CN1980129B - Authority identifying method and system - Google Patents
Authority identifying method and system Download PDFInfo
- Publication number
- CN1980129B CN1980129B CN2005101275356A CN200510127535A CN1980129B CN 1980129 B CN1980129 B CN 1980129B CN 2005101275356 A CN2005101275356 A CN 2005101275356A CN 200510127535 A CN200510127535 A CN 200510127535A CN 1980129 B CN1980129 B CN 1980129B
- Authority
- CN
- China
- Prior art keywords
- broadband
- added service
- platform
- service
- broadband value
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The method includes steps: user terminal sends verification request of broadband value added service to platform of broadband value added service; based on the request, the platform obtains corresponding telephone number, and obtains order form number from server of service provider; before consumer service, system authorizes voice call recording of user terminal based on order form number and telephone number corresponding to request of broadband value added service. The invention also provides an authorization system. Through dual authentication of broadband account and voice phone, the invention raises security of consumption by using broadband account.
Description
Technical field
The present invention relates to a kind of authentication techniques, relate in particular to a kind of method for authenticating and system.
Background technology
At present, each bandwidth operator develops broad band value-added service in succession and consumes platform, and the user can sign in to the service of oneself need selecting on the consumption platform and consume with broadband account number and password, and the consumption platform is remembered correlative charges on the bill of user's broadband.
In the prior art, there are two kinds of authentication modes, the one, non-binding mode, the 2nd, binding mode.For the unbundling mode, the user needs to check whether the broadband account number conforms to password during each consumption service.For binding mode, the user only when consuming the service of certain SP (service provider) for the first time, just needs login broadband account number and password, and broadband account number and password are carried out authentication, confirms the binding of broadband account number and service account numbers then; The user consumed in the second time of same SP, just needn't carry out authentication to this user's consumption again, can be directly directly initiates the request of deducting fees by the backstage communication to operator by SP, and provided its selected service for this user.
In above-mentioned prior art, there is the broadband account embezzlement situation of a lot of forms.
As what use under a lot of situations is clocklike broadband account number and password, as: the account number name all adds phone number---sz86013388 with the city abbreviation, and password is given tacit consent to 123456.Steal-number person can clocklike broadband account number, password login broadband value-added service platform 12 be consumed with these.In order to address this problem, just operator is restricted to the consumption of broadband value-added service platform 12 must can consume on the IP that this broadband account number is being used.So appropriator is simply put through broadband inserting service with these account number ciphers again, consumes again.
So many operators strengthen restriction again, the broadband account number is limited on the physical circuit in the user family just can put through broadband inserting service, perhaps must verify the various information of logining on the broadband when consumption.But the steal-number means emerge in an endless stream, suffered wooden horse as user's computer after, still be easy to produce the situation of steal-number.
Summary of the invention
Target of the present invention provides a kind of method for authenticating and system, can prevent the stolen situation of broadband account number consumption.
The invention discloses a kind of method for authenticating, comprising:
A, user terminal 11 send broadband value-added service checking request to broadband value-added service platform 12; B, broadband value-added service platform 12 obtain its corresponding telephone number according to broadband value-added service checking request, and obtain order number by service provider server 13; C, system obtains according to broadband value-added service platform (12) before consumption service order number and the pairing telephone number of broadband value-added service checking request carry out authentication to the voice message phone record of user terminal 11; Described voice message phone record comprises that the user specifies the calling telephone number that uses when dialing voice message phone and the order number of input according to system.
The value-added service checking request of described broadband comprises broadband account number and password.
Described step B also comprises: whether broadband value-added service platform 12 checking broadband account numbers conform to password, if conform to, then allow user terminal 11 further to select service, otherwise, carry out fault processing.
Described step C further comprises:
C1, notifications user terminal 11 use designated telephone to dial voice message phone and import order number;
C2, user terminal 11 send order number by dialing voice message phone to audio signal platform 15, and audio signal platform 15 record order numbers and calling telephone number are to form the audio communication record;
C3, system carry out authentication according to the telephone number and the order number of audio communication record and 12 acquisitions of broadband value-added service platform.
Described step C3 further comprises: the order number that system obtains according to broadband value-added service platform 12 is searched the order number of audio signal platform 15 records, if do not find, failed authentication then, if find, whether the telephone number that then continues 12 acquisitions of contrast broadband value-added service platform conforms to the calling telephone number of information service center record, conforms to, and then authentication is passed through, if do not conform to, failed authentication then.
The frequency of audio communication checking is decided according to security policies.
Before execution in step A, also carry out:
Broadband value-added service platform 12 informing user terminals 11 input broadband value-added service identifying codes.
The invention also discloses a kind of right discriminating system, described system comprises:
Broadband value-added service platform 12 is used to receive the broadband value-added service checking request of user terminal 11 and the order number of service provider server 13, and obtains the telephone number corresponding with it according to broadband value-added service checking request;
Authenticating unit 14, it links to each other with broadband value-added service platform 12 with audio signal platform 15, be used for carrying out authentication according to audio communication record and broadband service record, and informing user terminal 11 is dialed voice message phone and input order number.
Described authenticating unit 14 is arranged in the broadband value-added service platform 12, or is arranged in the service provider server 13, or exists as independent parts.
Therefore, according to the present invention,, improved the fail safe that utilizes the broadband account number to consume through the double verification of broadband account number and voice message phone.
Description of drawings
Fig. 1 shows the system of voice message phone authentication of the present invention;
Fig. 2 shows the flow chart of voice message phone authentication of the present invention.
Embodiment
Understand and realization the present invention the existing embodiments of the invention of describing in conjunction with the accompanying drawings for the ease of persons skilled in the art.
Because most ADSL (ADSL (Asymmetric Digital Subscriber Line)) broadband account number is all by a telephone wire virtual dial-up online, so the broadband account number all needs a corresponding telephone number when opening.The mode that this programme adopts broadband account number checking to combine with the voice message phone checking is to guarantee the safety of broadband account number, not stolen consumption.
As shown in Figure 1, the invention provides a kind of right discriminating system, described system comprises: user terminal 11, be used for sending broadband value-added service checking request to broadband value-added service platform 12, and dial voice message phone and send order number to audio signal platform 15; Broadband value-added service platform 12 is used to receive the broadband value-added service checking request of user terminal 11 and the order number of service provider server 13, and obtains the telephone number corresponding with it according to broadband value-added service checking request; Service provider server 13 is used to produce Service Order, and Service Order is issued broadband value-added service platform 12, and described Service Order comprises order number; Audio signal platform 15 is used to receive the audio communication record of user terminal 11, and described audio communication record comprises calling telephone number and order number; Authenticating unit 14, it links to each other with broadband value-added service platform 12 with audio signal platform 15, be used for carrying out authentication according to audio communication record and broadband service record, and informing user terminal 11 is dialed voice message phone and input order number.Described authenticating unit 14 can be arranged in the broadband value-added service platform 12, or is arranged in the service provider server 13, or exists as independent parts.
As shown in Figure 2, the present invention also provides a kind of method for authenticating, and its basic thought is: in the consumption service flow process, add voice message phone checking link.This link can be realized by SP, also can be realized by the broadband value-added service platform 12 of operator.Describe the method for authenticating of voice message phone checking of the present invention in detail below by reference Fig. 1.
Authentication is carried out in step 2,12 pairs of broadbands of broadband value-added service platform value-added service checking request, verify promptly whether the broadband account number conforms to the broadband password, if conform to, then execution in step 3, otherwise, execution in step 7: error handling processing can send the prompting of " broadband account number or password mistake " to user terminal 11, or directly refusal provides service for this user terminal 11.
Step 4, any link before consumption, authenticating unit 14 reminding subscriber terminals 11 usefulness designated telephones (the corresponding telephone number of broadband account number) are dialled certain voice message phone number, pass through sound then by voice message phone input order number.
The wideband data storehouse
| The broadband account number | Corresponding phone | Service account numbers | Order number |
| sz136050? | 075581234567? | 10001? | 123001? |
| gzDSL42356? | 02087654321? | 12456? | 123002? |
| 132454343? | 01088881234? | 89723? | 123003? |
| AD234656? | 02189027897? | 45672? | 123004? |
The audio communication database
| Telephone number | Order number |
| 075581234567? | 123001? |
| 02088884321? | 123002? |
| 02189027897? | 123004? |
[0049]As can be seen from the above table: in the wideband data storehouse, the access phone of broadband account number sz136050 correspondence is 075581234567, order number is 123001, in the audio communication database, order number is that 123001 telephone number is 075581234567, the access telephone number that this telephone number and wide reel number sz136050 are corresponding is identical, therefore, account number sz136050 in broadband can carry out this consumption.
In the wideband data storehouse, the access phone of broadband account number gzDSL42356 correspondence is 02087654321, order number is 123002, in the audio communication database, order number is that 123002 telephone number is 02088884321, therefore, because the telephone number of its broadband account number correspondence is different with the telephone number in the audio communication database, broadband account number gzDSL42356 cannot carry out this consumption.
In the wideband data storehouse, the access phone of broadband account number 132454343 correspondences is 01088881234, order number is 123003, and in the audio communication database, not having order number is 123003 record, and therefore, broadband account number 132454343 cannot be carried out this consumption.
In the wideband data storehouse, the access phone of broadband account number AD234656 correspondence is 02189027897, order number is 123004, in the audio communication database, order number is that 123004 telephone number is 02189027897, the access phone that this telephone number and wide reel number sz136050 are corresponding is identical, therefore, account number AD234656 in broadband can carry out this consumption.
According to the present invention, the frequency of audio communication checking is decided on different security requirements.
For the lower broadband user of security requirement, require the voice message phone checking when can the broadband account number consuming for the first time, later any consumption of this broadband account number is not verified; This is because the steal-number phenomenon often occurs in the custom that the householder of broadband account number does not use the broadband account number to rise in value and consume; if the householder just has the custom of broadband increment consumption at ordinary times; may relatively pay attention to the protection of account number; less stolen situation can appear like this; therefore; from reducing the angle consideration that the user uses threshold; also can be that the broadband account number is when consuming for the first time; just require the audio communication checking; through thinking after the checking that the user is the old user that can protect own account number; therefore, this user can consume arbitrarily, no longer every all audio communication checking of demand of the consumption of back.
For the medium broadband user of security requirement, also can be that the voice message phone checking is once when the account number of certain SP is consumed for the first time for the broadband account number, later the consumption of same account number is not verified, this is because when broadband account number A1 gives service account numbers B1 consumption for the first time, verify its fail safe by voice message phone, so when broadband account number A1 gives service account numbers B1 consumption once more, can think safely, there is no need to verify again; But band account number account number A1 give service account numbers B2 consumption, thinks that then this transaction security is not through checking;
For the higher broadband user of security requirement, also can be that each consumption all requires the voice message phone checking, to guarantee the fail safe of every consumption.
According to the present invention,, improved the fail safe that utilizes the broadband account number to consume through the double verification of broadband account number and voice message phone.
Though described the present invention by embodiment, those of ordinary skills know, without departing from the spirit and substance in the present invention, just can make the present invention that many distortion and variation are arranged, and scope of the present invention is limited to the appended claims.
Claims (9)
1. a method for authenticating is characterized in that, comprising:
A, user terminal (11) send broadband value-added service checking request to broadband value-added service platform (12);
B, broadband value-added service platform (12) obtain its corresponding telephone number according to broadband value-added service checking request, and obtain order number by service provider server (13);
C, system obtains according to broadband value-added service platform (12) before consumption service order number and the pairing telephone number of broadband value-added service checking request carry out authentication to the voice message phone record of user terminal (11); Described voice message phone record comprises that the user specifies the calling telephone number that uses when dialing voice message phone and the order number of input according to system.
2. method for authenticating according to claim 1 is characterized in that, described broadband value-added service checking request comprises broadband account number and password.
3. method for authenticating according to claim 2 is characterized in that, described step B also comprises: whether broadband value-added service platform (12) checking broadband account number conforms to password, if conform to, then allow user terminal (11) further to select service, otherwise, carry out fault processing.
4. method for authenticating according to claim 1 is characterized in that, described step C further comprises:
C1, notifications user terminal (11) use designated telephone to dial voice message phone and import order number;
C2, user terminal (11) send order number by dialing voice message phone to audio signal platform (15), and audio signal platform (15) record order number and calling telephone number are to form the audio communication record;
C3, system carry out authentication according to the telephone number and the order number of audio communication record and broadband value-added service platform (12) acquisition.
5. method for authenticating according to claim 4, it is characterized in that, described step C3 further comprises: the order number that system obtains according to broadband value-added service platform (12) is searched the order number of audio signal platform (15) record, if do not find, and failed authentication then, if find, whether the telephone number that then continues contrast broadband value-added service platform (12) acquisition conforms to the calling telephone number of audio signal platform record, if conform to, then authentication is passed through, if do not conform to, failed authentication then.
6. method for authenticating according to claim 1 is characterized in that, the frequency of audio communication checking is decided according to security policies.
7. method for authenticating according to claim 1 is characterized in that, also carries out before execution in step A:
User terminal (11) is selected service item by service provider server (13);
Service provider server (13) sends Service Order to broadband value-added service platform (12), and described Service Order comprises order number;
Broadband value-added service platform (12) informing user terminal (11) input broadband value-added service identifying code.
8. a right discriminating system is characterized in that, described system comprises:
User terminal (11) is used for sending broadband value-added service checking request to broadband value-added service platform (12), dials voice message phone and sends order number to audio signal platform (15);
Broadband value-added service platform (12) is used to receive the broadband value-added service checking request of user terminal (11) and the order number of service provider server (13), and obtains the telephone number corresponding with it according to broadband value-added service checking request;
Service provider server (13) is used to produce Service Order, and Service Order is issued broadband value-added service platform (12), and described Service Order comprises order number;
Audio signal platform (15) is used to receive the audio communication record of user terminal (11), and described audio communication record comprises calling telephone number and order number;
Authenticating unit (14), it links to each other with broadband value-added service platform (12) with audio signal platform (15), be used for carrying out authentication according to audio communication record and broadband service record, and informing user terminal (11) is dialed voice message phone and input order number.
9. right discriminating system according to claim 8 is characterized in that, described authenticating unit (14) is arranged in the broadband value-added service platform (12), or is arranged in the service provider server (13), or exists as independent parts.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2005101275356A CN1980129B (en) | 2005-12-05 | 2005-12-05 | Authority identifying method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2005101275356A CN1980129B (en) | 2005-12-05 | 2005-12-05 | Authority identifying method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1980129A CN1980129A (en) | 2007-06-13 |
| CN1980129B true CN1980129B (en) | 2011-02-16 |
Family
ID=38131152
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2005101275356A Active CN1980129B (en) | 2005-12-05 | 2005-12-05 | Authority identifying method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1980129B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP0205095A2 (en) * | 1985-06-07 | 1986-12-17 | Siemens Aktiengesellschaft | Method and arrangement for protecting the access to a computer |
| CN1303067A (en) * | 2001-02-23 | 2001-07-11 | 北京北大天正科技发展有限公司 | Transaction method based on Internet |
| CN1591503A (en) * | 2003-08-28 | 2005-03-09 | 黄金富 | Payment acknowledging safety method for network buying, speculation on stocks, etc. by dynamic cipher and cell phone |
-
2005
- 2005-12-05 CN CN2005101275356A patent/CN1980129B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP0205095A2 (en) * | 1985-06-07 | 1986-12-17 | Siemens Aktiengesellschaft | Method and arrangement for protecting the access to a computer |
| CN1303067A (en) * | 2001-02-23 | 2001-07-11 | 北京北大天正科技发展有限公司 | Transaction method based on Internet |
| CN1591503A (en) * | 2003-08-28 | 2005-03-09 | 黄金富 | Payment acknowledging safety method for network buying, speculation on stocks, etc. by dynamic cipher and cell phone |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1980129A (en) | 2007-06-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8050394B2 (en) | System and method for control of communications connections and notifications | |
| US9210573B2 (en) | Method and apparatus for registering a computing device with a service provider | |
| CA2739187A1 (en) | Systems and methods of initiating a call | |
| JP2009515403A (en) | Remote activation of user accounts in telecommunications networks | |
| US20090227226A1 (en) | Enhanced manageability in wireless data communication systems | |
| WO2009010944A2 (en) | On-demand authentication of call session party information during a telephone call | |
| CN101808094A (en) | Identity authentication system and method | |
| RU2439702C2 (en) | Method to execute transaction between two servers with pre-check of validity by means of two mobile telephones | |
| CN104283851A (en) | Illegal automatic call shielding method and system and voice authentication equipment | |
| MX2013002194A (en) | Network calling privacy with recording. | |
| CN102149079A (en) | Method, device and system for obtaining user identity identifier | |
| CN101771684A (en) | Internet compuphone authentication method and service system thereof | |
| US10299121B2 (en) | System and method for providing differential service scheme | |
| CN1980129B (en) | Authority identifying method and system | |
| CN102870375B (en) | The method of failure diagnosis and device | |
| CN100433934C (en) | Access method for mobile communication apparatus | |
| CN100576868C (en) | A kind of networking telephone using system and method thereof that the portable telephone number is provided | |
| KR101331575B1 (en) | Method and system blocking for detour hacking of telephone certification | |
| US7876887B2 (en) | Selectively adding a third party to a collect call | |
| US11425241B2 (en) | Call origination validation for incoming calls within a wireless communication network | |
| CN109995728A (en) | Method for secret protection, device, equipment and storage medium based on location-based service | |
| Behan et al. | Prepaid voice services based on openbts platform | |
| CN105939357A (en) | Method and device for obtaining corresponding relation of user IP (Internet Protocol) address and user group information | |
| KR101587418B1 (en) | Calling number tamper-proof based call blocking control device and method | |
| CN114040384A (en) | Method for protecting real number privacy of two parties through intermediate number |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |