CN103763101B - A kind of method of user login validation, apparatus and system - Google Patents
A kind of method of user login validation, apparatus and system Download PDFInfo
- Publication number
- CN103763101B CN103763101B CN201310492929.6A CN201310492929A CN103763101B CN 103763101 B CN103763101 B CN 103763101B CN 201310492929 A CN201310492929 A CN 201310492929A CN 103763101 B CN103763101 B CN 103763101B
- Authority
- CN
- China
- Prior art keywords
- check code
- terminal device
- server
- matching
- random
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 139
- 238000010200 validation analysis Methods 0.000 title claims abstract description 45
- 230000008569 process Effects 0.000 claims abstract description 80
- 238000012795 verification Methods 0.000 claims abstract description 39
- 239000011159 matrix material Substances 0.000 claims description 25
- 238000004886 process control Methods 0.000 claims description 9
- 230000005540 biological transmission Effects 0.000 claims description 8
- 230000009466 transformation Effects 0.000 claims description 8
- 238000000844 transformation Methods 0.000 claims description 8
- 230000008859 change Effects 0.000 claims description 5
- 238000012360 testing method Methods 0.000 claims description 5
- 230000000903 blocking effect Effects 0.000 claims description 4
- 235000013399 edible fruits Nutrition 0.000 claims description 2
- 230000006870 function Effects 0.000 description 14
- 230000004224 protection Effects 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 4
- 230000008901 benefit Effects 0.000 description 3
- 238000004590 computer program Methods 0.000 description 2
- 238000002347 injection Methods 0.000 description 2
- 239000007924 injection Substances 0.000 description 2
- 238000012544 monitoring process Methods 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 238000012163 sequencing technique Methods 0.000 description 2
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 235000014510 cooky Nutrition 0.000 description 1
- 238000013497 data interchange Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000001035 drying Methods 0.000 description 1
- 230000005611 electricity Effects 0.000 description 1
- 238000002513 implantation Methods 0.000 description 1
- 238000003780 insertion Methods 0.000 description 1
- 230000037431 insertion Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 238000000682 scanning probe acoustic microscopy Methods 0.000 description 1
- 239000000243 solution Substances 0.000 description 1
Landscapes
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a kind of method of user login validation, apparatus and system, this method includes:The check code inputted from terminal equipment side is received, and itself and random check code are carried out matching verification, the first matching check results are obtained, the first matching check results include:The check code of terminal equipment side input is matched with random check code, and the check code of terminal equipment side input is mismatched with random check code;Described first matching check results are sent to terminal device, by the terminal device before the logon process of application program is started, determine whether to start the logon process of application program according to the described first matching check results, the security of user account can be effectively lifted by embodiments of the invention.
Description
Technical field
The present invention relates to field of computer technology, more particularly to a kind of method of user login validation, apparatus and system.
Background technology
The security of user account is related to the privacy of user and the property of user, so being heavy to closing for a user
Want.So-called game steal-number, is typically to be implanted into wooden horse in gaming terminal device, and GID is inputted and close in players log game
Keyboard monitoring is done during code, and sends stolen user name and password to realize game steal-number.
The technical scheme of existing protection account has at present:
Scheme one, by drive protection modification underlying system function and hook interfaces with prevent other processes injection implantation dislike
Meaning code, to monitor keyboard or network operation.Scheme one realizes that details is very complicated, simple to understand be exactly literary using SYS drivings
Part changes system function temporarily, to change the flow of original system function.So as to which other call the program of the system function to fail.
These system functions are all with obtaining the correlative connections such as GID certainly.Realized because scheme one needs to drive, compatibility
There is certain influence, technology realizes that difficulty is very big, it is desirable to relatively higher.And study the comparison of similar driving protection on the market at present
It is many, also there are various anti-driven protections, evade falling the protection to realize steal-number.
Scheme two, by before game running is logged in, cloud killing examines whether the dll file of PE loaders loading has wind
Danger, to prevent risk from injecting.Before game running login, the dll file that PE loaders are loaded is examined by cloud killing,
Whether dll file is replaced by other risks or unknown MD5 (Message Digest Algorithm 5) in SYSTEM32 folders, is to detect
It is no risky.Due to preventing injection to cause the presence of certain timeliness by a large amount of computings come real-time collecting MD5 white lists.
Because the technical scheme of existing protection account has respective shortcoming limitation, it is therefore necessary to provide relatively reliable
The scheme of user login validation.
The content of the invention
In view of the above problems, it is proposed that the present invention so as to provide one kind overcome above mentioned problem or at least in part solve on
Method, the apparatus and system of the user account login authentication of problem are stated, effectively the security of lifting user account.
According to one aspect of the present invention there is provided a kind of method of the user login validation of server side, it includes:Connect
The check code inputted from terminal equipment side is received, and itself and random check code are carried out matching verification, the first matching verification knot is obtained
Really, the first matching check results include:The check code of terminal equipment side input is matched with random check code, and terminal equipment side
The check code of input is mismatched with random check code;First matching check results are sent to terminal device, existed by terminal device
Before the logon process for starting application program, determine whether to start the login of application program according to the first matching check results
Process.
Alternatively, before the check code inputted from terminal equipment side is received, method also includes:Obtain terminal device every
The information for the terminal device that first scheduled time provided;According to the information of the terminal device of acquisition and/or the information of server, often
Calculated every second scheduled time and generate at least one random check code;The random check code of generation is sent to be provided with and applies journey
The terminal device and/or other-end equipment of the client of sequence.
Alternatively, other-end equipment refers to the mobile phone with predetermined account or call number binding.
Alternatively, wherein, the information of terminal device at least include it is following in one kind:The MID codes of terminal device, terminal are set
Standby MAC Address, the system boot time of terminal device, the current process number of terminal device and the high precision count of terminal device
Device value;The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
Alternatively, wherein, according to the information of the terminal device of acquisition and/or the information of server, every the second pre- timing
Between calculate generate at least one random check code step include:Using the information of server and a random number as key, it will obtain
Terminal device information encryption;Information after encryption is converted into a character string;Character string arrangement is converted into M × N matrix,
Wherein M and N is natural number;Random number in key does multiplication transformations to the M × N matrix;By every a line of M × N matrix
It is added respectively to columns modulus, obtained M numbers is combined to form M random check codes.
Alternatively, wherein, when the first matching result be terminal equipment side input check code matched with random check code when,
Method also includes:Obtain user account and/or user cipher that terminal equipment side is inputted, for login application program;To with
Family account and/or user cipher carry out matching verification, obtain the second matching check results, and the second matching check results include:Eventually
The user account and/or user cipher of end equipment side input are correct, and terminal equipment side input user account and/or user
Password bad;Second matching check results are sent to terminal device, sentenced by terminal device according to the second matching check results
It is disconnected whether to allow to start application program.
According to another aspect of the present invention, a kind of method of terminal equipment side user login validation is additionally provided, it is wrapped
Include:Start terminal device on application program when, intercept application program logon process startup;Obtain the verification of user's input
Code, and send to server side, the check code of input is verified according to random check code by server, the first matching is obtained
Check results, the first matching check results include:The check code of terminal equipment side input is matched with random check code, and terminal
The check code of equipment side input is mismatched with random check code;The first matching check results that the reception server is sent, and
Determine whether to start the logon process of application program according to the described first matching check results;If the first matching verification knot
Fruit matches for the check code that terminal equipment side is inputted with random check code, then starts the logon process of application program.
Alternatively, wherein, if the first matching check results are check code and the random check code that terminal equipment side is inputted
Mismatch, method also includes:Continue to obtain the check code that user inputs, and the check code of acquisition is sent to server side, by
Server is verified according to random check code to the check code of input.
Alternatively, wherein, method also includes:The information of terminal device is provided every first scheduled time to server, its
In random check code calculated and generated according to the information of terminal device and/or the information of server by server side.
Alternatively, wherein, the information of terminal device at least include it is following in one kind:The MID codes of terminal device, terminal are set
Standby MAC Address, the system boot time of terminal device, the current process number of terminal device and the high precision count of terminal device
Device value;The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
Alternatively, wherein, start application program logon process after, method also includes:Obtain user's input, use
In the user account and/or user cipher of login application program, and send and verified to server side, obtain the second matching school
Result is tested, the second matching check results include:The user account and/or user cipher of terminal equipment side input are correctly set with terminal
The user account and/or user cipher that standby side is inputted are incorrect;The second matching check results that the reception server side is sent, and root
Determine whether to start application program according to the described second matching check results;If the second matching check results are terminal
The user account and/or user cipher of equipment side input are correct, then start the process of application program;If the second matching school
Test result for terminal equipment side input user account and/or user cipher it is incorrect, then point out input user account and/or
User cipher mistake.
According to another aspect of the present invention, a kind of method of user login validation is also provided, it includes:As described above
The method of the method for server side user login validation and terminal equipment side user login validation as described above.
According to another aspect of the present invention, a kind of device of the user login validation of server side is additionally provided, it is wrapped
Include:Check code matching module, for receiving the check code inputted from terminal equipment side, and it is matched with random check code
Verification, obtains the first matching check results, and the first matching check results include:Terminal equipment side input check code with
Machine check code is matched, and the check code of terminal equipment side input is mismatched with random check code;Match check results and send mould
Block, for the described first matching check results to be sent into terminal device, by the terminal device according to the described first matching school
Result is tested to determine whether to start the logon process of application program.
Alternatively, described device also includes:Terminal device information acquisition module, for obtaining the terminal device every
The information for the terminal device that one scheduled time provided;Random check code generation module, the letter for the terminal device according to acquisition
The information of breath and/or server, calculates every second scheduled time and generates at least one random check code;Random check code is sent
Module, for the random check code of generation is sent to the client for being provided with the application program terminal device and/
Or other-end equipment.
Alternatively, wherein, the other-end equipment refers to the mobile electricity with predetermined account or call number binding
Words.
Alternatively, wherein, the information of terminal device at least include it is following in one kind:The MID codes of terminal device, terminal are set
Standby MAC Address, the system boot time of terminal device, the current process number of terminal device and the high precision count of terminal device
Device value;The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
Alternatively, wherein, the random check code generation module is further used for the information of the server and one
Random number is key, and the information of the terminal device of acquisition is encrypted;Information after encryption is converted into a character string;By institute
State character string arrangement and be converted to M × N matrix, wherein the M and N is natural number;The random number in key to the M ×
N matrix does multiplication transformations;Every a line of the M × N matrix is added respectively to columns modulus, obtained M numbers are combined into shape
Into M random check codes.
Alternatively, wherein, described device also includes:Account number cipher receiving module, being inputted for receiving terminal apparatus side,
User account and/or user cipher for logging in the application program;Account number cipher obtains matching module, for user's account
Number and/or user cipher carry out matching verification, obtain the second matching check results, the second matching check results include:Eventually
The user account and/or user cipher of end equipment side input are correct, and terminal equipment side input user account and/or user
Password bad;The matching check results sending module is additionally operable to that the described second matching check results are sent to terminal and set
It is standby, determine whether to start application program according to the described second matching check results by the terminal device.
According to another aspect of the present invention, a kind of device of the user login validation of terminal equipment side is additionally provided, its
Including:Blocking module, for start terminal device on application program when, intercept application program logon process startup;School
A yard sending module is tested, the check code for obtaining user's input, and send to server side, by server according to random check code
The check code of input is verified, obtain the first matching check results, the first matching check results include:Terminal device
The check code of side input is matched with random check code, and the check code of terminal equipment side input is mismatched with random check code;
Matching result receiving module, the first matching check results sent for the reception server, and according to the described first matching
Check results determine whether to start the logon process of application program;And PROCESS CONTROL MODULE, at described first
In the case of being matched with the check code that check results are terminal equipment side input with random check code, start the application program
Logon process.
Alternatively, wherein, the check code sending module be additionally operable to described first matching check results be terminal device
In the case of check code and the random check code of side input are unmatched, continue to obtain the check code of user's input, and by acquisition
Check code is sent to server side, and the check code of input is verified according to random check code by server.
Alternatively, wherein, described device also includes:Terminal device information sending module, for every first scheduled time
The information of terminal device is provided to server, the random check code is by information and/or clothes of the server side according to terminal device
The information of business device calculates generation.
Alternatively, wherein, the information of terminal device at least include it is following in one kind:The MID codes of terminal device, terminal are set
Standby MAC Address, the system boot time of terminal device, the current process number of terminal device and the high precision count of terminal device
Device value;The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
Alternatively, wherein, the matching result receiving module be additionally operable to the reception server side transmission second matching verification
As a result, and according to the described second matching check results determine whether to start application program;
Described device also includes:Account number cipher acquisition module, for obtain user input, for logging in the application journey
The user account and/or user cipher of sequence, and send verified to server side, obtain the second matching check results, it is described
Second matching check results include:The user account and/or user cipher of terminal equipment side input are correctly and terminal equipment side is defeated
The user account and/or user cipher entered is incorrect;
The user account and/or user cipher that the PROCESS CONTROL MODULE is further used for inputting in terminal equipment side are correct
In the case of, start the process of application program;The user account and/or the incorrect feelings of user cipher inputted in terminal equipment side
Under condition, the user account and/or user cipher mistake of input are pointed out.
According to another aspect of the present invention, a kind of system of user login validation is also provided, it includes:As described above
The device of the device of server side user login validation and the user login validation of terminal equipment side as described above.
In an embodiment of the present invention, start application program log in process before, can be verified by random verification code
Whether the check code of terminal equipment side input is correct, after check code is verified, and just allow application program logs in process
Start, then obtain the user account and/or user cipher of terminal equipment side input, and verify that user account and/or user are close
Code, after being verified, just allows to start application program, by above-mentioned two levels of authentication, can effectively improve the account number safety of user
Property.
Moreover, the information of information and/or server of the server based on terminal device calculates the random check code of generation, its
Middle terminal device provides the information of terminal device according to first scheduled time to server so that random check code can often become
Change, further improve the security of verification process.
It can be shown on the terminal device moreover, server side interacts interim flow with the checking of terminal equipment side, with aobvious
Show current multistage password progress, lift Consumer's Experience.
Described above is only the general introduction of technical solution of the present invention, in order to better understand the technological means of the present invention,
And can be practiced according to the content of specification, and in order to allow above and other objects of the present invention, feature and advantage can
Become apparent, below especially exemplified by the embodiment of the present invention.
Brief description of the drawings
By reading the detailed description of hereafter preferred embodiment, various other advantages and benefit is common for this area
Technical staff will be clear understanding.Accompanying drawing is only used for showing the purpose of preferred embodiment, and is not considered as to the present invention
Limitation.And in whole accompanying drawing, identical part is denoted by the same reference numerals.In the accompanying drawings:
Fig. 1 shows the flow of the method for the user login validation of the server side according to an embodiment of the invention
Figure;
Fig. 2 shows the process schematic of the random check code of generation according to an embodiment of the invention;
Fig. 3 shows the stream of the method for terminal equipment side user login validation according to another implementation of the invention
Cheng Tu;
Fig. 4 shows the flow chart of user login validation method according to another implementation of the invention;
Fig. 5 shows the structural frames of the device of the user login validation of the server side of another embodiment of the invention
Figure;And
Fig. 6 shows the structural frames of the device of the terminal equipment side user login validation of another embodiment of the invention
Figure.
Embodiment
The exemplary embodiment of the disclosure is more fully described below with reference to accompanying drawings.Although showing the disclosure in accompanying drawing
Exemplary embodiment, it being understood, however, that may be realized in various forms the disclosure without should be by embodiments set forth here
Limited.On the contrary, these embodiments are provided to facilitate a more thoroughly understanding of the present invention, and can be by the scope of the present disclosure
Complete conveys to those skilled in the art.
Embodiment one
The method for introducing the user login validation of server side first below, this method includes:Receive from terminal equipment side
The check code of input, and itself and random check code are carried out matching verification, obtain the first matching check results;School is matched by first
Test result and be sent to terminal device, determine whether to start application program according to the first matching check results by terminal device
Logon process.
As shown in figure 1, the flow of the method 100 for the user login validation of the server side in embodiments of the invention
Figure, this method 100 starts from step S101, in step S101, receive from terminal equipment side input check code, and by its with
Machine check code carries out matching verification, obtains the first matching check results, and the first matching check results include:Terminal equipment side is inputted
Check code matched with random check code, and check code and the random check code of terminal equipment side input are mismatched.
Alternatively, server is received after the check code, inquiry server in random check code caching storehouse, if hit with
Any one in machine check code is that sending verification to terminal device passes through it is believed that being verified.If with any of which one
Individual random check code is all different, then terminal device sends prompting check code and do not passed through, resubmits identifying code.
Then, in step s 103, the first matching check results are sent to terminal device, by terminal device according to first
Matching check results determine whether to start the logon process of application program.
In an embodiment of the present invention, above-mentioned application program can be game application, it is of course possible to understanding,
The not particular type of defining application in embodiments of the invention.
For example, on the terminal device before the logon process of startup application program, terminal device prompting user's input validation
Code, then terminal device sends the check code that user inputs to server, by server by the check code received and in advance
The random check code of generation carries out matching verification, if the check code of terminal equipment side input is matched with random check code, permits
Perhaps the logon process of application program is started.It is, being tested in user account and/or user cipher to login application program
Before card, server can also be verified to the check code that terminal equipment side is inputted, and after being only verified, can just start application
The logon process of program, i.e., the safety for the account for user being ensured by multistage verification.Alternatively, in embodiments of the invention
In, before step S101, this method 100 also includes:Step S105~step S109, wherein, in step S105, obtain eventually
The information for the terminal device that end equipment is provided every first scheduled time;
Alternatively, terminal device provided the information of terminal device every 2 hours to server, it is of course possible to understanding,
The occurrence of first scheduled time is not limited in an embodiment of the present invention.
Then, in step s 107, according to the information of the terminal device of acquisition and/or the information of server, every second
The scheduled time, which calculates, generates at least one random check code.For example, second scheduled time was 15 minutes, it is of course possible to understanding
It is not limit the occurrence of second scheduled time in an embodiment of the present invention.
Alternatively, the information of terminal device at least include it is following in one kind:MID codes (the system of user software of terminal device
Unite exclusive identification code), MAC (Media Access Control, medium access control) address of terminal device, terminal device
Identification information, the system boot time of terminal device, the current process number and the high-resolution counter of terminal device of terminal device
Value, it is of course possible to understanding, does not limit the particular content of the information of terminal device in an embodiment of the present invention.
Wherein, the MID codes of terminal device can be 64 unique encodings, for example with the system hardware of terminal device
Obtain;
The MAC Address of terminal device can refer to the MAC Address of network interface card hardware, for example with GetAdapterInfo functions
Obtain;
The identification information of terminal device, such as account, can use and be obtained from cookies;
The system boot time (Systime) of terminal device can be obtained using hardware clock counter is read;
The current process number (Syspronum) of terminal device can travel through that current system enters number of passes, the mode of Thread Count is obtained;
The acquisition of hardware clock counter can be read in the high-resolution counter value (Sysinit) of terminal device.
Alternatively, the character string structure of the information of terminal device is:" mid=;Mac=;Identification information=;systime
=;Syspronum=;Sysint=;", it is of course possible to understanding, terminal device is not limited in an embodiment of the present invention
Information structure.
It is exemplified below:The process of the information of server receiving terminal equipment:Terminal device is sent to server first
Certification request, server judges after passing through that replying Json to terminal device, (JavaScript Object Notation, are one
The data interchange format of kind of lightweight) string, Json go here and there the terminal device sent for prompt terminal equipment information content and
Form, terminal device is received after Json strings, the information of collection terminal equipment, and is sent to server, can be logical using Socket
Believe that agreement, Web Service communication protocols send the information of terminal device.
In an embodiment of the present invention, random check code can be calculated according to the information of terminal device by server and obtained, but
In order to improve the security of random check code, alternatively, random check code can be by information kimonos of the server according to terminal device
The information of business device, which is calculated, to be obtained.
Alternatively, the information of server at least include it is following in one kind:The system time of server, server high accuracy
Counter Value and random number.
Alternatively, random check code can be calculated using step in detail below in step s 107, first with the server
Information and random number be key, the information of the terminal device of acquisition is encrypted;Information after encryption is converted into a word
Symbol string;Character string arrangement is converted into M × N matrix, wherein the M and N is natural number;Random number in key is to the M
× N matrix does multiplication transformations;Every a line of the M × N matrix is added respectively to columns modulus, obtained M numbers are combined
Form M random check codes.As shown in Fig. 2 the process schematic to generate random check code in embodiments of the invention, specifically
Algorithm is as follows:
Step A, information+random number first using server is keys, and the information for the terminal device that terminal device is uploaded is entered
Row encryption, is handled for example with symmetric encipherment algorithm, naturally it is also possible to use other AESs.It is above-mentioned at encryption
Random number is optional during reason, and security can be further improved as key using random number.
Step B, the information after encryption is converted into 16 system character strings again, naturally it is also possible to generate 2 systems, 10 systems etc.
Character string;
Step C, again by step B character string arrangement be converted to 8 × N column matrix;
Step D, further according to random number in key 8 × N matrix is done multiplication transformations, i.e. random number with it is every in 8 × N matrix
Number is multiplied;
Step E, each line number value addition mould columns calculated into a bit strings No. 8, it is of course possible to which understanding is not limited to 8
Position;Calculate once within every 15 minutes because bit strings No. 8 of generation will often change and just can guarantee that security, and PUSH be sent to and
The mobile phone of predetermined account or call number binding.Such as mobile phone is using wifi p2p+socket modes with taking
Business device is established the link, and server timing is to mobile phone PUSH random verification codes, while server end preserves this in the buffer
Random check code and last time random check code, one mapping table of generation are as follows:
The random check codes 2 of the random check code 1-- of account 1---
The random check codes 2 of the random check code 1-- of account 2---
In an embodiment of the present invention, the random check code can be the form of bit strings No. 8, or the random check code
It can be the form of Quick Response Code.Of course, it should be understood that not limiting the tool of random check code in an embodiment of the present invention
Body form.
Then, in step S109, the random check code of generation is sent to the end for the client for being provided with application program
End equipment and/or other-end equipment.
Alternatively, other-end equipment refers to the mobile phone with predetermined account or call number binding.It is,
Random check code can be sent on the mobile phone of predetermined account or call number binding by server, and user can lead to
Cross mobile phone and view random check code, then according to random check code in terminal equipment side input validation code, due to starting
The terminal device of application program is different equipment from the terminal device for receiving random check code, it is to avoid random check code is by journey
Control software is stolen, and further improves the security of user account.
Alternatively, after step s 103, this method 100 also includes:Step S111~step S115, in step S111
In, when the first matching result is that the check code that terminal equipment side is inputted is matched with random check code, obtain terminal equipment side defeated
User account and/or user cipher entering, for login application program.
Then, in step S113, matching verification is carried out to user account and/or user cipher, the second matching school is obtained
Result is tested, the second matching check results include:The user account and/or user cipher of terminal equipment side input are correct, and eventually
The user account and/or user cipher of end equipment side input are incorrect;
Then, in step sl 15, the second matching check results are sent to terminal device, by terminal device according to second
Matching check results determine whether to start application program.
In an embodiment of the present invention, first start application program log in process before, tested by random verification code
Whether the check code for demonstrate,proving terminal equipment side input is correct, after check code is verified, it is allowed to which application program logs in process
Start, after the user account and/or user cipher of terminal equipment side input is obtained, then verify user account and/or user
Password, after being verified, just starts application program.By above-mentioned two levels of authentication, the account number safety of user can be effectively improved.
Moreover, the information of information and/or server of the server based on terminal device calculates the random check code of generation, its
Middle terminal device provides the information of terminal device according to first scheduled time to server so that random check code often changes,
Further improve the security of verification process.
It should be noted that the method shown in Fig. 1 does not limit the order progress by shown each step, can be according to need
The sequencing of each step is adjusted, in addition, the step is also not limited to above-mentioned steps division, above-mentioned steps can be further
Less step can also be merged into by splitting into more multi-step.
Embodiment two
The method of terminal equipment side user login validation is described below, this method includes:Set according to User logs in terminal
Before standby application program, terminal equipment side intercepts the startup of application program;The check code of user's input is obtained, and is sent to clothes
Business device side and server are verified with check code;The random check code by server side according to the information of terminal device and/
Or the information of server calculates generation;The first matching check results that the reception server is sent, the first matching check results include:
The check code and random check code that the check code of terminal equipment side input is matched with random check code and terminal equipment side is inputted are not
Matching;Then terminal device determines whether to start the logon process of application program according to the first matching check results.
As shown in figure 3, the flow of the method 300 for the terminal equipment side user login validation in embodiments of the invention
Figure, this method 300 starts from step S301.In step S301, start terminal device on application program when, interception apply journey
The startup of sequence logon process.
Alternatively, in an embodiment of the present invention, before application program launching, terminal device driving intercepts application program and opened
Dynamic, concrete mode is as follows:(1) process list for needing to monitor, can be read during driving initialization;(2) when some process is opened
When dynamic, in judging whether the process is list by driving monitoring, if it is first the process is hung up, one section of insertion is performed
Process, points out user to input random check code.
Then, in step S303, obtain the check code of user's input, and send to server side, by server according to
Random check code is verified to the check code of input, obtains the first matching check results, and the first matching check results include:Eventually
End equipment side input check code match with random check code, and terminal equipment side input check code and random check code not
Matching.
Then, in step S305, the first matching check results that the reception server is sent, and verified according to the first matching
As a result the logon process of startup application program is determined whether;
If the first matching check results for judging to obtain in step S305 be the check code that terminal equipment side is inputted and
Random check code matching, then into step S307, start the logon process of application program.
If the first matching check results for judging to obtain in step S305 be the check code that terminal equipment side is inputted and
Random check code is mismatched, then into step S309, continues to obtain the check code of user's input, and the check code of acquisition is sent
To server side, the check code of input is verified according to random check code by server.
Alternatively, in an embodiment of the present invention, before step S301, method 300 also includes:Step S311, in step
In rapid S311, provide the information of terminal device to server every first scheduled time, random check code by server side according to
The information of terminal device and/or the information of server calculate generation.
It is, terminal device can provide the letter of terminal device every first scheduled time (such as 2 hours) to server
Breath, due to being to send once each first scheduled time, it is possible to achieve the random check code of generation is change, thus improves school
The security tested.
Alternatively, in an embodiment of the present invention, the information of the terminal device at least include it is following in one kind:Terminal
MID codes, the MAC Address of terminal device, the system boot time of terminal device, the current process number of terminal device and the end of equipment
The high-resolution counter value of end equipment;
Alternatively, in an embodiment of the present invention, the information of the server at least include it is following in one kind:Server
System time, server high-resolution counter value and random number.
Alternatively, in an embodiment of the present invention, after step S307, this method 300 also includes:Step S313~step
Rapid S319, wherein in step S313, obtaining user the inputs, user account for logging in the application program and/or use
Family password, and transmission is verified that obtain the second matching check results, described second matches check results bag to server side
Include:User account and/or user cipher correct and terminal equipment side input the user account and/or use of terminal equipment side input
Family password bad;
Then, in step S315, the second matching check results that the reception server side is sent, and according to described second
Determine whether to start application program with check results.
If the second matching check results are that user account and/or user cipher that terminal equipment side is inputted are correct, enter
Enter step S317, in step S317, start the process of application program;
If the second matching check results are that user account and/or user cipher that terminal equipment side is inputted are incorrect,
Into step S319, in step S319, the user account and/or user cipher mistake of input are pointed out.
It should be noted that the method shown in Fig. 3 does not limit the order progress by shown each step, can be according to need
The sequencing of each step is adjusted, in addition, the step is also not limited to above-mentioned steps division, above-mentioned steps can be further
Less step can also be merged into by splitting into more multi-step.
Embodiment three
Embodiments of the invention additionally provide a kind of method of user login validation, and it includes:Described in above-described embodiment one
Server side user login validation method and above-described embodiment two described in terminal equipment side user login validation side
Method, the step flow of the above method, reference can be made to above-described embodiment one and embodiment two, no longer apply state herein.
As shown in figure 4, being the flow chart of the user login validation method in embodiments of the invention, step S401, unlatching
Multistage cryptographic check mechanism;Step S403, application program prepare to start, and driving layer is intercepted, and hangs up the process of application program;Step
Rapid S405, prompting user's input random verification code;Random verification code is checked on step S407, client;Step S409, input are tested
Card code is sent to server;Whether step S411, server verification identifying code are correctIt is incorrect, return to step S409;Correctly,
Into step S413, in step S413, start the logon process of application program;Step S415, server side receive client
The user account and/or user cipher of input;Whether step S417, the user account of server verification input and password are correct
Correctly, into step S419, into application program;It is incorrect, into step S421, point out login user account or password wrong
By mistake.
Example IV
As shown in figure 5, the device 500 of the user login validation of server side includes according to an embodiment of the invention:School
Test yard matching module 501 and matching check results sending module 503.
It should be appreciated that the annexation of modules represented in Fig. 5 is merely illustrative, those skilled in the art completely may be used
With using other annexations, as long as modules can also realize the function of the present invention i.e. under such annexation
Can.
In this manual, the function of modules can be by using specialized hardware or can be with appropriate software
It is combined to perform the hardware of processing to realize.Such hardware or specialized hardware can include application specific integrated circuit (ASIC),
Various other circuits, various processors etc..When being realized by processor, the function can be by single application specific processor, single common
Processor or multiple independent processors (some of which may be shared) is enjoyed to provide.In addition, processor should not be managed
Solve to refer exclusively to be able to carry out the hardware of software, but can implicitly include and be not limited to digital signal processor (DSP) firmly
Part, the read-only storage (ROM) for storing software, random access memory (RAM) and non-volatile memory apparatus.
Check code matching module 501, for receiving the check code inputted from terminal equipment side, and by itself and random check code
Matching verification is carried out, the first matching check results are obtained, the first matching check results include:The school of terminal equipment side input
Code is tested to match with random check code, and the check code of terminal equipment side input is mismatched with random check code;
Check results sending module 503 is matched, for the described first matching check results to be sent into terminal device, by institute
Terminal device is stated to determine whether to start the logon process of application program according to the described first matching check results.
Alternatively, in an embodiment of the present invention, device 500 also includes:Terminal device information acquisition module, random verification
Code generation module and random check code sending module, wherein terminal device information acquisition module, for obtaining the terminal device
The client of the application program is provided on the information of the terminal device provided every first scheduled time, the terminal device
End;Random check code generation module, for the information and/or the information of server of the terminal device according to acquisition, every second
The scheduled time, which calculates, generates at least one random check code;Random check code sending module, for by the random school of generation
Test terminal device and/or other-end equipment that code is sent to the client for being provided with application program.Alternatively, other described ends
End equipment refers to the mobile phone with predetermined account or call number binding.
Alternatively, in an embodiment of the present invention, the information of the terminal device at least include it is following in one kind:Terminal
MID codes, the MAC Address of terminal device, the system boot time of terminal device, the current process number of terminal device and the end of equipment
The high-resolution counter value of end equipment.
Alternatively, in an embodiment of the present invention, the information of the server at least include it is following in one kind:Server
System time, server high-resolution counter value and random number.
Alternatively, in an embodiment of the present invention, the random check code generation module is further used for the service
The information of device and a random number are key, and the information of the terminal device of acquisition is encrypted;By the information conversion after encryption
Into a character string;Character string arrangement is converted into M × N matrix, wherein the M and N is natural number;Institute in key
State random number and multiplication transformations are done to the M × N matrix;Every a line of the M × N matrix is added respectively to columns modulus, will
To M numbers combine to form M random check codes.
Alternatively, in an embodiment of the present invention, device 500 also includes:Account number cipher receiving module and account number cipher are obtained
Matching module, wherein account number cipher receiving module are taken, the user account and/or user inputted for receiving terminal apparatus side is close
Code;Account number cipher obtains matching module, for carrying out matching verification to user account and/or user cipher, obtains the second matching
Check results, the second matching check results include:The user account and/or user cipher of terminal equipment side input are correct,
And the user account and/or user cipher of terminal equipment side input are incorrect;
Alternatively, in an embodiment of the present invention, the matching check results sending module 503 is additionally operable to described second
Matching check results are sent to terminal device, are determined whether by the terminal device according to the described second matching check results
Start application program.
Embodiments in accordance with the present invention, the device 500 of the user login validation of server side can also include one or
Multiple optional modules, to realize extra or additional function, but these optional modules for realizing the purpose of the present invention and
Speech is not indispensable, and the device 500 of the user login validation of server side completely may be used according to an embodiment of the invention
In the case of these no optional modules, to realize the purpose of the present invention.These optional modules although not shown in FIG. 5,
But their annexations between above-mentioned each module can be readily derived by those skilled in the art according to following teachings.
Embodiment five
As shown in fig. 6, the device 600 of the user login validation of terminal equipment side can be led according to an embodiment of the invention
Including:Blocking module 601, check code sending module 603, matching result receiving module 605 and PROCESS CONTROL MODULE 607.
It should be appreciated that the annexation of modules represented in Fig. 6 is merely illustrative, those skilled in the art completely may be used
With using other annexations, as long as modules can also realize the function of the present invention i.e. under such annexation
Can.
In this manual, the function of modules can be by using specialized hardware or can be with appropriate software
It is combined to perform the hardware of processing to realize.Such hardware or specialized hardware can include application specific integrated circuit (ASIC),
Various other circuits, various processors etc..When being realized by processor, the function can be by single application specific processor, single common
Processor or multiple independent processors (some of which may be shared) is enjoyed to provide.In addition, processor should not be managed
Solve to refer exclusively to be able to carry out the hardware of software, but can implicitly include and be not limited to digital signal processor (DSP) firmly
Part, the read-only storage (ROM) for storing software, random access memory (RAM) and non-volatile memory apparatus.
Embodiments in accordance with the present invention, blocking module 601, for start terminal device on application program when, intercept
The startup of application program logon process;
Embodiments in accordance with the present invention, check code sending module 603 for obtaining the check code of user's input, and is sent
To server side, the check code of input is verified according to random check code by server, the first matching check results are obtained,
The first matching check results include:The check code of terminal equipment side input is matched with random check code, and terminal device
The check code of side input is mismatched with random check code;
Embodiments in accordance with the present invention, matching result receiving module 605, described first sent for the reception server
Determine whether to start the logon process of application program with check results, and according to the described first matching check results;
Embodiments in accordance with the present invention, PROCESS CONTROL MODULE 607, if being terminal for the described first matching check results
The check code of equipment side input is matched with random check code, then starts the logon process of application program.
Alternatively, in an embodiment of the present invention, if check code sending module 603 is additionally operable to the first matching verification
As a result mismatched for the check code that terminal equipment side is inputted with random check code, continue to obtain the check code of user's input, and will
The check code of acquisition is sent to server side, and the check code of input is verified according to random check code by server.
Alternatively, in an embodiment of the present invention, device 600 also includes:Terminal device information sending module, for every
First scheduled time provided the information of terminal device to server, and the random check code is by server side according to terminal device
Information and/or the information of server calculate generation.
Alternatively, in an embodiment of the present invention, the information of the terminal device at least include it is following in one kind:Terminal
MID codes, the MAC Address of terminal device, the system boot time of terminal device, the current process number of terminal device and the end of equipment
The high-resolution counter value of end equipment.
Alternatively, in an embodiment of the present invention, the information of the server at least include it is following in one kind:Server
System time, server high-resolution counter value and random number.
Alternatively, in an embodiment of the present invention, PROCESS CONTROL MODULE 607 is additionally operable to when first matching result is eventually
When the check code of end equipment side input is matched with random check code, it is allowed to start the logon process of application program;
Alternatively, in an embodiment of the present invention, matching result receiving module 605 is additionally operable to the transmission of the reception server side
Second matching check results, and determine whether to start application program according to the described second matching check results;
Alternatively, in an embodiment of the present invention, described device 600 also includes:Account number cipher acquisition module, for obtaining
User's input, user account and/or user cipher for logging in the application program, and send to server side and tested
Card, obtains the second matching check results, and the second matching check results include:Terminal equipment side input user account and/
Or user cipher correct and terminal equipment side input user account and/or user cipher is incorrect.
Alternatively, in an embodiment of the present invention, if the PROCESS CONTROL MODULE 607 is further used for terminal equipment side
The user account and/or user cipher of input are correct, start the process of application program;If user's account of terminal equipment side input
Number and/or user cipher it is incorrect, point out input user account and/or user cipher mistake.
Embodiment six
Embodiments of the invention additionally provide a kind of system of user login validation, and it includes:Described in example IV
The device of the user login validation of terminal equipment side described in the device and embodiment five of server side user login validation.
C4. the information and/or the information of server of the terminal device according to acquisition, are calculated every second scheduled time
Generating at least one random check code step includes:
Using the information of the server and a random number as key, the information of the terminal device of acquisition is encrypted;
Information after encryption is converted into a character string;
Character string arrangement is converted into M × N matrix, wherein the M and N is natural number;
The random number in key does multiplication transformations to the M × N matrix;
Every a line of the M × N matrix is added respectively to columns modulus, obtained M numbers are combined to form M at random
Check code.
C5. it is described when first matching result is that the check code that terminal equipment side is inputted is matched with random check code
Method also includes:
Obtain user account and/or user cipher that terminal equipment side is inputted, for logging in the application program;
Matching verification is carried out to user account and/or user cipher, the second matching check results, second matching are obtained
Check results include:The user account and/or user cipher of terminal equipment side input are correct, and the use that terminal equipment side is inputted
Family account and/or user cipher are incorrect;
Described second matching check results are sent to terminal device, by the terminal device according to the described second matching school
Result is tested to determine whether to start application program.
c9.
The information of terminal device at least include it is following in one kind:The MID codes of terminal device, the MAC Address of terminal device,
The high-resolution counter value of the system boot time of terminal device, the current process number of terminal device and terminal device;
The information of server at least include it is following in one kind:System time, the server high-resolution counter of server
Value and random number.
C10. after the logon process of application program is started, methods described also includes:
User account and/or user cipher that user inputs, for logging in the application program are obtained, and is sent to clothes
Business device side is verified, obtains the second matching check results, and the second matching check results include:Terminal equipment side input
User account and/or user cipher correct and terminal equipment side input user account and/or user cipher are incorrect;
The second matching check results that the reception server side is sent, and judged whether according to the described second matching check results
Allow to start application program;
If the second matching check results are that user account and/or user cipher that terminal equipment side is inputted are correct,
Then start the process of application program;
If the second matching check results be user account and/or user cipher that terminal equipment side is inputted not just
Really, then the user account and/or user cipher mistake of input are pointed out.
C13. the other-end equipment refers to the mobile phone with predetermined account or call number binding.
C14. the information of terminal device at least include it is following in one kind:MID codes, the MAC of terminal device of terminal device
Address, the system boot time of terminal device, the high-resolution counter value of the current process number of terminal device and terminal device;
The information of server at least include it is following in one kind:System time, the server high-resolution counter of server
Value and random number.
C15. the random check code generation module be further used for using the information of the server and a random number as
Key, the information of the terminal device of acquisition is encrypted;Information after encryption is converted into a character string;By the character string
Arrangement is converted to M × N matrix, wherein the M and N is natural number;The random number in key is done to the M × N matrix
Multiplication transformations;Every a line of the M × N matrix is added respectively to columns modulus, obtained M numbers are combined to be formed M with
Machine check code.
C16. described device also includes:
Account number cipher receiving module, user inputted for receiving terminal apparatus side, for logging in the application program
Account and/or user cipher;
Account number cipher obtains matching module, for carrying out matching verification to user account and/or user cipher, obtains second
Check results are matched, the second matching check results include:The user account and/or user cipher of terminal equipment side input are just
Really, and terminal equipment side input user account and/or user cipher it is incorrect;
The matching check results sending module is additionally operable to the described second matching check results being sent to terminal device, by
The terminal device determines whether to start application program according to the described second matching check results.
C18. it is what terminal equipment side was inputted that the check code sending module, which is additionally operable in the described first matching check results,
In the case of check code and random check code are unmatched, continue to obtain the check code of user's input, and the check code of acquisition is sent out
Server side is delivered to, the check code of input is verified according to random check code by server.
C19. described device also includes:
Terminal device information sending module, the information for providing terminal device to server every first scheduled time,
The random check code is calculated and generated according to the information of terminal device and/or the information of server by server side.
C20. the information of terminal device at least include it is following in one kind:MID codes, the MAC of terminal device of terminal device
Address, the system boot time of terminal device, the high-resolution counter value of the current process number of terminal device and terminal device;
The information of server at least include it is following in one kind:System time, the server high-resolution counter of server
Value and random number.
C21. the matching result receiving module is additionally operable to the second matching check results of the reception server side transmission, and root
Determine whether to start application program according to the described second matching check results;
Described device also includes:
Account number cipher acquisition module, for obtain user's input, user account for logging in the application program and/
Or user cipher, and transmission is verified that obtain the second matching check results, described second matches check results to server side
Including:The user account and/or user cipher of terminal equipment side input be correct and terminal equipment side is inputted user account and/or
User cipher is incorrect;
The user account and/or user cipher that the PROCESS CONTROL MODULE is further used for inputting in terminal equipment side are correct
In the case of, start the process of application program;The user account and/or the incorrect feelings of user cipher inputted in terminal equipment side
Under condition, the user account and/or user cipher mistake of input are pointed out.
Algorithm and display be not inherently related to any certain computer, virtual system or miscellaneous equipment provided herein.
Various general-purpose systems can also be used together with based on teaching in this.As described above, construct required by this kind of system
Structure be obvious.In addition, the present invention is not also directed to any certain programmed language.It is understood that, it is possible to use it is various
Programming language realizes the content of invention described herein, and the description done above to language-specific is to disclose this hair
Bright preferred forms.
In the specification that this place is provided, numerous specific details are set forth.It is to be appreciated, however, that the implementation of the present invention
Example can be put into practice in the case of these no details.In some instances, known method, structure is not been shown in detail
And technology, so as not to obscure the understanding of this description.
Similarly, it will be appreciated that in order to simplify the disclosure and help to understand one or more of each inventive aspect, exist
Above in the description of the exemplary embodiment of the present invention, each feature of the invention is grouped together into single implementation sometimes
In example, figure or descriptions thereof.However, the method for the disclosure should be construed to reflect following intention:It is i.e. required to protect
The application claims of shield features more more than the feature being expressly recited in each claim.More precisely, such as following
Claims reflect as, inventive aspect is all features less than single embodiment disclosed above.Therefore,
Thus the claims for following embodiment are expressly incorporated in the embodiment, wherein each claim is in itself
All as the separate embodiments of the present invention.
Those skilled in the art, which are appreciated that, to be carried out adaptively to the module in the equipment in embodiment
Change and they are arranged in one or more equipment different from the embodiment.Can be the module or list in embodiment
Member or component be combined into a module or unit or component, and can be divided into addition multiple submodule or subelement or
Sub-component.In addition at least some in such feature and/or process or unit exclude each other, it can use any
Combination is disclosed to all features disclosed in this specification (including adjoint claim, summary and accompanying drawing) and so to appoint
Where all processes or unit of method or equipment are combined.Unless expressly stated otherwise, this specification (including adjoint power
Profit is required, summary and accompanying drawing) disclosed in each feature can or similar purpose identical, equivalent by offer alternative features come generation
Replace.
Although in addition, it will be appreciated by those of skill in the art that some embodiments described herein include other embodiments
In included some features rather than further feature, but the combination of the feature of be the same as Example does not mean in of the invention
Within the scope of and form different embodiments.For example, in the following claims, times of embodiment claimed
One of meaning mode can be used in any combination.
The present invention all parts embodiment can be realized with hardware, or with one or more processor run
Software module realize, or realized with combinations thereof.It will be understood by those of skill in the art that can use in practice
Microprocessor or digital signal processor (DSP) realize some in browser terminal equipment according to embodiments of the present invention
Or some or all functions of whole parts.The present invention be also implemented as perform method as described herein one
Partly or completely equipment or program of device (for example, computer program and computer program product).It is such to realize this
The program of invention can be stored on a computer-readable medium, or can have the form of one or more signal.So
Signal can download and obtain from internet website, either provide or provided in any other form on carrier signal.
It should be noted that the present invention will be described rather than limits the invention for above-described embodiment, and ability
Field technique personnel can design alternative embodiment without departing from the scope of the appended claims.In the claims,
Any reference symbol between bracket should not be configured to limitations on claims.Word "comprising" is not excluded the presence of not
Element or step listed in the claims.Word "a" or "an" before element does not exclude the presence of multiple such
Element.The present invention can be by means of including the hardware of some different elements and coming real by means of properly programmed computer
It is existing.In if the unit claim of equipment for drying is listed, several in these devices can be by same hardware branch
To embody.The use of word first, second, and third does not indicate that any order.These words can be explained and run after fame
Claim.
Claims (22)
1. a kind of method of the user login validation of server side, it includes:
The information for the terminal device that the terminal device for the client that acquisition is provided with application program is provided every first scheduled time;
According to the information and/or the information of server of the terminal device of acquisition, generation is calculated extremely every second scheduled time
A few random check code;
The random check code of generation is sent to the terminal device and/or other-end of the client for being provided with application program
Equipment;
The check code inputted from the terminal equipment side for the client for being provided with application program is received, and it is entered with random check code
Row matching verification, obtains the first matching check results, and the first matching check results include:The client of application program is installed
The check code of the terminal equipment side input at end is matched with random check code, and is provided with the terminal of the client of application program and is set
The check code that standby side is inputted is mismatched with random check code, wherein, server is received after check code, random in inquiry server
Check code cache storehouse, if hit in random check code any one by checking, to the client for being provided with application program
Terminal device and/or other-end equipment send verification pass through, it is otherwise not verified, to the client for being provided with application program
The terminal device and/or other-end equipment at end send prompting check code and not passed through, resubmit identifying code;
Described first matching check results are sent to terminal device, set by the terminal of the client for being provided with application program
For before the logon process of application program is started, startup application journey is determined whether according to the described first matching check results
The logon process of sequence.
2. according to the method described in claim 1, wherein, the other-end equipment refers to and predetermined account or call number
The mobile phone of code binding.
3. according to the method described in claim 1, wherein,
The information of terminal device at least include it is following in one kind:The MID codes of terminal device, the MAC Address of terminal device, terminal
The high-resolution counter value of the system boot time of equipment, the current process number of terminal device and terminal device;
The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
4. according to the method described in claim 1, wherein, the information of the terminal device according to acquisition and/or server
Information, generating at least one random check code step every the calculating of second scheduled time includes:
Using the information of the server and a random number as key, the information of the terminal device of acquisition is encrypted;
Information after encryption is converted into a character string;
Character string arrangement is converted into M × N matrix, wherein the M and N is natural number;
The random number in key does multiplication transformations to the M × N matrix;
Every a line of the M × N matrix is added respectively to columns modulus, obtained M numbers are combined to form M random verifications
Code.
5. the method according to any one of claim 1-4, wherein, when first matching result is terminal device
When the check code of side input is matched with random check code, methods described also includes:
Obtain user account and/or user cipher that terminal equipment side is inputted, for logging in the application program;
Matching verification is carried out to user account and/or user cipher, the second matching check results, the second matching verification are obtained
As a result include:The user account and/or user cipher of terminal equipment side input are correct, and user's account that terminal equipment side is inputted
Number and/or user cipher it is incorrect;
Described second matching check results are sent to terminal device, by the terminal device according to the described second matching verification knot
Fruit determines whether to start application program.
6. a kind of method of terminal equipment side user login validation, it includes:
During application program on terminal device is started, the startup of the application program logon process is intercepted;
The check code of user's input is obtained, and is sent to server side, by the server according to random check code to input
Check code is verified, obtains the first matching check results, and the first matching check results include:Terminal equipment side input
Check code is matched with random check code, and the check code of terminal equipment side input is mismatched with random check code;
The first matching check results that the reception server is sent, and judge whether to permit according to the described first matching check results
Perhaps the logon process of application program is started;
If the first matching check results are that the check code that terminal equipment side is inputted is matched with random check code, start institute
State the logon process of application program.
7. method according to claim 6, wherein, if the first matching check results are what terminal equipment side was inputted
Check code is mismatched with random check code, and methods described also includes:
Continue to obtain the check code that user inputs, and the check code of acquisition is sent to server side, by server according to random
Check code is verified to the check code of input.
8. method according to claim 6, wherein, methods described also includes:
The information of terminal device is provided to server every first scheduled time, wherein the random check code is by server lateral root
Generation is calculated according to the information of terminal device and/or the information of server.
9. method according to claim 8, wherein,
The information of terminal device at least include it is following in one kind:The MID codes of terminal device, the MAC Address of terminal device, terminal
The high-resolution counter value of the system boot time of equipment, the current process number of terminal device and terminal device;
The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
10. according to any described methods of claim 6-9, wherein, after the logon process of application program is started, the side
Method also includes:
User account and/or user cipher that user inputs, for logging in the application program are obtained, and is sent to server
Side is verified, obtains the second matching check results, and the second matching check results include:The user of terminal equipment side input
Account and/or user cipher correct and terminal equipment side input user account and/or user cipher are incorrect;
The second matching check results that the reception server side is sent, and determined whether according to the described second matching check results
Start application program;
If the second matching check results are that user account and/or user cipher that terminal equipment side is inputted are correct, open
The process of dynamic application program;
If the second matching check results are that user account and/or user cipher that terminal equipment side is inputted are incorrect,
Point out the user account and/or user cipher mistake of input.
11. a kind of method of user login validation, it includes:Stepped on according to any described server side users of claim 1-5
Record the method and the method according to any described terminal equipment side user login validations of claim 6-10 of checking.
12. a kind of device of the user login validation of server side, it includes:
The terminal device information acquisition module of the client of application program is installed, for obtaining the terminal device every first
The information for the terminal device that the scheduled time provides;
Random check code generation module, for the information and/or the information of server of the terminal device according to acquisition, every second
The scheduled time, which calculates, generates at least one random check code;
Random check code sending module, the client of application program is provided with for the random check code of generation to be sent to
Terminal device and/or other-end equipment;
Check code matching module, for receiving the check code from the terminal equipment side input for the client for being provided with application program,
And carry out matching verification by itself and random check code, the first matching check results are obtained, the first matching check results include:
The check code for being provided with the terminal equipment side input of the client of application program is matched with random check code, and is provided with application
The check code of the terminal equipment side input of the client of program is mismatched with random check code, wherein, server receives check code
Afterwards, inquiry server in random check code caching storehouse, if hit in random check code any one by checking, to peace
The terminal device and/or other-end equipment of client equipped with application program send verification and passed through, otherwise not verified, give
The terminal device and/or other-end equipment transmission prompting check code for being provided with the client of application program do not pass through, carry again
Hand over identifying code;
Check results sending module is matched, the client of application program is installed for the described first matching check results to be sent to
The terminal device at end, is determined whether to start application program by the terminal device according to the described first matching check results
Logon process.
13. device according to claim 12, wherein, the other-end equipment refers to and predetermined account or call
The mobile phone of number binding.
14. device according to claim 12, wherein,
The information of terminal device at least include it is following in one kind:The MID codes of terminal device, the MAC Address of terminal device, terminal
The high-resolution counter value of the system boot time of equipment, the current process number of terminal device and terminal device;
The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
15. device according to claim 12, wherein, the random check code generation module is further used for the clothes
The information and a random number of business device are key, and the information of the terminal device of acquisition is encrypted;Information after encryption is turned
Change a character string into;Character string arrangement is converted into M × N matrix, wherein the M and N is natural number;According in key
The random number does multiplication transformations to the M × N matrix;Every a line of the M × N matrix is added respectively to columns modulus, will
Obtained M numbers combine to form M random check codes.
16. the device according to any one of claim 12-15, wherein, described device also includes:
Account number cipher receiving module, user account inputted for receiving terminal apparatus side, for logging in the application program
And/or user cipher;
Account number cipher obtains matching module, for carrying out matching verification to user account and/or user cipher, obtains the second matching
Check results, the second matching check results include:The user account and/or user cipher of terminal equipment side input are correct,
And the user account and/or user cipher of terminal equipment side input are incorrect;
The matching check results sending module is additionally operable to the described second matching check results being sent to terminal device, by described
Terminal device determines whether to start application program according to the described second matching check results.
17. a kind of device of the user login validation of terminal equipment side, it includes:
Blocking module, during for application program on terminal device is started, intercepts the startup of the application program logon process;
Check code sending module, the check code for obtaining user's input, and send to server side, by server according to random
Check code is verified to the check code of input, obtains the first matching check results, and the first matching check results include:Eventually
End equipment side input check code match with random check code, and terminal equipment side input check code and random check code not
Matching;
Matching result receiving module, the first matching check results sent for the reception server, and according to described first
Matching check results determine whether to start the logon process of application program;And
PROCESS CONTROL MODULE, for being the check code and random verification that terminal equipment side is inputted in the described first matching check results
In the case of code matching, start the logon process of the application program.
18. device according to claim 17, wherein, the check code sending module is additionally operable to match school described first
Test result for check code and the random check code that terminal equipment side is inputted it is unmatched in the case of, continue to obtain the school of user's input
Code is tested, and the check code of acquisition is sent to server side, the check code of input is carried out according to random check code by server
Checking.
19. device according to claim 17, wherein, described device also includes:
Terminal device information sending module, the information for providing terminal device to server every first scheduled time is described
Random check code is calculated and generated according to the information of terminal device and/or the information of server by server side.
20. device according to claim 19, wherein,
The information of terminal device at least include it is following in one kind:The MID codes of terminal device, the MAC Address of terminal device, terminal
The high-resolution counter value of the system boot time of equipment, the current process number of terminal device and terminal device;
The information of server at least include it is following in one kind:The system time of server, server high-resolution counter value and
Random number.
21. according to any described devices of claim 17-20, wherein,
The matching result receiving module is additionally operable to the second matching check results of the reception server side transmission, and according to described the
Two matching check results determine whether to start application program;
Described device also includes:
Account number cipher acquisition module, for obtaining user the inputs, user account for logging in the application program and/or use
Family password, and transmission is verified that obtain the second matching check results, described second matches check results bag to server side
Include:User account and/or user cipher correct and terminal equipment side input the user account and/or use of terminal equipment side input
Family password bad;
The PROCESS CONTROL MODULE is further used for user account and/or the correct feelings of user cipher inputted in terminal equipment side
Under condition, start the process of application program;The user account and/or the incorrect situation of user cipher inputted in terminal equipment side
Under, point out the user account and/or user cipher mistake of input.
22. a kind of system of user login validation, it includes:According to any described server side users of claim 12-16
The device of the device of login authentication and user login validation according to any described terminal equipment sides of claim 18-21.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310492929.6A CN103763101B (en) | 2013-10-18 | 2013-10-18 | A kind of method of user login validation, apparatus and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310492929.6A CN103763101B (en) | 2013-10-18 | 2013-10-18 | A kind of method of user login validation, apparatus and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103763101A CN103763101A (en) | 2014-04-30 |
| CN103763101B true CN103763101B (en) | 2017-08-25 |
Family
ID=50530266
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310492929.6A Active CN103763101B (en) | 2013-10-18 | 2013-10-18 | A kind of method of user login validation, apparatus and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103763101B (en) |
Families Citing this family (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104079686B (en) * | 2014-07-17 | 2017-11-21 | 福州瑞芯微电子股份有限公司 | The method to set up and distribution method of terminal device MAC Address |
| TWI525468B (en) * | 2014-11-13 | 2016-03-11 | 陳起恭 | Twice to verify the account login to strengthen protection methods |
| CN105989096A (en) * | 2015-02-12 | 2016-10-05 | 阿里巴巴集团控股有限公司 | Account information clearing method and apparatus |
| CN105208011B (en) * | 2015-08-31 | 2019-07-30 | 努比亚技术有限公司 | A kind of verifying system and method |
| TWI561716B (en) * | 2015-09-18 | 2016-12-11 | Taiwan Fu Hsing Ind Co Ltd | Input authentication method, input authentication system and lock with input authentication system |
| CN106856018A (en) * | 2016-12-21 | 2017-06-16 | 英业达科技有限公司 | Transmission identity data is with the system and method for access control |
| CN111353142A (en) * | 2019-02-15 | 2020-06-30 | 鸿合科技股份有限公司 | User information sharing method and device and electronic equipment |
| CN111265860B (en) * | 2020-01-07 | 2023-08-04 | 广州虎牙科技有限公司 | Game archiving processing method and device, terminal equipment and readable storage medium |
| CN113051145B (en) * | 2021-04-08 | 2022-06-28 | 武汉极意网络科技有限公司 | Performance detection method of online verification system |
| CN113765898B (en) * | 2021-08-20 | 2023-08-01 | 北京来也网络科技有限公司 | Login method, device, equipment and medium based on AI and RPA |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101166091A (en) * | 2006-10-19 | 2008-04-23 | 阿里巴巴公司 | A dynamic password authentication method and service end system |
| CN101192926A (en) * | 2006-11-28 | 2008-06-04 | 北京握奇数据系统有限公司 | Account protection method and system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| SG183313A1 (en) * | 2010-02-15 | 2012-09-27 | Cse Co Ltd | Content presentation-type authentication system |
-
2013
- 2013-10-18 CN CN201310492929.6A patent/CN103763101B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101166091A (en) * | 2006-10-19 | 2008-04-23 | 阿里巴巴公司 | A dynamic password authentication method and service end system |
| CN101192926A (en) * | 2006-11-28 | 2008-06-04 | 北京握奇数据系统有限公司 | Account protection method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103763101A (en) | 2014-04-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103763101B (en) | A kind of method of user login validation, apparatus and system | |
| CN101272237B (en) | Method and system for automatically generating and filling login information | |
| USRE46158E1 (en) | Methods and systems to detect attacks on internet transactions | |
| CN103581105B (en) | Login validation method and login authentication system | |
| CN103618717B (en) | The dynamic confirming method of more account client informations, device and system | |
| US10691822B1 (en) | Policy validation management | |
| US20170242961A1 (en) | Systems and methods for personal omic transactions | |
| WO2016034048A1 (en) | Method for implementing online anti-phishing | |
| CN106453422B (en) | Dynamic authentication method and system based on mobile terminal | |
| CN107423333A (en) | A kind of real name identification method and device | |
| CN110910978B (en) | Information processing method and related device applied to blockchain network | |
| CN104584025A (en) | Device, method, and system for controlling access to web objects of a webpage or web-brower application | |
| US10148440B2 (en) | Binary code authentication | |
| CN109088902B (en) | Register method and device, authentication method and device | |
| US9038159B2 (en) | Authentication system | |
| CN102073822A (en) | Method and system for preventing user information from leaking | |
| CZ2015473A3 (en) | The method of authentication security in electronic communication | |
| CN112507326B (en) | Encryption method and device for password information based on SM3 hash algorithm and computer equipment | |
| CN102456102A (en) | Method for carrying out identity recertification on particular operation of information system by using Usb key technology | |
| CN105933296B (en) | Copyright registration method and system | |
| CN104573493B (en) | A kind of method for protecting software and system | |
| CN108270561A (en) | Data transmission method for uplink and device, the generation method of cipher key index and device | |
| CN104375935B (en) | The test method and device of SQL injection attack | |
| CN105471810B (en) | The verification method and system of soft ware authorization information | |
| CN102045170B (en) | Method and system for protecting safety of password |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20220715 Address after: Room 801, 8th floor, No. 104, floors 1-19, building 2, yard 6, Jiuxianqiao Road, Chaoyang District, Beijing 100015 Patentee after: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before: Qizhi software (Beijing) Co.,Ltd. |