CN103427999A - User authentication method and system - Google Patents
User authentication method and system Download PDFInfo
- Publication number
- CN103427999A CN103427999A CN201310371303XA CN201310371303A CN103427999A CN 103427999 A CN103427999 A CN 103427999A CN 201310371303X A CN201310371303X A CN 201310371303XA CN 201310371303 A CN201310371303 A CN 201310371303A CN 103427999 A CN103427999 A CN 103427999A
- Authority
- CN
- China
- Prior art keywords
- mobile terminal
- user
- information
- checking request
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a user authentication method. The user authentication method comprises the steps of obtaining mobile terminal information of a user according to identity information of the user, sending a verification request to a mobile terminal of the user according to the mobile terminal information, and performing authentication according to response information of the verification request. Accordingly, the problems of the safety and the usability existing in the using process of an existing authentication technology are solved, and the safety and the usability of the authentication are improved greatly.
Description
Technical field
The present invention relates to user identity identification and checking field, relate in particular to user ID authentication method and system.
Background technology
The authenticating user identification technology is an important technology in network, computer safety field.The user, before entering application system, need to carry out subscriber authentication, thus the fail safe that has improved computer system.Authenticating user identification technology commonly used comprises: static password, dynamic password, digital certificate, hardware token, the technology such as biological characteristic, substantially can be divided into static authentication and dynamic authentication mode, for static authentication mode, the user holds static password or static hardware token, when needs are verified, system is verified static password or static hardware token, this mode is comparatively simple when implementing, but due to static password or the static hardware token relatively fixing, therefore, once user or holder are by its loss or copied by other people, decode, bring serious harm will to the fail safe of system.With respect to static verification process, in the dynamic authentication mode, dynamic password is Real-time Obtaining, so fail safe is will more static authentication mode high, and dynamic password generates by local system simultaneously, and the special-purpose system of the generation of dynamic password needs realizes.Therefore, after dynamic password is lost or stolen, the harm of the fail safe of system is appointed so very large, and simultaneously, the user needs to carry special-purpose password generation system in use just can obtain dynamic password.
Hence one can see that, no matter be static authentication or dynamic authentication process, password or the sign that all will depend on the user authenticate, in the situation that password or sign are lost or usurp, the fail safe of system all will be on the hazard, thereby can't guarantee user's account safety, can't play the requirement of authenticating user identification, reduce fail safe, reliability and the stability of system.
Summary of the invention
The invention provides a kind of method of authentication, in order to solve existing identity identifying technology in use existing fail safe and ease of use issues.
Based on above technical problem, the invention provides user ID authentication method, the method comprises: the information of mobile terminal that obtains this user according to user's identification information; According to described information of mobile terminal, described user's mobile terminal is sent to the checking request; Carry out subscriber authentication according to the response message of described checking request.
In some embodiments, the step that the described identification information according to the user is obtained this user's information of mobile terminal comprises: the application system server receives user's identification information; The application system server judges whether described identification information is to verify, if, according to described identification information, to certificate server, initiate authentication request, if not, again receive user's identification information; Certificate server obtains user's information of mobile terminal according to described authentication request.
In some embodiments, the described step of described user's mobile terminal being sent to the checking request according to described information of mobile terminal comprises: from described information of mobile terminal, extract mobile terminal style; Receiving party's formula of supporting according to described information of mobile terminal and described mobile terminal style, send the checking request to described mobile terminal.
In some embodiments, described receiving party's formula of supporting according to described information of mobile terminal and described mobile terminal style, the step of described mobile terminal being sent to checking request comprises: if described mobile terminal style is intelligent mobile terminal, from described information of mobile terminal, extract intelligent mobile terminal the first transmission information and or the second transmission information; According to described the first transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the first checking request; With or according to described the second transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the second checking request.
In some embodiments, the step that the described response message according to the checking request carries out subscriber authentication comprises: in setting-up time, whether the response message that judges described checking request is received, if receive, according to the response message of checking request, carries out subscriber authentication; If do not receive, again described mobile terminal is sent to the checking request.
In some embodiments, the step that the described response message according to the checking request carries out subscriber authentication comprises: in setting-up time, whether the response message that judges described the first checking request is received, if receive, according to the response message of the first checking request, carries out subscriber authentication; If do not receive, described mobile terminal is sent to the second checking request.
In some embodiments, the described step of again described mobile terminal being sent to checking request comprises: if the number of times that again described mobile terminal is sent to the checking request surpasses set point, according to emergency answering information, carry out subscriber authentication.
Simultaneously, the present invention also provides a kind of subscriber identity authentication system, comprising:
User's end for process is configured to, and sends user's identification information to authentication module;
Customer mobile terminal is configured to, and the checking request that authentication module is sent is made and being replied;
Authentication module is configured to, and according to the user's who receives from described user's end for process identification information, obtains user's information of mobile terminal; According to described information of mobile terminal, described customer mobile terminal is sent to the checking request; Carry out subscriber authentication according to the response message of described checking request.
In some embodiments, described authentication module also is configured to, and receives user's identification information; Judge whether described identification information is to verify, if, according to described identification information, obtain user's information of mobile terminal, if not, again receive user's identification information.
In some embodiments, described authentication module also is configured to: from described information of mobile terminal, extract mobile terminal style; Receiving party's formula of supporting according to described information of mobile terminal and described mobile terminal style, send the checking request to described mobile terminal.
In some embodiments, described authentication module also is configured to, if described mobile terminal style is intelligent mobile terminal, from described information of mobile terminal, extract intelligent mobile terminal the first transmission information and or the second transmission information; According to described the first transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the first checking request; With or, according to described the second transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the second checking request.
In some embodiments, described authentication module also is configured to, and in setting-up time, judges whether the response message of described checking request is received, if receive, according to the response message of checking request, carries out subscriber authentication; If do not receive, again described mobile terminal is sent to the checking request.
In some embodiments, described authentication module also is configured to, and in setting-up time, judges whether the response message of described the first checking request is received, if receive, according to the response message of the first checking request, carries out subscriber authentication; If do not receive, described mobile terminal is sent to the second checking request.
In some embodiments, described authentication module also is configured to, if the number of times that again described mobile terminal is sent to the checking request carries out subscriber authentication according to emergency answering information over set point
Compared with prior art technical scheme of the present invention has the following advantages: user ID authentication method provided by the invention and system, the response message by user's mobile intelligent terminal to the checking request, realize the authentication to user identity.Due to authentication, for dynamic verification process, so the method can effectively guarantee real-time and the reliability of authentication, and the method can also be combined with existing identity identifying technology.Thereby can greatly promote fail safe and the ease for use of authentication.
The accompanying drawing explanation
Fig. 1 is that the system that realizes user ID authentication method in one embodiment of the present invention forms schematic diagram;
The step schematic diagram that Fig. 2 is user ID authentication method in one embodiment of the present invention;
Fig. 3 is the step schematic diagram of in one embodiment of the present invention, User Identity information being identified;
Fig. 4 is the step schematic diagram in one embodiment of the present invention, user type identified;
The composition schematic diagram that Fig. 5 is subscriber identity authentication system in one embodiment of the present invention.
Embodiment
Below in conjunction with accompanying drawing, invention is described in further detail.
The system illustrated in Fig. 1 as realizing user ID authentication method in one embodiment of the present invention forms schematic diagram.This system comprises: user side 10, application system server 11, authentication server 12.
User side 10 comprises user's processing platform 101 and customer mobile terminal 102.As: same user has the above treatment facility of two classes simultaneously, one class is the desktop computer (being equivalent to user's processing platform 101) that the user is processed at ordinary times, the smart mobile phone that the another kind of user of being carries or panel computer (being equivalent to customer mobile terminal 102).The user, by user's processing platform 101, can realize login and access to application system or program in application system server 11, thereby has realized the use of user to application system or program in application system server 11.In one embodiment, configuration " subscriber authentication " application program on customer mobile terminal 102.This application program comprises: user register unit and the large functional module of user authentication unit two, the Main Function of its user register unit is: the user can pass through this module, input user's identification information and accounts information (input mode of user profile can adopt various ways, as adopted the input mode of " user interface " input mode and " Quick Response Code scanning ")." user profile " the afterwards user inputted, be registered in authentication server 12.The Main Function of its user authentication unit is: after receiving and sending " user identification confirmation request " from authentication server 12, " user identification confirmation request " shown on the display screen of customer mobile terminal 102.In user to user mobile terminal 102 " user identification confirmation request " carry out " confirmation " (or " cancellation ").This " subscriber authentication " application program, by user " confirmation " (or " cancellation ") information, returns to authentication server 12.
Load the user basic information of one or more " application system and programs " the user side 10 that prestores in application system server 11.User basic information comprises: the user basic information such as user name, password.When the user by user's processing platform 101 wishs to application system server 11 in " application system and program " while conducting interviews, application system server 11 is according to the result of the subscriber authentication information that user's processing platform 101 is inputted, authentication server 12 is initiated to " subscriber authentication request " (as: when current the inputted subscriber authentication information of user, while conforming to the user profile prestored in application system server 11, authentication server 12 is initiated to " subscriber authentication request "; When current the inputted subscriber authentication information of user, while not conforming to the user profile prestored in application system server 11, authentication server 12 is not initiated to " subscriber authentication request ").
The step of user ID authentication method in one embodiment of the present invention has been shown in Fig. 2.The system that realizes user ID authentication method in one embodiment of the present invention in conjunction with Fig. 1 forms schematic diagram, and in one embodiment of the present invention, the step of user ID authentication method comprises:
Step S101: the active user is logined application system server 11 by subscriber's local PC processor (being user's processing platform 101).Application system server 11 to subscriber's local PC processor, is showed " user's login interface ", is comprised at this interface: the User Identity information such as user name, password, and show on subscriber's local PC processor.The user inputs the User Identity information such as user name, password by subscriber's local PC processor.The information such as the user name that application system server 11 provides the active user, password are contrasted with the local user record that prestores, if the information such as the user name of active user's input, password conform to the local user record prestored, forward step S102 to, if the user record prestored with this locality does not conform to, to user report " user name or password mistake ", also " report user name and password mistake ".
When reality is implemented, between subscriber's local PC processor and application system server 11, can adopt communication due to the present invention, as wired or wireless mode, therefore, be the error of transmission of the User Identity information avoiding causing because of communication failure.Thereby, in another embodiment of the present invention, as shown in Figure 3, at step S101, having comprised the validity recognition methods own to " User Identity information ", concrete steps comprise:
Step S1011: application system server 11 receives identification information from subscriber's local PC processor, and this information comprises: the information such as login IP, time-out time, Session ID.
Step S1012: the login IP address in 11 pairs of identification information of application system server (or time-out time, Session ID) judged, if login IP address is in local list, forward step S1014 to, if login IP address forwards step S1013 to not in local list.
Step S1013: abnormal for login IP address (or " Session ID "), application system server 11 pushes to subscriber's local PC processor, the information of " not in the login of conventional place "; Abnormal for time-out time, application system server 11 is not to subscriber's local PC processor pushed information.Afterwards, jump to step S1011.For accelerating recognition speed, for " time-out time is abnormal ", can set to the number of times of step S1011 redirect, after surpassing the number of hops of setting, forward step S1015 to.After surpassing the number of hops of setting, directly jump to step S1014 for " login IP address (or " Session ID ") is abnormal ".
Step S1014: judge whether current " user name, password " conforms to the local user record prestored, if conform to, jump procedure S102, if do not conform to jump procedure S1015.It should be noted that, when logining IP address (or " Session ID "), the user passed through " user name, password " checking when abnormal, and the follow-up checking of simultaneously passing through user's smart mobile phone end, current IP address (or " Session ID ") write in application system server 11, as supplementing user profile.
Step S1015: to user report " user name or password mistake ".Refusal active user's authentication request.
Step S102: application system server 11 is according to confirmed in step S101 " user ID and User IP ", Information generation " subscriber authentication request " (comprising in " subscriber authentication request ": can carry out to the user unique information of identify label).It should be noted that, in above-mentioned " user ID ", be consistent in application system server 11 and authentication server 12, shows it is same user, and User IP is the IP address of user while logining.Application system server 11 sends to authentication server 12 by above-mentioned " subscriber authentication request ".
Step S103: authentication server 12 is after receiving and coming from " the subscriber authentication request " that application system server 11 sends, therefrom extract " user ID " (this user ID can be that user name, Customs Assigned Number etc. can carry out uniquely identified information to user identity), and according to " user ID " (or other user totem informations) " obtain " call information of customer mobile terminal 102 or identification information " at local search; should " call information of intelligent terminal " be the call information of customer mobile terminal 102, as user's phone number; " identification information " is for making a call with user's intelligent terminal or the information of radio contact.
Step S104: authentication server 12 is according to the call information obtained in step S103, as the user account information of user's intelligent terminal call number and user registration, to user's smart mobile phone (being customer mobile terminal 102), push " user identification confirmation request " or send " user identification confirmation identifying code note " to user's intelligent terminal.
Step S105: customer mobile terminal 102, by " application program " of the processing " subscriber authentication request " of prepackage, is opened " subscriber authentication request ", and is shown on " user interface " of smart mobile phone.The information content shown is as: current " the login IP address " of " you are logining * * program; whether confirm login, confirm, cancel " and user's processing platform 101 or " subscriber authentication request " note of receiving is carried out to the reply of "Yes" or "No".As now, the user is normal operating state, and current " logging request " is that " active user " in step S101 sends, and now the user is by " confirmation " this logging request, and this " confirmation " is reported in authentication server 12, forward afterwards step S106 to.If the user is the abnormal operation state, current " logging request " is not that " active user " in step S101 sends, and the user can, by selecting " cancellation ", be interrupted this register, this " cancellation " is reported in authentication server 12, forwards afterwards step S107 to.
Due to the inventive method in implementation process, customer mobile terminal 102 can adopt polytype intelligent mobile terminal to realize, as panel computer, smart mobile phone etc. can carry out the Wireless Telecom Equipment of wireless network access, simultaneously, each intelligent mobile terminal can be selected again multiple " user terminal information ".Therefore, in a kind of execution mode of the inventive method, as shown in Figure 4, authentication server 12 can push " user identification confirmation request " to customer mobile terminal 102 according to the type of customer mobile terminal 102, and step comprises:
Step S1051: the type that authentication server 12 sends " customer mobile terminal 102 " to customer mobile terminal 102 reports " request ".
Step S1052: customer mobile terminal 102 is after the type that receives authentication server 12 reports " request ", return to " user type sign " to authentication server 12, should " user type sign " can, by " subscriber authentication " application program when authentication server 12 carries out the accounts information registration, identify.As, what the user was current adopted is the intelligent terminal mobile phone, when this user registers self information to authentication server 12, user's definable " user type sign " is " intelligent mobile " terminal, as shown in table 1:
Table 1
Step S1053: authentication server 12 is according to " user type sign " question blank 1, obtain and " user type sign " corresponding " dissimilar mobile terminal sends information ", as: call number, user's login account, and with above-mentioned " mobile terminal transmission information " corresponding " information pushing mode ", and carry out propelling movement or the transmission of " subscriber authentication request " to the active user according to " information pushing mode " and " the mobile terminal transmission information " corresponding with it.
As can be known from Table 1, a kind of " user type sign " usually can corresponding polytype " information pushing mode ", and as " intelligent terminal ", corresponding " information pushing mode " comprises note, PUSH message mode.To " information pushing mode ", while being extracted, for guaranteeing accurately sending to of " subscriber authentication request ", therefore can from multiple " information pushing mode ", choose multiple.As, when the movement that the active user uses is " iPhone terminal ", can, from " note or PUSH message " two kinds of propelling movement modes, select " note, PUSH message " propelling movement mode.Thereby, in step S1053, authentication server 12 can carry out by multiple " propelling movement mode " propelling movement of " user identification confirmation request ".
Step S106: authentication server 12 is after receiving user's " confirmation " information to " user identification confirmation request ", return to " by checking " information to application system server 11, application system server 11 is after receiving this " by checking " information, logging request by active user in step S101 to application system server 11, the active user enters in the application system of application system server 11.
For reducing between authentication server 12 and customer mobile terminal 102 because of error of transmission, the impact that " checking " information is brought.Therefore in setting-up time, if authentication server 12 is not received " checking " information from customer mobile terminal 102, again customer mobile terminal 102 is sent to the checking request.Should " checking request " can be " checking " request that in table 1, any " information pushing or send mode " sends.Thereby reduced the impact that error of transmission brings to " checking " process.
Consider that the user may only carry a kind of in above-mentioned customer mobile terminal 102, as: the user has " intelligent mobile terminal and iPad terminal " simultaneously, the user, when carrying out the user profile registration, has registered " intelligent mobile terminal and iPad terminal " to authentication server 12 simultaneously.When current of user uses the iPad terminal, if authentication server 12 sends message, the situation that will certainly cause the user to be registered according to " information of mobile terminal " of intelligent mobile terminal.For addressing this problem, in one embodiment of the invention, a kind of mode in adopting " information pushing mode " is through repeatedly (set point), and the another kind of mode also do not received in " during the replying of checking request, by the information pushing mode " pushes " user identification confirmation request ".As above in example, when authentication server 12, to user's Android intelligent terminal, send repeatedly after " user identification confirmation request " be and receive and reply, " iPad terminal " by this user carries out the transmission of " user identification confirmation request " at this, thereby guaranteed the accurate propelling movement of " user identification confirmation request ".
Use for the user that is more convenient for, the intelligent terminal mobile device of considering the user does not temporarily carry, or the situation of losing suddenly, in one embodiment of the invention, when whether replying in situation about not receiving all the time of above-mentioned " user identification confirmation request " (no matter adopt pushes or send mode), can provide once to the active user " emergency answering information ", thereby realize current subscriber authentication.It should be noted that, above-mentioned " emergency answering information " can be same mode with the cipher mode of client password, needs the user to confirm when setting up user profile.For guaranteeing the fail safe of system, therefore the access times of " emergency answering information ", should be restricted.
Step S107: authentication server 12, after receiving user's " cancellation " information to " user identification confirmation request ", return to " stoping checking " information to application system server 11, application system server 11, after receiving this " prevention checking " information, stops the logging request of active user to application system server 11 in step S101.
A kind of subscriber identity authentication system also is provided in one embodiment of the invention, as shown in Figure 5, has comprised:
User's end for process 201 is configured to, and sends user's identification information to authentication module;
Customer mobile terminal 202 is configured to, and the checking request that authentication module is sent is made and being replied;
Wherein, authentication module 203 also is configured to, and receives user's identification information; Judge whether identification information is to verify, if, according to identification information, obtain user's information of mobile terminal, if not, again receive user's identification information.
Wherein, authentication module 203 also is configured to: extract mobile terminal style from information of mobile terminal; Receiving party's formula of supporting according to information of mobile terminal and mobile terminal style, send the checking request to mobile terminal.
Wherein, authentication module 203 also is configured to, if mobile terminal style is intelligent mobile terminal, from information of mobile terminal, extract intelligent mobile terminal the first transmission information and or the second transmission information; According to the first transmission information and transmission or propelling movement mode, intelligent mobile terminal is sent to the first checking request; With or, according to the second transmission information and transmission or propelling movement mode, intelligent mobile terminal is sent to the second checking request.
Wherein, authentication module 203 also is configured to, and in setting-up time, whether the response message of judgement checking request is received, if receive, according to the response message of checking request, carries out subscriber authentication; If do not receive, again mobile terminal is sent to the checking request.
Wherein, authentication module 203 also is configured to, and in setting-up time, judges whether the response message of the first checking request is received, if receive, according to the response message of the first checking request, carries out subscriber authentication; If do not receive, to mobile terminal, send the second checking request.
Wherein, authentication module 203 also is configured to, if the number of times that again mobile terminal is sent to the checking request carries out subscriber authentication according to emergency answering information over set point.
It should be noted that, authentication module 203 can realize by application server 2031 and certificate server 2032 two parts, and simultaneous verification module 203 also can be arranged on same server simultaneously and realize.
When authentication module 203 is realized by application server 2031 and certificate server 2032 two parts, application server 2031 is configured to, according to the user's who receives from user's processing platform identification information, to 2032 authentication request of certificate server.
Wherein, application server 2031 also is configured to, and receives user's identification information; Judge whether identification information is to identify, if, to 2032 authentication request of certificate server, if not, again receive user's identification information.
Wherein, certificate server 2032 also is configured to, and extracts mobile terminal style from information of mobile terminal; Receiving party's formula of supporting according to information of mobile terminal and mobile terminal style, send the checking request to customer mobile terminal.
Wherein, certificate server 2032 also is configured to, if mobile terminal style is intelligent mobile terminal, from information of mobile terminal, extract intelligent mobile terminal the first transmission information and or the second transmission information; According to the first transmission information and transmission or propelling movement mode, intelligent mobile terminal is sent to the first checking request; With or, according to the second transmission information and transmission or propelling movement mode, intelligent mobile terminal is sent to the second checking request.
Wherein, certificate server 2032 also is configured to, and in setting-up time, whether the response message of judgement checking request is received, if receive, according to the response message of checking request, carries out subscriber authentication; If do not receive, again customer mobile terminal is sent to the checking request.
Wherein, certificate server 2032 also is configured to, and in setting-up time, judges whether the response message of the first checking request is received, if receive, according to the response message of the first checking request, carries out subscriber authentication; If do not receive, to mobile terminal, send the second checking request.
Wherein, certificate server 2032 also is configured to, if the number of times that again mobile terminal is sent to the checking request carries out subscriber authentication according to emergency answering information over set point.
Above-described is only some embodiments of the present invention.For the person of ordinary skill of the art, without departing from the concept of the premise of the invention, can also make some distortion and improvement, these all belong to protection scope of the present invention.
Claims (14)
1. user ID authentication method, is characterized in that, comprising:
Obtain this user's information of mobile terminal according to user's identification information;
According to described information of mobile terminal, described user's mobile terminal is sent to the checking request;
Carry out subscriber authentication according to the response message of described checking request.
2. verification method as claimed in claim 1, is characterized in that, the step that the described identification information according to the user is obtained this user's information of mobile terminal comprises:
The application system server receives user's identification information;
The application system server judges whether described identification information is to verify, if, according to described identification information, to certificate server, initiate authentication request, if not, again receive user's identification information;
Certificate server obtains user's information of mobile terminal according to described authentication request.
3. verification method as claimed in claim 1 or 2, is characterized in that, the described step of described user's mobile terminal being sent to the checking request according to described information of mobile terminal comprises:
Extract mobile terminal style from described information of mobile terminal;
Receiving party's formula of supporting according to described information of mobile terminal and described mobile terminal style, send the checking request to described mobile terminal.
4. verification method as claimed in claim 3, is characterized in that, described receiving party's formula of supporting according to described information of mobile terminal and described mobile terminal style, and the step of described mobile terminal being sent to the checking request comprises:
If described mobile terminal style is intelligent mobile terminal, from described information of mobile terminal, extract intelligent mobile terminal the first transmission information and or the second transmission information;
According to described the first transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the first checking request; With or
According to described the second transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the second checking request.
5. verification method as claimed in claim 1, is characterized in that, the step that the described response message according to the checking request carries out subscriber authentication comprises:
In setting-up time, judge whether the response message of described checking request is received, if receive, according to the response message of checking request, carry out subscriber authentication; If do not receive, again described mobile terminal is sent to the checking request.
6. verification method as claimed in claim 4, is characterized in that, the step that the described response message according to the checking request carries out subscriber authentication comprises:
In setting-up time, judge whether the response message of described the first checking request is received, if receive, according to the response message of the first checking request, carry out subscriber authentication; If do not receive, described mobile terminal is sent to the second checking request.
7. verification method as claimed in claim 5, is characterized in that, the described step of again described mobile terminal being sent to checking request comprises:
If the number of times that again described mobile terminal is sent to the checking request, over set point, carries out subscriber authentication according to emergency answering information.
8. subscriber identity authentication system, is characterized in that, comprising:
User's end for process, be configured to authentication module transmission user's identification information;
Customer mobile terminal, the checking request that is configured to authentication module is sent is made and being replied;
Authentication module, be configured to the identification information according to the user who receives from described user's end for process, obtains user's information of mobile terminal; According to described information of mobile terminal, described customer mobile terminal is sent to the checking request; Carry out subscriber authentication according to the response message of described checking request.
9. verification system as claimed in claim 8, it is characterized in that, described authentication module also is configured to, receive user's identification information, judge whether described identification information is to verify, if according to described identification information, obtain user's information of mobile terminal, if not, again receive user's identification information.
10. verification system as described as claim 9 or 8, is characterized in that, described authentication module also is configured to: from described information of mobile terminal, extract mobile terminal style; Receiving party's formula of supporting according to described information of mobile terminal and described mobile terminal style, send the checking request to described mobile terminal.
11. verification system as claimed in claim 8, it is characterized in that, described authentication module also is configured to, if described mobile terminal style is intelligent mobile terminal, from described information of mobile terminal, extract intelligent mobile terminal the first transmission information and or the second transmission information; According to described the first transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the first checking request; With or, according to described the second transmission information and transmission or propelling movement mode, described intelligent mobile terminal is sent to the second checking request.
12. verification system as claimed in claim 8, is characterized in that, described authentication module also is configured to, and in setting-up time, judges whether the response message of described checking request is received, if receive, according to the response message of checking request, carries out subscriber authentication; If do not receive, again described mobile terminal is sent to the checking request.
13. verification system as claimed in claim 12, is characterized in that, described authentication module also is configured to, in setting-up time, whether the response message that judges described the first checking request is received, if receive, according to the response message of the first checking request, carries out subscriber authentication; If do not receive, described mobile terminal is sent to the second checking request.
14. verification system as claimed in claim 12, is characterized in that, described authentication module also is configured to, if the number of times that again described mobile terminal is sent to the checking request carries out subscriber authentication according to emergency answering information over set point.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310371303XA CN103427999A (en) | 2013-08-23 | 2013-08-23 | User authentication method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310371303XA CN103427999A (en) | 2013-08-23 | 2013-08-23 | User authentication method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103427999A true CN103427999A (en) | 2013-12-04 |
Family
ID=49652207
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310371303XA Pending CN103427999A (en) | 2013-08-23 | 2013-08-23 | User authentication method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103427999A (en) |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104113556A (en) * | 2014-07-31 | 2014-10-22 | 国家超级计算深圳中心(深圳云计算中心) | Network logon authentication method and system, mobile terminal and application server |
| CN104901925A (en) * | 2014-03-05 | 2015-09-09 | 中国移动通信集团北京有限公司 | End-user identity authentication method, device and system and terminal device |
| CN105050042A (en) * | 2015-06-25 | 2015-11-11 | 邱兰 | Intelligent mobile phone management method |
| CN105072603A (en) * | 2015-06-25 | 2015-11-18 | 邱兰 | Mobile terminal equipment management method |
| CN105915364A (en) * | 2015-12-08 | 2016-08-31 | 乐视网信息技术(北京)股份有限公司 | Method for preventing malicious sharing of user identity and device thereof |
| WO2017028173A1 (en) * | 2015-08-17 | 2017-02-23 | 张焰焰 | Method and mobile terminal for delivering information indication upon logging in to account via multiple authentication elements |
| CN107147608A (en) * | 2016-03-01 | 2017-09-08 | 阿里巴巴集团控股有限公司 | Verification method and device |
| CN107666541A (en) * | 2016-07-29 | 2018-02-06 | 汪风珍 | It is a kind of to realize number safety and the method for secret protection |
| CN108449182A (en) * | 2018-04-09 | 2018-08-24 | 南京网觉软件有限公司 | Mobile phone verification login system and method based on display installation electromagnetical radiated communications |
| CN110035089A (en) * | 2019-04-28 | 2019-07-19 | 兰州理工大学 | A kind of network security verification method and system of distributed system |
| CN112559996A (en) * | 2021-02-23 | 2021-03-26 | 北京安泰伟奥信息技术有限公司 | Dynamic authentication risk detection method and system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010128451A2 (en) * | 2009-05-04 | 2010-11-11 | Privylink Private Limited | Methods of robust multi-factor authentication and authorization and systems thereof |
| JP2011192129A (en) * | 2010-03-16 | 2011-09-29 | Hitachi Solutions Ltd | Log-in authentication system using portable telephone terminal |
| CN102780674A (en) * | 2011-05-09 | 2012-11-14 | 同方股份有限公司 | Method and system for processing network service by utilizing multifactor authentication method |
| CN103152400A (en) * | 2013-02-07 | 2013-06-12 | 百度在线网络技术(北京)有限公司 | Method and system for logging in through mobile terminal and cloud server |
-
2013
- 2013-08-23 CN CN201310371303XA patent/CN103427999A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010128451A2 (en) * | 2009-05-04 | 2010-11-11 | Privylink Private Limited | Methods of robust multi-factor authentication and authorization and systems thereof |
| JP2011192129A (en) * | 2010-03-16 | 2011-09-29 | Hitachi Solutions Ltd | Log-in authentication system using portable telephone terminal |
| CN102780674A (en) * | 2011-05-09 | 2012-11-14 | 同方股份有限公司 | Method and system for processing network service by utilizing multifactor authentication method |
| CN103152400A (en) * | 2013-02-07 | 2013-06-12 | 百度在线网络技术(北京)有限公司 | Method and system for logging in through mobile terminal and cloud server |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104901925A (en) * | 2014-03-05 | 2015-09-09 | 中国移动通信集团北京有限公司 | End-user identity authentication method, device and system and terminal device |
| CN104113556A (en) * | 2014-07-31 | 2014-10-22 | 国家超级计算深圳中心(深圳云计算中心) | Network logon authentication method and system, mobile terminal and application server |
| CN105050042A (en) * | 2015-06-25 | 2015-11-11 | 邱兰 | Intelligent mobile phone management method |
| CN105072603A (en) * | 2015-06-25 | 2015-11-18 | 邱兰 | Mobile terminal equipment management method |
| WO2017028173A1 (en) * | 2015-08-17 | 2017-02-23 | 张焰焰 | Method and mobile terminal for delivering information indication upon logging in to account via multiple authentication elements |
| CN105915364A (en) * | 2015-12-08 | 2016-08-31 | 乐视网信息技术(北京)股份有限公司 | Method for preventing malicious sharing of user identity and device thereof |
| CN107147608B (en) * | 2016-03-01 | 2021-02-26 | 阿里巴巴集团控股有限公司 | Verification method and device |
| CN107147608A (en) * | 2016-03-01 | 2017-09-08 | 阿里巴巴集团控股有限公司 | Verification method and device |
| CN107666541A (en) * | 2016-07-29 | 2018-02-06 | 汪风珍 | It is a kind of to realize number safety and the method for secret protection |
| CN107666541B (en) * | 2016-07-29 | 2020-04-03 | 汪风珍 | Method for realizing number safety and privacy protection |
| CN107666541B8 (en) * | 2016-07-29 | 2020-09-25 | 张家界航空工业职业技术学院 | Method for realizing number safety and privacy protection |
| CN108449182A (en) * | 2018-04-09 | 2018-08-24 | 南京网觉软件有限公司 | Mobile phone verification login system and method based on display installation electromagnetical radiated communications |
| CN108449182B (en) * | 2018-04-09 | 2021-10-01 | 南京网觉软件有限公司 | Mobile phone verification login system and method based on display device electromagnetic radiation communication |
| CN110035089A (en) * | 2019-04-28 | 2019-07-19 | 兰州理工大学 | A kind of network security verification method and system of distributed system |
| CN112559996A (en) * | 2021-02-23 | 2021-03-26 | 北京安泰伟奥信息技术有限公司 | Dynamic authentication risk detection method and system |
| CN112559996B (en) * | 2021-02-23 | 2021-05-28 | 北京安泰伟奥信息技术有限公司 | Dynamic authentication risk detection method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103427999A (en) | User authentication method and system | |
| CN104077689B (en) | A kind of method of Information Authentication, relevant apparatus and system | |
| US9179312B2 (en) | Registration and login method and mobile terminal | |
| CN107113613B (en) | Server, mobile terminal, network real-name authentication system and method | |
| CN105407074A (en) | Authentication method, apparatus and system | |
| CN107086979B (en) | User terminal verification login method and device | |
| CN104820944A (en) | Method and system for bank self-service terminal authentication, and device | |
| TW201014315A (en) | User identity authentication method, system thereof and identifying code generating maintenance subsystem | |
| CN110266642A (en) | Identity identifying method and server, electronic equipment | |
| US20100042847A1 (en) | Method for authentication using one-time identification information and system | |
| JP2007058469A (en) | Authentication system, authentication server, authentication method, and authentication program | |
| CN106304074A (en) | Auth method and system towards mobile subscriber | |
| US20210234850A1 (en) | System and method for accessing encrypted data remotely | |
| KR20160143333A (en) | Method for Double Certification by using Double Channel | |
| CN106936802A (en) | Mobile phone A PP information protecting methods and mobile phone A PP clients, system | |
| CN106658498A (en) | Portal approved quick roaming method and WiFi device | |
| CN104767614A (en) | Information authentication method and device | |
| CN105516054A (en) | User authentication method and user authentication device | |
| CN102892091A (en) | Scheme for acquiring own mobile phone number | |
| CN107707529A (en) | A kind of client validation method for realizing limitation identifying code transmission times | |
| CN105631667A (en) | Authentication method, device and system | |
| CN108243005B (en) | Application registration verification method, participant management system, device and medium | |
| CN108123918A (en) | A kind of account authentication login method and device | |
| CN110781481A (en) | Single sign-on method, client, server, and storage medium | |
| CN110830479B (en) | Multi-card-based one-key login method, device, equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20131204 |