CN105306202A - Identity verification method and device, server - Google Patents
Identity verification method and device, server Download PDFInfo
- Publication number
- CN105306202A CN105306202A CN201410286971.7A CN201410286971A CN105306202A CN 105306202 A CN105306202 A CN 105306202A CN 201410286971 A CN201410286971 A CN 201410286971A CN 105306202 A CN105306202 A CN 105306202A
- Authority
- CN
- China
- Prior art keywords
- mobile terminal
- current operation
- wearable device
- account
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Telephonic Communication Services (AREA)
- Telephone Function (AREA)
Abstract
The invention discloses an identity verification method, an identity verification device, and a server, and belongs to the technical field of Internet. The method comprises the steps of: obtaining an account number and a password in current operation, and determining that whether the account number and the password are matched; if yes, issuing a two-dimension code, displaying the two-dimension code at a client, and allowing a user corresponding to the current operation to scan the two-dimension code by a corresponding mobile terminal; determining that whether the mobile terminal is the verified safe device; and if yes, determining that the identity of the user corresponding to the current operation is verified. According to the identity verification method, the identity verification is achieved trough further issuing the two-dimension code to the client after determining that the account number is matched with the password, scanning the two-dimension code by the mobile terminal, and then determining that whether the mobile terminal is the safe device according to the scan result. As the identity verification processing for verifying that whether the mobile terminal is the safe device is added after the account number and the password are matched, reliability of the identity verification is improved, and data and property safety of the user can be ensured.
Description
Technical field
The present invention relates to Internet technical field, particularly a kind of auth method, device and server.
Background technology
Along with developing rapidly of Internet technology, the function that user is realized by the Internet gets more and more.At present, user is realizing in the process of some function by the Internet, needs to depend on account system to realize.Such as, user realizes exchange and interdynamic by account and the various social activity application of password login, by completing on-line payment operation when various e-commerce platform realizes shopping by account and password, etc.Wherein, because register and operation etc. of transferring accounts all may relate to data or the property of user, therefore, the operation of the data or property that relate to user is all thought sensitive operation.For user in some sensitive operation using account system to be realized by the Internet, in order to ensure data and the property safety of user, system needs to verify the identity of user.
Correlation technique, when carrying out authentication, can adopt the account number cipher verification mode based on modes such as static password, short message verification code and dynamic verification codes.The basic authentication process of above-mentioned several authentication mode is: the account and the password that obtain current operation; Determine whether the account that gets and password mate; If the account got and password coupling, then determine that user that current operation is corresponding is by authentication, otherwise determine that the user that current operation is corresponding does not pass through authentication.
Realizing in process of the present invention, inventor finds that correlation technique at least exists following problem:
Along with developing rapidly of Internet technology, occur variously to obtain the account of user and the means of password by phishing and wooden horse etc.The account of user and password are easy to be got by the mode of phishing or infect method by network crime person, and implement by account and password data or the property that user is stolen in criminal offence.Therefore, the method reliability of being carried out authentication by the account number cipher verification mode of correlation technique is not high, cannot ensure data and the property safety of user.
Summary of the invention
In order to solve the problem of correlation technique, embodiments provide a kind of auth method, device and server.Described technical scheme is as follows:
First aspect, provides a kind of auth method, and described method comprises:
Obtain the account of current operation and password, and determine whether the account that gets and password mate;
If the account got and password coupling, then issue the Quick Response Code for authentication to the client that described current operation is corresponding, and show described Quick Response Code by described client, make the described Quick Response Code that the user that described current operation is corresponding is shown by client described in corresponding mobile scanning terminal, and upload scanning result;
Determine whether described mobile terminal is certified safety means according to described scanning result;
If described mobile terminal is certified safety means, then determine that the user that described current operation is corresponding passes through authentication.
Second aspect, provides a kind of authentication means, and described device comprises:
Acquisition module, for obtaining account and the password of current operation;
First determination module, for determining whether the account that gets and password mate;
Issue module, for mating when the account got and password, then issue the Quick Response Code for authentication to the client that described current operation is corresponding, and show described Quick Response Code by described client, make the described Quick Response Code that the user that described current operation is corresponding is shown by client described in corresponding mobile scanning terminal, and upload scanning result;
Second determination module, for determining according to described scanning result whether described mobile terminal is certified safety means;
3rd determination module, for when described mobile terminal be certified safety means time, determine that the user that described current operation is corresponding passes through authentication.
The third aspect, provide a kind of server, described server includes memory, and one or more than one program, one of them or more than one program are stored in memory, and be configured to be performed by more than one or one processor, described more than one or one program package is containing the instruction for performing following operation:
Obtain the account of current operation and password, and determine whether the account that gets and password mate;
If the account got and password coupling, then issue the Quick Response Code for authentication to the client that described current operation is corresponding, and show described Quick Response Code by described client, make the described Quick Response Code that the user that described current operation is corresponding is shown by client described in corresponding mobile scanning terminal, and upload scanning result;
Determine whether described mobile terminal is certified safety means according to described scanning result;
If described mobile terminal is certified safety means, then determine that the user that described current operation is corresponding passes through authentication.
The beneficial effect that the technical scheme that the embodiment of the present invention provides is brought is:
After determining account and password coupling, issue Quick Response Code to client further, by this Quick Response Code of mobile scanning terminal and after reporting scanning result, whether be that certified safety means realize authentication according to this scanning result determination mobile terminal.Be whether the authentication process itself of safety means owing to adding further by checking mobile terminal after account and password coupling, thus improve the reliability of authentication, data and the property safety of user can be ensured.
Accompanying drawing explanation
In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, below the accompanying drawing used required in describing embodiment is briefly described, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is the implementation environment schematic diagram involved by a kind of auth method that one embodiment of the invention provides;
Fig. 2 is the flow chart of a kind of auth method that another embodiment of the present invention provides;
Fig. 3 is the flow chart of a kind of auth method that another embodiment of the present invention provides;
Fig. 4 is the structural representation of a kind of authentication means that another embodiment of the present invention provides;
Fig. 5 is the structural representation of a kind of authentication means that another embodiment of the present invention provides;
Fig. 6 is the structural representation of a kind of second determination module that another embodiment of the present invention provides;
Fig. 7 is the structural representation of a kind of first determining unit that another embodiment of the present invention provides;
Fig. 8 is the structural representation of a kind of first determining unit that another embodiment of the present invention provides;
Fig. 9 is the structural representation of a kind of server that another embodiment of the present invention provides.
Embodiment
For making the object, technical solutions and advantages of the present invention clearly, below in conjunction with accompanying drawing, embodiment of the present invention is described further in detail.
As shown in Figure 1, it illustrates the implementation environment schematic diagram involved by auth method that the embodiment of the present invention provides.As shown in Figure 1, this implementation environment comprises client 101, mobile terminal 102, wearable device 103 and server 104.Wherein, client 101 is the terminal at current operation place, the equipment of registering when wearable device 103 is the account of registration current operation, and mobile terminal 102 carries out the equipment of authentication for the execution user representing current operation.When client 101 performs current operation, server 104 needs to verify the identity of the user performing current operation.Wherein, client 101 is connected by network with server 104, and client 101 is connected by network with mobile terminal 102.This network can be cable network, also can be wireless network.
Whether the password of the account by current operation provided in conjunction with correlation technique mates the method for carrying out authentication, the method that the embodiment of the present invention provides, after the account and password coupling of current operation, further by determine mobile terminal 102 be whether certified safety means to carry out authentication, thus guarantee the reliability of authentication.Wherein, namely there are mapping relations one by one between certified safety means and the user belonging to account of current operation in the equipment that the user of certified safety means belonging to the account of current operation is corresponding.
Wherein, the embodiment of the present invention does not limit the type of client 101, mobile terminal 102, wearable device 103 and server 104.During concrete enforcement, client 101 includes but not limited to as smart mobile phone, panel computer, E-book reader, MP3 (MovingPictureExpertsGroupAudioLayerIII, dynamic image expert compression standard audio frequency aspect 3) player, MP4 (MovingPictureExpertsGroupAudioLayerIV, dynamic image expert compression standard audio frequency aspect 3) player, pocket computer on knee and desktop computer etc.; Mobile terminal 102 includes but not limited to as smart mobile phone, panel computer, E-book reader, MP3 player, MP4 player; Wearable device 103 includes but not limited to as intelligent watch, intelligent glasses, etc.Server 104 is the server of the control current operation of any type.
Concrete authentication process itself refers to each embodiment following:
Implementation environment schematic diagram shown in composition graphs 1 and foregoing, embodiments provide a kind of auth method.See Fig. 2, the method flow that the embodiment of the present invention provides comprises:
201: obtain the account of current operation and password, and determine whether the account that gets and password mate.
202: if the account got and password coupling, then issue the Quick Response Code for authentication to the client that current operation is corresponding, and by this client two-dimensional code display, the user making current operation corresponding by the Quick Response Code of corresponding this client of mobile scanning terminal display, and uploads scanning result.
Alternatively, before issuing the Quick Response Code for authentication to the client that current operation is corresponding, also comprise:
Detect current operation and whether there is exception;
If current operation exists abnormal, then interrupt current operation, and perform the step issuing the Quick Response Code for authentication to the client that current operation is corresponding.
203: determine whether this mobile terminal is certified safety means according to scanning result.
Alternatively, determine whether this mobile terminal is certified safety means, comprising according to scanning result:
Determine that whether this mobile terminal is relevant to wearable device according to scanning result, wherein, the equipment of registering when wearable device is the account of registration current operation;
If mobile terminal is relevant to this wearable device, then determine that this mobile terminal is certified safety means.
Alternatively, determine that whether this mobile terminal is relevant to this wearable device according to scanning result, comprising:
The current location information of this mobile terminal and the current location information of this wearable device is obtained according to scanning result;
Determine that whether this mobile terminal is relevant to this wearable device according to the current location information of this mobile terminal and the current location information of this wearable device.
Alternatively, determine that whether this mobile terminal is relevant to this wearable device according to scanning result, comprising:
Obtain the identification information of this mobile terminal according to scanning result, and determine that whether this mobile terminal is equipment that this wearable device is bound according to identification information;
If the equipment that this mobile terminal is bound for this wearable device, then determine that this mobile terminal is relevant to this wearable device.
204: if this mobile terminal is certified safety means, then determine that the user that current operation is corresponding passes through authentication.
The method that the embodiment of the present invention provides, after determining account and password coupling, Quick Response Code is issued further, by this Quick Response Code of mobile scanning terminal and after reporting scanning result, whether be that certified safety means realize authentication according to this scanning result determination mobile terminal to client.Be whether the authentication process itself of safety means owing to adding further by checking mobile terminal after account and password coupling, thus improve the reliability of authentication, data and the property safety of user can be ensured.
Implementation environment schematic diagram shown in composition graphs 1 and above-described embodiment, embodiments provide a kind of auth method.See Fig. 3, the method flow that the embodiment of the present invention provides comprises:
301: obtain the account of current operation and password, and determine whether the account that gets and password mate.
Due to the method for further authentication that the basis whether embodiment of the present invention password that is the account by determining current operation provided in correlation technique mates proposes.Therefore, when carrying out authentication, need to obtain the account of current operation and password, and determine whether the account that gets and password mate.
About the acquisition account of current operation and the mode of password, the embodiment of the present invention does not do concrete restriction.During concrete enforcement, Ke Yiwei: client corresponding to current operation uploads the password of the account got after obtaining the password of the account that user input at the display interface of current operation, thus realized by the account of reception client upload and password.In addition, about the mode whether account determining to get and password mate, including but not limited to compares the account stored when the account got and password and registration current operation and password realizes.
In addition, the embodiment of the present invention does not limit the particular type of current operation.During concrete enforcement, current operation can be the operation of any type.Such as, current operation can be register, transfer accounts operation, delivery operation, etc.
302: if the account got and password coupling, then detect current operation and whether there is exception, if current operation exists abnormal, then interrupt current operation, and issue the Quick Response Code for authentication to the client that current operation is corresponding, and by this client two-dimensional code display, the user making current operation corresponding by the Quick Response Code of corresponding this client of mobile scanning terminal display, and uploads scanning result.
Wherein, detect current operation and whether there is exception, if current operation exists abnormal, then the step of interrupting current operation is optional step.In concrete authentication process itself, after account and password coupling, the step performing follow-up authentication can be continued.But, although all continue to perform the reliability that follow-up authentication step can improve authentication process itself for each current operation, the operating process of authentication can be made complicated, thus bring bad operating experience to user.In order to avoid this kind of situation occurs, the method that the embodiment of the present invention provides can only continue when current operation exists abnormal to perform follow-up authentication step again, and if there is not exception in current operation, then can not carry out follow-up authentication step.That is, the auth method that the embodiment of the present invention provides can for all current operations, also can only as a kind of find that account is abnormal time blocking-up hit gimmick, applicable pattern is flexible.
Whether there is abnormal mode about detection current operation, can have a variety of.Such as, can by detecting whether this account be different-place login, change PC (PersonalComputer, personal computer) and to log in or current operation hits the modes such as high-risk keyword or behavior and realizes.Particularly, if there are one or more in above-mentioned situation, then determine that current operation exists abnormal.
Further, if current operation exists abnormal, then in order to stop ongoing current operation, can current operation be interrupted, thus proceed follow-up authentication step.About the mode of interrupting current operation, the embodiment of the present invention does not do concrete restriction.During concrete enforcement, include but not limited to that the mode being issued interrupt instruction by the client corresponding to current operation is realized.
In addition, in embodiments of the present invention, in the process proceeding follow-up authentication, the method adopted is: issue the Quick Response Code for authentication by the client corresponding to current operation, and by this client two-dimensional code display, the user making current operation corresponding by the Quick Response Code of corresponding this client of mobile scanning terminal display, and uploads scanning result, and then is realized by scanning result.
Wherein, the mode that the embodiment of the present invention client that subtend current operation is not corresponding issues for the Quick Response Code of authentication limits.In addition, the embodiment of the present invention does not limit the type of Quick Response Code equally.During concrete enforcement, Quick Response Code includes but not limited to as sound Quick Response Code, two-dimensional image code etc.
About the mode of client two-dimensional code display, can have a variety of.Such as, the account of current operation and password can be covered and on the password being shown in account, also can be shown in below account and password, etc.
In addition, pass through the Quick Response Code of corresponding this client of mobile scanning terminal display about the user that current operation is corresponding and upload the mode of scanning result, the embodiment of the present invention does not do concrete restriction.During concrete enforcement, the user that current operation is corresponding by this Quick Response Code of Quick Response Code scanning application scanning that corresponding mobile terminal is installed, and can upload scanning result when scanning successfully.
In addition, after whether the account determining to get and password mate, if the account got and password do not mate, then the user that current operation is corresponding is not by authentication, and authentication process itself terminates.
303: determine whether this mobile terminal is certified safety means according to scanning result.
After mobile terminal uploads scanning result, just can set up checking alternately, thus can determine whether this mobile terminal is certified safety means according to scanning result.Wherein, the equipment that the user of certified safety means belonging to the account of current operation is corresponding.In embodiments of the present invention, when carrying out authentication, if perform the user of user belonging to the account of current operation of current operation, then this user can realize authentication by certified safety means are auxiliary.But, if the user performing current operation is disabled user, then because it does not have certified safety means, and it is when carrying out authentication by the mobile scanning terminal Quick Response Code of oneself, not by authentication, therefore, the reliability of authentication can be improved.
About determining that according to scanning result whether this mobile terminal is the mode of certified safety means, the embodiment of the present invention does not do concrete restriction.During concrete enforcement, include but not limited to: the wearable device of registering when determining the account of this mobile terminal whether to registration current operation according to scanning result is relevant; If this mobile terminal is relevant to this wearable device, then determine that this mobile terminal is certified safety means.
Wherein, the mode that the wearable device of registering when determining the account of this mobile terminal whether to registration current operation according to scanning result is relevant, can have a variety of.During concrete enforcement, include but not limited to realize in the following way:
First kind of way: for mobile terminal and the wearable device of supporting reporting position information, can be realized by positional information.Particularly, due under normal circumstances, mobile terminal and the wearable device of user are all carried with, so the distance between them also can be very near, therefore can be realized by this feature.Namely the current location information of this mobile terminal and the current location information of this wearable device can be obtained according to scanning result; Determine that whether this mobile terminal is relevant to this wearable device according to the current location information of this mobile terminal and the current location information of this wearable device.
About the mode obtaining the current location information of this mobile terminal and the current location information of this wearable device according to scanning result, include but not limited to after mobile terminal uploads scanning result, control the instruction issuing upload location information respectively to mobile terminal and wearable device, mobile terminal and wearable device according to this instruction reporting position information respectively, thus obtain the current location information of mobile terminal and the current location information of wearable device by the positional information that mobile terminal receive and wearable device report respectively.
In addition, include but not limited to the mode whether this mobile terminal is relevant to this wearable device about determining according to the current location information of this mobile terminal and the current location information of this wearable device: determine that whether this mobile terminal and this wearable device are at a distance of within predeterminable range according to the current location information of this mobile terminal and the current location information of this wearable device.If this mobile terminal and this wearable device at a distance of within predeterminable range, then determine that this mobile terminal is relevant to this wearable device; If the distance between this mobile terminal and this wearable device has exceeded this predeterminable range, then determine that this mobile terminal is uncorrelated with this wearable device.Wherein, the embodiment of the present invention does not limit the size of this predeterminable range.During concrete enforcement, the size of this predeterminable range can select 10m (rice), 20m as required, etc.
The second way: for mobile terminal or the wearable device of not supporting reporting position information or temporary close reporting position information function, when determining that according to scanning result whether this mobile terminal is relevant to this wearable device, include but not limited to the identification information obtaining this mobile terminal according to scanning result, and determine that whether this mobile terminal is equipment that this wearable device is bound according to identification information; If the equipment that this mobile terminal is bound for this wearable device, then determine that this mobile terminal is relevant to wearable device.
Wherein, the embodiment of the present invention does not limit the particular content of identification information, during concrete enforcement, this identification information can be the IMEI (InternationalMobileEquipmentIdentity of this mobile terminal, mobile device international identity code), also can be the user profile of this mobile terminal binding, etc.Therefore, obtain the mode of the identification information of this mobile terminal according to scanning result and determine the mode of the equipment whether this mobile terminal is bound for this wearable device according to identification information, can determine in conjunction with the particular content of identification information.
Such as, if identification information is the IMEI of this mobile terminal, then when obtaining the identification information of this mobile terminal, can by issuing the instruction reporting IMEI to this mobile terminal, make this mobile terminal report the instruction of IMEI to report IMEI according to this, thus obtain the identification information of this mobile terminal by the IMEI receiving this mobile terminal reporting.Further, when determining the equipment whether this mobile terminal is bound for this wearable device according to identification information, include but not limited to: the IMEI obtaining the equipment that this wearable device is bound, and the IMEI of the equipment IMEI of the mobile terminal got and this wearable device bound compares, if the IMEI of this mobile terminal is consistent with the IMEI of the equipment that this wearable device is bound, then determine the equipment that this mobile terminal is bound for this wearable device; If the IMEI of the equipment that the IMEI of this mobile terminal and this wearable device are bound is inconsistent, then determine that this mobile terminal is not the equipment that this wearable device is bound.
Again such as, if identification information is the user profile of this mobile terminal binding, then, when obtaining the identification information of this mobile terminal, the user profile can bound by inquiring about this mobile terminal realizes.Wherein, the embodiment of the present invention does not limit the mode of the user profile that this mobile terminal of inquiry is bound.Further, when determining the equipment whether this mobile terminal is bound for this wearable device according to identification information, include but not limited to: the user profile that the user profile of bind this mobile terminal and this wearable device are bound is compared and realized; If the user profile that this mobile terminal is bound is consistent with the user profile that this wearable device is bound, then determine the equipment that this mobile terminal is bound for this wearable device; Otherwise, determine that this mobile terminal is not the equipment that this wearable device is bound.Wherein, the embodiment of the present invention does not limit the particular content of the user profile that mobile terminal is bound.During concrete enforcement, the user profile that mobile terminal is bound can be telephone number, also can be ID card No., etc.
Certainly, above-mentioned citing only with the user profile of the identification information of the mobile terminal IMEI that is this mobile terminal or this mobile terminal binding to obtain according to scanning result this mobile terminal identification information mode and determine that the mode of the equipment whether this mobile terminal is bound for this wearable device illustrates according to identification information.During concrete enforcement, the identification information of this mobile terminal can also be other content, and the embodiment of the present invention does not do concrete restriction to this.
304: if this mobile terminal is certified safety means, then determine that the user that current operation is corresponding passes through authentication.
Owing to determining that this mobile terminal is certified safety means by above-mentioned steps 302 and step 303, the equipment of the user of certified safety means belonging to the account of current operation, therefore, can determine that the user that current operation is corresponding passes through authentication.
Alternatively, in embodiments of the present invention, can also give a mark to the mobile terminal participating in authentication, such as, this mobile terminal is often successfully completed an authentication, can preset score value for this mobile device increases.In such cases, determine this mobile terminal be whether certified safety means time, can also be: after passing scanning result on mobile terminals, obtain the current score values of this mobile terminal according to scanning result, thus determine whether this mobile terminal is certified safety means according to the current score values of this mobile terminal.Such as, when mobile terminal first time participates in authentication, make its score value be 0, and often successfully participated in an authentication, increase by 5 points.In addition, the score value can working as mobile terminal is at least 60 timesharing, and this mobile terminal of certification is safety means.Therefore, follow-up determine whether this mobile terminal is safety means time, can by determine the current score values of this mobile terminal whether reach 60 assign to realize.If the current score values of this mobile terminal reaches 60 points, then determine that this mobile terminal is certified safety means, otherwise, this mobile terminal not necessarily safety means, whether this mobile terminal is certified safety means also to need the mode by providing in above-mentioned steps 303 to determine further.
The method that the embodiment of the present invention provides, after determining account and password coupling, Quick Response Code is issued further, by this Quick Response Code of mobile scanning terminal and after reporting scanning result, whether be that certified safety means realize authentication according to this scanning result determination mobile terminal to client.Be whether the authentication process itself of safety means owing to adding further by checking mobile terminal after account and password coupling, thus improve the reliability of authentication, data and the property safety of user can be ensured.
See Fig. 4, embodiments provide a kind of authentication means, this device is for performing above-mentioned Fig. 2 or the auth method provided embodiment illustrated in fig. 3.This device comprises:
Acquisition module 401, for obtaining account and the password of current operation;
First determination module 402, for determining whether the account that gets and password mate;
Issue module 403, for mating when the account got and password, then issue the Quick Response Code for authentication to the client that current operation is corresponding, and by client two-dimensional code display, the user making current operation corresponding by the Quick Response Code of corresponding mobile scanning terminal client display, and uploads scanning result;
Whether the second determination module 404, for being certified safety means according to scanning result determination mobile terminal;
3rd determination module 405, for when mobile terminal be certified safety means time, determine that the user that current operation is corresponding passes through authentication.
Alternatively, see Fig. 5, device, also comprises:
Whether detection module 406, exist exception for detecting current operation;
Interrupt module 407, for when current operation exists abnormal, interrupts current operation, and issues Quick Response Code for authentication by issuing module 403 to the client that current operation is corresponding.
Alternatively, see Fig. 6, the second determination module 404, comprising:
First determining unit 4041, for whether relevant to wearable device according to scanning result determination mobile terminal, the equipment of registering when wearable device is the account of registration current operation;
Second determining unit 4042, for when mobile terminal is relevant to wearable device, determines that mobile terminal is certified safety means.
Alternatively, see Fig. 7, the first determining unit 4041, comprising:
First obtains subelement 40411, for obtaining the current location information of mobile terminal and the current location information of wearable device according to scanning result;
First determines subelement 40412, for according to the current location information of mobile terminal and the current location information determination mobile terminal of wearable device whether relevant to wearable device.
Alternatively, see Fig. 8, the first determining unit 4041, comprising:
Second obtains subelement 40413, for obtaining the identification information of mobile terminal according to scanning result;
Whether second determines subelement 40414, for being equipment that wearable device is bound according to identification information determination mobile terminal;
3rd determines subelement 40415, for when the equipment that mobile terminal is bound for wearable device, determines that mobile terminal is relevant to wearable device.
The device that the embodiment of the present invention provides, after determining account and password coupling, Quick Response Code is issued further, by this Quick Response Code of mobile scanning terminal and after reporting scanning result, whether be that certified safety means realize authentication according to this scanning result determination mobile terminal to client.Be whether the authentication process itself of safety means owing to adding further by checking mobile terminal after account and password coupling, thus improve the reliability of authentication, data and the property safety of user can be ensured.
Fig. 9 is a kind of block diagram for authentication means 900 according to an exemplary embodiment.Such as, device 900 may be provided in a server.With reference to Fig. 9, device 900 comprises processing components 922, and it comprises one or more processor further, and the memory resource representated by memory 932, can such as, by the instruction of the execution of processing components 922, application program for storing.The application program stored in memory 932 can comprise each module corresponding to one group of instruction one or more.In addition, processing components 922 is configured to perform instruction, to perform the above method.
Device 900 can also comprise the power management that a power supply module 926 is configured to final controlling element 900, and a wired or wireless network interface 950 is configured to device 900 to be connected to network, and input and output (I/O) interface 958.Device 900 can operate the operating system based on being stored in memory 932, such as WindowsServerTM, MacOSXTM, UnixTM, LinuxTM, FreeBSDTM or similar.
Wherein, in the memory of device 900, store one or more than one program, and be configured to be performed by more than one or one processor.More than one or one program package is containing the instruction for performing following operation:
Obtain the account of current operation and password, and determine whether the account that gets and password mate;
If the account got and password coupling, then issue the Quick Response Code for authentication to the client that current operation is corresponding, and by client two-dimensional code display, the user making current operation corresponding by the Quick Response Code of corresponding mobile scanning terminal client display, and uploads scanning result;
Whether be certified safety means according to scanning result determination mobile terminal;
If mobile terminal is certified safety means, then determine that the user that current operation is corresponding passes through authentication.
Suppose that above-mentioned is the first possible execution mode, in the execution mode that the second then provided based on the execution mode that the first is possible is possible, in the memory of device, also comprise the instruction for performing following operation: before issuing the Quick Response Code for authentication to the client that current operation is corresponding, also comprise:
Detect current operation and whether there is exception;
If current operation exists abnormal, then interrupt current operation, and perform the step issuing the Quick Response Code for authentication to the client that current operation is corresponding.
In the third the possible execution mode provided based on the execution mode that the first is possible, in the memory of device, also comprising the instruction for performing following operation: whether be certified safety means according to scanning result determination mobile terminal, comprising:
Whether relevant to wearable device according to scanning result determination mobile terminal, the equipment of registering when wearable device is the account of registration current operation;
If mobile terminal is relevant to wearable device, then determine that mobile terminal is certified safety means.
In the 4th kind of possible execution mode provided based on the execution mode that the third is possible, in the memory of device, also comprising the instruction for performing following operation: whether relevant to wearable device according to scanning result determination mobile terminal, comprising:
The current location information of mobile terminal and the current location information of wearable device is obtained according to scanning result;
According to the current location information of mobile terminal and the current location information determination mobile terminal of wearable device whether relevant to wearable device.
In the 5th kind of possible execution mode provided based on the execution mode that the third is possible, in the memory of device, also comprising the instruction for performing following operation: whether relevant to wearable device according to scanning result determination mobile terminal, comprising:
Obtain the identification information of mobile terminal according to scanning result, and be whether equipment that wearable device is bound according to identification information determination mobile terminal;
If the equipment that mobile terminal is bound for wearable device, then determine that mobile terminal is relevant to wearable device.
The device that the embodiment of the present invention provides, after determining account and password coupling, Quick Response Code is issued further, by this Quick Response Code of mobile scanning terminal and after reporting scanning result, whether be that certified safety means realize authentication according to this scanning result determination mobile terminal to client.Be whether the authentication process itself of safety means owing to adding further by checking mobile terminal after account and password coupling, thus improve the reliability of authentication, data and the property safety of user can be ensured.
It should be noted that: the authentication means that above-described embodiment provides, server are when carrying out authentication, only be illustrated with the division of above-mentioned each functional module, in practical application, can distribute as required and by above-mentioned functions and be completed by different functional modules, internal structure by equipment is divided into different functional modules, to complete all or part of function described above.In addition, the authentication means that above-described embodiment provides, server and auth method embodiment belong to same design, and its specific implementation process refers to embodiment of the method, repeats no more here.
The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment.
One of ordinary skill in the art will appreciate that all or part of step realizing above-described embodiment can have been come by hardware, the hardware that also can carry out instruction relevant by program completes, described program can be stored in a kind of computer-readable recording medium, the above-mentioned storage medium mentioned can be read-only memory, disk or CD etc.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (11)
1. an auth method, is characterized in that, described method comprises:
Obtain the account of current operation and password, and determine whether the account that gets and password mate;
If the account got and password coupling, then issue the Quick Response Code for authentication to the client that described current operation is corresponding, and show described Quick Response Code by described client, make the described Quick Response Code that the user that described current operation is corresponding is shown by client described in corresponding mobile scanning terminal, and upload scanning result;
Determine whether described mobile terminal is certified safety means according to described scanning result;
If described mobile terminal is certified safety means, then determine that the user that described current operation is corresponding passes through authentication.
2. method according to claim 1, is characterized in that, the described client corresponding to described current operation also comprises before issuing the Quick Response Code for authentication:
Detect described current operation and whether there is exception;
If described current operation exists abnormal, then interrupt described current operation, and perform the step issuing the Quick Response Code for authentication to the client that described current operation is corresponding.
3. method according to claim 1, is characterized in that, describedly determines whether described mobile terminal is certified safety means, comprising according to described scanning result:
Determine that whether described mobile terminal is relevant to wearable device according to described scanning result, the equipment of registering when described wearable device is the account registering described current operation;
If described mobile terminal is relevant to described wearable device, then determine that described mobile terminal is certified safety means.
4. method according to claim 3, is characterized in that, describedly determines that whether described mobile terminal is relevant to wearable device according to described scanning result, comprising:
The current location information of described mobile terminal and the current location information of described wearable device is obtained according to scanning result;
Determine that whether described mobile terminal is relevant to described wearable device according to the current location information of described mobile terminal and the current location information of described wearable device.
5. method according to claim 3, is characterized in that, describedly determines that whether described mobile terminal is relevant to wearable device according to described scanning result, comprising:
Obtain the identification information of described mobile terminal according to described scanning result, and determine that whether described mobile terminal is equipment that described wearable device is bound according to described identification information;
If the equipment that described mobile terminal is bound for described wearable device, then determine that described mobile terminal is relevant to described wearable device.
6. an authentication means, is characterized in that, described device comprises:
Acquisition module, for obtaining account and the password of current operation;
First determination module, for determining whether the account that gets and password mate;
Issue module, for mating when the account got and password, then issue the Quick Response Code for authentication to the client that described current operation is corresponding, and show described Quick Response Code by described client, make the described Quick Response Code that the user that described current operation is corresponding is shown by client described in corresponding mobile scanning terminal, and upload scanning result;
Second determination module, for determining according to described scanning result whether described mobile terminal is certified safety means;
3rd determination module, for when described mobile terminal be certified safety means time, determine that the user that described current operation is corresponding passes through authentication.
7. device according to claim 6, is characterized in that, described device, also comprises:
Whether detection module, exist exception for detecting described current operation;
Interrupt module, for when described current operation exists abnormal, interrupts described current operation, and issues Quick Response Code for authentication by the described module that issues to the client that described current operation is corresponding.
8. device according to claim 6, is characterized in that, described second determination module, comprising:
First determining unit, for determining that whether described mobile terminal is relevant to wearable device according to described scanning result, the equipment of registering when described wearable device is the account registering described current operation;
Second determining unit, for when described mobile terminal is relevant to described wearable device, determines that described mobile terminal is certified safety means.
9. device according to claim 8, is characterized in that, described first determining unit, comprising:
First obtains subelement, for the current location information of the current location information and described wearable device that obtain described mobile terminal according to scanning result;
First determines subelement, for determining that whether described mobile terminal is relevant to described wearable device according to the current location information of described mobile terminal and the current location information of described wearable device.
10. device according to claim 8, is characterized in that, described first determining unit, comprising:
Second obtains subelement, for obtaining the identification information of described mobile terminal according to described scanning result;
Second determines subelement, for determining that according to described identification information whether described mobile terminal is equipment that described wearable device is bound;
3rd determines subelement, for when the equipment that described mobile terminal is bound for described wearable device, determines that described mobile terminal is relevant to described wearable device.
11. 1 kinds of servers, it is characterized in that, described server includes memory, and one or more than one program, one of them or more than one program are stored in memory, and be configured to be performed by more than one or one processor, described more than one or one program package is containing the instruction for performing following operation:
Obtain the account of current operation and password, and determine whether the account that gets and password mate;
If the account got and password coupling, then issue the Quick Response Code for authentication to the client that described current operation is corresponding, and show described Quick Response Code by described client, make the described Quick Response Code that the user that described current operation is corresponding is shown by client described in corresponding mobile scanning terminal, and upload scanning result;
Determine whether described mobile terminal is certified safety means according to described scanning result;
If described mobile terminal is certified safety means, then determine that the user that described current operation is corresponding passes through authentication.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410286971.7A CN105306202B (en) | 2014-06-24 | 2014-06-24 | Auth method, device and server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410286971.7A CN105306202B (en) | 2014-06-24 | 2014-06-24 | Auth method, device and server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105306202A true CN105306202A (en) | 2016-02-03 |
| CN105306202B CN105306202B (en) | 2019-11-05 |
Family
ID=55203002
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410286971.7A Active CN105306202B (en) | 2014-06-24 | 2014-06-24 | Auth method, device and server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105306202B (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106991308A (en) * | 2017-04-10 | 2017-07-28 | 四川阵风科技有限公司 | Safety certifying method, apparatus and system |
| CN107124391A (en) * | 2016-09-22 | 2017-09-01 | 北京小度信息科技有限公司 | The recognition methods of abnormal behaviour and device |
| CN109600340A (en) * | 2017-09-30 | 2019-04-09 | 腾讯科技(深圳)有限公司 | Authorization method, apparatus, terminal and server |
| CN109803159A (en) * | 2018-12-17 | 2019-05-24 | 视联动力信息技术股份有限公司 | A kind of verification method and system of terminal |
| CN110009322A (en) * | 2018-12-25 | 2019-07-12 | 阿里巴巴集团控股有限公司 | Auth method and device in transfer procedure |
| CN110598391A (en) * | 2019-08-09 | 2019-12-20 | 江苏省高速公路经营管理中心 | Financial expense pneumatic control system that electron signature and two-dimensional code combine |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1518235A (en) * | 2003-01-16 | 2004-08-04 | �ձ�������ʽ���� | Identification system of electronic busness and its implementing method |
| CN102571803A (en) * | 2012-01-19 | 2012-07-11 | 时代亿宝(北京)科技有限公司 | Method and system for protecting account, preventing order from being tampered and preventing fishing attack based on graphical two-dimensional code |
| CN102685093A (en) * | 2011-12-08 | 2012-09-19 | 陈易 | Mobile-terminal-based identity authentication system and method |
| CN103310142A (en) * | 2013-05-22 | 2013-09-18 | 复旦大学 | Man-machine fusion security authentication method based on wearable equipment |
| CN103825734A (en) * | 2012-11-16 | 2014-05-28 | 深圳市腾讯计算机系统有限公司 | Sensitive operation verification method, terminal equipment, server and verification system |
| CN103824012A (en) * | 2014-03-05 | 2014-05-28 | 许建华 | Radio frequency near field user identity recognition of intelligent mobile terminal |
| CN104519197A (en) * | 2013-09-29 | 2015-04-15 | 腾讯科技(深圳)有限公司 | User login method, user login device and terminal devices |
-
2014
- 2014-06-24 CN CN201410286971.7A patent/CN105306202B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1518235A (en) * | 2003-01-16 | 2004-08-04 | �ձ�������ʽ���� | Identification system of electronic busness and its implementing method |
| CN102685093A (en) * | 2011-12-08 | 2012-09-19 | 陈易 | Mobile-terminal-based identity authentication system and method |
| CN102571803A (en) * | 2012-01-19 | 2012-07-11 | 时代亿宝(北京)科技有限公司 | Method and system for protecting account, preventing order from being tampered and preventing fishing attack based on graphical two-dimensional code |
| CN103825734A (en) * | 2012-11-16 | 2014-05-28 | 深圳市腾讯计算机系统有限公司 | Sensitive operation verification method, terminal equipment, server and verification system |
| CN103310142A (en) * | 2013-05-22 | 2013-09-18 | 复旦大学 | Man-machine fusion security authentication method based on wearable equipment |
| CN104519197A (en) * | 2013-09-29 | 2015-04-15 | 腾讯科技(深圳)有限公司 | User login method, user login device and terminal devices |
| CN103824012A (en) * | 2014-03-05 | 2014-05-28 | 许建华 | Radio frequency near field user identity recognition of intelligent mobile terminal |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107124391A (en) * | 2016-09-22 | 2017-09-01 | 北京小度信息科技有限公司 | The recognition methods of abnormal behaviour and device |
| CN106991308A (en) * | 2017-04-10 | 2017-07-28 | 四川阵风科技有限公司 | Safety certifying method, apparatus and system |
| CN109600340A (en) * | 2017-09-30 | 2019-04-09 | 腾讯科技(深圳)有限公司 | Authorization method, apparatus, terminal and server |
| CN109600340B (en) * | 2017-09-30 | 2021-04-16 | 腾讯科技(深圳)有限公司 | Operation authorization method, device, terminal and server |
| CN109803159A (en) * | 2018-12-17 | 2019-05-24 | 视联动力信息技术股份有限公司 | A kind of verification method and system of terminal |
| CN110009322A (en) * | 2018-12-25 | 2019-07-12 | 阿里巴巴集团控股有限公司 | Auth method and device in transfer procedure |
| CN110598391A (en) * | 2019-08-09 | 2019-12-20 | 江苏省高速公路经营管理中心 | Financial expense pneumatic control system that electron signature and two-dimensional code combine |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105306202B (en) | 2019-11-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR102141836B1 (en) | Two factor authentication | |
| US20160210632A1 (en) | Secured payment method and relevant device and system | |
| CN105306202A (en) | Identity verification method and device, server | |
| CN103345602B (en) | A kind of client-side code integrality detection, device and system | |
| KR102072095B1 (en) | Identity authentication methods, devices, and systems | |
| CN104954322A (en) | Account binding method, device and system | |
| CN103634294A (en) | Information verifying method and device | |
| CN104144419A (en) | Identity authentication method, device and system | |
| CN104796385A (en) | Terminal binding method, device and system | |
| CN107666470B (en) | Verification information processing method and device | |
| CN104579668A (en) | User identity verification method, password protection device and verification system | |
| CN104967597A (en) | Third-party application message authentication method and system based on secure channel | |
| CN104834839A (en) | Bar code generating method, authentication method based on bar code and relative terminal | |
| CN106255102B (en) | Terminal equipment identification method and related equipment | |
| CN104917796A (en) | Credit account creating method, system and method | |
| CN104901805A (en) | Identity authentication method and device and system | |
| CN113569263A (en) | Secure processing method and device for cross-private-domain data and electronic equipment | |
| CN105847007A (en) | Identity verification method for terminal device and computer device | |
| CN104980420A (en) | Business processing method, device, terminal and server | |
| JP6506384B2 (en) | Service providing system, service providing method, verification apparatus, verification method, and computer program | |
| CN104778389A (en) | Numerical value transferring method, terminal, server and system | |
| CN105373715A (en) | Wearable device based data access method and apparatus | |
| CN104751326A (en) | Data processing method and related equipment and system | |
| CN105577621B (en) | Business operation verification method, device and system | |
| CN110990821A (en) | Identity type verification method, device and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |