign and whether mate with this second user ID, the sign that this terminal iidentification is this verification terminal;

The result receiver module 903, comprising:

The second prompting receiving element 903b, the prompting of whether mating with this second user ID for receiving this first user sign that this authentication server returns;

The result display module 904, comprising:

The second prompting display unit 904b, for showing that this first user that the second prompting receiving element 903b receives identifies the prompting of whether mating with this second user ID.

This verification terminal also comprises:

Binding logo sending module 907, before sending to authentication server for content-data content-data acquisition module 901 being got at content-data sending module 902, this second user ID and this terminal iidentification are sent to authentication server, so that this authentication server is by this second user ID and this terminal iidentification corresponding stored.

This verification terminal also comprises:

Critical data receiver module 908, after sending to authentication server, receives the critical data of this information that this authentication server returns for content-data content-data acquisition module 901 being got at content-data sending module 902;

Critical data display module 909, for showing the critical data of this information that critical data receiver module 908 receives, so that this verification terminal respective user judges whether safety of this information according to the critical data of this information; Wherein, in this content-data, also comprise: the critical data of this information; This critical data comprises: at least one in the transmitting time of the theme time of origin of the theme of this information, this information, the reception user ID of this information and this information.

In sum, the verification terminal that the embodiment of the present invention 11 provides, by send the content-data obtaining the entrained Quick Response Code of the information receive from receiving terminal to authentication server, so that authentication server carries out safety verification according at least one in the false proof data that comprise in this content-data or first user sign to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy, in addition, the verification terminal that the embodiment of the present invention 11 provides, also the critical data by this information that authentication server is returned is shown to user, so that user judges according to this critical data whether this information is security information voluntarily, reaches the object of further raising checking accuracy.

Embodiment 12

Please refer to Figure 14, it shows the equipment pie graph of the transmission server that the embodiment of the present invention 12 provides.This sends server for sending information to receiving terminal, and this transmission server can comprise:

Information generating module 1001, for generating the information that carries Quick Response Code, the content-data that includes this Quick Response Code in this Quick Response Code, this content-data comprises at least one in false proof data or first user sign, this first user is designated the user ID corresponding with this information;

Information sending module 1002, for the information that information generating module 1001 is generated, send to receiving terminal, so that verification terminal obtains the content-data of this Quick Response Code and sends to authentication server, so that this authentication server carries out safety verification according to this content-data to this information.

In sum, the transmission server that the embodiment of the present invention 12 provides, by generation, carry the information of Quick Response Code and send to receiving terminal, so that verification terminal obtains the content-data of this Quick Response Code and sends to authentication server, so that at least one in the false proof data that this authentication server comprises according to this content-data or first user sign carried out safety verification to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy.

Embodiment 13

For the transmission server that above-described embodiment 12 is provided is described further, please refer to Figure 15, it shows the equipment pie graph of the transmission server that the embodiment of the present invention 13 provides.This sends server for sending information to receiving terminal, and this transmission server can comprise:

Wherein, this content-data is the content-data after encrypting.

In this content-data, also comprise: the critical data of this information, this critical data comprises: at least one in the transmitting time of the theme time of origin of the theme of this information, this information, the reception user ID of this information and this information.

In sum, the transmission server that the embodiment of the present invention 13 provides, by generation, carry the information of Quick Response Code and send to receiving terminal, so that verification terminal obtains the content-data of this Quick Response Code and sends to authentication server, so that at least one in the false proof data that this authentication server comprises according to this content-data or first user sign carried out safety verification to this information, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy, in addition, the transmission server that the embodiment of the present invention 13 provides, by content-data being encrypted before generating Quick Response Code, reaches the object of the fail safe that improves Quick Response Code checking, finally, the transmission server that the embodiment of the present invention 13 provides, by the critical data of obtaining information, and according to these critical data generating content data, so that the critical data of this information that user returns according to authentication server judges whether safety of this information voluntarily, reach the object of further raising checking accuracy.

Embodiment 14

Please refer to Figure 16, it shows the information authentication system that the embodiment of the present invention 14 provides.This information authentication system can comprise: the transmission server 1101 providing as the embodiment of the present invention 12 or 13, receiving terminal 1102, the verification terminal 1103 providing as the embodiment of the present invention ten or 11 and the authentication server 1104 providing as the embodiment of the present invention eight or nine.

In sum, the information authentication system that the embodiment of the present invention 14 provides, authentication server sends by Receipt Validation terminal, the content-data obtaining the entrained Quick Response Code of the information that receives from receiving terminal, and according at least one in the false proof data that comprise in this content-data or first user sign, this information is carried out to safety verification, solve user in prior art and be difficult to accurately differentiate the problem whether information that receives be the security information that issues of official, whether reach user can be the security information that official issues by the verification terminal information that resolution receives automatically, improve the object of checking accuracy, in addition, the information authentication system that the embodiment of the present invention 14 provides, authentication server is by the content-data of the Quick Response Code receiving is decrypted, and according to the content-data after deciphering, this information carried out to safety verification, reaches the object of the fail safe that improves Quick Response Code checking, finally, the information authentication system that the embodiment of the present invention 14 provides, authentication server is also by returning to verification terminal by the content-data critical data that comprise, this information after deciphering, so that user judges according to this critical data whether this information is security information voluntarily, reach the object of further raising checking accuracy.

It should be noted that: the authentication server that above-described embodiment provides, verification terminal and transmission server are when verifying information, only the division with above-mentioned each functional module is illustrated, in practical application, can above-mentioned functions be distributed and by different functional modules, completed as required, the internal structure of the equipment of being about to is divided into different functional modules, to complete all or part of function described above.In addition, the authentication server that above-described embodiment provides, verification terminal and transmission server and Information Authentication embodiment of the method belong to same design, and its specific implementation process refers to embodiment of the method, repeats no more here.

The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment.

One of ordinary skill in the art will appreciate that all or part of step that realizes above-described embodiment can complete by hardware, also can come the hardware that instruction is relevant to complete by program, described program can be stored in a kind of computer-readable recording medium, the above-mentioned storage medium of mentioning can be read-only memory, disk or CD etc.

The foregoing is only preferred embodiment of the present invention, in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.

Claims

1. an Information Authentication method, for authentication server, is characterized in that, described method comprises:

To described verification terminal, return to the result.

2. method according to claim 1, is characterized in that, described content-data is the content-data after encrypting, and before the described content-data that described basis receives carries out safety verification to described information, also comprises:

Content-data after described encryption is decrypted, obtains the content-data after deciphering;

The described content-data that described basis receives carries out safety verification to described information, comprising:

According to the content-data after the described deciphering obtaining, described information is carried out to safety verification.

3. method according to claim 1 and 2, is characterized in that, when described content-data comprises described false proof data, the described content-data that described basis receives carries out safety verification to described information, comprising:

Whether according to information described in described false proof Data Detection, is security information, described false proof data comprise: security code character string;

Describedly to described verification terminal, return to the result, comprising:

Whether to described verification terminal, return to described information is the prompting of security information.

4. method according to claim 1 and 2, is characterized in that, when described content-data comprises described first user sign, the described content-data that described basis receives also comprises before described information is carried out to safety verification:

Obtain the second user ID, described the second user ID be in advance with the user ID of described verification terminal binding;

Whether detect described first user sign mates with described the second user ID;

To described verification terminal, return to the prompting whether described first user sign mates with described the second user ID.

5. method according to claim 4, is characterized in that, described in obtain the second user ID, comprising:

Receive described the second user ID that described verification terminal sends;

Or,

Receive the terminal iidentification that described verification terminal sends, and according to described terminal iidentification inquiry and described terminal iidentification described second user ID of corresponding stored in advance, the sign that described terminal iidentification is described verification terminal.

6. method according to claim 2, is characterized in that, described content-data also comprises: the critical data of described information;

Described content-data after described encryption is decrypted after, also comprise:

The critical data of described information is returned to described verification terminal, so that described verification terminal shows the critical data of described information;

Described critical data comprises: at least one in the reception user ID of the theme time of origin of the theme of described information, described information, described information and the transmitting time of described information.

7. an Information Authentication method, for verification terminal, is characterized in that, described method comprises:

Receive and show the result that described authentication server returns.

8. method according to claim 7, is characterized in that, described content-data is the content-data after encrypting.

9. according to the method described in claim 7 or 8, it is characterized in that, when described content-data comprises described false proof data, described reception also shows the result that described authentication server returns, and comprising:

Receive and show whether information that described authentication server returns, described is the prompting of security information.

10. according to the method described in claim 7 or 8, it is characterized in that, when described content-data comprises described first user sign, before the result that the described authentication server of described reception returns, also comprise:

The second user ID is sent to described authentication server, so that described authentication server detects described first user, whether sign mates with described the second user ID, and described the second user ID is the user ID of binding with described verification terminal in advance;

Described reception also shows the result that described authentication server returns, and comprising:

Receive and show that first user that described authentication server returns, described identifies the prompting of whether mating with described the second user ID.

11. according to the method described in claim 7 or 8, it is characterized in that, when described content-data comprises described first user sign, before the result that the described authentication server of described reception returns, also comprises:

Terminal iidentification is sent to described authentication server, so that described authentication server is according to the inquiry of described terminal iidentification and described terminal iidentification the second user ID of corresponding stored in advance, and detect described first user sign and whether mate with described the second user ID, described terminal iidentification is the sign of described verification terminal, described the second user ID be in advance with the user ID of described verification terminal binding;

12. methods according to claim 8, is characterized in that, described content-data also comprises: the critical data of described information; Described the described content-data getting is sent to authentication server after, also comprise:

Receive and show the critical data of the described information that described authentication server returns;

13. 1 kinds of Information Authentication methods, for sending server, is characterized in that, described method comprises:

14. methods according to claim 13, is characterized in that, described content-data is the content-data after encrypting.

15. methods according to claim 14, it is characterized in that, described content-data also comprises: the critical data of described information, described critical data comprises: at least one in the reception user ID of the theme time of origin of the theme of described information, described information, described information and the transmitting time of described information.

16. 1 kinds of authentication servers, is characterized in that, described authentication server comprises:

Content-data receiver module, the content-data of the Quick Response Code sending for Receipt Validation terminal, described content-data is the data that get in Quick Response Code entrained the information that receives from receiving terminal of described verification terminal;

17. authentication servers according to claim 16, is characterized in that, described authentication server also comprises:

Deciphering module, before described information being carried out to safety verification for the described content-data receiving according to described content-data receiver module at described authentication module, content-data after the encryption that described content-data receiver module is received is decrypted, and obtains the content-data after deciphering;

Described authentication module, carries out safety verification for the content-data after the described deciphering obtaining according to described deciphering module to described information;

Wherein, the content-data that described content-data receiver module receives is the content-data after encrypting.

18. according to the authentication server described in claim 16 or 17, it is characterized in that, described authentication module comprises:

Whether the first detecting unit, while comprising described false proof data for the content-data receiving when described content-data receiver module, be security information according to information described in described false proof Data Detection, and described false proof data comprise: security code character string;

Described the result returns to module, comprising:

Whether unit is returned in the first prompting, for return to described information to described verification terminal, be the prompting of security information.

19. according to the authentication server described in claim 16 or 17, it is characterized in that, described authentication server also comprises:

User ID acquisition module, while comprising described first user sign for the content-data receiving when described content-data receiver module, before the described content-data receiving according to described content-data receiver module at described authentication module carries out safety verification to described information, obtain the second user ID, described the second user ID be in advance with the user ID of described verification terminal binding;

Described authentication module comprises:

The second detecting unit, whether the second user ID getting with described user ID acquisition module for detection of described first user sign mates;

Described the result returns to module, comprising:

Unit is returned in the second prompting, the prompting of whether mating with described the second user ID for return to described first user sign to described verification terminal.

20. authentication servers according to claim 19, is characterized in that, described user ID acquisition module, comprising:

User ID receiving element, described the second user ID sending for receiving described verification terminal;

Terminal iidentification receiving element, the terminal iidentification sending for receiving described verification terminal, the sign that described terminal iidentification is described verification terminal;

User ID query unit, for the terminal iidentification inquiry that receives according to described terminal iidentification receiving element and described terminal iidentification described second user ID of corresponding stored in advance.

21. authentication servers according to claim 17, is characterized in that, described authentication server also comprises:

Critical data is returned to module, after being decrypted, the critical data of described information is returned to described verification terminal, so that described verification terminal shows the critical data of described information for the content-data after described deciphering module is to described encryption;

Wherein, described content-data also comprises: the critical data of described information; Described critical data comprises: at least one in the reception user ID of the theme time of origin of the theme of described information, described information, described information and the transmitting time of described information.

22. 1 kinds of verification terminals, is characterized in that, described verification terminal comprises:

23. verification terminals according to claim 22, is characterized in that, described content-data is the content-data after encrypting.

24. according to the verification terminal described in claim 22 or 23, it is characterized in that, described the result receiver module, comprising:

The first prompting receiving element, whether for when described content-data comprises described false proof data, receiving information that described authentication server returns, described is the prompting of security information;

Described the result display module, comprising:

The first prompting display unit, whether, described information that described the first prompting receiving element receives for showing is the prompting of security information.

25. according to the verification terminal described in claim 22 or 23, it is characterized in that, described verification terminal, also comprises:

User ID sending module, be used for when described content-data comprises described first user sign, before described the result receiver module receives the result that described authentication server returns, the second user ID is sent to described authentication server, so that described authentication server detects described first user, whether sign mates with described the second user ID, and described the second user ID is the user ID of binding with described verification terminal in advance;

Described the result receiver module, comprising:

The second prompting receiving element, the prompting whether that described authentication server returns for receiving, described first user sign mates with described the second user ID;

Described the result display module, comprising:

The second prompting display unit, for showing the prompting that receive, that whether described first user sign mates with described the second user ID of described the second prompting receiving element.

26. according to the verification terminal described in claim 22 or 23, it is characterized in that, described verification terminal, also comprises:

Terminal iidentification sending module, be used for when described content-data comprises described first user sign, before described the result receiver module receives the result that described authentication server returns, terminal iidentification is sent to described authentication server, so that described authentication server is according to the inquiry of described terminal iidentification and described terminal iidentification the second user ID of corresponding stored in advance, and detect described first user sign and whether mate with described the second user ID, described terminal iidentification is the sign of described verification terminal, described the second user ID be in advance with the user ID of described verification terminal binding,

Described the result receiver module, comprising:

Described the result display module, comprising:

27. verification terminals according to claim 23, is characterized in that, described verification terminal also comprises:

Critical data receiver module, after sending to authentication server, receives described authentication server critical data that return, described information for the described content-data described content-data acquisition module being got at described content-data sending module;

Critical data display module, for showing described critical data receiver module critical data that receive, described information;

28. 1 kinds send server, it is characterized in that, described transmission server comprises:

29. transmission servers according to claim 28, is characterized in that, described content-data is the content-data after encrypting.

30. transmission servers according to claim 29, it is characterized in that, in described content-data, also comprise: the critical data of described information, described critical data comprises: at least one in the reception user ID of the theme time of origin of the theme of described information, described information, described information and the transmitting time of described information.

31. 1 kinds of information authentication systems, it is characterized in that, described information authentication system comprises: the transmission server as described in as arbitrary in claim 28 to 30, receiving terminal, the verification terminal as described in as arbitrary in claim 22 to 27 and as arbitrary in claim 16 to 21 as described in authentication server.