CN105556531A - Method and system for authenticating user using out-of-band channel - Google Patents
Method and system for authenticating user using out-of-band channel Download PDFInfo
- Publication number
- CN105556531A CN105556531A CN201480038231.XA CN201480038231A CN105556531A CN 105556531 A CN105556531 A CN 105556531A CN 201480038231 A CN201480038231 A CN 201480038231A CN 105556531 A CN105556531 A CN 105556531A
- Authority
- CN
- China
- Prior art keywords
- user
- mobile communication
- communication equipment
- processing server
- central processing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/42—User authentication using separate channels for security data
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/18—Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/60—Context-dependent security
- H04W12/69—Identity-dependent
- H04W12/77—Graphical identity
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The user authentication method comprises: a central processing server generates an encoded data, such as a QR code, from encoding a session number, which can be randomly generated; a first client computing device displays a login page that includes the QR code to a user for authentication; the user uses a mobile communication that has already been registered and paired with the user account stored in the central processing server to image-capture the QR code, and sends the decoded QR code data to the central processing server; the central processing server validates the decoded QR code data against the session number; upon a positive validation, the user may need to enter his/her security PIN according to configuration in the second mobile communication and be sent to the central processing server for validation; and upon a positive validation, the user authentication is completed.
Description
priority request
According to the 119th article, united states patent law the 35th chapter, this application claims the U.S. Provisional Patent Application submitted on July 3rd, 2013, application number is the patent priority of 61/842,386.Its disclosure is incorporated herein by reference.
cross reference
The application be on September 2nd, 2012 submit to the 13/602nd, No. 197 U.S. Patent applications continuation application, its disclosure is incorporated herein by reference.
Technical field
The present invention relates to the method and system of online user's certification.More particularly, the present invention relates to the technology using out-band channel (out-of-bandchannels) to carry out user authentication.
Background technology
A lot of online activity, as involved on-line purchase and the on-line payment of access individual and protection information, often needs user authentication.The most common user authentication form uses user ID and password to log in for user.But this user authentication form has many shortcomings, comprise forget Password, user ID and/or password is stolen, password is too simple, cause security poor.Nowadays have also been developed the method and system of other multifactor strong authentications; But great majority all can not keep strong security when not sacrificing user friendliness.Therefore, need and a kind ofly can support strong security and only need the method and system of the authentication of user's minimal effort.
Summary of the invention
An object of the present invention, is to provide a kind of method and system using mobile communication equipment to carry out online user's certification.Register because mobile communication equipment is prior complete in customer certification system, and authenticated can be identified uniquely, so it can fill the out-band channel of user authentication.Further aim of the present invention is to provide a kind of method and system supporting strong security, user only need be remembered and provides one for the secure personal identification code of certification.
In preferred version of the present invention, the present invention can be used as the expansion that U.S. Patent Application No. is the secured mobile payment system of 13/602,197.
In preferred version of the present invention, comprise: by the central processing server of communication network access, as by the Internet; Multiple user; May have access to mobile communication equipment and the client computing device of central processing server; And third party's computation processor of addressable central processing server.
In preferred version of the present invention, the function of central processing server comprises user authentication, and for the user account management of leading subscriber account number, wherein user account number record comprises user ID and Service Ticket, and they are all stored securely in a lane database.
In preferred version of the present invention, central processing server comprises allows user that various computing equipment and mobile communication equipment can be used with the mutual multiple user interfaces of runs web browser application program completing user.In addition, central processing server also comprises for the integrated server end backend applications DLL (dynamic link library) (API) of machine-to-machine, and the application program of the special exploitation run in third party's computation processor is communicated with central processing server.The function of these user interfaces and server end rear end API includes but not limited to: the user authentication completed by user, user account management and shopping online, the system management completed by keeper, the online shopping inventory completed by user, payment and user's whole process control.
In preferred version of the present invention, each mobile communication equipment is furnished with camera or scanner so that the coded data to Practical computer teaching, and such as bar code, carries out optical image acquisition.In the present invention, mobile communication equipment be configured to process gathered coded data images and with central server processing and exchanging data, such as, to complete above-mentioned various functions, user authentication.
Central processing server and its database, user interface and server end rear end API, together with the mobile communication equipment of security of operation move transaction mobile applications, composition safety moving transaction system.In the present invention, each user account number in safety moving transaction system is associated with single mobile communication equipment at any one time only.
In a preferred version of the present invention; register and in safety moving transaction system, created the user of validated user account number; can use its safety moving transaction system register and the mobile communication equipment matched to carry out certification; to conduct interviews to shielded third party application; the third party website such as provided by third party's processing server, or the user interface of the one or more protections provided by central processing server is conducted interviews.User authen method comprises: central processing server generates coded data, as QR code from the session code of stochastic generation; To user, first mobile communication equipment or the first client computing device show that the login page comprising user authentication QR code uses for certification; User uses and registers in central processing server and carry out image acquisition with the second mobile communication equipment that user account number matches to QR code, and sends the QR code data of decoding to central processing server; The QR code data of central processing server to decoding to mate with session number and confirms; Based on effective confirmation, then user inputs its secure personal identification code at the second mobile communication equipment and is sent to central processing server to confirm; Based on effective confirmation, and then completing user certification
Accompanying drawing explanation
Below in conjunction with accompanying drawing, embodiments of the invention are described further, wherein,
Fig. 1 is the theory diagram of safety moving transaction system in one embodiment of the invention;
Fig. 2 is the process flow diagram of use safety move transaction system in one embodiment of the invention;
Fig. 3 is that in one embodiment of the invention, use safety move transaction system carries out the user interface map shown in user authentication process.
Embodiment
In the following description, illustrate a kind of method and system using out-band channel to carry out online user's certification based on preferred embodiment, integrated comprising between third party's mobile applications and secured mobile payment system, communication and exchanges data.It will be appreciated by those skilled in the art that, amendment on this basis, comprise and increase or substitute, all do not depart from the scope of the present invention.
system
Please refer to Fig. 1, in the present embodiment, comprise: by the first communication network 104, the central processing server 105 that such as the Internet conducts interviews to it; Communication network, or the network of any support ICP/IP protocol; Multiple user 101, each user is associated with a user account number; The mobile communication equipment 102 of central processing server 105 is accessed by the first communication network 104; May have access to the client computing device 103 of central processing server 105 and third party's processing server 107, specifically by second communication network 106, it can be the network identical with the first communication network 104, or independent communication network, can be the Internet, communication network or the network for any support ICP/IP protocol.
In the present embodiment, the function of central processing server 105 comprises: user authentication, and for the user account management of leading subscriber account number, wherein user account number record comprises user ID and Service Ticket.
In the present embodiment, central processing server 105 comprises at least one group of user interface allowing user can use mobile communication equipment 102 and client computing device 13 access.Described user interface group comprises interactive transaction webpage, the latter can show running in mobile communication equipment 102 and the web browser application program in client computing device 103, and shows in the user interface running on the special exploitation mobile applications in mobile communication equipment 102.The exemplary of this kind of user interface is the mobile applications (App) run in the iOS operating system of Apple's exploitation.Another exemplary is the mobile applications (App) run in the Android operation system of Google's exploitation.Central processing server additionally provides the user interface of another group for System Management User.
Except user interface group, central processing server 105 also comprises for the integrated server end backend applications DLL (dynamic link library) (API) of machine-to-machine, and the application program of the special exploitation run in third party's computation processor 107 is communicated with central processing server 105.In the present embodiment, by the machine-to-machine exchanges data supporting industry standard of server back end API, include but not limited to XML and JSON.
The function of these user interfaces and server end rear end API includes but not limited to: the user authentication completed by user, user account management and shopping online, the system management completed by keeper, the online shopping inventory completed by user, payment and user's whole process control.
In the present embodiment, central processing server 105 comprises a database, for preserving the data record of user account number, system configuration data and other metadata.Database can with central processing server 105 on same physical computer server 105, or on an independent physical computer server.Described database can be the Relational DBMS of various commercialization, as oracle database and microsoft sql server.
In the present embodiment, each mobile communication equipment 102 is furnished with camera or scanner so that the coded data to Practical computer teaching, and such as bar code, carries out optical image acquisition.In the present invention, mobile communication equipment be configured to process gathered coded data images and with central server processing and exchanging data, such as, to complete above-mentioned various functions, user authentication.In the present embodiment, the configuration of mobile communication equipment is made it to process decoded data and performs move transaction, be by install in a mobile communication device and executive utility software and/or aim at (referred to here as " the secured mobile payment mobile applications ") that firmware that mobile communication equipment designs realizes.Alternatively, the operating system of mobile communication equipment can be modified and/or configure, and has been used for above-mentioned part or all of function.
Central processing server 105 and its database, user interface and server end rear end API, together with the mobile communication equipment 102 of security of operation move transaction mobile applications, composition safety moving transaction system.In the present embodiment, each user account number in safety moving transaction system is associated with single mobile communication equipment at any one time only.Each user 101 is also required can according to system configuration for its user account number defines a secure personal identification number (PIN).When a new user registers in safety moving transaction system, central processing server creates a new user account number and its record data are stored in the database of central processing server.User's registration step comprises the step of registering and being carried out by its mobile communication equipment to match.In the present embodiment, U.S. Patent Application No. 13/602 can be adopted, user's register flow path of the system of secured mobile payment disclosed in 197.
In the present embodiment, the bar code of Practical computer teaching is one-dimension code or Quick Response Code, such as QR code.This bar code can be generated by central processing server 105.This bar code comprises at least one identity data, as it is not that the whole world is unique, is at least unique in safety moving transaction system.This bar code is shown by client computing device 103 or mobile communication equipment energising.Bar code can print or be showed on various portable item equally, includes but not limited to papery nominal value or card.
In the present embodiment, all communications between mobile communication equipment 102 and central processing server 105 all through PKI encryption, specifically can use AES encryption, and data communications is all transmitted by security socket layer (SSI).
user authentication
In one embodiment of the present of invention; register in safety moving transaction system and create the user of validated user account number; the mobile communication equipment that it can be used to have registered in safety moving transaction system and match is to carry out certification; to access shielded third party application; the third party website that such as third party's processing server provides, or the one or more shielded user interface provided by central processing server.
Please refer to Fig. 2, user authen method comprises the following steps:
1. (201) user requires the shielded third party application that access third party processing server provides, or the one or more shielded user interface to be provided by central processing server, wherein shielded third party application can be access control and requires the third party website that user authentication can be accessed, and conducts interviews by the web browser application run in the first mobile communication equipment or the first client computing device; The shielded user interface wherein provided by central processing server can be by access control and requires that user authentication is with the interaction entered transaction webpage, conducts interviews by the web browser application run in the first mobile communication equipment or the first client computing device.
2. (202) user is redirected to login page, and this login page provides by third party's processing server or central processing server.Login page comprises a coded data, as being illustrated in the bar code in the first mobile communication equipment or the first client computing device.Bar code can be QR code.Coded data central processing server dynamically produces when generating login page.
In embodiments of the invention, the generation of coded data comprises: generate random number by central processing server, and this random number can comprise 32 characters (30 letters+2 check codes); Carry out encoding to described random number and can form the QR code of coded data.Random number is the session number associated with subscriber sign-in conversation.In another embodiment of the present invention, the generation of coded data comprises: by central processing server to generate before it and the session number of preserving encodes to be formed the QR code of coded data.The record of session number is kept in the database of central processing server and uses in order to later stage certification.
If login page provided by third party's processing server, then third party's processing server is asked by calling central processing server rear end API and accepts the coded data from central processing server.
3. (203) are illustrated on the screen of the first mobile communication equipment or the first client computing device with the login page of coded data.User uses the second mobile communication equipment of registration and pairing in safe safety moving transaction system to carry out image acquisition to coded data.
In another embodiment of the present invention, coded data is except being illustrated in the first mobile communication equipment or the first client computing device screen is upper outside, also can be printed on physical medium, such as papery ticket or card, thus present to client and make its available second mobile communication equipment carry out image acquisition to coded data.
4. the second mobile communication equipment of (204) security of operation move transaction mobile applications, to image acquisition to coded data decode and extract session number.
5. extracted session number is sent to central processing server by (205) second mobile communication equipments together with the identification data of the second mobile communication equipment.
6. (206) central processing server receives the identification data of session number and the second mobile communication equipment; And this session number is done to mate to confirm with the session number record preserved before in database.Based on effective confirmation, central processing server passes through the identification data of coupling second mobile communication equipment with retrieval user account number record.Session number associates with user account number by central processing server.
7. (207) are if login page is provided by central processing server, when showing the web page browsing application program of login page by automatically reloading or manually reloading, central processing server can present the login page of band visual cues again, can enter next step of user authentication to make user.
As login page is provided by third party's processing server, third party's processing server can receive the notice of successful association between described session number and user account number, particular by the mode that central processing server rear end API adjusts back or reacts, or repeat by third party's processing server the mode calling central processing server rear end API.Once receive notice, when showing the web page browsing application program of login page by automatically to reload or manually reload, central processing server can present the login page of band visual cues again, can enter next step of user authentication to make user.
8. (208) user is in the user interface of safety moving transaction mobile applications running on the second mobile communication equipment, inputs its secure personal identification code.
9. (209) second mobile communication equipments are encrypted described secure personal identification code, and the secure personal identification code of encryption is sent to central processing server together with the identification data of equipment.
10. (210) central processing server receives the secure personal identification code of described encryption and the identification data of the second mobile communication equipment; Retrieval user account number record is carried out by the identification data of mating the second mobile communication equipment; The secure personal identification code of encryption is decrypted, and the secure personal identification code after deciphering is carried out mating with the secure personal identification code in user record confirms.Based on effective confirmation, be then considered as user and have passed certification, and session number is associated with subscriber sign-in conversation now.
11. (211) if login page is provided by central processing server; when showing the web page browsing application program of login page by automatically reloading or manually reloading; Web-browser application is re-directed to protected third party's program, or the shielded user interface provided by central processing server.
Login page is provided by third party's processing server in this way, third party's processing server can receive user authentication and successfully notify, particular by the mode that central processing server rear end API adjusts back or reacts, or repeat by third party's processing server the mode calling central processing server rear end API.Once receive notice, when showing the web page browsing application program of login page by automatically to reload or manually reload, central processing server can present the login page of band visual cues again, can enter next step of user authentication to make user.Once receive notice; when the Web-browser application being illustrated in login page upgrades by being automatically loaded into or being manually loaded into; Web-browser application is re-directed to protected third party's program, or the shielded user interface provided by central processing server.
In another embodiment of the present invention, central processing server and the second mobile communication equipment, it is selectable for being set to customer-furnished secure personal identification code when user authentication by safety moving transaction mobile applications.Therefore, mentioning step 7-10 step above may delete, and in the case, when the identification data of the session number that central processing server receives and the second mobile communication equipment is identified effective, can think that user authentication completes.
Previous embodiment of the present invention can make to realize with the following methods: general or particular computing device, mobile communication equipment, computer processor, or electronic circuit includes but not limited to digital signal processor (DSP), special IC (ASIC), field programmable gate array (FPGA) and other programmable logic devices configured according to the present invention program.Operating in general or dedicated calculation machine equipment, mobile communication equipment, computer processor, or computer instruction in programmable logic device (PLD) or software code, can be write by technician's instruction according to the present invention of software and electronic applications.
During concrete enforcement, the present invention includes the computer-readable storage medium that can store computer instruction or software code, make it to realize any process of the present invention to carry out programming to computing machine or microprocessor.Described storage medium including but not limited to floppy disk, CD, Blu-ray Disc, DVD CD, CD-ROM, magneto-optic disk, CD-R, random access memory, flash memory device, or be applicable to store instruction, the media of any type of code and/or data or equipment.
During concrete enforcement, mobile communication equipment wherein includes but not limited to: mobile phone, the mobile phone (be commonly referred to smart phone) similar with PC, electronic personal digital assistants (PDA), the portable computer of wired or wireless wide area network, or with the equipment of communication function, such as, as panel computer and net book.Mobile communication equipment includes but not limited to the iPhone of Apple, the One of the Nexus10 of Google, HTC, the Lumia of Nokia, the Galaxy of Samsung, and the Xperia of Sony.
Describe to be used for providing more than of the present invention and schematically illustrate and describe, and should not be construed as limiting the invention.To those skilled in the art, many modifications and variations are all apparent.
The selected embodiment with describing of the present invention is all to explain principle of the present invention and practical application thereof better, thus makes it will be appreciated by those skilled in the art that also can make other embodiments revises with other according to actual user demand.Scope of the present invention is as the criterion with the content in claim and equivalent scheme thereof.
Claims (10)
1. online user's authentication method of computer processor realization, is characterized in that, comprise the following steps:
Generate a coded data by central processing server, described coded data is encoded as the data that comprise session number and is stored in central processing server;
Described coded data is supplied to user and does authentication;
By the mobile communication equipment being furnished with camera or photoscanner, image acquisition is carried out to described coded data, described mobile communication equipment is associated with the user account number with user-association, described user account number record is stored in described central processing server, and includes the identification data of described mobile communication equipment in described user account number record;
By mobile communication equipment to image acquisition to coded data decode to extract session number;
Sent the identification data of session number and the mobile communication equipment extracted to central processing server by mobile communication equipment;
Pass through central processing server, by the identification data of the session number extracted that receives from mobile communication equipment and mobile communication equipment, mate with the identification data of the mobile communication equipment be stored in the session number of central processing server and user account number record, and then realize user authentication.
2. method according to claim 1, is characterized in that, described coded data is a QR code.
3. method according to claim 1, is characterized in that, comprises further:
By the secure personal identification code that mobile communication equipment seizure user provides, in described user account number record, also comprise the secure personal identification code that user prestores;
Described secure personal identification code is sent to central processing server by mobile communication equipment;
Pass through central processing server, except the identification data of the session number extracted received from mobile communication equipment and mobile communication equipment is mated with the identification data of the mobile communication equipment be stored in the session number of central processing server and user account number record, also the secure personal identification code being received from mobile communication equipment is mated with the preset security PIN (Personal Identification Number) of preserving in user account number record, and then realize user authentication.
4. method according to claim 1, is characterized in that, is wherein presented on client computing device screen to user for the coded data of user authentication, illustrates the user's login interface comprising coded data.
5. method according to claim 1, is characterized in that, presents to the coded data of user for user authentication by the physical medium being printed on coded data.
6. online user's Verification System, comprising:
Central processing server, it is configured to complete following functions:
Generate a coded data, described coded data is encoded as the data that comprise session number and is stored in central processing server;
By the identification data of the session number extracted that receives from mobile communication equipment and mobile communication equipment, mate with the identification data of the mobile communication equipment be stored in the session number of central processing server and user account number record, and then realize user authentication;
Be furnished with the mobile communication equipment of camera or photoscanner, it is configured to complete following functions:
When coded data is presented to user authentication, image acquisition is carried out to described coded data;
To image acquisition to coded data decode to extract session number;
And, the identification data of session number and the mobile communication equipment extracted is sent to central processing server;
Wherein, described mobile communication equipment is associated with the user account number with user-association, and described user account number record is stored in described central processing server, and includes the identification data of described mobile communication equipment in described user account number record.
7. system according to claim 6, is characterized in that, described coded data is a QR code.
8. system according to claim 6, is characterized in that,
Described mobile communication equipment is also configured to complete following functions:
Catch the secure personal identification code that user provides, in described user account number record, also comprise the secure personal identification code that user prestores;
Described secure personal identification code is sent to central processing server;
Described central processing server is also configured to complete following functions:
Except the identification data of the session number extracted received from mobile communication equipment and mobile communication equipment is mated with the identification data of the mobile communication equipment be stored in the session number of central processing server and user account number record, also the secure personal identification code being received from mobile communication equipment is mated with the preset security PIN (Personal Identification Number) of preserving in user account number record, and then realize user authentication.
9. system according to claim 6, is characterized in that, is wherein presented on client computing device screen to user for the coded data of user authentication, illustrates the user's login interface comprising coded data.
10. system according to claim 6, is characterized in that, the physical medium wherein by being printed on coded data presents to the coded data of user for user authentication.
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US201361842386P | 2013-07-03 | 2013-07-03 | |
| US61/842,386 | 2013-07-03 | ||
| PCT/CN2014/081588 WO2015000425A1 (en) | 2013-07-03 | 2014-07-03 | Method and system for authenticating user using out-of-band channel |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105556531A true CN105556531A (en) | 2016-05-04 |
Family
ID=52143120
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201480038231.XA Pending CN105556531A (en) | 2013-07-03 | 2014-07-03 | Method and system for authenticating user using out-of-band channel |
Country Status (3)
| Country | Link |
|---|---|
| EP (1) | EP3017391A4 (en) |
| CN (1) | CN105556531A (en) |
| WO (1) | WO2015000425A1 (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB2558789B (en) * | 2014-05-09 | 2019-01-09 | Smartglyph Ltd | Method of authentication |
| CN104618401A (en) * | 2015-03-10 | 2015-05-13 | 四川省宁潮科技有限公司 | Real-name system-based wifi one-key logging method |
| CN104639566A (en) * | 2015-03-10 | 2015-05-20 | 四川省宁潮科技有限公司 | Transaction authorizing method based on out-of-band identity authentication |
| GB2591759A (en) * | 2020-02-05 | 2021-08-11 | Vst Enterprises Ltd | System and process for Validation |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102595643A (en) * | 2010-11-19 | 2012-07-18 | 罗技欧洲股份有限公司 | System and method used for connection and pairing of wireless devices |
| CN102939613A (en) * | 2010-06-04 | 2013-02-20 | 维萨国际服务协会 | Payment tokenization apparatuses, methods and systems |
| US20130167208A1 (en) * | 2011-12-22 | 2013-06-27 | Jiazheng Shi | Smart Phone Login Using QR Code |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8769784B2 (en) * | 2009-11-02 | 2014-07-08 | Authentify, Inc. | Secure and efficient authentication using plug-in hardware compatible with desktops, laptops and/or smart mobile communication devices such as iPhones |
| JP2014518597A (en) * | 2011-03-31 | 2014-07-31 | ソニーモバイルコミュニケーションズ, エービー | System and method for establishing a communication session associated with an application |
| EP2602735B1 (en) * | 2011-12-09 | 2018-04-04 | BlackBerry Limited | Secure authentication |
-
2014
- 2014-07-03 EP EP14820320.1A patent/EP3017391A4/en not_active Withdrawn
- 2014-07-03 CN CN201480038231.XA patent/CN105556531A/en active Pending
- 2014-07-03 WO PCT/CN2014/081588 patent/WO2015000425A1/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102939613A (en) * | 2010-06-04 | 2013-02-20 | 维萨国际服务协会 | Payment tokenization apparatuses, methods and systems |
| CN102595643A (en) * | 2010-11-19 | 2012-07-18 | 罗技欧洲股份有限公司 | System and method used for connection and pairing of wireless devices |
| US20130167208A1 (en) * | 2011-12-22 | 2013-06-27 | Jiazheng Shi | Smart Phone Login Using QR Code |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2015000425A1 (en) | 2015-01-08 |
| EP3017391A4 (en) | 2016-12-28 |
| EP3017391A1 (en) | 2016-05-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108496382B (en) | Secure information transmission system and method for personal identity authentication | |
| JP6548667B2 (en) | Method, apparatus and system for providing security checks | |
| US9710634B2 (en) | User-convenient authentication method and apparatus using a mobile authentication application | |
| JP5959410B2 (en) | Payment method, payment server for executing the method, program for executing the method, and system for executing the same | |
| US20140317713A1 (en) | Method and System of User Authentication Using an Out-of-band Channel | |
| JP6538872B2 (en) | Common identification data replacement system and method | |
| US9256724B2 (en) | Method and system for authorizing an action at a site | |
| US20140223520A1 (en) | Guardian control over electronic actions | |
| US20200196143A1 (en) | Public key-based service authentication method and system | |
| KR101741917B1 (en) | Apparatus and method for authenticating using speech recognition | |
| CN105556531A (en) | Method and system for authenticating user using out-of-band channel | |
| CN104125064A (en) | Dynamic password authentication method, client and authentication system | |
| CN103107888A (en) | Dynamic multi-attribute multilevel identity authentication method for mobile terminal (MT) | |
| US11880840B2 (en) | Method for carrying out a transaction, corresponding terminal, server and computer program | |
| KR102016976B1 (en) | Unified login method and system based on single sign on service | |
| CN106060791B (en) | Method and system for sending and obtaining short message verification code | |
| WO2020260195A1 (en) | Cryptographic signing of a data item | |
| KR20200018546A (en) | Public key infrastructure based service authentication method and system | |
| TWI640928B (en) | System for generating and decrypting two-dimensional codes and method thereof | |
| KR101568374B1 (en) | Mobile loan method and system using mobile digital signature | |
| US11620646B2 (en) | Method for carrying out a transaction, terminal, server and corresponding computer program | |
| US20220405766A1 (en) | Systems and methods for contactless card communication and key pair cryptographic authentication using distributed storage | |
| TWI670618B (en) | Login system implemented along with a mobile device without password and method thereof | |
| KR101843644B1 (en) | Method and apparatus for providing integrated authentication service using 3d touch | |
| KR20160101805A (en) | Payment method for other person and payment authentication system thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160504 |