CN104184710A - Random code providing method, user identity authentication method and related devices - Google Patents
Random code providing method, user identity authentication method and related devices Download PDFInfo
- Publication number
- CN104184710A CN104184710A CN201310197212.9A CN201310197212A CN104184710A CN 104184710 A CN104184710 A CN 104184710A CN 201310197212 A CN201310197212 A CN 201310197212A CN 104184710 A CN104184710 A CN 104184710A
- Authority
- CN
- China
- Prior art keywords
- strong authentication
- user
- random code
- interactive voice
- service providing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a random code providing method, a user identity authentication method and related devices. A call request from a user terminal is received by an interactive voice response center, and the call request carries user information; after user identity is verified by the interactive voice response center, a corresponding random code of the user information is acquired; and the random code is broadcasted to the user by the interactive voice response center so that further authentication according to the random code is facilitated for the user. With adoption of the scheme of the embodiment of the invention, the random code providing and identity authentication process is realized on the basis of the interactive voice response system so that the method is not influenced by mobile communication network short message transmission timeliness and terminal short message receiving capacity, authentication efficiency is enhanced, the encryption problem in the random code transmission process is avoided and thus security is relatively high.
Description
Technical field
The present invention relates to authenticating user identification field, relate in particular to a kind of method, method for authenticating user identity and relevant apparatus that random code is provided.
Background technology
Along with the development of ecommerce, IT application in enterprises, increasing business activity is undertaken by electronic systems such as network, phone, self-aided terminals, and corresponding, the safety of customer accounting code becomes an important problem.And there is serious safety problems such as being stolen, being guessed in the mode of the authentication that single dependence static password carries out, therefore, secondary checking is as the means of supplementing out economy of static password checking, logs in, is used widely in the process such as sensitive traffic operation in account.
Secondary strong authentication at present available mode mainly contains PKI/CA certification, token authentication, note certification, biological characteristic authentication etc., wherein, note certification can ensure the correctness logging in, realize the security improvement of password authentication with less cost, and be simple and easy to by, maintenance cost very low, therefore, note certification is used widely in the user identity strong authentication of information system, e-commerce website.
Concrete, realize note certification, need an identification processing module, realize the functions such as random password generation, password authentication, note certification, by mobile communications network, is issued to user mobile phone by random password in the mode of note, and user is according to the short message content receiving, read random code, incoming traffic system interface can complete note certification.Random code possesses ageing, exceeds time random code and loses efficacy, and need to regenerate.
Although note certification has been widely recognized in actual applications, due to its powerful dependence to mobile communication signal, delay and user terminal, has a series of defect, mainly comprises following aspect:
1, note certification relies on very large to mobile communications network note transmission promptness, once because network signal is bad, note transmission delay, cause user to receive short message delay and maybe cannot receive note, user will obtain less than accidental validation, cannot complete note verification process;
2, note certification also very relies on the note receiving ability of mobile phone terminal.SMS module is the basic software function of mobile phone, mobile phone operating system mainly contains Palm OS, Symbian (Saipan), Android (Android), iOS, Black Berry (blackberry, blueberry) OS6.0, Windows Phone8 etc. at present, wherein Android operating system has again different deep exploitation versions, the SMS module disposal ability of different operating system there are differences, once SMS is processed and can be had problems, just there will be note receive delay, show abnormal etc., obtain random code thereby affect user, and then affect note certification;
3, note certification cannot realize the storage encryption of data, the shaping scheme not being encrypted based on note at present, thus the fail safe of note certification is lower.
4, smart mobile phone carries intelligent SMS software and can carry out identity interception to note, because cellphone subscriber is familiar not to the use of mobile phone, may cause note certification to complete.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of method, method for authenticating user identity and relevant apparatus that random code is provided, can improve authentication efficiency and authentication security, and lower to mobile communications network note transmission promptness and terminal note receiving ability dependency degree.
For achieving the above object, technical scheme of the present invention is achieved in that
The method that random code is provided, comprising:
Interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request;
After the identifying user identity of interactive voice answering center, obtain random code corresponding to described user profile;
Interactive voice answering center reports described random code to user.
The method also comprises:
User profile and corresponding random code thereof are synchronized to interactive voice answering center by authentication service providing end,
Described interactive voice answering center obtains random code corresponding to user profile: the user profile of carrying according to call request, and the synchronous user profile in authentication service providing end and the corresponding relation of random code, obtain random code corresponding to described user profile.
A kind of method for authenticating user identity, comprising:
Strong authentication service providing end receives the strong authentication requirement message of Self-certified demand end, and described strong authentication requirement message is carried the user profile that needs certification;
Strong authentication service providing end is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, and described user profile and corresponding strong authentication random code thereof are synchronized to interactive voice answering center;
Interactive voice answering center, according to the call request from user terminal, offers user by corresponding strong authentication random code;
Strong authentication service providing end receives the strong authentication request message of Self-certified demand end, and according to described strong authentication request message, user is authenticated, and described strong authentication request message carries the strong authentication random code that needs the user profile of certification and user's input.
Described interactive voice answering center, according to the call request from user terminal, offers user by corresponding strong authentication random code, comprising:
Interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request;
After the identifying user identity of interactive voice answering center, obtain strong authentication random code corresponding to described user profile;
Interactive voice answering center reports described strong authentication random code to user.
Described user profile is user terminal number, and before described strong authentication service providing end receives the strong authentication requirement message of Self-certified demand end, the method also comprises:
Certification demand end obtains user account and static password;
Certification demand end is verified described user account and static password, after being verified, according to pre-stored user account and the corresponding relation of user terminal number, obtains the user terminal number corresponding with described user account;
Certification demand end sends strong authentication requirement message to strong authentication service providing end, and described strong authentication requirement message is carried described user terminal number.
After described strong authentication service providing end is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, the method also comprises:
Strong authentication service providing end sends information to certification demand end, and prompting strong authentication random code generates.
The method also comprises: strong authentication service providing end is determined the term of validity of strong authentication random code,
Described strong authentication service providing end authenticates and comprises user according to strong authentication request message: according to the corresponding relation of user profile, strong authentication random code and the term of validity, user is authenticated.
A kind of interactive voice answering center, comprising: receiver module, authentication module, acquisition module and report module; Wherein,
Described receiver module, for receiving the call request from user terminal, user profile is carried in described call request;
Described authentication module, for receiving after the call request from user terminal at receiver module, verifies user identity;
Described acquisition module, for after authentication module identifying user identity, obtains random code corresponding to described user profile;
Described report module, reports to user for the random code that described acquisition module is obtained.
This interactive voice answering center also comprises memory module,
Described memory module, for the corresponding relation of the synchronous user profile of authentication storage service providing end and random code;
Described acquisition module, specifically for the user profile of carrying according to call request, and the user profile of described memory module storage and the corresponding relation of random code, obtain random code corresponding to described user profile.
A kind of strong authentication service providing apparatus, comprising: receiver module, the first determination module, synchronization module and authentication module; Wherein,
Described receiver module, for receiving the strong authentication requirement message of Self-certified demand end, described strong authentication requirement message is carried the user profile that needs certification; And for receiving the strong authentication request message of Self-certified demand end, described strong authentication request message carries the strong authentication random code that needs the user profile of certification and user's input;
Described the first determination module, determines the strong authentication random code corresponding with described user profile for the strong authentication requirement message receiving according to receiver module;
Described synchronization module, for being synchronized to interactive voice answering center by random code definite described the first determination module and corresponding user profile;
Described authentication module, authenticates user for the strong authentication request message receiving according to receiver module.
This strong authentication service providing apparatus also comprises information sending module,
Described information sending module, for after the first determination module is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, sends information to certification demand end, and prompting strong authentication random code generates.
This strong authentication service providing apparatus also comprises the second determination module,
Described the second determination module, for determining the term of validity of strong authentication random code,
Described authentication module, specifically for according to the corresponding relation of user profile, strong authentication random code and the term of validity, authenticates user.
A kind of authenticating user identification system, comprising: strong authentication service providing end, certification demand end, interactive voice answering center and user terminal; Wherein,
Described strong authentication service providing end comprises above-mentioned strong authentication service providing apparatus;
Described certification demand end, for sending strong authentication requirement message or strong authentication request message according to user's operation to described strong authentication service providing end;
Described interactive voice answering center is above-mentioned interactive voice answering center;
Described user terminal, for operating to the request of making a call of interactive voice answering center according to user; And the strong authentication random code of reporting for receiving interactive voice answering center.
Described certification demand end, specifically for obtaining user account and static password; Described user account and static password are verified, after being verified, according to pre-stored user account and the corresponding relation of user terminal number, obtained the user terminal number corresponding with described user account; Afterwards, send strong authentication requirement message to strong authentication service providing end, described strong authentication requirement message is carried described user terminal number.
The method that random code is provided, method for authenticating user identity and relevant apparatus described in the embodiment of the present invention, interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request; After the identifying user identity of interactive voice answering center, obtain random code corresponding to described user profile; Interactive voice answering center reports described random code to user, so that user does further certification according to described random code.By the scheme described in the embodiment of the present invention, provide random code and authentication process to realize based on interactive voice answering system, thereby can not be subject to the impact of mobile communications network note transmission promptness and terminal note receiving ability, improve authentication efficiency, and evaded the cryptography issue in random code transmitting procedure, fail safe is higher.
Brief description of the drawings
Fig. 1 provides the method flow schematic diagram of random code for the embodiment of the present invention is a kind of;
Fig. 2 is a kind of method for authenticating user identity schematic flow sheet of the embodiment of the present invention;
Fig. 3 is a kind of interactive voice answering division center of embodiment of the present invention schematic diagram;
Fig. 4 is the another kind of interactive voice answering division center of embodiment of the present invention schematic diagram;
Fig. 5 is a kind of strong authentication service providing apparatus of embodiment of the present invention structural representation;
Fig. 6 is the another kind of strong authentication service providing apparatus of embodiment of the present invention structural representation;
Fig. 7 is another strong authentication service providing apparatus structural representation of the embodiment of the present invention;
Fig. 8 is a kind of authenticating user identification system configuration of embodiment of the present invention schematic diagram;
Fig. 9 is the active obtaining method flow schematic diagram of the strong authentication random code based on interactive voice answering described in the embodiment of the present invention 1;
Figure 10 is the operation principle schematic diagram of the user identity strong authentication recognition system based on interactive voice answering described in the embodiment of the present invention 2;
Figure 11 is the schematic flow sheet that strong authentication random code is reported at the interactive voice answering center described in the present embodiment 3.
Embodiment
Basic thought of the present invention is: interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request; After the identifying user identity of interactive voice answering center, obtain random code corresponding to described user profile; Interactive voice answering center reports described random code to user, so that user does further certification according to described random code.
The embodiment of the present invention has proposed a kind of method that random code is provided, and as shown in Figure 1, the method comprises:
Step 101: interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request;
Step 102: after the identifying user identity of interactive voice answering center, obtain random code corresponding to described user profile;
Step 103: interactive voice answering center reports described random code to user.
Optionally, the method also comprises:
User profile and corresponding random code thereof are synchronized to interactive voice answering center by authentication service providing end,
Described interactive voice answering center obtains random code corresponding to user profile: the user profile of carrying according to call request, and the synchronous user profile in authentication service providing end and the corresponding relation of random code, obtain random code corresponding to described user profile.
The embodiment of the present invention has also correspondingly proposed a kind of method for authenticating user identity, and as shown in Figure 2, the method comprises:
Step 201: strong authentication service providing end receives the strong authentication requirement message of Self-certified demand end, described strong authentication requirement message is carried the user profile that needs certification;
Step 202: strong authentication service providing end is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, and described user profile and corresponding strong authentication random code thereof are synchronized to interactive voice answering center;
Step 203: interactive voice answering center, according to the call request from user terminal, offers user by corresponding strong authentication random code;
Step 204: strong authentication service providing end receives the strong authentication request message of Self-certified demand end, and according to described strong authentication request message, user is authenticated, described strong authentication request message carries the strong authentication random code that needs the user profile of certification and user's input.
Optionally, interactive voice answering center, according to the call request from user terminal, offers user by corresponding strong authentication random code described in step 203, comprising:
Interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request;
After the identifying user identity of interactive voice answering center, obtain strong authentication random code corresponding to described user profile;
Interactive voice answering center reports described strong authentication random code to user.
Optionally, described user profile is user terminal number, and before described strong authentication service providing end receives the strong authentication requirement message of Self-certified demand end, the method also comprises:
Certification demand end obtains user account and static password;
Certification demand end is verified described user account and static password, after being verified, according to pre-stored user account and the corresponding relation of user terminal number, obtains the user terminal number corresponding with described user account;
Certification demand end sends strong authentication requirement message to strong authentication service providing end, and described strong authentication requirement message is carried described user terminal number.
Optionally, after described strong authentication service providing end is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, the method also comprises:
Strong authentication service providing end sends information to certification demand end, and prompting strong authentication random code generates.
Optionally, the method also comprises: strong authentication service providing end is determined the term of validity of strong authentication random code,
Described strong authentication service providing end authenticates and comprises user according to strong authentication request message: according to the corresponding relation of user profile, strong authentication random code and the term of validity, user is authenticated.
It should be noted that, in the present invention, certification demand end can be sensitive transactions module or based on C/S model system login module etc. in E-business service login authentication module, e-commerce website; Strong authentication service providing end can be calculated according to demand the strong authentication random code relevant to user profile and complete the checking of strong authentication random code, strong authentication service providing end can be integrated in a system with certification demand end, also can be independent of certification demand end and implement separately; Interactive voice answering center can provide voice broadcast service, is conventionally provided by communication common carrier, or also can dispose separately interactive voice answering equipment but the communication network of access communications company.
The embodiment of the present invention has also correspondingly proposed a kind of interactive voice answering center, and as shown in Figure 3, this interactive voice answering center comprises: receiver module 31, authentication module 32, acquisition module 33 and report module 34; Wherein,
Receiver module 31, for receiving the call request from user terminal, user profile is carried in described call request;
Authentication module 32, for receiving after the call request from user terminal at receiver module 31, verifies user identity;
Acquisition module 33, for after authentication module 32 identifying user identities, obtains random code corresponding to described user profile;
Report module 34, report to user for the random code that acquisition module 33 is obtained.
Optionally, as shown in Figure 4, this interactive voice answering center also comprises memory module 35,
Memory module 35, for the corresponding relation of the synchronous user profile of authentication storage service providing end and random code;
Acquisition module 33, specifically for the user profile of carrying according to call request, and the user profile of described memory module storage and the corresponding relation of random code, obtain random code corresponding to described user profile.
The embodiment of the present invention has also correspondingly proposed a kind of strong authentication service providing apparatus, and as shown in Figure 5, this device comprises: receiver module 51, the first determination module 52, synchronization module 53 and authentication module 54; Wherein,
Receiver module 51, for receiving the strong authentication requirement message of Self-certified demand end, described strong authentication requirement message is carried the user profile that needs certification; And for receiving the strong authentication request message of Self-certified demand end, described strong authentication request message carries the strong authentication random code that needs the user profile of certification and user's input;
The first determination module 52, determines the strong authentication random code corresponding with described user profile for the strong authentication requirement message receiving according to receiver module 51;
Synchronization module 53, for being synchronized to interactive voice answering center by random code definite the first determination module 52 and corresponding user profile;
Authentication module 54, authenticates user for the strong authentication request message receiving according to receiver module 51.
Optionally, as shown in Figure 6, this strong authentication service providing apparatus also comprises information sending module 55,
Information sending module 55, for after the first determination module 52 is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, sends information to certification demand end, and prompting strong authentication random code generates.
Optionally, as shown in Figure 7, this strong authentication service providing apparatus also comprises the second determination module 56,
The second determination module 56, for determining the term of validity of strong authentication random code,
Authentication module 54, specifically for according to the corresponding relation of user profile, strong authentication random code and the term of validity, authenticates user.
The embodiment of the present invention has also correspondingly proposed a kind of authenticating user identification system, and as shown in Figure 8, this system comprises: strong authentication service providing end 81, certification demand end 82, interactive voice answering center 83 and user terminal 84; Wherein,
Strong authentication service providing end 81 comprises the strong authentication service providing apparatus of Fig. 5 to 7 shown in arbitrary;
Certification demand end 82, for sending strong authentication requirement message or strong authentication request message according to user's operation to described strong authentication service providing end;
Interactive voice answering center 83 is the interactive voice answering center shown in Fig. 3 or Fig. 4;
User terminal 84, for operating to the request of making a call of interactive voice answering center according to user; And the strong authentication random code of reporting for receiving interactive voice answering center.
Optionally, certification demand end 82, specifically for obtaining user account and static password; Described user account and static password are verified, after being verified, according to pre-stored user account and the corresponding relation of user terminal number, obtained the user terminal number corresponding with described user account; Afterwards, send strong authentication requirement message to strong authentication service providing end, described strong authentication requirement message is carried described user terminal number.
It should be noted that, scheme described in the embodiment of the present invention can be applied to the user identity identification field in ecommerce, network technology, especially logins towards the user of the online business hall of China Mobile that strong authentication is logined in strong authentication, the each base website user of China Mobile, e-commerce website user logins user in user identity strong authentication identification in identity strong authentication, e-commerce website B2C and C2C transaction, IT application in enterprises website and logins the fields such as identity strong authentication identification.
Below by specific embodiment, the present invention is described in further detail.
Embodiment 1
The present embodiment relates to a kind of active obtaining method of the strong authentication random code based on interactive voice answering, and as shown in Figure 9, the method comprises:
S901: in the time that certification demand termination is received the service request that user sends by information processor, certification demand end sends the authentication request of the person's of portably using data to strong authentication service providing end;
S902: when strong authentication service providing end receives described authentication request, calculate strong authentication random code according to described user's data;
For example, strong authentication random code generating algorithm comprises 6 characters, does not repeat, can be by Brute Force in the short time; Accomplish user's information and the preservation of corresponding strong authentication random code, and the management of effective property, guarantee that the ageing after date strong authentication random code of crossing can not be verified again.
S903: user's information and strong authentication random code are synchronized to interactive voice answering center by strong authentication service providing end;
In the user identity strong authentication recognition methods and system of interactive voice answering, because strong authentication random code has ageing, therefore between strong authentication service module and interactive voice answering center, data are synchronizeed and must be accomplished quasi real time, input after account, static password user, mobile phone dialing interactive voice center service number, completes data in this time period synchronous.Between strong authentication service module and interactive voice answering center service module, by real time data synchronization, ensure promptness and the consistency of data.
S904: user is by mobile phone dialing interactive voice answering central number, and interactive voice answering center is according to after phone number identifying user identity, corresponding strong authentication random code being reported to user;
S905: the strong authentication random code of hearing is offered certification demand end by user;
S906: strong authentication random code and user's information that certification demand end provides user offer strong authentication service end;
S907: strong authentication service providing end compares with historical strong authentication random code and the user's information generating according to received strong authentication random code and user's information, judges that according to this user is enough in certification, and sends authentication result to certification demand end;
S908: the authentication result that certification demand end provides according to strong authentication service providing end, judges that whether user is by authenticating the authority that uses service.
Embodiment 2
The user identity strong authentication recognition system based on interactive voice answering described in the present embodiment as shown in figure 10, this system comprises certification demand end, strong authentication service providing end, user terminal and interactive voice call center, below, according to the function of each module in the processing sequence key diagram of identifying procedure:
1) user is at certification demand end input account and static password;
2) after certification demand end completes account and static password and is verified, initiate strong authentication to strong authentication service providing end, otherwise will stop verifying, point out and re-enter account and static password;
3) strong authentication service providing end receives after strong authentication request and user's information, calculates the strong authentication random code relevant to user, and return messages are to authentication interface, point out strong authentication random code to generate;
4) interactive voice call center (also can be described as IVR service module) is preserved and be synchronized to strong authentication service providing end by user's information and strong authentication random code, and the prompting of certification demand end is used strong authentication random code to generate;
5) user dials interactive voice call center services number, inquiry strong authentication random code, and whether verification caller in interactive voice call center has legal identity, and reports up-to-date strong authentication random code;
6) use the strong authentication random code of uppick, input to certification demand end;
7) certification demand end is passed to strong authentication service providing end by the strong authentication random code receiving and user's information and is verified;
8) strong authentication service providing end is verified according to user's information and the strong authentication random code received, the accuracy of checking random code and ageing;
9) random code the result is fed back to certification demand module by strong authentication service providing end;
10) strong authentication the result is showed user by certification demand end, and result is by continuing business, and result, for not passing through, points out user to re-execute step 5).
Embodiment 3
The flow process of the interactive voice answering center report strong authentication random code described in the present embodiment as shown in figure 11, comprising:
1) user dials audio call center phone and enters interactive voice answering center;
2) call answering is carried out at interactive voice answering center;
3) authenticating user identification is carried out at interactive voice answering center;
4) interactive voice answering center obtains random code;
5) random code is reported to user in interactive voice answering center, and repeatedly broadcasting function is provided;
6) end of calling.
It should be noted that, in the user identity strong authentication recognition methods based on interactive voice answering, interactive voice answering Center Parameter arranges extremely important, need to ensure the service quality such as call service call completion ratio, needs to build in advance traffic model.Traffic model needs the factors such as forethought service-user data, every user's number of calls every day, busy day the central system (=busy day calls ÷ calls whole month), busy concentration ratio (the busy day calls of ÷ is counted in=busy hour call), fully analyze business demand amount, calculate the calling number of concurrent that interactive voice answering center need to provide, buy according to demand suitable hardware, provide the interactive voice answering center service of quality assurance.For example, interactive voice call center number of concurrent=service-user number × every user dials number of times × busy day coefficient of concentration × busy concentration ratio every day.
Can find out by foregoing description, the scheme described in the embodiment of the present invention does not rely on mobile communications network information, short message delay etc.; And, only rely on mobile phone speech function, do not rely on mobile phone terminal note software function; And random code, without coding transmission process, has been evaded the disclosure risk in random code plaintext transmission; And, can promote correctness, the promptness of strong authentication, verification process fail safe.
The above, be only preferred embodiment of the present invention, is not intended to limit protection scope of the present invention.
Claims (14)
1. the method that random code is provided, is characterized in that, the method comprises:
Interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request;
After the identifying user identity of interactive voice answering center, obtain random code corresponding to described user profile;
Interactive voice answering center reports described random code to user.
2. method according to claim 1, is characterized in that, the method also comprises:
User profile and corresponding random code thereof are synchronized to interactive voice answering center by authentication service providing end,
Described interactive voice answering center obtains random code corresponding to user profile: the user profile of carrying according to call request, and the synchronous user profile in authentication service providing end and the corresponding relation of random code, obtain random code corresponding to described user profile.
3. a method for authenticating user identity, is characterized in that, the method comprises:
Strong authentication service providing end receives the strong authentication requirement message of Self-certified demand end, and described strong authentication requirement message is carried the user profile that needs certification;
Strong authentication service providing end is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, and described user profile and corresponding strong authentication random code thereof are synchronized to interactive voice answering center;
Interactive voice answering center, according to the call request from user terminal, offers user by corresponding strong authentication random code;
Strong authentication service providing end receives the strong authentication request message of Self-certified demand end, and according to described strong authentication request message, user is authenticated, and described strong authentication request message carries the strong authentication random code that needs the user profile of certification and user's input.
4. method according to claim 3, is characterized in that, described interactive voice answering center, according to the call request from user terminal, offers user by corresponding strong authentication random code, comprising:
Interactive voice answering center receives the call request from user terminal, and user profile is carried in described call request;
After the identifying user identity of interactive voice answering center, obtain strong authentication random code corresponding to described user profile;
Interactive voice answering center reports described strong authentication random code to user.
5. method according to claim 3, is characterized in that, described user profile is user terminal number, and before described strong authentication service providing end receives the strong authentication requirement message of Self-certified demand end, the method also comprises:
Certification demand end obtains user account and static password;
Certification demand end is verified described user account and static password, after being verified, according to pre-stored user account and the corresponding relation of user terminal number, obtains the user terminal number corresponding with described user account;
Certification demand end sends strong authentication requirement message to strong authentication service providing end, and described strong authentication requirement message is carried described user terminal number.
6. method according to claim 3, is characterized in that, after described strong authentication service providing end is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, the method also comprises:
Strong authentication service providing end sends information to certification demand end, and prompting strong authentication random code generates.
7. according to the method described in claim 3 to 6 any one, it is characterized in that,
The method also comprises: strong authentication service providing end is determined the term of validity of strong authentication random code,
Described strong authentication service providing end authenticates and comprises user according to strong authentication request message: according to the corresponding relation of user profile, strong authentication random code and the term of validity, user is authenticated.
8. an interactive voice answering center, is characterized in that, this interactive voice answering center comprises: receiver module, authentication module, acquisition module and report module; Wherein,
Described receiver module, for receiving the call request from user terminal, user profile is carried in described call request;
Described authentication module, for receiving after the call request from user terminal at receiver module, verifies user identity;
Described acquisition module, for after authentication module identifying user identity, obtains random code corresponding to described user profile;
Described report module, reports to user for the random code that described acquisition module is obtained.
9. interactive voice answering according to claim 8 center, is characterized in that, this interactive voice answering center also comprises memory module,
Described memory module, for the corresponding relation of the synchronous user profile of authentication storage service providing end and random code;
Described acquisition module, specifically for the user profile of carrying according to call request, and the user profile of described memory module storage and the corresponding relation of random code, obtain random code corresponding to described user profile.
10. a strong authentication service providing apparatus, is characterized in that, this device comprises: receiver module, the first determination module, synchronization module and authentication module; Wherein,
Described receiver module, for receiving the strong authentication requirement message of Self-certified demand end, described strong authentication requirement message is carried the user profile that needs certification; And for receiving the strong authentication request message of Self-certified demand end, described strong authentication request message carries the strong authentication random code that needs the user profile of certification and user's input;
Described the first determination module, determines the strong authentication random code corresponding with described user profile for the strong authentication requirement message receiving according to receiver module;
Described synchronization module, for being synchronized to interactive voice answering center by random code definite described the first determination module and corresponding user profile;
Described authentication module, authenticates user for the strong authentication request message receiving according to receiver module.
11. strong authentication service providing apparatus according to claim 10, is characterized in that, this strong authentication service providing apparatus also comprises information sending module,
Described information sending module, for after the first determination module is determined the strong authentication random code corresponding with described user profile according to described strong authentication requirement message, sends information to certification demand end, and prompting strong authentication random code generates.
12. according to the strong authentication service providing apparatus described in claim 10 or 11, it is characterized in that, this strong authentication service providing apparatus also comprises the second determination module,
Described the second determination module, for determining the term of validity of strong authentication random code,
Described authentication module, specifically for according to the corresponding relation of user profile, strong authentication random code and the term of validity, authenticates user.
13. 1 kinds of authenticating user identification systems, is characterized in that, this system comprises: strong authentication service providing end, certification demand end, interactive voice answering center and user terminal; Wherein,
Described strong authentication service providing end comprises the strong authentication service providing apparatus described in claim 10 to 12 any one;
Described certification demand end, for sending strong authentication requirement message or strong authentication request message according to user's operation to described strong authentication service providing end;
Described interactive voice answering center is the interactive voice answering center described in claim 8 or 9;
Described user terminal, for operating to the request of making a call of interactive voice answering center according to user; And the strong authentication random code of reporting for receiving interactive voice answering center.
14. systems according to claim 13, is characterized in that,
Described certification demand end, specifically for obtaining user account and static password; Described user account and static password are verified, after being verified, according to pre-stored user account and the corresponding relation of user terminal number, obtained the user terminal number corresponding with described user account; Afterwards, send strong authentication requirement message to strong authentication service providing end, described strong authentication requirement message is carried described user terminal number.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310197212.9A CN104184710A (en) | 2013-05-23 | 2013-05-23 | Random code providing method, user identity authentication method and related devices |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310197212.9A CN104184710A (en) | 2013-05-23 | 2013-05-23 | Random code providing method, user identity authentication method and related devices |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104184710A true CN104184710A (en) | 2014-12-03 |
Family
ID=51965459
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310197212.9A Pending CN104184710A (en) | 2013-05-23 | 2013-05-23 | Random code providing method, user identity authentication method and related devices |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104184710A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105791211A (en) * | 2014-12-17 | 2016-07-20 | 联芯科技有限公司 | Website password safe input method and system |
| CN110503424A (en) * | 2019-08-23 | 2019-11-26 | 中国联合网络通信集团有限公司 | A kind of method and device of quick lock in bank card |
| CN111526252A (en) * | 2020-04-30 | 2020-08-11 | 中卓信(北京)科技有限公司 | Data interaction method, data interaction device and electronic equipment |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1510899A (en) * | 2002-12-23 | 2004-07-07 | 郝敏燕 | Mobile communication platform based on dynamic random mobile telephone pin identifying system |
| CN1780209A (en) * | 2004-11-25 | 2006-05-31 | 华为技术有限公司 | Internet safety verification |
| CN101102324A (en) * | 2007-08-17 | 2008-01-09 | 北京移数通电讯有限公司 | Authentication system and authentication method |
| CN101453322A (en) * | 2007-11-29 | 2009-06-10 | 王谦 | Method and system for dynamic cipher code distribution and verification |
| CN101465733A (en) * | 2007-12-17 | 2009-06-24 | 彭勇 | Identity authentication method based on telephone |
| CN101483520A (en) * | 2008-01-11 | 2009-07-15 | 彭勇 | Identity authentication method based on telephone |
| WO2013009191A1 (en) * | 2011-07-13 | 2013-01-17 | Trond Lemberg | System and method for alternative distribution of a pin code |
-
2013
- 2013-05-23 CN CN201310197212.9A patent/CN104184710A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1510899A (en) * | 2002-12-23 | 2004-07-07 | 郝敏燕 | Mobile communication platform based on dynamic random mobile telephone pin identifying system |
| CN1780209A (en) * | 2004-11-25 | 2006-05-31 | 华为技术有限公司 | Internet safety verification |
| CN101102324A (en) * | 2007-08-17 | 2008-01-09 | 北京移数通电讯有限公司 | Authentication system and authentication method |
| CN101453322A (en) * | 2007-11-29 | 2009-06-10 | 王谦 | Method and system for dynamic cipher code distribution and verification |
| CN101465733A (en) * | 2007-12-17 | 2009-06-24 | 彭勇 | Identity authentication method based on telephone |
| CN101483520A (en) * | 2008-01-11 | 2009-07-15 | 彭勇 | Identity authentication method based on telephone |
| WO2013009191A1 (en) * | 2011-07-13 | 2013-01-17 | Trond Lemberg | System and method for alternative distribution of a pin code |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105791211A (en) * | 2014-12-17 | 2016-07-20 | 联芯科技有限公司 | Website password safe input method and system |
| CN105791211B (en) * | 2014-12-17 | 2019-04-02 | 联芯科技有限公司 | A kind of website cipher safety inputting method and system |
| CN110503424A (en) * | 2019-08-23 | 2019-11-26 | 中国联合网络通信集团有限公司 | A kind of method and device of quick lock in bank card |
| CN110503424B (en) * | 2019-08-23 | 2022-03-18 | 中国联合网络通信集团有限公司 | Method and device for rapidly locking bank card |
| CN111526252A (en) * | 2020-04-30 | 2020-08-11 | 中卓信(北京)科技有限公司 | Data interaction method, data interaction device and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109347635A (en) | A kind of Internet of Things security certification system and authentication method based on national secret algorithm | |
| CN103051453B (en) | A kind of mobile terminal network affaris safety trade system based on digital certificate and method | |
| CN103269270A (en) | Real-name authentication safe login method and system based on cell phone number | |
| CN108055238B (en) | Account verification method and system | |
| CN102546532A (en) | Capacity calling method, capacity calling request device, capacity calling platform and capacity calling system | |
| CN103945374A (en) | Method of mobile terminal equipment and user authentication based on PKI technology | |
| CN101242271A (en) | Trusted remote service method and system | |
| CN101291223A (en) | System and method for a third party to provide identity authentication service | |
| CN101202631A (en) | System and method for identification authentication based on cipher key and timestamp | |
| CN103096316A (en) | Terminal, network side equipment system and method for authenticating user identification card | |
| CN105307158A (en) | Identity verification method of mobile phone number of communication terminal | |
| CN109714370A (en) | A kind of implementation method based on http protocol end Yunan County full communication | |
| CN104994115B (en) | A kind of login authentication method and system | |
| CN103401686B (en) | A kind of user's OTP WEB Authentication System and application process thereof | |
| CN111263361B (en) | Connection authentication method and device based on block chain network and micro base station | |
| CN102752117B (en) | Dynamic password generating device, method and there is the transaction system of this device | |
| CN106656993A (en) | Dynamic verification code verifying method and apparatus | |
| FI113146B (en) | Authentication Message Processing Method, Telephone System, Authentication Center, Subscriber Unit, and SIM Card | |
| CN106027560A (en) | Intelligent terminal oriented security transmission method and system | |
| CN102811369A (en) | Security authentication method during video sharing and handheld equipment | |
| CN105407102A (en) | Http request data reliability verification method | |
| CN104184710A (en) | Random code providing method, user identity authentication method and related devices | |
| CN103546292A (en) | Third-party certification system or method with multiple identification codes | |
| CN104994107B (en) | A kind of MMS message off-line analysis methods based on IEC62351 | |
| CN206993151U (en) | Network signal security authentication systems |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20141203 |