CN103781064A - Short message verification system and verification method - Google Patents
Short message verification system and verification method Download PDFInfo
- Publication number
- CN103781064A CN103781064A CN201410003145.7A CN201410003145A CN103781064A CN 103781064 A CN103781064 A CN 103781064A CN 201410003145 A CN201410003145 A CN 201410003145A CN 103781064 A CN103781064 A CN 103781064A
- Authority
- CN
- China
- Prior art keywords
- message verification
- short
- electronic device
- mobile electronic
- code
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a short message verification system which is used for carrying out verification according to a short message verification code of a background server in a mobile electronic device. The short message verification system comprises a short message verification module and an encryption module. The short message verification module is arranged in the mobile electronic device and generates a machine identity code of the mobile electronic device. The encryption module is arranged in the background server and encrypts the short message verification code needing to be sent by the background server and generates an encryption verification code according to the machine identity code. The short message verification module decrypts the encryption verification code according to the machine identity code to acquire the short message verification code and carries out submitting according to the need of a user. The short message verification system encrypts the verification code needing to be sent by using the machine identity code. The user can acquire the real short message verification code by using the short message verification module to carry out decryption. The problem that an attacker acquires the verification code sent by the background server after a SIM card is stolen or copied is avoided, which ensures the property safety of the user. The invention further provides a short message verification method.
Description
Technical field
The present invention relates to information security technology, relate in particular to a kind of short-message verification system and verification method.
Background technology
At present, short-message verification is the voucher of enterprise to consumer (user), carry out identity verification by short message content, this authentication form is multiplex in shopping at network, Web bank, in the high system of the security requirements such as handset binding, as shopping at network, Web bank pay etc., the forms that send short-message verification codes that adopt are carried out identity verification more.User logins operator website, in the time of the operation such as carry out that customize services, net purchase payment, Net silver are transferred accounts, for guaranteeing safety, backstage, website sends short-message verification code to the phone number of user's binding in advance, after user receives short-message verification code, on website, fill in this identifying code, after being verified, just can complete subsequent operation.
But after user's SIM card is replicated or usurps, the short-message verification code that operator sends also can be sent on assailant's mobile phone, thereby causes user's property loss, fail safe is lower.
Summary of the invention
In view of this, the invention provides a kind of short-message verification system that can ensure authenticating security in the time that SIM card is replicated or usurps.
A kind of short-message verification system, it is for verifying according to the short-message verification code of background server at mobile electronic device, described short-message verification system comprises a short-message verification module and an encrypting module, described short-message verification module is arranged in described mobile electronic device, described encrypting module is arranged in described background server, described short-message verification module is for generating the machine identity coding of described mobile electronic device, the short-message verification code that background server need be sent to mobile electronic device by the machine identity coding that described encrypting module generates according to described short-message verification module is encrypted generation encrypted authentication code, described short-message verification module generates described encrypted authentication code machine identity coding according to described short-message verification module is decrypted to obtain short-message verification code and need to be committed to described background server according to user.
A kind of short-message verification method, it is for verifying according to the short-message verification code of background server at mobile electronic device, described short-message verification method comprises the following steps:
Generate the machine identity coding of described mobile electronic device;
The short-message verification code that receives the machine identity coding generating and background server need be sent to mobile electronic device is encrypted to generate encrypted authentication code according to received machine identity coding;
Described encrypted authentication code is decrypted to obtain short-message verification code according to described machine identity coding;
The short-message verification code obtaining need to be committed to background server according to user.
Compared with prior art, in short-message verification system provided by the invention and verification method, the identifying code that need be sent to user by encrypting module to backstage at background server utilizes unique machine identity coding of mobile electronic device to be encrypted, even the note that assailant sends at the background server obtaining, but the information content in note is not identifying code but passes through the encrypted authentication code of machine identity coding encrypting, need user to utilize short-message verification module to be decrypted and just can to obtain real short-message verification code according to unique machine identity coding of mobile electronic device, thereby avoid stolen in SIM card or be replicated after assailant obtain background server send identifying code, effectively guarantee user's property safety.
Accompanying drawing explanation
Fig. 1 is the module diagram of short-message verification system provided by the invention.
Fig. 2 be when in Fig. 1, mobile electronic device is non intelligent mobile electronic device short-message verification system schematic diagram is set.
Fig. 3 is the flow chart of short-message verification method provided by the invention.
Main element symbol description
Short-message verification system 100
Mobile electronic device 200
Short-message verification module 120
Commit unit 126
Following embodiment further illustrates the present invention in connection with above-mentioned accompanying drawing.
Embodiment
Refer to Fig. 1, a kind of short-message verification system 100 that it provides for embodiment of the present invention, it is for verifying according to the short-message verification code of background server 300 at mobile electronic device 200, described short-message verification system 100 comprises a short-message verification module 120 and an encrypting module 140, described short-message verification module 120 is arranged in mobile electronic device 200, and described encrypting module 140 is arranged in background server 300.
Short-message verification module 120 comprises a coding generation unit 122, decryption unit 124 and a commit unit 126, described coding generation unit 122 is for generating unique machine identity coding according to the hardware characteristics of mobile electronic device 200, described decryption unit 124 is for utilizing decipherment algorithm to carry out corresponding deciphering to the information receiving, in present embodiment, decryption unit 124 is corresponding to corresponding information is encrypted and is deciphered with encrypting module 140 couplings.In present embodiment, decryption unit 124 is encoded to basis according to machine identity the information receiving is decrypted, and unique machine identity that to be also decryption unit 124 receive from coding generation unit 122 mobile electronic device 200 generating is encoded and the information of utilizing decipherment algorithm that encrypting module 140 is sent is decrypted.Described commit unit 126 is submitted to background server 300 for the short-message verification code that described decryption unit 124 need to be generated according to user.
Described encrypting module 140 is for utilizing cryptographic algorithm to carry out respective encrypted to the information receiving, in present embodiment, encrypting module 140 is encoded to basis according to machine identity the information receiving is decrypted, and unique machine identity that to be also encrypting module 140 receive from coding generation unit 122 mobile electronic device 200 generating is encoded and the short-message verification code that utilizes cryptographic algorithm that background server need be sent to user's mobile electronic device 200 is encrypted to generate encrypted authentication code information and is sent to user.Meanwhile, user crosses the encrypted authentication code information exchange in the note of receiving the short-message verification code that obtains background server after decryption unit 124 is decrypted and be sent to user's mobile electronic device 200.
Be understandable that, the interior corresponding decipherment algorithm of the cryptographic algorithm of encrypting module 140 and decryption unit 124 can be set arbitrarily according to needs, and enciphering and deciphering algorithm is encoded to basis with unique machine identity of user's mobile electronic device.
Mobile electronic device 200 can be mobile intelligent electronic equipment or non intelligent mobile electronic device.Be understandable that, as shown in Figure 2, in the time that mobile electronic device 200 is non intelligent mobile electronic device, mobile electronic device 200 domestic demands are installed a token 210, and described short-message verification module 120 is arranged in described token 210.
Refer to Fig. 3, a kind of short-message verification method that it provides for embodiment of the present invention, it is for verifying according to the short-message verification code of background server at mobile electronic device, described short-message verification method comprises the following steps:
S110: the machine identity coding that generates described mobile electronic device;
S120: the short-message verification code that receives the machine identity coding generating and background server need be sent to mobile electronic device is encrypted to generate encrypted authentication code according to received machine identity coding;
S130: encrypted authentication code is decrypted to obtain short-message verification code according to machine identity coding;
S140: the short-message verification code obtaining need to be committed to background server according to user.
In step S110, utilize coding generation unit 122 to generate unique machine identity coding according to the hardware characteristics of mobile electronic device 200.
In step S120, unique machine identity of utilizing encrypting module 140 to receive from coding generation unit 122 mobile electronic device 200 generating is encoded and the short-message verification code that utilizes cryptographic algorithm that background server need be sent to user's mobile electronic device 200 is encrypted to generate encrypted authentication code.
In step S130, unique machine identity of utilizing decryption unit 124 to receive from coding generation unit 122 mobile electronic device 200 generating is encoded and utilizes decipherment algorithm that the encrypted authentication code sending from encrypting module 140 is decrypted, thereby obtains background server and be sent to the short-message verification code of user's mobile electronic device 200.
In step S140, the short-message verification code that utilizes commit unit 126 described decryption unit 124 need to be obtained according to user is submitted to background server 300, thereby completes short-message verification.
Be understandable that, mobile electronic device 200 be mobile intelligent electronic equipment or non intelligent mobile electronic device all can, in the time that described mobile electronic device is non intelligent mobile electronic device, in step S110, comprise the following steps:
S112 a: token is installed;
S114: the machine identity coding that generates mobile electronic device in described token.
In step S114, short-message verification module 120 is arranged in installed token 210, thereby encrypting module 140 obtains unique machine identity coding of the mobile electronic device 200 of generation from token 210.
In short-message verification system 100 provided by the invention and verification method, the identifying code that by encrypting module 140, backstage need be sent to user at background server 300 is encrypted according to unique machine identity coding of mobile electronic device, even the note that assailant sends at the background server obtaining, but the information content in note is not identifying code but according to the encrypted authentication code of machine identity coding encrypting, need user to utilize decryption unit 124 to be decrypted and just can to obtain real short-message verification code according to unique machine identity coding of mobile electronic device, thereby avoid stolen in SIM card or be replicated after assailant obtain background server send identifying code, effectively guarantee user's property safety.
Be understandable that, for the person of ordinary skill of the art, can make other various corresponding changes and distortion by technical conceive according to the present invention, and all these change the protection range that all should belong to the claims in the present invention with distortion.
Claims (7)
1. a short-message verification system, it is for verifying according to the short-message verification code of background server at mobile electronic device, described short-message verification system comprises a short-message verification module and an encrypting module, described short-message verification module is arranged in described mobile electronic device, described encrypting module is arranged in described background server, described short-message verification module is for generating the machine identity coding of described mobile electronic device, the short-message verification code that background server need be sent to mobile electronic device by the machine identity coding that described encrypting module generates according to described short-message verification module is encrypted generation encrypted authentication code, described short-message verification module generates described encrypted authentication code machine identity coding according to described short-message verification module is decrypted to obtain short-message verification code and need to be committed to described background server according to user.
2. short-message verification system as claimed in claim 1, it is characterized in that, described short-message verification module comprises a coding generation unit, a decryption unit and a commit unit, described coding generation unit is for generating corresponding machine identity coding according to the hardware characteristics of mobile electronic device, described decryption unit machine identity coding corresponding with described encrypting module and that generate for the described coding generation unit receiving the encrypted authentication code that described encrypting module is generated are decrypted and generate short-message verification code according to received machine identity coding, described commit unit is submitted to background server for a short-message verification code that described decryption unit need to be generated according to user.
3. short-message verification system as claimed in claim 1, is characterized in that, described mobile electronic device is mobile intelligent electronic equipment.
4. short-message verification system as claimed in claim 1, is characterized in that, in the time that described mobile electronic device is non intelligent mobile electronic device, described mobile electronic device comprises a token, and described short-message verification module is arranged in described token.
5. a short-message verification method, it is for verifying according to the short-message verification code of background server at mobile electronic device, described short-message verification method comprises the following steps:
Generate the machine identity coding of described mobile electronic device;
The short-message verification code that receives the machine identity coding generating and background server need be sent to mobile electronic device is encrypted to generate encrypted authentication code according to received machine identity coding;
Described encrypted authentication code is decrypted to obtain short-message verification code according to described machine identity coding;
The short-message verification code obtaining need to be committed to background server according to user.
6. short-message verification method as claimed in claim 5, is characterized in that, described mobile electronic device is mobile intelligent electronic equipment.
7. short-message verification method as claimed in claim 5, is characterized in that, in the time that described mobile electronic device is non intelligent mobile electronic device, in described generation machine identity coding step, comprises the following steps:
A token is installed;
In described token, generate the machine identity coding of described mobile electronic device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410003145.7A CN103781064A (en) | 2014-01-02 | 2014-01-02 | Short message verification system and verification method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410003145.7A CN103781064A (en) | 2014-01-02 | 2014-01-02 | Short message verification system and verification method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103781064A true CN103781064A (en) | 2014-05-07 |
Family
ID=50572787
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410003145.7A Pending CN103781064A (en) | 2014-01-02 | 2014-01-02 | Short message verification system and verification method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103781064A (en) |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105142139A (en) * | 2014-05-30 | 2015-12-09 | 北京奇虎科技有限公司 | Method and device for obtaining verification information |
| CN105553926A (en) * | 2015-06-30 | 2016-05-04 | 宇龙计算机通信科技(深圳)有限公司 | Authentication method, server, and terminal |
| CN105827577A (en) * | 2015-01-08 | 2016-08-03 | 阿里巴巴集团控股有限公司 | Method and device for information verification |
| CN105897771A (en) * | 2016-06-22 | 2016-08-24 | 中国联合网络通信集团有限公司 | Identity authentication method, authentication server and third-party platform |
| CN106412862A (en) * | 2016-10-13 | 2017-02-15 | 上海众人网络安全技术有限公司 | Short message reinforcement method, apparatus and system |
| CN106713618A (en) * | 2016-11-25 | 2017-05-24 | 维沃移动通信有限公司 | Processing method of identifying code and mobile terminal |
| CN107770737A (en) * | 2016-08-22 | 2018-03-06 | 上海方付通商务服务有限公司 | Pasting card, the affaris safety trade system based on pasting card and method |
| CN109345245A (en) * | 2018-09-25 | 2019-02-15 | 全链通有限公司 | Short-message verification method, equipment, network and storage medium based on block chain |
| CN109522731A (en) * | 2018-11-07 | 2019-03-26 | 温州杉果数据科技有限公司 | A kind of big data information security storage encryption system and its method |
| WO2019134494A1 (en) * | 2018-01-08 | 2019-07-11 | 中国移动通信有限公司研究院 | Verification information processing method, communication device, service platform, and storage medium |
| CN111064732A (en) * | 2019-12-24 | 2020-04-24 | 王升 | Verification code or information encryption and decryption system |
| CN111246404A (en) * | 2018-11-28 | 2020-06-05 | 中国移动通信集团浙江有限公司 | Method and device for processing verification code short message |
| CN116708020A (en) * | 2023-07-28 | 2023-09-05 | 江苏华存电子科技有限公司 | Cloud storage-based data security management method and system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101867894A (en) * | 2009-07-10 | 2010-10-20 | 深圳市安捷信联科技有限公司 | Short message consumption method and server thereof |
| CN102143482A (en) * | 2011-04-13 | 2011-08-03 | 中国工商银行股份有限公司 | Method and system for authenticating mobile banking client information, and mobile terminal |
| CN103297940A (en) * | 2013-07-01 | 2013-09-11 | 苏州通付盾信息技术有限公司 | Short message encryption communication system and method |
-
2014
- 2014-01-02 CN CN201410003145.7A patent/CN103781064A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101867894A (en) * | 2009-07-10 | 2010-10-20 | 深圳市安捷信联科技有限公司 | Short message consumption method and server thereof |
| CN102143482A (en) * | 2011-04-13 | 2011-08-03 | 中国工商银行股份有限公司 | Method and system for authenticating mobile banking client information, and mobile terminal |
| CN103297940A (en) * | 2013-07-01 | 2013-09-11 | 苏州通付盾信息技术有限公司 | Short message encryption communication system and method |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105142139A (en) * | 2014-05-30 | 2015-12-09 | 北京奇虎科技有限公司 | Method and device for obtaining verification information |
| CN105142139B (en) * | 2014-05-30 | 2019-02-12 | 北京奇虎科技有限公司 | The acquisition methods and device of verification information |
| CN109451495A (en) * | 2014-05-30 | 2019-03-08 | 北京奇虎科技有限公司 | The acquisition methods and device of verification information |
| CN105827577A (en) * | 2015-01-08 | 2016-08-03 | 阿里巴巴集团控股有限公司 | Method and device for information verification |
| CN105553926A (en) * | 2015-06-30 | 2016-05-04 | 宇龙计算机通信科技(深圳)有限公司 | Authentication method, server, and terminal |
| CN105897771A (en) * | 2016-06-22 | 2016-08-24 | 中国联合网络通信集团有限公司 | Identity authentication method, authentication server and third-party platform |
| CN105897771B (en) * | 2016-06-22 | 2019-04-09 | 中国联合网络通信集团有限公司 | Identity identifying method, certificate server and third-party platform |
| CN107770737A (en) * | 2016-08-22 | 2018-03-06 | 上海方付通商务服务有限公司 | Pasting card, the affaris safety trade system based on pasting card and method |
| CN107770737B (en) * | 2016-08-22 | 2023-06-20 | 上海方付通商务服务有限公司 | Film sticking card, and safe transaction system and method based on film sticking card |
| CN106412862A (en) * | 2016-10-13 | 2017-02-15 | 上海众人网络安全技术有限公司 | Short message reinforcement method, apparatus and system |
| CN106412862B (en) * | 2016-10-13 | 2020-01-31 | 上海众人网络安全技术有限公司 | short message reinforcement method, device and system |
| CN106713618A (en) * | 2016-11-25 | 2017-05-24 | 维沃移动通信有限公司 | Processing method of identifying code and mobile terminal |
| WO2019134494A1 (en) * | 2018-01-08 | 2019-07-11 | 中国移动通信有限公司研究院 | Verification information processing method, communication device, service platform, and storage medium |
| CN109345245A (en) * | 2018-09-25 | 2019-02-15 | 全链通有限公司 | Short-message verification method, equipment, network and storage medium based on block chain |
| CN109522731A (en) * | 2018-11-07 | 2019-03-26 | 温州杉果数据科技有限公司 | A kind of big data information security storage encryption system and its method |
| CN111246404A (en) * | 2018-11-28 | 2020-06-05 | 中国移动通信集团浙江有限公司 | Method and device for processing verification code short message |
| CN111064732A (en) * | 2019-12-24 | 2020-04-24 | 王升 | Verification code or information encryption and decryption system |
| CN116708020A (en) * | 2023-07-28 | 2023-09-05 | 江苏华存电子科技有限公司 | Cloud storage-based data security management method and system |
| CN116708020B (en) * | 2023-07-28 | 2023-11-17 | 江苏华存电子科技有限公司 | Cloud storage-based data security management method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103781064A (en) | Short message verification system and verification method | |
| CN103067401B (en) | Method and system for key protection | |
| CN103297403B (en) | A kind of method and system for realizing dynamic cipher verification | |
| CN109766979B (en) | Two-dimensional code generation method, verification method and device | |
| CN107784499B (en) | Secure payment system and method of near field communication mobile terminal | |
| CN105790938A (en) | System and method for generating safety unit key based on reliable execution environment | |
| CN103095456A (en) | Method and system for processing transaction messages | |
| CN107920052B (en) | Encryption method and intelligent device | |
| CA2969332C (en) | A method and device for authentication | |
| CN102664898A (en) | Fingerprint identification-based encrypted transmission method, fingerprint identification-based encrypted transmission device and fingerprint identification-based encrypted transmission system | |
| CN101286849A (en) | Authentication system and method of a third party based on engagement arithmetic | |
| CN104901935A (en) | Bilateral authentication and data interaction security protection method based on CPK (Combined Public Key Cryptosystem) | |
| CN102036236A (en) | Method and device for authenticating mobile terminal | |
| CN104393993A (en) | A security chip for electricity selling terminal and the realizing method | |
| CN104322003A (en) | Cryptographic authentication and identification method using real-time encryption | |
| CN102082790A (en) | Method and device for encryption/decryption of digital signature | |
| CN104424446A (en) | Safety verification and transmission method and system | |
| CN102739403A (en) | Identity authentication method and device for dynamic token | |
| CN103108245B (en) | A kind of intelligent television pays cipher key system and method for payment based on intelligent television | |
| CN103905388A (en) | Authentication method, authentication device, smart card, and server | |
| CN105407467A (en) | Short message encryption methods, devices and system | |
| CN108401494B (en) | Method and system for transmitting data | |
| CN102468962A (en) | Method for personal identity authentication utilizing a personal cryptographic device | |
| TWI786039B (en) | Offline payment method, terminal equipment, backstage payment device and offline payment system | |
| CN115276978A (en) | Data processing method and related device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140507 |