CN111740942A - Login/registration method, device, system, electronic equipment and storage medium - Google Patents

Login/registration method, device, system, electronic equipment and storage medium Download PDF

Info

Publication number
CN111740942A
CN111740942A CN202010053485.6A CN202010053485A CN111740942A CN 111740942 A CN111740942 A CN 111740942A CN 202010053485 A CN202010053485 A CN 202010053485A CN 111740942 A CN111740942 A CN 111740942A
Authority
CN
China
Prior art keywords
login
user communication
registration
communication identifier
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202010053485.6A
Other languages
Chinese (zh)
Other versions
CN111740942B (en
Inventor
迟潇潇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Jingdong Century Trading Co Ltd
Beijing Wodong Tianjun Information Technology Co Ltd
Original Assignee
Beijing Jingdong Century Trading Co Ltd
Beijing Wodong Tianjun Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Jingdong Century Trading Co Ltd, Beijing Wodong Tianjun Information Technology Co Ltd filed Critical Beijing Jingdong Century Trading Co Ltd
Priority to CN202010053485.6A priority Critical patent/CN111740942B/en
Publication of CN111740942A publication Critical patent/CN111740942A/en
Application granted granted Critical
Publication of CN111740942B publication Critical patent/CN111740942B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The embodiment of the invention discloses a login/registration method, a login/registration device, a login/registration system, electronic equipment and a storage medium. The method comprises the steps of obtaining pre-fetching number information which is obtained from an operator server in advance, sending the pre-fetching number information to a service server, receiving mask information returned by the service server, displaying the mask user communication identification, and sending a login/registration request to the service server when login/registration triggering operation aiming at the mask user communication identification is detected, so that the service server can carry out password-free login/registration operation on the user communication identification. The method and the device can solve the problems of complicated login/registration mode process and poor safety of the client in the prior art, and achieve the effect of improving the convenience and safety of the login/registration mode of the mobile terminal.

Description

Login/registration method, device, system, electronic equipment and storage medium
Technical Field
Embodiments of the present invention relate to communications technologies, and in particular, to a login/registration method, device, system, electronic device, and storage medium.
Background
The login and registration of the mobile terminal are essential links of each e-commerce system, and whether the process is smooth or not directly influences the conversion rate of the website, the loss rate of the user and the like. Therefore, the complexity of login/registration is reduced, the login/registration experience is improved, and the method is of great importance for improving the website conversion rate, refreshing and retaining the user.
In the prior art, a mobile terminal often registers/logs in on an e-commerce platform by using a mailbox, a mobile phone number or pulling up a third party application. When a mailbox is used for registering/logging in an e-commerce platform, a user needs to fill basic information such as a password to generate an account for registering, the login/registration mode needs the user to have the mailbox, and also needs to log in a corresponding mailbox to check an authentication code, the registration process is complex, the account password is used for logging in during logging in, the input process is time-consuming, and the user is easy to forget; when a mobile phone number is used for logging in/registering on an e-commerce platform, the mobile phone number is used for registering, and the mobile phone number is used for logging in, but the sending of the verification code depends on a network environment, the verification code cannot be received or is very slow to receive, the mobile phone number and the verification code also need to be input during logging in, the fee is consumed for comparison, and the mobile phone number is transmitted to the front end, so that the mobile phone number is directly exposed, easily exists a security hole and is easily intercepted, and user information is easily leaked; when the third-party account is used for logging in, the third-party application needs to be called, if the third-party application is not installed and logged in, the third-party application needs to be installed and logged in first, and when the third-party application is pulled up for logging in, if the account system does not have the account, the third-party application needs to be logged in after information is perfected, and the process is more complicated.
In summary, in the process of implementing the present invention, the inventors found that at least the following problems exist in the prior art: the login/registration mode process of the client is complicated, the safety is poor, and improvement is needed.
Disclosure of Invention
The embodiment of the invention provides a login/registration method, a login/registration device, a login/registration system, electronic equipment and a storage medium, and aims to achieve the effect of improving the convenience and the safety of a login/registration mode of a mobile terminal.
In a first aspect, an embodiment of the present invention provides a login/registration method, where the login/registration method, applied to a client, includes:
acquiring pre-fetching number information acquired from an operator service end in advance, and sending the pre-fetching number information to a service end; the pre-number-fetching information comprises encrypted user communication identification;
receiving mask information returned by the service server, wherein the mask information comprises a mask user communication identifier corresponding to the decrypted user communication identifier;
and displaying the mask user communication identifier, and sending a login/registration request to the service server when detecting a login/registration triggering operation aiming at the mask user communication identifier so as to enable the service server to carry out a secret-free login/registration operation on the user communication identifier.
In a second aspect, an embodiment of the present invention further provides a login/registration method, where the login/registration method is applied to a service server, and includes:
receiving pre-fetching number information sent by a client; the pre-fetching number information comprises encrypted user communication identification;
generating mask information based on the prefetch number information, and sending the mask information to the client; wherein the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
receiving a login/registration request sent by the client, and performing secret-free login/registration operation on the user communication identifier according to the login/registration request;
wherein the login/registration request is sent by the client when a login/registration trigger operation for the mask user communication identifier is detected.
In a third aspect, an embodiment of the present invention further provides a login/registration apparatus, where the login/registration apparatus is applied to a client, and includes:
the pre-number-fetching information acquisition and sending module is used for acquiring pre-number-fetching information which is acquired from an operator service end in advance when a preset trigger operation is detected, and sending the pre-number-fetching information to a service end; the pre-number-fetching information comprises encrypted user communication identification;
a mask information receiving module, configured to receive mask information returned by the service server, where the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
and the secret-free login/registration request sending module is used for displaying the mask user communication identifier and sending a login/registration request to the service server when detecting login/registration triggering operation aiming at the mask user communication identifier so as to enable the service server to carry out secret-free login/registration operation on the user communication identifier.
In a third aspect, an embodiment of the present invention further provides a login/registration apparatus, where the login/registration apparatus is applied to a service server, and includes:
the pre-fetching number information receiving module is used for receiving the pre-fetching number information sent by the client; the pre-fetching number information comprises encrypted user communication identification;
a mask information sending module, configured to generate mask information based on the prefetch number information, and send the mask information to the client; wherein the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
the secret-free login/registration module is used for receiving a login/registration request sent by the client and carrying out secret-free login/registration operation on the user communication identifier according to the login/registration request;
wherein the login/registration request is sent by the client when a login/registration trigger operation for the mask user communication identifier is detected.
In a fourth aspect, an embodiment of the present invention further provides a login/registration system, where the login/registration system includes: the system comprises a client, a service server and an operator server; wherein the content of the first and second substances,
the client is used for acquiring pre-fetching number information acquired from an operator server in advance and sending the pre-fetching number information to the service server; the pre-access number information comprises an encrypted user communication identifier, mask information returned by the service server is received, the mask information comprises a mask user communication identifier corresponding to the decrypted user communication identifier, the mask user communication identifier is displayed, and a login/registration request is sent to the service server when login/registration triggering operation aiming at the mask user communication identifier is detected;
the service server is used for receiving the pre-fetching number information sent by the client; generating mask information based on the prefetch number information, and sending the mask information to the client; receiving a login/registration request sent by the client, and performing secret-free login/registration operation on the user communication identifier according to the login/registration request;
and the operator service end is used for providing the pre-fetching number information for the client.
In a fifth aspect, an embodiment of the present invention further provides an electronic device, where the electronic device includes:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement a login/registration method as in any one of the first aspects, or a login/registration method as in any one of the second aspects.
In a sixth aspect, an embodiment of the present invention further provides a storage medium containing computer-executable instructions, where the computer-executable instructions, when executed by a computer processor, implement the login/registration method according to any one of the first aspect or the second aspect.
According to the technical scheme provided by the embodiment of the invention, pre-fetching number information which is obtained from an operator server side in advance is obtained, the pre-fetching number information is sent to a service server side, mask information which is returned by the service server side is received, the mask information comprises a mask user communication identifier corresponding to a decrypted user communication identifier, the mask user communication identifier is displayed, and a login/registration request is sent to the service server side when login/registration triggering operation aiming at the mask user communication identifier is detected, so that the service server side can carry out secret-free login/registration operation on the user communication identifier. The above steps only display the mask information at the client, and the whole login or registration process does not need too much human participation, so that the problems of complicated login/registration mode process and poor safety of the client in the prior art can be solved, and the effects of improving the convenience and safety of the login/registration mode of the mobile terminal are realized.
Drawings
Fig. 1 is a schematic flowchart of a login/registration method according to an embodiment of the present invention;
fig. 2 is an interaction diagram of a login/registration method according to an embodiment of the present invention;
fig. 3 is a schematic flowchart of a login/registration method according to a second embodiment of the present invention;
fig. 4 is a schematic flowchart of a login/registration method according to a third embodiment of the present invention;
fig. 5 is a logic diagram of a registration method according to a third embodiment of the present invention;
fig. 6 is a logic diagram of a login method according to a third embodiment of the present invention;
fig. 7 is a schematic structural diagram of a login/registration apparatus according to a fourth embodiment of the present invention;
fig. 8 is a schematic structural diagram of a login/registration apparatus according to a fifth embodiment of the present invention;
fig. 9 is a schematic structural diagram of a login/registration system according to a sixth embodiment of the present invention;
fig. 10 is a schematic structural diagram of an electronic device according to a seventh embodiment of the present invention.
Detailed Description
The present invention will be described in further detail with reference to the accompanying drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the invention and are not limiting of the invention. It should be further noted that, for the convenience of description, only some of the structures related to the present invention are shown in the drawings, not all of the structures.
Example one
Fig. 1 is a schematic flowchart of a login/registration method according to an embodiment of the present invention, which is applied to a client, and this embodiment is applicable to a case of login/registration of an e-commerce system without secret. Referring specifically to fig. 1, the method may include the steps of:
s110, pre-fetching number information obtained from the service end of the operator in advance is obtained, and the pre-fetching number information is sent to the service end.
The operator server may be understood as a server that generates number information (i.e., pre-fetch number information), and the service server may be understood as a third-party server that performs login/registration operations on the generated number information. The pre-number-fetching information can be understood as number-fetching feedback information sent by the operator service side to the client side, and the pre-number-fetching information comprises encrypted user communication identification. Optionally, the user communication identifier may include a physical mobile phone number, a virtual number, a fixed phone number, and the like of the user.
Referring to fig. 2, when a user logs in/registers the e-commerce system without secret by the client, the client may first generate a prefetch number request according to operation information of the user, send the prefetch number request to the number authentication server, a prefetch number information obtaining module of the number authentication server obtains the prefetch number request, sends the prefetch number request to the operator server, a user communication identifier obtaining module of the operator server obtains a user communication identifier, generates encrypted prefetch number information by a prefetch number information encryption generating module, feeds back the prefetch number information to the client by the operator server through a prefetch number returning module, the prefetch number information obtaining module of the client obtains the prefetch number information, judges whether number fetching succeeds according to the prefetch number information, if it is determined that the prefetch number succeeds, determines to execute a secret-free login/registration step, and sends the prefetch number information to the service end, so as to execute the secret-free login/registration operation at the service end.
And S120, receiving mask information returned by the service server.
The mask information comprises mask user communication identification corresponding to the decrypted user communication identification. The mask user communication identifier may be understood as a user communication identifier of a blocked part of digits, for example, if the user communication identifier is a mobile phone number or a virtual number, the mask user communication identifier may be the first seven bits of the mobile phone number or the virtual number, and if the user communication identifier is a fixed phone number, the mask user communication identifier may be the first five bits of the fixed phone number.
On the basis of S110, with reference to fig. 2, after the prefetch number information obtaining module of the service end receives the prefetch number information sent by the client, the prefetch number information is returned to the number authentication service end through the prefetch number information returning module, the prefetch number information obtaining module of the number authentication service end obtains the prefetch number information, the user communication identifier decrypting module of the number authentication service end decrypts the received prefetch number information to obtain the decrypted user communication identifier, then the user communication identifier returning module of the number authentication service end feeds back the decrypted user communication identifier to the service end, the user communication identifier state retrieving module of the service end retrieves the user information database of the e-commerce system, inquires whether the user communication identifier is registered, and performs mask processing through the user communication identifier mask module to generate a mask user communication identifier, and generating a temporary certificate through a temporary certificate production module, and returning the mask user communication identifier and the temporary certificate to the client as mask information by the service server so that the client receives trigger information sent by a user and further executes a password-free login/registration operation.
Through the steps, the decrypted user communication identification is only transmitted between the number authentication server and the service server, and the client can only receive the mask user communication identification, so that the user communication identification is prevented from being hijacked due to the fact that the decrypted user communication identification is transmitted at the client. Compared with the scheme of displaying plaintext information at the client side adopted in the prior art, the method and the device for displaying the plaintext information at the client side can achieve the purpose of improving the safety of the user communication identification in the transmission process, and achieve the effect of safely logging in the e-commerce system.
S130, the mask user communication identifier is displayed, and when the login/registration triggering operation aiming at the mask user communication identifier is detected, a login/registration request is sent to the service server, so that the service server performs a password-free login/registration operation on the user communication identifier.
The login/registration triggering operation may be understood as a login/registration request sent by a user to a client. Continuing to refer to fig. 2, after receiving the mask information, the client displays the mask user communication identifier through the mask user communication identifier display module, displays the registration protocol through the registration protocol display module, and displays the login prompt information, the registration prompt information, and the like through other modules, the user sends login or registration trigger operation for the mask user communication identifier to the client according to the displayed information, the client confirms whether the user communication identifier needs to execute the password-free login or registration operation according to the login or registration trigger operation, and sends a login-acquired registration request to the service server, the service server confirms whether the user communication identifier is registered again after receiving the request, and executes the password-free login or registration operation for the user communication identifier through the login/registration processing module.
It can be seen from S110-S130 that, when the user logs in or registers the e-commerce system through the client, only the user needs to confirm whether to perform the login or registration operation, and does not need to input information such as an account password and a user communication identification verification code, and also does not need to pull up a third-party application for logging in. Compared with the scheme in the prior art, the method and the device can achieve the purposes of simplifying the login process and improving the convenience of login or registration.
According to the technical scheme provided by the embodiment of the invention, pre-fetching number information which is obtained from an operator server side in advance is obtained, the pre-fetching number information is sent to a service server side, mask information which is returned by the service server side is received, the mask information comprises a mask user communication identifier corresponding to a decrypted user communication identifier, the mask user communication identifier is displayed, and a login/registration request is sent to the service server side when login/registration triggering operation aiming at the mask user communication identifier is detected, so that the service server side can carry out secret-free login/registration operation on the user communication identifier. The above steps only display the mask information at the client, and the whole login or registration process does not need too much human participation, so that the problems of complicated login/registration mode process and poor safety of the client in the prior art can be solved, and the effects of improving the convenience and safety of the login/registration mode of the mobile terminal are realized.
Example two
Fig. 3 is a flowchart illustrating a login/registration method according to a second embodiment of the present invention. The technical scheme of the embodiment adds a new step on the basis of the embodiment. Optionally, before the obtaining the pre-fetch number information obtained from the operator service end in advance, the method further includes: and in a mobile network connection state, sending a pre-fetching number request to the operator service end through the number authentication service end so that the operator service end sends the pre-fetching number information to the client through the number authentication service end. The benefit of adding this step is that the security of the login/registration can be further improved. In the method, reference is made to the above-described embodiments for those parts which are not described in detail. Referring specifically to fig. 3, the method may include the steps of:
s210, in the mobile network connection state, sending a pre-fetching number request to the operator service end through the number authentication service end, so that the operator service end sends pre-fetching number information to the client through the number authentication service end.
It can be understood that, when the client logs in/registers on the e-commerce system, the networked network may be a mobile network or a WiFi network, some unencrypted WiFi networks have poor security, and in order to further ensure the security of the user communication identifier, the client needs to send a prefetch number request to the operator service end through the number authentication service end in a mobile network connection state, and the operator service end needs to send prefetch number information to the client through the number authentication service end in a mobile network connection state. In this embodiment, the network data of the mobile network may include, but is not limited to, 3G, 4G, or 5G.
As shown in fig. 2, before the client sends the request for pre-fetching number to the number authentication server, it is further required to determine that the connected network is a mobile network. In this embodiment, it may be determined that the connected network is a mobile network by:
s1: determining whether the current network is a mobile network;
s2: if the current connected network is not the mobile network, generating prompt information of network switching;
s3: and receiving a switching request triggered by the outside, and switching the currently connected network into the mobile network according to the switching request.
The externally triggered switching request can be understood as a WiFi network closing operation clicked or input by a user on a client, so that the client switches to connect a network according to the operation, and then the client sends the pre-fetch number request to an operator server through a number authentication server in a mobile network state.
Optionally, the prefetch number request may include an application id (appid) registered by the client on the operator server, a client type (e.g., Android, iOS, and H5), signature information, a public key ciphertext (secretKey) generated by the client on the operator server, and other parameter ciphertext. Wherein AppID can be understood as ISO/IEC 8802-3 frame and differentiated application association used to select information containing GSE management and GOOSE messages; signature information is understood to be an alphanumeric string used to process information to be transmitted and verify whether the information has changed during transmission, via a one-way function, which may be composed of Hash Message Authentication Code (HMAC), secure hash algorithm 1(SHA1), application id (appid), clientType (a client programming kit), params key, otherParams (other parameters), and appsect (application key generated by access operator platform registration), and may be formed in the form of: HMAC-SHA1(appID + clientType + Paramkey + other Params + appSect); secreteKey can be used in a plurality of third party extensions, the encryption strength depends on the confidentiality degree of variable values, and different programs use different keys; other parameter ciphertexts may be otherParams, which may be in the form of: AES (time equal to 12345& businessType equal to a), AES is an advanced encryption standard, time equal is a timestamp, and businessType is a service Type.
Optionally, before the client sends the request parameters (i.e. the prefetch number request) to the operator server, the request parameters may be encapsulated or encrypted to ensure secure transmission of the prefetch number request. Furthermore, after the operator service end receives the packaged or encrypted prefetch number request, the prefetch number request is analyzed to generate and encrypt the prefetch number information, and after the client receives the prefetch number information, whether the number fetching is successful can be judged according to the response state code and the access token in the prefetch number information.
Optionally, the prefetch number information may include parameters such as a usage (value) specification, a response status code, an error prompt, an access token, a carrier type, and a timeout time. The response status code may include a number-taking success status code and a number-taking identification status code; an access token may be understood as an access token created by an operating system when a user logs in or registers on the operating system of a client and contains the number (SID) of the local network returned by the login process and a list of privileges assigned to the user and to the user's security groups by the local security policy, which the operating system may use to control which security objects the user may access and to control the user's ability to perform related system operations; operator types may include mobile, unicom, and telecom; the timeout time may be understood as a set task response time stamp, and if the task response time exceeds the time stamp, the task is determined to be an invalid task. In this embodiment, if the client successfully fetches a number from the operator server, the prefetch number information may include a number-fetching success status code, an access token, an operator type, and the like, where the access token includes an SID, and if the client unsuccessfully fetches a number from the operator server, the number-fetching feedback information may include an error prompt, a number-fetching failure status code, timeout time, and the like.
S220, acquiring pre-fetching number information acquired from the service end of the operator in advance, and sending the pre-fetching number information to the service end.
It is understood that S220 is a case where the prefetch number information is successfully acquired, and may not be successfully acquired in some cases. For example, if the user communication identifier is a mobile phone number, when the mobile network speed is slow, and the operator service side makes a decryption error on the prefetch number request, the prefetch number information fed back to the client by the operator service side may include only information such as a number fetch failure status code, an error prompt, and timeout time, but does not include an encrypted mobile phone number, that is, the client cannot receive the encrypted mobile phone number, and this case does not allow execution of a password-free login or registration process. Alternatively, the client does not switch the currently connected network to a mobile network, which also does not allow for a secure login or registration operation. When the secret-free login or registration operation is not allowed to be executed, the client automatically adopts a non-secret-free login/registration mode for login/registration, wherein the non-secret-free login/registration mode can comprise at least one group of mailbox login, verification code login and third party account login. The present embodiment does not specifically explain the non-password-exempt login/registration method.
And S230, receiving mask information returned by the service server.
Similar to the above embodiment, the service end receives the prefetch number information sent by the client, the service end sends the prefetch number information to the number authentication service end, after receiving the prefetch number information, the number authentication service end can perform multiple encryption and decryption on the prefetch number information to obtain a decrypted user communication identifier, for example, obtain a decrypted mobile phone number, a virtual number, a fixed phone number, and the like, then the number authentication service end feeds back the decrypted user communication identifier to the service end, and then the service end performs mask processing on the decrypted user communication identifier and feeds back the generated mask information to the client. Optionally, when the number authentication server performs multiple encryption and decryption on the pre-fetched number information, the encryption and decryption algorithms used may include, but are not limited to, HMAC-SHA1(a hash encryption algorithm) and RSA-1024 (an asymmetric algorithm), and the like, so that the security of the pre-fetched number information may be further improved.
S240, the mask user communication identifier is displayed, and when the login/registration triggering operation aiming at the mask user communication identifier is detected, a login/registration request is sent to the service server, so that the service server performs a password-free login/registration operation on the user communication identifier.
The technical scheme provided by the embodiment of the invention is that before the pre-fetching number information which is acquired from the operator server in advance is acquired, whether the current connected network is a mobile network is determined, if the current connected network is not the mobile network, prompt information of network switching is generated, an externally triggered switching request is received, the current connected network is switched to the mobile network according to the switching request, and then the pre-fetching number request is sent to the operator server through the number authentication server in the connection state of the mobile network, so that the operator server sends the pre-fetching number information to the client through the number authentication server. Through the steps, the user communication identification can be prevented from being attacked, the purpose of executing the secret-free login or registration operation only in the mobile network connection state can be achieved, and the effect of improving the security of the secret-free login or registration operation is achieved.
EXAMPLE III
Fig. 4 is a flowchart of a login/registration method according to a third embodiment of the present invention, which is applied to a service server, and this embodiment is applicable to a case of login/registration of a privacy-free e-commerce system. Referring specifically to fig. 4, the method may include the steps of:
s310, receiving the pre-fetching number information sent by the client.
Wherein the pre-fetch number information comprises encrypted user communication identification.
And S320, generating mask information based on the prefetch number information, and sending the mask information to the client.
The mask information comprises mask user communication identification corresponding to the decrypted user communication identification.
S330, receiving a login/registration request sent by the client, and performing a secret-free login/registration operation on the user communication identifier according to the login/registration request.
Wherein the login/registration request is sent by the client when the login/registration trigger operation aiming at the mask user communication identification is detected. Optionally, if the user communication identifier is a mobile phone number, the login/registration request may carry information such as a temporary login credential corresponding to the mobile phone number, a login/registration instruction for a mask mobile phone number, and after receiving the login/registration request, the service server parses the login/registration request, for example, parses the mobile phone number carried by the temporary login credential and determines whether the temporary login credential is expired, and if the temporary login credential is not expired, performs a password-free login/registration operation on the mobile phone number, that is, completes the password-free login/registration operation on the user communication identifier.
In this embodiment, the secret-free login/registration operation performed on the user communication identifier according to the login/registration request may be implemented in the following manner:
if the registration information of the user communication identifier is detected, executing a secret-free login operation on the user communication identifier according to the login request and the registration information, wherein the registration information comprises a registration account of the user communication identifier;
and if the registration information of the user communication identifier is not detected, executing a secret-free registration operation on the user communication identifier according to the registration request.
Illustratively, if the user communication identifier is a mobile phone number, after receiving a login/registration request, the service server inquires registration information of the mobile phone number in a database of the e-commerce system to be logged in/registered, if the registration information of the mobile phone number is detected, the service server indicates that the mobile phone number has been registered on the e-commerce system, directly executes a secret-free login operation on the mobile phone number according to the login request and the registration information, if the registration information of the mobile phone number is not detected, the service server indicates that the mobile phone number has not been registered on the e-commerce system, and executes a secret-free registration operation on the mobile phone number according to the registration request.
Specifically, explaining the encryption-free registration process with reference to fig. 5, before the client sends a login/registration request to the service server, the client pops up the registration protocol and determines whether the user agrees with the registration protocol, receives feedback information of the registration protocol chosen by the user to initiate the login/registration request, and sends the registration request to the service server. After receiving the registration request, the service server processes the registration request, if the user communication identifier is a mobile phone number, a risk user judgment module determines whether the mobile phone number corresponding to the registration request is a risk account number, if the mobile phone number is the risk account number, wind control verification is carried out on the mobile phone number, whether the wind control verification is successful is determined, if the mobile phone number passes the wind control verification, or the mobile phone number does not belong to the risk account number, a secret-free registration operation is carried out on the mobile phone number through a registration request processing module, the registration account number of the mobile phone number is created through a new account generation module, namely, the registration success is completed, a new account process is created, and a new account generation module feeds back registration success information to the client. Optionally, if the mobile phone number belongs to a risk account and fails the wind control verification, the service server generates registration failure information and sends the registration failure information to the client, and the client receives a wind control authentication result through a wind control authentication receiving module and displays the registration failure information.
Specifically, explaining a secret-free login process with reference to fig. 6, a client initiates a login request first and sends the login request to a service server, similar to the secret-free registration process, after receiving the login request, the service server processes the login request, if a user communication identifier is a mobile phone number, a risk user determination module determines whether the mobile phone number corresponding to the login request is a risk account number, if the mobile phone number is the risk account number, the mobile phone number is subjected to wind control verification, and determines whether the mobile phone number passes the wind control verification, if the mobile phone number passes the wind control verification, or the mobile phone number does not belong to the risk account number, the login request processing module executes a secret-free login operation on the mobile phone number, and feeds login success information back to the client. Optionally, if the mobile phone number belongs to a risk account and fails the wind control verification, login failure information is generated and sent to the client, so that the client displays the login failure information.
It can be understood that the login/registration mode is a successful number obtaining condition, if the number obtaining information does not include the user communication identifier, the number obtaining is unsuccessful, and the service end can log in/register the e-commerce system through the account login/registration module, the user communication identifier login/registration module and the third party login/registration module.
According to the technical scheme provided by the embodiment of the invention, prefetch number information sent by a client is received, mask information is generated based on the prefetch number information, the mask information is sent to the client, a login/registration request sent by the client is received, and the user communication identifier is subjected to secret-free login/registration operation according to the login/registration request, wherein when the service server performs secret-free login/registration operation on the user communication identifier, whether the user communication identifier is a risk account number or not can be judged firstly, if the user communication identifier is the risk account number, the user communication identifier is subjected to wind control verification firstly, and the secret-free login/registration operation is executed after the verification is passed, so that the safety of an e-commerce system can be improved and the safety of other user communication identifiers can be ensured.
Example four
Fig. 7 is a schematic structural diagram of a login/registration apparatus according to a fourth embodiment of the present invention. The login/registration means is applied to the client. Referring to fig. 7, the apparatus includes: a pre-fetch number information acquisition and transmission module 41, a mask information receiving module 42, and a secret-free login/registration request transmission module 43.
The pre-fetch number information obtaining and sending module 41 is configured to, when a preset trigger operation is detected, obtain pre-fetch number information that is obtained from an operator service end in advance, and send the pre-fetch number information to a service end; the pre-number-fetching information comprises encrypted user communication identification; a mask information receiving module 42, configured to receive mask information returned by the service server, where the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier; a secret-free login/registration request sending module 43, configured to display the mask code user communication identifier, and send a login/registration request to the service server when a login/registration triggering operation for the mask code user communication identifier is detected, so that the service server performs a secret-free login/registration operation on the user communication identifier.
On the basis of the above technical solutions, the apparatus further includes: a prefetch number request sending module; the pre-fetching request sending module is used for sending a pre-fetching request to the operator service side through the number authentication service side in a mobile network connection state, so that the operator service side sends the pre-fetching information to the client side through the number authentication service side.
On the basis of the above technical solutions, the apparatus further includes: a network switching module; the network switching module is used for determining whether the currently connected network is a mobile network;
if the current connected network is not the mobile network, generating prompt information of network switching;
and receiving a switching request triggered by the outside, and switching the currently connected network into a mobile network according to the switching request.
On the basis of the above technical solutions, the apparatus further includes: a non-password-exempt login/registration module; the non-secret-free login/registration module is configured to, if the encrypted user communication identifier is not received, or a currently connected network is not switched to a mobile network, perform login/registration in a non-secret-free login/registration manner, where the non-secret-free login/registration manner includes: at least one of mailbox login, verification code login and third party account login.
According to the technical scheme provided by the embodiment of the invention, pre-fetching number information which is obtained from an operator server side in advance is obtained, the pre-fetching number information is sent to a service server side, mask information which is returned by the service server side is received, the mask information comprises a mask user communication identifier corresponding to a decrypted user communication identifier, the mask user communication identifier is displayed, and a login/registration request is sent to the service server side when login/registration triggering operation aiming at the mask user communication identifier is detected, so that the service server side can carry out secret-free login/registration operation on the user communication identifier. The above steps only display the mask information at the client, and the whole login or registration process does not need too much human participation, so that the problems of complicated login/registration mode process and poor safety of the client in the prior art can be solved, and the effects of improving the convenience and safety of the login/registration mode of the mobile terminal are realized.
EXAMPLE five
Fig. 8 is a schematic structural diagram of a login/registration apparatus according to a fifth embodiment of the present invention. The login/registration device is applied to a service server. Referring to fig. 8, the apparatus includes: a prefetch number information receiving module 51, a mask information transmitting module 52, and a password-free login/registration module 53.
The prefetch number information receiving module 51 is configured to receive prefetch number information sent by a client; the pre-fetching number information comprises encrypted user communication identification;
a mask information sending module 52, configured to generate mask information based on the prefetch number information, and send the mask information to the client; wherein the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
a secret-free login/registration module 53, configured to receive a login/registration request sent by the client, and perform secret-free login/registration operation on the user communication identifier according to the login/registration request;
wherein the login/registration request is sent by the client when a login/registration trigger operation for the mask user communication identifier is detected.
On the basis of the above technical solutions, the mask information sending module 52 is further configured to send the prefetch number information to a number authentication server, so that the number authentication server decrypts the prefetch number information to obtain the decrypted user communication identifier;
and receiving the decrypted user communication identifier sent by the number authentication server, and performing mask processing on the decrypted user communication identifier to generate the mask information.
On the basis of the above technical solutions, the secret-free login/registration module 53 is further configured to, if registration information of the user communication identifier is detected, execute a secret-free login operation on the user communication identifier according to the login request and the registration information, where the registration information includes a registration account of the user communication identifier;
and if the registration information of the user communication identifier is not detected, executing a secret-free registration operation on the user communication identifier according to the registration request.
On the basis of the above technical solutions, the secret-free login/registration module 53 is further configured to determine whether the user communication identifier is a risk account;
if the user communication identification is a risk account, carrying out wind control verification on the user communication identification, and determining whether the user communication identification passes the wind control verification;
and if the user communication identification passes the wind control verification or does not belong to the risk account, performing a secret-free registration operation on the user communication identification according to the registration request, creating a registration account of the user communication identification and feeding back registration success information to the client.
On the basis of the above technical solutions, the secret-free login/registration module 53 is further configured to determine whether the user communication identifier is a risk account;
if the user communication identification is a risk account, carrying out wind control verification on the user communication identification, and determining whether the user communication identification passes the wind control verification;
and if the user communication identifier passes the wind control verification or the user communication identifier does not belong to the risk account, executing a secret-free login operation on the user communication identifier according to the login request.
According to the technical scheme provided by the embodiment of the invention, prefetch number information sent by a client is received, mask information is generated based on the prefetch number information, the mask information is sent to the client, a login/registration request sent by the client is received, and the user communication identifier is subjected to secret-free login/registration operation according to the login/registration request, wherein when the service server performs secret-free login/registration operation on the user communication identifier, whether the user communication identifier is a risk account number or not can be judged firstly, if the user communication identifier is the risk account number, the user communication identifier is subjected to wind control verification firstly, and the secret-free login/registration operation is executed after the verification is passed, so that the safety of an e-commerce system can be improved and the safety of other user communication identifiers can be ensured.
EXAMPLE six
Fig. 9 is a schematic structural diagram of a login/registration system according to a sixth embodiment of the present invention. Referring to fig. 9, the system includes: client 61, business server 62, and operator server 63.
The client 61 is configured to acquire prefetch number information acquired from an operator server in advance, and send the prefetch number information to a service server; the pre-access number information comprises an encrypted user communication identifier, mask information returned by the service server is received, the mask information comprises a mask user communication identifier corresponding to the decrypted user communication identifier, the mask user communication identifier is displayed, and a login/registration request is sent to the service server when login/registration triggering operation aiming at the mask user communication identifier is detected;
the service server 62 is configured to receive prefetch number information sent by the client; generating mask information based on the prefetch number information, and sending the mask information to the client; receiving a login/registration request sent by the client, and performing secret-free login/registration operation on the user communication identifier according to the login/registration request;
the operator service end 63 is configured to provide the prefetch number information to the client.
On the basis of the above technical solutions, the system further includes: a number authentication server 64; the number authentication server 64 is configured to send a prefetch number request sent by a client to the operator server, and send prefetch number information sent by the operator server to the client;
the number authentication server is further configured to receive the prefetch number information sent by the service server, decrypt the prefetch number information, and return the obtained decrypted user communication identifier to the service server.
According to the technical scheme provided by the embodiment of the invention, the decrypted user communication identifier is only transmitted at the server, the client can only display mask information of the user communication identifier, the whole login or registration process does not need excessive human participation, the convenience and the safety of the login/registration mode of the mobile terminal can be improved, and the business server can improve the safety of an e-commerce system and ensure the safety of other user communication identifiers through risk authentication.
EXAMPLE seven
Fig. 10 is a schematic structural diagram of an electronic device according to a seventh embodiment of the present invention. FIG. 10 illustrates a block diagram of an exemplary electronic device 10 suitable for use in implementing embodiments of the present invention. The electronic device 10 shown in fig. 10 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiments of the present invention.
As shown in FIG. 10, electronic device 10 is embodied in the form of a general purpose computing device. The components of electronic device 12 may include, but are not limited to: one or more processors or processing units 16, a system memory 28, and a bus 18 that couples various system components including the system memory 28 and the processing unit 16.
Bus 18 represents one or more of any of several types of bus structures, including a memory bus or memory controller, a peripheral bus, an accelerated graphics port, and a processor or local bus using any of a variety of bus architectures. By way of example, such architectures include, but are not limited to, Industry Standard Architecture (ISA) bus, micro-channel architecture (MAC) bus, enhanced ISA bus, Video Electronics Standards Association (VESA) local bus, and Peripheral Component Interconnect (PCI) bus.
Electronic device 12 typically includes a variety of computer system readable media. Such media may be any available media that is accessible by electronic device 12 and includes both volatile and nonvolatile media, removable and non-removable media.
The system memory 28 may include computer system readable media in the form of volatile memory, such as Random Access Memory (RAM)30 and/or cache memory 32. The electronic device 10 may further include other removable/non-removable, volatile/nonvolatile computer system storage media. By way of example only, storage system 34 may be used to read from and write to non-removable, nonvolatile magnetic media (not shown in FIG. 10, and commonly referred to as a "hard drive"). Although not shown in FIG. 10, a magnetic disk drive for reading from and writing to a removable, nonvolatile magnetic disk (e.g., a "floppy disk") and an optical disk drive for reading from or writing to a removable, nonvolatile optical disk (e.g., a CD-ROM, DVD-ROM, or other optical media) may be provided. In these cases, each drive may be connected to bus 18 by one or more data media interfaces. Memory 28 may include at least one program product having a set of program modules (e.g., prefetch number information acquisition and transmission module 41, mask information reception module 42, and password-free login/registration request transmission module 43 of the login/registration apparatus, or prefetch number information reception module 51, mask information transmission module 52, and password-free login/registration module 53) configured to perform the functions of embodiments of the present invention.
A program/utility 44 having a set of program modules 46 (e.g., prefetch number information acquisition and transmission module 41, mask information reception module 42, and secure login/registration request transmission module 43 of a login/registration apparatus, or prefetch number information reception module 51, mask information transmission module 52, and secure login/registration module 53) may be stored, for example, in memory 28, such program modules 46 including, but not limited to, an operating system, one or more application programs, other program modules, and program data, each of which or some combination of which may comprise an implementation of a network environment. Program modules 46 generally carry out the functions and/or methodologies of the described embodiments of the invention.
Electronic device 12 may also communicate with one or more external devices 14 (e.g., keyboard, pointing device, display 24, etc.), with one or more devices that enable a user to interact with electronic device 12, and/or with any devices (e.g., network card, modem, etc.) that enable electronic device 12 to communicate with one or more other computing devices. Such communication may be through an input/output (I/O) interface 22. Also, the electronic device 12 may communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network, such as the Internet) via the network adapter 20. As shown, the network adapter 20 communicates with other modules of the electronic device 12 via the bus 18. It should be understood that although not shown in the figures, other hardware and/or software modules may be used in conjunction with electronic device 12, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.
The processing unit 16 executes various functional applications and data processing by executing programs stored in the system memory 28, for example, implementing a login/registration method provided by an embodiment of the present invention, the method is applied to a client, and the method includes:
acquiring pre-fetching number information acquired from an operator service end in advance, and sending the pre-fetching number information to a service end; the pre-number-fetching information comprises encrypted user communication identification;
receiving mask information returned by the service server, wherein the mask information comprises a mask user communication identifier corresponding to the decrypted user communication identifier;
and displaying the mask user communication identifier, and sending a login/registration request to the service server when detecting a login/registration triggering operation aiming at the mask user communication identifier so as to enable the service server to carry out a secret-free login/registration operation on the user communication identifier.
The processing unit 16 executes various functional applications and data processing, such as implementing a login/registration method provided by an embodiment of the present invention, by executing programs stored in the system memory 28.
Of course, those skilled in the art will understand that the processor may also implement the technical solution of a login/registration method provided in any embodiment of the present invention.
Example eight
An eighth embodiment of the present invention further provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements a login/registration method provided in the embodiment of the present invention, where the method includes:
acquiring pre-fetching number information acquired from an operator service end in advance, and sending the pre-fetching number information to a service end; the pre-number-fetching information comprises encrypted user communication identification;
receiving mask information returned by the service server, wherein the mask information comprises a mask user communication identifier corresponding to the decrypted user communication identifier;
and displaying the mask user communication identifier, and sending a login/registration request to the service server when detecting a login/registration triggering operation aiming at the mask user communication identifier so as to enable the service server to carry out a secret-free login/registration operation on the user communication identifier. Alternatively, the method comprises:
receiving pre-fetching number information sent by a client; the pre-fetching number information comprises encrypted user communication identification;
generating mask information based on the prefetch number information, and sending the mask information to the client; wherein the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
receiving a login/registration request sent by the client, and performing secret-free login/registration operation on the user communication identifier according to the login/registration request;
wherein the login/registration request is sent by the client when a login/registration trigger operation for the mask user communication identifier is detected.
Of course, the computer program stored on the computer-readable storage medium provided by the embodiments of the present invention is not limited to the above method operations, and may also perform related operations in a login/registration method provided by any embodiment of the present invention.
Computer storage media for embodiments of the invention may employ any combination of one or more computer-readable media. The computer readable medium may be a computer readable signal medium or a computer readable storage medium. A computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, or device, or any combination of the foregoing. More specific examples (a non-exhaustive list) of the computer readable storage medium would include the following: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the context of this document, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, or device.
A computer readable signal medium may include, inter alia, pre-fetch number information, encrypted user communication identification request, and mask information, which carries computer readable program code. The form of the broadcast pre-fetching number information, the encrypted user communication identification request, the mask information and the like. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, or device.
Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
Computer program code for carrying out operations for aspects of the present invention may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, Smalltalk, C + +, or the like, as well as conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the case of a remote computer, the remote computer may be connected to the user's computer through any type of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet service provider).
It should be noted that, in the embodiment of the login/registration module, the modules included in the embodiment are only divided according to functional logic, but are not limited to the above division as long as the corresponding functions can be implemented; in addition, specific names of the functional units are only for convenience of distinguishing from each other, and are not used for limiting the protection scope of the present invention.
It is to be noted that the foregoing is only illustrative of the preferred embodiments of the present invention and the technical principles employed. It will be understood by those skilled in the art that the present invention is not limited to the particular embodiments described herein, but is capable of various obvious changes, rearrangements and substitutions as will now become apparent to those skilled in the art without departing from the scope of the invention. Therefore, although the present invention has been described in greater detail by the above embodiments, the present invention is not limited to the above embodiments, and may include other equivalent embodiments without departing from the spirit of the present invention, and the scope of the present invention is determined by the scope of the appended claims.

Claims (15)

1. A login/registration method is applied to a client and comprises the following steps:
acquiring pre-fetching number information acquired from an operator service end in advance, and sending the pre-fetching number information to a service end; the pre-number-fetching information comprises encrypted user communication identification;
receiving mask information returned by the service server, wherein the mask information comprises a mask user communication identifier corresponding to the decrypted user communication identifier;
and displaying the mask user communication identifier, and sending a login/registration request to the service server when detecting a login/registration triggering operation aiming at the mask user communication identifier so as to enable the service server to carry out a secret-free login/registration operation on the user communication identifier.
2. The method according to claim 1, wherein before the obtaining the pre-fetch number information obtained from the operator service side in advance, the method further comprises:
and in a mobile network connection state, sending a pre-fetching number request to the operator service end through the number authentication service end so that the operator service end sends the pre-fetching number information to the client through the number authentication service end.
3. The method of claim 2, before the sending the pre-fetch number request to the operator service side by the number authentication service side, further comprising:
determining whether a currently connected network is a mobile network;
if the current connected network is not the mobile network, generating prompt information of network switching;
and receiving a switching request triggered by the outside, and switching the currently connected network into a mobile network according to the switching request.
4. The method of claim 2 or 3, further comprising:
if the encrypted user communication identification is not received, or the current connected network is not switched to the mobile network, adopting a non-secret-free login/registration mode for login/registration, wherein the non-secret-free login/registration mode comprises the following steps: at least one of mailbox login, verification code login and third party account login.
5. A login/registration method is applied to a service server and comprises the following steps:
receiving pre-fetching number information sent by a client; the pre-fetching number information comprises encrypted user communication identification;
generating mask information based on the prefetch number information, and sending the mask information to the client; wherein the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
receiving a login/registration request sent by the client, and performing secret-free login/registration operation on the user communication identifier according to the login/registration request;
wherein the login/registration request is sent by the client when a login/registration trigger operation for the mask user communication identifier is detected.
6. The method of claim 5, wherein generating mask information based on the prefetch number information comprises:
sending the pre-fetching number information to a number authentication server so that the number authentication server decrypts the pre-fetching number information to obtain the decrypted user communication identifier;
and receiving the decrypted user communication identifier sent by the number authentication server, and performing mask processing on the decrypted user communication identifier to generate the mask information.
7. The method of claim 5, wherein said performing a secret-free login/registration operation on said user communication identifier according to said login/registration request comprises:
if the registration information of the user communication identifier is detected, executing a secret-free login operation on the user communication identifier according to the login request and the registration information, wherein the registration information comprises a registration account of the user communication identifier;
and if the registration information of the user communication identifier is not detected, executing a secret-free registration operation on the user communication identifier according to the registration request.
8. The method of claim 7, wherein performing a secret-free registration operation on the user communication identifier according to the registration request comprises:
determining whether the user communication identifier is a risk account;
if the user communication identification is a risk account, carrying out wind control verification on the user communication identification, and determining whether the user communication identification passes the wind control verification;
and if the user communication identification passes the wind control verification or does not belong to the risk account, performing a secret-free registration operation on the user communication identification according to the registration request, creating a registration account of the user communication identification and feeding back registration success information to the client.
9. The method according to claim 7 or 8, wherein said performing a secret-free login operation to said user communication identifier according to said login request and said registration information comprises:
determining whether the user communication identifier is a risk account;
if the user communication identification is a risk account, carrying out wind control verification on the user communication identification, and determining whether the user communication identification passes the wind control verification;
and if the user communication identifier passes the wind control verification or the user communication identifier does not belong to the risk account, executing a secret-free login operation on the user communication identifier according to the login request.
10. A login/registration apparatus, applied to a client, comprising:
the pre-number-fetching information acquisition and sending module is used for acquiring pre-number-fetching information which is acquired from an operator service end in advance when a preset trigger operation is detected, and sending the pre-number-fetching information to a service end; the pre-number-fetching information comprises encrypted user communication identification;
a mask information receiving module, configured to receive mask information returned by the service server, where the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
and the secret-free login/registration request sending module is used for displaying the mask user communication identifier and sending a login/registration request to the service server when detecting login/registration triggering operation aiming at the mask user communication identifier so as to enable the service server to carry out secret-free login/registration operation on the user communication identifier.
11. A login/registration device, applied to a service server, includes:
the pre-fetching number information receiving module is used for receiving the pre-fetching number information sent by the client; the pre-fetching number information comprises encrypted user communication identification;
a mask information sending module, configured to generate mask information based on the prefetch number information, and send the mask information to the client; wherein the mask information includes a mask user communication identifier corresponding to the decrypted user communication identifier;
the secret-free login/registration module is used for receiving a login/registration request sent by the client and carrying out secret-free login/registration operation on the user communication identifier according to the login/registration request;
wherein the login/registration request is sent by the client when a login/registration trigger operation for the mask user communication identifier is detected.
12. A login/registration system, comprising: the system comprises a client, a service server and an operator server; wherein the content of the first and second substances,
the client is used for acquiring pre-fetching number information acquired from an operator server in advance and sending the pre-fetching number information to the service server; the pre-access number information comprises an encrypted user communication identifier, mask information returned by the service server is received, the mask information comprises a mask user communication identifier corresponding to the decrypted user communication identifier, the mask user communication identifier is displayed, and a login/registration request is sent to the service server when login/registration triggering operation aiming at the mask user communication identifier is detected;
the service server is used for receiving the pre-fetching number information sent by the client; generating mask information based on the prefetch number information, and sending the mask information to the client; receiving a login/registration request sent by the client, and performing secret-free login/registration operation on the user communication identifier according to the login/registration request;
and the operator service end is used for providing the pre-fetching number information for the client.
13. The system of claim 12, further comprising: a number authentication server; the number authentication server is used for sending a pre-fetching number request sent by a client to the operator server and sending pre-fetching number information sent by the operator server to the client;
the number authentication server is further configured to receive the prefetch number information sent by the service server, decrypt the prefetch number information, and return the obtained decrypted user communication identifier to the service server.
14. An electronic device, characterized in that the electronic device comprises:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement the login/registration method of any one of claims 1-4, or the login/registration method of any one of claims 5-9.
15. A storage medium containing computer-executable instructions, which when executed by a computer processor implement the login/registration method of any of claims 1-4 or claims 5-9.
CN202010053485.6A 2020-01-17 2020-01-17 Login/registration method, device, system, electronic equipment and storage medium Active CN111740942B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010053485.6A CN111740942B (en) 2020-01-17 2020-01-17 Login/registration method, device, system, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010053485.6A CN111740942B (en) 2020-01-17 2020-01-17 Login/registration method, device, system, electronic equipment and storage medium

Publications (2)

Publication Number Publication Date
CN111740942A true CN111740942A (en) 2020-10-02
CN111740942B CN111740942B (en) 2022-11-08

Family

ID=72646178

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010053485.6A Active CN111740942B (en) 2020-01-17 2020-01-17 Login/registration method, device, system, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN111740942B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112565239A (en) * 2020-12-01 2021-03-26 深圳市和讯华谷信息技术有限公司 Authentication method and device for integrating multiple operators, computer equipment and storage medium
CN112667985A (en) * 2020-12-31 2021-04-16 深兰盛视科技(苏州)有限公司 Bargun control method and device, bargun and computer readable storage medium
CN114221788A (en) * 2021-11-18 2022-03-22 北京达佳互联信息技术有限公司 Login method, login device, electronic equipment and storage medium
CN114338132A (en) * 2021-12-24 2022-04-12 中国联合网络通信集团有限公司 Secret-free login method, client application, operator server and electronic equipment
WO2023185513A1 (en) * 2022-03-28 2023-10-05 华为技术有限公司 Communication method, apparatus, and system

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101951585A (en) * 2010-09-06 2011-01-19 深圳市融创天下科技发展有限公司 User identity authentication method, system and mobile communication terminal
CN106304074A (en) * 2016-08-31 2017-01-04 尹子栋 Auth method and system towards mobile subscriber
CN107864134A (en) * 2017-11-03 2018-03-30 世纪龙信息网络有限责任公司 Account login method and system
CN109587162A (en) * 2018-12-26 2019-04-05 闻泰通讯股份有限公司 Login validation method, device, terminal, cipher server and storage medium
CN110225511A (en) * 2019-06-20 2019-09-10 世纪龙信息网络有限责任公司 Acquisition methods, device, system and the computer equipment of terminal IMEI number
CN110266656A (en) * 2019-05-30 2019-09-20 世纪龙信息网络有限责任公司 Exempt from close authenticating identity recognition methods, device and computer equipment
CN110674481A (en) * 2019-10-12 2020-01-10 北京字节跳动网络技术有限公司 Account registration method, device, equipment and storage medium of application program

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101951585A (en) * 2010-09-06 2011-01-19 深圳市融创天下科技发展有限公司 User identity authentication method, system and mobile communication terminal
CN106304074A (en) * 2016-08-31 2017-01-04 尹子栋 Auth method and system towards mobile subscriber
CN107864134A (en) * 2017-11-03 2018-03-30 世纪龙信息网络有限责任公司 Account login method and system
CN109587162A (en) * 2018-12-26 2019-04-05 闻泰通讯股份有限公司 Login validation method, device, terminal, cipher server and storage medium
CN110266656A (en) * 2019-05-30 2019-09-20 世纪龙信息网络有限责任公司 Exempt from close authenticating identity recognition methods, device and computer equipment
CN110225511A (en) * 2019-06-20 2019-09-10 世纪龙信息网络有限责任公司 Acquisition methods, device, system and the computer equipment of terminal IMEI number
CN110674481A (en) * 2019-10-12 2020-01-10 北京字节跳动网络技术有限公司 Account registration method, device, equipment and storage medium of application program

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
潘慧: "免密认证 真正改变生活的黑科技", 《广东科技》 *
黄海峰等: "中国电信力推天翼账号 吸引多家互联网企业 惠及5亿实名认证用户", 《通信世界》 *

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112565239A (en) * 2020-12-01 2021-03-26 深圳市和讯华谷信息技术有限公司 Authentication method and device for integrating multiple operators, computer equipment and storage medium
CN112667985A (en) * 2020-12-31 2021-04-16 深兰盛视科技(苏州)有限公司 Bargun control method and device, bargun and computer readable storage medium
CN114221788A (en) * 2021-11-18 2022-03-22 北京达佳互联信息技术有限公司 Login method, login device, electronic equipment and storage medium
CN114221788B (en) * 2021-11-18 2024-05-14 北京达佳互联信息技术有限公司 Login method, login device, electronic equipment and storage medium
CN114338132A (en) * 2021-12-24 2022-04-12 中国联合网络通信集团有限公司 Secret-free login method, client application, operator server and electronic equipment
CN114338132B (en) * 2021-12-24 2023-08-01 中国联合网络通信集团有限公司 Secret-free login method, client application, operator server and electronic equipment
WO2023185513A1 (en) * 2022-03-28 2023-10-05 华为技术有限公司 Communication method, apparatus, and system

Also Published As

Publication number Publication date
CN111740942B (en) 2022-11-08

Similar Documents

Publication Publication Date Title
CN111740942B (en) Login/registration method, device, system, electronic equipment and storage medium
CN109150835B (en) Cloud data access method, device, equipment and computer readable storage medium
US20110197059A1 (en) Securing out-of-band messages
CN110868287B (en) Authentication encryption ciphertext coding method, system, device and storage medium
US11470060B2 (en) Private exchange of encrypted data over a computer network
CN106357690B (en) data transmission method, data sending device and data receiving device
CN110912690A (en) Data encryption and decryption method, vehicle and storage medium
CN111835774B (en) Data processing method, device, equipment and storage medium
CN109688098B (en) Method, device and equipment for secure communication of data and computer readable storage medium
WO2022022009A1 (en) Message processing method and apparatus, device, and storage medium
CN103118022B (en) A kind of without password heterodoxy Sign-On authentication method
CN111131278A (en) Data processing method and device, computer storage medium and electronic equipment
CN113872770A (en) Security verification method, system, electronic device and storage medium
CN113225351A (en) Request processing method and device, storage medium and electronic equipment
CN111600948B (en) Cloud platform application and data security processing method, system, storage medium and program based on identification password
CN108289074A (en) User account login method and device
CN111756698B (en) Message transmission method, device, equipment and computer readable storage medium
CN112749182B (en) Method for accessing Oracle database by proxy, audit terminal, device and computer readable storage medium
CN114785527B (en) Data transmission method, device, equipment and storage medium
CN116599719A (en) User login authentication method, device, equipment and storage medium
CN116244750A (en) Secret-related information maintenance method, device, equipment and storage medium
WO2011030352A2 (en) System and method for mobile phone resident digital signing and encryption/decryption of sms
CN112637169B (en) Passive NFC cloud lock encryption method
CN114117404A (en) User authentication method, device, equipment, system and storage medium
CN113992734A (en) Session connection method, device and equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant