CN104811443B - A kind of identity identifying method - Google Patents

A kind of identity identifying method Download PDF

Info

Publication number
CN104811443B
CN104811443B CN201510159018.0A CN201510159018A CN104811443B CN 104811443 B CN104811443 B CN 104811443B CN 201510159018 A CN201510159018 A CN 201510159018A CN 104811443 B CN104811443 B CN 104811443B
Authority
CN
China
Prior art keywords
information
terminal
user
authentication
certificate server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510159018.0A
Other languages
Chinese (zh)
Other versions
CN104811443A (en
Inventor
王延毅
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Microphone Holdings Co Ltd
Original Assignee
Shenzhen Jinli Communication Equipment Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Jinli Communication Equipment Co Ltd filed Critical Shenzhen Jinli Communication Equipment Co Ltd
Priority to CN201510159018.0A priority Critical patent/CN104811443B/en
Publication of CN104811443A publication Critical patent/CN104811443A/en
Application granted granted Critical
Publication of CN104811443B publication Critical patent/CN104811443B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The present invention provides a kind of identity identifying methods, this method comprises: obtaining the grip status information that user holds terminal, and obtain the current motion state information of the terminal;Corresponding informative abstract is generated according to the grip status information;Certification request is sent to certificate server, the certification request includes the informative abstract and the current motion state information so that the certificate server authenticate informative abstract registration information corresponding with the pre-stored current motion state information make a summary it is whether consistent;If consistent, the authentication successful information that the certificate server returns is received.Implement the embodiment of the present invention, can be improved the safety of authentication, and improve the convenience of authentication operation, and be effectively improved user experience.

Description

A kind of identity identifying method
Technical field
The present invention relates to security technology area more particularly to a kind of identity identifying methods.
Background technique
With the continuous development of Internet technology, while internet brings convenient to people's lives, the network that faces Phenomena such as security situation is also increasingly severeer, and user's bank account is stolen, fund is stolen, user identity is falsely used is shown in not repeatly It is fresh.Currently, common identity identifying technology is the form of " user account+static password ", however, it has been found in practice that, user Account and static password should when illegal user obtains user account and static password in the presence of leakage and the risk being stolen Identity identifying technology can not efficiently differentiate out legitimate user and illegal user.Furthermore in order to reinforce safeguard protection, one kind is based on The Identity Authentication Mode of dynamic password arises, and dynamic password is higher than static password in safety, however, output dynamic The token of password can be replicated, and when illegal user gets token and its password, dynamic password just loses security implications, So that there are still biggish security risks for authentication.It is manually entered in addition, above two identity identifying technology is required to user Account and password, and the case where forgetting account and password, happens occasionally, to bring inconvenience to authentication.
Summary of the invention
The embodiment of the invention provides a kind of identity identifying method, it can be improved the safety of authentication and improve body The convenience of part authentication operation.
The embodiment of the invention provides a kind of identity identifying methods, comprising:
The grip status information that user holds terminal is obtained, and obtains the current motion state information of the terminal;
Corresponding informative abstract is generated according to the grip status information;
Certification request is sent to certificate server, the certification request includes the informative abstract and the current kinetic shape State information, so that the certificate server certification informative abstract is corresponding with the pre-stored current motion state information Registration information abstract it is whether consistent;
If consistent, the authentication successful information that the certificate server returns is received.
In the embodiment of the present invention, the grip status information of terminal is held obtaining user, and obtain the current fortune of terminal After dynamic status information, corresponding informative abstract can be generated according to grip status information, it is possible to further to certificate server The certification request for carrying informative abstract and current motion state information is sent, so that certificate server receives the certification request Afterwards, it is consistent to authenticate informative abstract registration information abstract whether corresponding with pre-stored current motion state information, if one It causes, then receives the successful information of authentication of certificate server return, and successfully pass certification.Implemented by implementing the present invention Example, can be improved the safety of authentication, and the convenience of authentication operation can be improved, and be effectively improved user's body It tests.
Detailed description of the invention
It to describe the technical solutions in the embodiments of the present invention more clearly, below will be to needed in the embodiment Attached drawing is briefly described, it should be apparent that, drawings in the following description are some embodiments of the invention, general for this field For logical technical staff, without creative efforts, it is also possible to obtain other drawings based on these drawings.
Fig. 1 is a kind of flow diagram of identity identifying method provided in an embodiment of the present invention;
Fig. 2 is a kind of schematic diagram of grip mode for holding terminal provided in an embodiment of the present invention;
Fig. 3 is sensor distributed architecture schematic diagram in a kind of terminal provided in an embodiment of the present invention;
Fig. 4 is the flow diagram of another identity identifying method provided in an embodiment of the present invention;
Fig. 5 is the flow diagram of another identity identifying method provided in an embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of terminal provided in an embodiment of the present invention;
Fig. 7 is the structural schematic diagram of another terminal provided in an embodiment of the present invention;
Fig. 8 is the structural schematic diagram of another terminal provided in an embodiment of the present invention;
Fig. 9 is a kind of structural schematic diagram of identity authorization system provided in an embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete Site preparation description, it is clear that described embodiments are some of the embodiments of the present invention, instead of all the embodiments.Based on this hair Embodiment in bright, every other implementation obtained by those of ordinary skill in the art without making creative efforts Example, shall fall within the protection scope of the present invention.
The embodiment of the invention provides a kind of identity identifying method, the safety of authentication can be improved, and improve The convenience of authentication operation, and it is effectively improved user experience.It is described in detail separately below.
Referring to Fig. 1, Fig. 1 is a kind of flow diagram of identity identifying method provided in an embodiment of the present invention.Such as Fig. 1 institute Show, which may comprise steps of:
S101, the grip status information that user holds terminal is obtained, and obtains the current motion state information of terminal.
In the embodiment of the present invention, terminal can include but is not limited to smart phone, tablet computer, palm PC, a number Word assistant (Personal Digital Assistant, PAD), multimedia player, smartwatch, Intelligent bracelet etc..
In the embodiment of the present invention, the grip status information that user holds terminal may include the palm print information of user, user Finger print information, user and terminal each contact point pressure value and at least one of the temperature value of each contact point.
In the embodiment of the present invention, the grip mode of different user grip terminal is had differences.Referring to Figure 2 together, Fig. 2 It is a kind of schematic diagram of grip mode for holding terminal provided in an embodiment of the present invention.It will be understood by those skilled in the art that Fig. 2 Shown in grip mode do not constitute the restriction to the embodiment of the present invention, the grip mode that user holds terminal is varied, Fig. 2 Shown in grip mode be only one of common grip mode.
In the embodiment of the present invention, the palm print collecting device for acquiring user's palm print information can be integrated in the terminal, slapped Line acquisition device can be one or more, it is contemplated that palmmprint can generally be acquired and be filled by user's grip mode as shown in Figure 2 Install the position in terminal back side partial below;The fingerprint collecting for acquiring user fingerprints information can also be integrated in the terminal Device, fingerprint acquisition device can be one or more, can be set in the position of terminal back side;It can also be in the terminal Integrate multiple pressure sensors for measured pressure value or pressure values, wherein pressure sensor is for measuring user and terminal Each contact point pressure value or pressure values, such as the pressure value that generates of when each finger of user and terminal contact or pressure Value;It can also integrate in the terminal multiple for measuring the temperature sensor of temperature value, wherein temperature sensor is used for measuring The temperature value at family and each contact point of terminal, for example, user contacted with terminal each finger transmitting temperature value and/or use The temperature value etc. of palm transmitting when family palm and terminal contact.It is provided in an embodiment of the present invention one also referring to Fig. 3, Fig. 3 Sensor distributed architecture schematic diagram in kind terminal.In view of user's grip mode as shown in Figure 2, generally by pressure sensor with And temperature sensor is distributed in the edge side of terminal, forms sensor array, as shown in Figure 3, wherein 3a-1 to 3a-22 be The array of pressure sensors that terminal edge is distributed along side, 3b-1 to 3b-22 are the array of temperature sensor being distributed in terminal edge along side, It will be understood by those skilled in the art that sensor distributed architecture shown in Fig. 3 does not constitute the restriction to the embodiment of the present invention, it Either the symmetrical structure of rule, is also possible to unsymmetric structure, it can also include sensors more more or fewer than diagram, Or different distributing position.
In the embodiment of the present invention, the current kinetic shape of terminal can be obtained by Integrated Accelerometer in the terminal State information, wherein the current motion state information of terminal may include the acceleration magnitude of terminal and the acceleration direction of terminal At least one of.It may determine that terminal is stationary state or motion state by the acceleration magnitude of terminal, and pass through The acceleration direction of terminal may determine that whether terminal screen rotates.
It holds the grip status information of terminal it is understood that obtaining user and obtains the current motion state letter of terminal There is no inevitable execution sequencing between breath, execution can be synchronized and also staggeredly executed, certainly, can also first carry out and obtain terminal The step of current motion state information, then execute and obtain the step of user holds the grip status information of terminal.
S102, corresponding informative abstract is generated according to grip status information.
In the embodiment of the present invention, can use target algorithm will hold the corresponding informative abstract of status information generation, wherein Target algorithm may include message digest algorithm (Message Digest Algorithm 5, MD5), secure hash algorithm (Secure Hash Algorithm, SHA), RACE raw integrity verification message digest algorithm (RACE Integrity Primitives Evaluation Message Digest Algorithm, RIPEMD) etc., the embodiment of the present invention does not limit It is fixed.Wherein, the principle of MD5 algorithm is the information of input to be handled with 512 groupings, and each grouping is divided into 16 32 again Seat grouping, after have passed through a series of processing, the output of algorithm is formed by four 32, by this four 32 packet levels 128 hashed values will be generated after connection.One segment information can be compressed into a kind of format of encryption by MD5 algorithm, and different is defeated Enter to obtain different as a result, there is uniqueness using the abstract that MD5 algorithm obtains, and MD5 is highly-safe, is not easy to crack.SHA is calculated The principle of method is similar with MD5, and highly-safe, common are SHA-1, SHA-2 scheduling algorithm.RIPEMD algorithm is built upon MD5 On the basis of, principle is also similar with MD5.In addition, above-mentioned several target algorithms can be used alone, use can also be integrated.
In the embodiment of the present invention, corresponding information is generated according to the grip status information that the user got holds terminal and is plucked It wants, which is encryption, is not easy to crack and forge, highly-safe.
In the embodiment of the present invention, before executing step S102, the grip status information that can be will acquire is filtered Processing, to filter out garbage signal, farthest retains useful signal.
S103, certification request is sent to certificate server, which includes informative abstract and current motion state letter Breath, so that certificate server authentication information is made a summary, registration information abstract corresponding with pre-stored current motion state information is It is no consistent, if unanimously, thening follow the steps S104.
In the embodiment of the present invention, before executing step S103 and sending certification request to certificate server, terminal need to be detected Communication connection, after establishing communication connection between terminal and certificate server, terminal whether are established between certificate server Certification request can be sent to certificate server.Communication link can be carried out between terminal and certificate server wirelessly It connects, can also be communicatively coupled by wired mode, wherein wireless mode can be Wi-Fi mode, 4G (the 4th Generation mobile communication technology, fourth generation mobile communication technology) mode, 3G (3rd- Generation, 3rd generation mobile communication technology) mode, GSM (Global System for Mobile Communications, global system for mobile communications) mode and other communications, the embodiment of the present invention do not limit It is fixed.
In the embodiment of the present invention, terminal includes holding the letter of status information generation to the certification request that certificate server is sent The current operating conditions information of abstract and terminal is ceased, the certification request is for triggering authentication server authentication information abstract and in advance Whether the corresponding registration information abstract of the current motion state information first stored is consistent, at this point, authentication procedures take in certification It is completed in business device.It is previously stored with the corresponding registration information abstract of at least one movement state information in certificate server, that is, exists Before certification, need to first it be registered.Wherein, the corresponding registration information abstract of at least one movement state information is terminal at least one The registration information that registration grip status information when user is registered by holding terminal under kind movement state information generates is plucked It wants.
As an alternative embodiment, the embodiment of step S103 can be with are as follows:
11) certification request is sent to certificate server, which carries the current operating conditions information of terminal, with Make certificate server that the corresponding registration information abstract of pre-stored current operating conditions information is sent to terminal;
12) the corresponding registration information abstract of current operating conditions information that certificate server is sent is received;
13) whether authentication information abstract registration information abstract corresponding with current operating conditions information is consistent, if unanimously, Export authentication successful information.
In this embodiment, terminal can obtain the corresponding registration information of current operating conditions information to certificate server Abstract, then plucks informative abstract registration information whether corresponding with the current operating conditions information that certificate server sends over Certification comparison is carried out, so that authentication procedures are completed in the terminal.
S104, the authentication successful information that certificate server returns is received.
In the embodiment of the present invention, certification request is sent to certificate server when executing step S103, so that certificate server Authenticate informative abstract corresponding with pre-stored current motion state information registration information abstract it is consistent when, can receive and recognize The authentication successful information that server returns is demonstrate,proved, and the authentication successful information can be responded, to execute corresponding operation.
As an alternative embodiment, certification request is sent to certificate server, so that certificate server authenticates When informative abstract registration information abstract corresponding with pre-stored current motion state information is inconsistent, it can receive certification clothes The authentication failure information that business device returns, and the authentication failure information can be responded, to execute corresponding operation.
In this embodiment, qualifications can be preset, when n times continuous within the unit time receive certification The authentication failure information that server returns can then lock the application for carrying out authentication at this time, no longer obtain when locked The grip status information of user, but allow the manual input authentication information of user, or until obtain use again after the unlock of specific duration The grip status information at family is authenticated.Wherein, the unit time can be one day, one hour, 1 minute etc., and n is positive integer. Such as: user connects 3 equal authentification failures when carrying out authentication to terminal unlocking interface in 1 minute, then can should Unlock interface is locked, and user can only be manually entered unlocking pin at this time.
In the embodiment of the present invention, need to carry out authentication can be the included application of terminal and tool, such as open a terminal Address list when can carry out authentication, the i.e. openable address list when authentication passes through;It is also possible to install in terminal Third party software, such as: payment application, instant chat software (such as QQ, wechat, microblogging), multimedia software etc.;It can also be It, can be in the case where not being manually entered unlocking pin in unlock interface for the unlock interface of terminal, it can be by obtaining The grip status information for taking family grip terminal carries out authentication, then can be with automatic unlocking terminal when authentication success; Further, it is also possible to carry out authentication etc. for the other application in terminal, the embodiment of the present invention is not construed as limiting.
For example, when user wants to log in a payment platform in terminal, in the authentication for entering payment platform Interface (i.e. the login interface of payment platform), available user at this time holds the grip status information of terminal, such as the palm of user Line information, finger print information, user and terminal each contact point pressure value and temperature value etc. and available terminal it is current Movement state information.Then, it can use MD5 algorithm and these grip status informations generated into corresponding informative abstract, and will take Certification request with informative abstract and current motion state information is sent to certificate server, and the information is judged by server Whether whether registration information corresponding with pre-stored current operating conditions information abstract is consistent for abstract.Therefore, this is being carried out Before secondary certification, user needs to register in the payment platform in advance, to obtain the registration under at least one movement state information Informative abstract, when server judges informative abstract registration information abstract corresponding with pre-stored current operating conditions information Unanimously, then terminal can receive the authentication successful information that certificate server returns, and judge that active user is legitimate user, And successfully log into the payment platform;When server judges that the informative abstract is corresponding with pre-stored current operating conditions information Registration information abstract it is inconsistent, then terminal can receive certificate server return authentication failure information, judge to work as Preceding user is illegal user, and can export the prompt for logging in payment platform failure.
In the method depicted in fig. 1, the grip status information of user's grip terminal is being obtained, and is obtaining working as terminal After preceding movement state information, corresponding informative abstract can be generated according to grip status information, it is possible to further take to certification Business device sends the certification request for carrying informative abstract and current motion state information, so that certificate server receives the certification After request, informative abstract registration information abstract whether corresponding with pre-stored current motion state information is authenticated unanimously, If consistent, the successful information of authentication of certificate server return is received, and successfully passes certification.By implementing Fig. 1 institute The method of description, since the grip mode that user holds terminal varies with each individual, the grip state of the different user got Information is then different, can be used as user according to the informative abstract that grip status information generates and uniquely identifies, by plucking information It to be compared with the registration information abstract saved when registration, the safety of authentication can be improved.In addition, the present invention is implemented Example is manually entered account and password without user when carrying out authentication, so as to improve the convenient of authentication operation Property, and it is effectively improved user experience.
Referring to Fig. 4, Fig. 4 is the flow diagram of another identity identifying method provided in an embodiment of the present invention.Such as Fig. 4 Shown, which may comprise steps of:
S401, certificate server receive the certification request that terminal is sent, which includes informative abstract and terminal Current motion state information.
In the embodiment of the present invention, certificate server can be communicatively coupled with terminal through internet in advance, work as the two After being successfully connected, certificate server can receive the certification request that terminal sends over, the certification request include informative abstract and The current motion state information of terminal.Wherein, informative abstract is to hold terminal in the user will acquire when authentication Grip status information by MD5 or SHA scheduling algorithm calculate obtain, user hold terminal grip status information may include The palm print information of user, the finger print information of user, user and terminal each contact point pressure value and each contact point The palm print information of at least one of temperature value, user can be obtained by palm print collecting device or circuit integrated in terminal Take, the finger print information of user can be obtained by the fingerprint acquisition device that integrates in terminal or circuit, user and terminal it is each The pressure value of a contact point can be obtained by the array of pressure sensors integrated in terminal, and user contacts with each of terminal The temperature value of point can be obtained by the array of temperature sensor integrated in terminal.In addition, the current motion state of terminal is believed Breath may include at least one of the acceleration magnitude of terminal and the acceleration direction of terminal, the current motion state letter of terminal Breath can be obtained by the acceleration transducer integrated in terminal.
S402, certificate server judge whether that being previously stored with the corresponding registration information of current motion state information makes a summary, If so, thening follow the steps S403;If it is not, thening follow the steps S405.
In the embodiment of the present invention, after execution step S401 receives the certification request of terminal transmission, certificate server can To judge whether to be previously stored with the abstract of registration information corresponding to the current motion state information carried in certification request, if Have, then can further execute step S403;If nothing, step S405 can be executed and unsuccessfully believed to terminal transmission authentication Breath.
In the embodiment of the present invention, registration information abstract is that terminal is believed at least one motion state before carrying out authentication The registration grip status information that the user that gets under breath holds terminal is generated, and by movement state information and corresponding note Volume informative abstract is uploaded to certificate server after being associated, and a kind of movement state information correspond to a kind of registration information and makes a summary.
Whether S403, certificate server authenticate informative abstract registration information abstract corresponding with current motion state information Unanimously, if so, thening follow the steps S404;If it is not, thening follow the steps S405.
In the embodiment of the present invention, judge to be previously stored with the corresponding note of current motion state information when executing step S402 When volume informative abstract, certificate server can further authenticate informative abstract registration letter corresponding with current motion state information Whether breath abstract is consistent, if unanimously, can execute step S404 to terminal and send authentication successful information;If inconsistent, Step S405 can then be executed and send authentication failure information to terminal.
As an alternative embodiment, to authenticate the informative abstract corresponding with current motion state information for certificate server Registration information abstract whether consistent mode is specifically as follows:
The data that the informative abstract is included by certificate server registration information abstract corresponding with current motion state information Including data matched, obtain matching threshold, when matching threshold be less than predetermined threshold value when, authenticate the informative abstract and work as The corresponding registration information abstract of preceding movement state information is consistent, otherwise, authenticates the informative abstract and current motion state information pair The registration information abstract answered is inconsistent.
S404, certificate server send authentication successful information to terminal.
S405, certificate server send authentication failure information to terminal.
In the embodiment of the present invention, Fig. 4 describes the process that certificate server carries out authentication, in addition, authentication Process can also be carried out in terminal, believe at this point, terminal can obtain the corresponding registration of current operating conditions information to server Breath abstract, it is whether consistent by terminal authentication information abstract registration information abstract corresponding with current motion state information.
In the method described in Fig. 4, certificate server can be after the certification request for receiving terminal transmission, and judgement is The no corresponding registration information abstract of current motion state information for being previously stored with certification request carrying, if so, then can be into one Whether the informative abstract registration information abstract corresponding with current motion state information that step authenticates certification request carrying is consistent, and Authentication result can be sent to terminal.By implementing method described in Fig. 4, the safety of authentication can be improved.
Referring to Fig. 5, Fig. 5 is the flow diagram of another identity identifying method provided in an embodiment of the present invention.Such as Fig. 5 Shown, which may comprise steps of:
S501, terminal obtain the grip status information that user holds terminal, and obtain the current motion state letter of terminal Breath.
In the embodiment of the present invention, the grip status information that user holds terminal is obtained executing step S501 terminal, and Obtain terminal current motion state information before, method described in Fig. 5 can with the following steps are included:
51) registration request of user's input is received;
52) registration request is responded, terminal user corresponding under at least one movement state information is obtained respectively and holds Hold the registration grip status information of terminal;
53) registration obtained under each movement state information grip status information corresponding registration is generated respectively to believe Breath abstract;
54) each movement state information is associated with corresponding registration information abstract respectively, and will be after association Each movement state information is uploaded to certificate server with corresponding registration information abstract.
In the embodiment of the present invention, it can be reception user and asked in the registration that authentication interface operation target key is triggered It asks, terminal responds the registration request, can export prompt information, prompts user to hold terminal according to predetermined manner, the default side Formula can be the mode of the most common grip terminal of user, be also possible to the grip mode set in advance, in output prompt letter The corresponding grip figure of the grip mode set in advance etc. is exported while breath.In addition, terminal can also provide multi-motion State, user can choose one or more motion states and register, such as registered when static, or when on foot It is registered, different registration grip status informations is obtained under different movement state informations.
In the embodiment of the present invention, can use at least one of MD5, SHA, RIPEMD scheduling algorithm algorithm will be at each The registration grip status information obtained under movement state information generates corresponding registration information abstract, and when registration will registration grip shape State information generates corresponding registration information abstract and grip status information is generated what corresponding informative abstract was utilized with when certification Algorithm is identical.
In the embodiment of the present invention, each movement state information is associated with corresponding registration information abstract respectively, Such as will acquire when static registration information abstract with it is static when status information be associated, the registration that will acquire when on foot Informative abstract on foot when status information be associated, and can by the movement state information of each after association with it is corresponding Registration information abstract be uploaded in certificate server and stored.
As an alternative embodiment, after executing step 51), and before executing step 52), Fig. 5 institute The method of description can with the following steps are included:
55) prompt information is exported, which enters registration information acquisition mode for prompt terminal.
In this embodiment, prompt information can be the form of text, be also possible to the form or the two of voice Combination etc., the embodiment of the present invention is not construed as limiting.
S502, terminal generate corresponding informative abstract according to grip status information.
S503, terminal send certification request to certificate server, which includes informative abstract and current kinetic shape State information.
S504, certificate server judge whether that being previously stored with the corresponding registration information of current motion state information makes a summary, If it is not, thening follow the steps S505;If so, thening follow the steps S506.
S505, certificate server send authentication failure information to terminal.
S506, certificate server authentication information make a summary corresponding with current motion state information registration information make a summary whether one It causes, if inconsistent, thens follow the steps S507;If consistent, S508 is thened follow the steps.
S507, certificate server send authentication failure information to terminal.
S508, certificate server send authentication successful information to terminal.
In the embodiment of the present invention, terminal receives the authentication successful information that certificate server sends over or identity is recognized After demonstrate,proving failure information, authentication successful information or authentication failure information can be exported, so that user understands certification in time Result.
As an alternative embodiment, terminal connects when terminal enters the authentication interface of a target application After the authentication successful information for receiving certificate server return, the authentication successful information can be responded, and control the mesh Mark application enters logging state.
In this embodiment, target application can be the application defaulted in terminal, be also possible to installed in terminal Tripartite's application when receiving the successful information of certification, can control this when the authentication login interface in the target application Target application automated log on.
For example, available when entering authentication interface (i.e. the login interface) of instant chat application User currently holds the grip status information of terminal and the current motion state information of terminal, can be raw by grip status information It is compared at informative abstract, and by informative abstract registration information abstract corresponding with current motion state information, if unanimously, Then authentication success, terminal can be with automated log on into the instant chat application at this time;If inconsistent, authentication failure, The instant chat is applied still in the authentication interface, and the mode of the adjustable grip terminal of user to be recognized again at this time It demonstrate,proves or is manually entered account and password is logged in.
As another optional embodiment, a target application for carrying out authentication in the terminal, which is in, logs in shape When state, after terminal receives the authentication failure information of certificate server return, the authentication failure information can be responded, The target application is controlled to log off state.
In this embodiment, after target application enters logging state, user can be obtained in real time and holds holding for terminal It holds status information and carries out authentication, the grip status information progress body that user holds terminal can also be obtained every preset time Part certification, when authentication success, then the target application keep logging state it is constant, when authentication failure when, then immediately will The target application is logged off state, is returned to login interface, can be continued authentication at this time, until authentication success The target application is just logged in again;Or user is manually entered account and password logs in, it is close which can be character string Code, is also possible to biological characteristic password, such as finger-print cipher, vocal print password and iris password, is manually entered by user Account and password, which log in, can no longer maintain the long state logged in, that is, can be set to short login, i.e., when login is more than default Long then disconnect login, user need to re-start login at this time, and preset duration can be configured according to the self-demand of user.
For example, after logging into a payment platform, user's grip can be obtained eventually in real time or every preset time The grip state at end carries out authentication, when authentication fails, then the payment platform is logged off state, at this time can be again Secondary progress authentication receives user and is manually entered account and password logs in;When authentication success, then maintain to prop up The logging state for paying platform is constant, the grip status information progress authentication by obtaining user is successfully paid flat Platform, when carrying out payment transaction, can so as not to input payment cipher with regard to achievable payment.And for by being manually entered account and close The login of code, then when being paid, need to input payment cipher could complete to pay.The former with the latter is compared, and branch can be saved Pay the operating time.
In the method described in Fig. 5, terminal holds the grip status information of terminal obtaining user, and obtains terminal Current motion state information after, corresponding informative abstract can be generated according to grip status information, it is possible to further to recognizing Card server sends the certification request for carrying informative abstract and current motion state information, and certificate server receives the certification After request, it can be determined that whether there is the corresponding memorial information of current motion state information, and if it exists, then can be further Whether authentication information abstract memorial information corresponding with current motion state information is consistent, and authentication result is fed back to end End.By implementing method described in Fig. 5, since the grip mode that user holds terminal varies with each individual, get not It is then different with the grip status information of user, user can be used as according to the informative abstract that grip status information generates and uniquely mark Know, by the way that informative abstract to be compared with the registration information abstract saved when registration, the safety of authentication can be improved. In addition, the embodiment of the present invention is manually entered account and password without user when carrying out authentication, so as to improve identity The convenience of authentication operation, and it is effectively improved user experience.
Referring to Fig. 6, Fig. 6 is a kind of structural schematic diagram of terminal provided in an embodiment of the present invention, for executing the present invention The identity identifying method that embodiment provides.As shown in fig. 6, the terminal may include:
Acquiring unit 601 holds the grip status information of terminal for obtaining user, and obtains the current kinetic of terminal Status information.
In the embodiment of the present invention, the grip status information that user holds terminal may include the palm print information of user, user Finger print information, user and terminal each contact point pressure value and at least one of the temperature value of each contact point.
In the embodiment of the present invention, the grip mode of different user grip terminal is had differences.It can integrate in the terminal For acquiring the palm print collecting device of user's palm print information, palm print collecting device can be one or more, can will generally slap The position of terminal back side partial below is arranged in line acquisition device, and acquiring unit 601 can be acquired by the palm print collecting device and be used Hold palm print information when terminal in family;The fingerprint acquisition device for acquiring user fingerprints information can also be integrated in the terminal, Fingerprint acquisition device can be one or more, can be set in the position of terminal back side, acquiring unit 601 can pass through The fingerprint acquisition device acquires finger print information when user holds terminal;It can also integrate in the terminal multiple for measuring pressure The pressure sensor of value or pressure values, wherein pressure sensor is used to measure the pressure value of each contact point of user and terminal Or pressure values, such as pressure value or pressure values that when each finger of user and terminal contact generates, acquiring unit 601 can pass through Pressure sensor senses pressure value when user holds terminal with each contact point of terminal;Multiple use can also be integrated in the terminal In the temperature sensor of measurement temperature value, wherein temperature sensor is used to measure the temperature of each contact point of user and terminal Value, such as palm transmits when the temperature value of each finger transmitting that contact with terminal of user and/or user's palm and terminal contact Temperature value etc., acquiring unit 601 can pass through temperature sensor sense when user holds terminal with each contact point of terminal Temperature value etc..
In the embodiment of the present invention, acquiring unit 601 can obtain terminal by Integrated Accelerometer in the terminal Current motion state information, wherein the current motion state information of terminal may include the acceleration magnitude and terminal of terminal At least one of acceleration direction.It may determine that terminal is stationary state or movement shape by the acceleration magnitude of terminal State, and may determine that whether terminal screen rotates by the acceleration direction of terminal.
Generation unit 602, for generating corresponding informative abstract according to grip status information.
In the embodiment of the present invention, generation unit 602, which can use target algorithm, will hold the corresponding letter of status information generation Breath abstract, wherein target algorithm may include message digest algorithm MD5, secure hash algorithm SHA, RACE raw integrity school Message Digest 5 RIPEMD etc. is tested, the embodiment of the present invention is not construed as limiting.Wherein, the principle of MD5 algorithm is grouped with 512 Handle the information of input, and each grouping is divided into 16 32 seats groupings, after have passed through a series of processing, algorithm again Output formed by four 32, will after this four 32 packet concatenations will generate 128 hashed values.MD5 algorithm One segment information can be compressed into a kind of format of encryption, different inputs obtains different as a result, using the acquisition of MD5 algorithm Abstract has uniqueness, and MD5 is highly-safe, is not easy to crack.The principle of SHA algorithm is similar with MD5, and highly-safe, common Have SHA-1, SHA-2 scheduling algorithm.RIPEMD algorithm is built upon on the basis of MD5, and principle is also similar with MD5.On in addition, Stating several target algorithms can be used alone, and can also integrate use.
In the embodiment of the present invention, the user that generation unit 602 gets above-mentioned acquiring unit 601 holds the grip of terminal Status information generates corresponding informative abstract, which is encryption, is not easy to crack and forge, highly-safe.
In the embodiment of the present invention, before generation unit 602 generates corresponding informative abstract according to grip status information, eventually The grip status information that above-mentioned acquiring unit 601 is got can be filtered processing by end, maximum to filter out garbage signal Retain useful signal to degree.
Transmission unit 603, for sending certification request to certificate server, which includes informative abstract and current Movement state information, the registration corresponding with pre-stored current motion state information so that certificate server authentication information is made a summary Whether informative abstract is consistent.
In the embodiment of the present invention, transmission unit 603 to certificate server send certification request before, need to detect terminal with Communication connection whether is established between certificate server, after establishing communication connection between terminal and certificate server, is sent single Member 603 can send certification request to certificate server.It can be led to wirelessly between terminal and certificate server Letter connection, can also be communicatively coupled by wired mode, wherein wireless mode can be Wi-Fi, 4G, 3G, GSM and Other communications, the embodiment of the present invention are not construed as limiting.
In the embodiment of the present invention, the certification request that transmission unit 603 is sent to certificate server includes grip status information The informative abstract of generation and the current operating conditions information of terminal, the certification request are used for triggering authentication server authentication information Whether registration information abstract corresponding with pre-stored current motion state information of making a summary is consistent, at this point, authentication procedures It is completed in certificate server.The corresponding registration information of at least one movement state information is previously stored in certificate server to pluck It wants, i.e., before certification, need to first be registered.Wherein, the corresponding registration information abstract of at least one movement state information is terminal The note that registration grip status information when user is registered by holding terminal under at least one movement state information generates Volume informative abstract.
Receiving unit 604, for sending certification request to certificate server when above-mentioned transmission unit 603, so that certification takes When device authentication information abstract registration information corresponding with pre-stored current motion state information of being engaged in makes a summary consistent, certification is received The authentication successful information that server returns.
In the embodiment of the present invention, when above-mentioned transmission unit 603 sends certification request to certificate server, so that authentication service Device authenticate informative abstract corresponding with pre-stored current motion state information registration information abstract it is consistent when, receiving unit 604 can receive the authentication successful information of certificate server return, and can respond the authentication successful information, to hold Row corresponding operation.
As an alternative embodiment, when above-mentioned transmission unit 603 sends certification request to certificate server, so that It is inconsistent that certificate server authenticates informative abstract registration information abstract corresponding with pre-stored current motion state information When, receiving unit 604 is also used to receive the authentication failure information of certificate server return, and can respond the authentication Failure information, to execute corresponding operation.
In this embodiment, qualifications can be preset, when the continuous n times of receiving unit 604 within the unit time The authentication failure information of certificate server return is received, then terminal can lock and carry out answering for authentication at this time With no longer allowing above-mentioned acquiring unit 601 to obtain the grip status information of user when locked, but allow the manual input authentication of user Information, or until the grip status information for obtaining user after the unlock of specific duration again authenticates.Wherein, the unit time can be with It is one day, one hour, 1 minute etc., n is positive integer.Such as: user is when carrying out authentication to terminal unlocking interface, 1 3 equal authentification failures are connected in minute, then can be locked the unlock interface, user can only be manually entered unlocking pin at this time.
In the embodiment of the present invention, need to carry out authentication can be the included application of terminal and tool, such as open a terminal Address list when can carry out authentication, the i.e. openable address list when authentication passes through;It is also possible to install in terminal Third party software, such as: payment application, instant chat software (such as QQ, wechat, microblogging), multimedia software etc.;It can also be It, can be in the case where not being manually entered unlocking pin in unlock interface for the unlock interface of terminal, it can be by obtaining The grip status information for taking family grip terminal carries out authentication, then can be with automatic unlocking terminal when authentication success; Further, it is also possible to carry out authentication etc. for the other application in terminal, the embodiment of the present invention is not construed as limiting.
Terminal shown in fig. 6 holds the grip status information of terminal obtaining user, and obtains the current kinetic of terminal After status information, corresponding informative abstract can be generated according to grip status information, it is possible to further send out to certificate server The certification request for carrying informative abstract and current motion state information is sent, so that certificate server receives the certification request Afterwards, it is consistent to authenticate informative abstract registration information abstract whether corresponding with pre-stored current motion state information, if one It causes, then receives the successful information of authentication of certificate server return, and successfully pass certification.Implement terminal shown in fig. 6, Since the grip mode that user holds terminal varies with each individual, the grip status information of the different user got is then different, It can be used as user according to the informative abstract that grip status information generates uniquely to identify, be protected when by by informative abstract with registration The registration information abstract deposited is compared, and the safety of authentication can be improved.In addition, the embodiment of the present invention is carrying out identity When certification, it is manually entered account and password without user, so as to improve the convenience of authentication operation, and is effectively improved User experience.
Referring to Fig. 7, Fig. 7 is the structural schematic diagram of another terminal provided in an embodiment of the present invention, for executing this hair The identity identifying method that bright embodiment provides.As shown in fig. 7, the terminal may include:
Acquiring unit 701 holds the grip status information of terminal for obtaining user, and obtains the current kinetic of terminal Status information.
In the embodiment of the present invention, grip status information may include the palm print information of user, the finger print information of user, user With at least one of the temperature value of the pressure value of each contact point of terminal and each contact point information.
In the embodiment of the present invention, current motion state information includes the acceleration magnitude of terminal and the acceleration direction of terminal At least one of.
Generation unit 702, for generating corresponding informative abstract according to grip status information.
Transmission unit 703, for sending certification request to certificate server, which includes informative abstract and current Movement state information, the registration corresponding with pre-stored current motion state information so that certificate server authentication information is made a summary Whether informative abstract is consistent.
Receiving unit 704, for sending certification request to certificate server when above-mentioned transmission unit 603, so that certification takes When device authentication information abstract registration information corresponding with pre-stored current motion state information of being engaged in makes a summary consistent, certification is received The authentication successful information that server returns.
In the embodiment of the present invention, receiving unit 704 is also used to recognize when above-mentioned transmission unit 603 to certificate server transmission Card request, so that certificate server authentication information is made a summary, registration information corresponding with pre-stored current motion state information is plucked When wanting inconsistent, the authentication failure information that certificate server returns is received.
In the embodiment of the present invention, above-mentioned transmission unit 703 can be specifically used for sending certification request to certificate server, should Certification request includes informative abstract and current motion state information so that certificate server with current motion state information be according to According to judging whether to be previously stored with the corresponding registration information abstract of current motion state information, if so, being authenticated by certificate server Whether informative abstract registration information abstract corresponding with current motion state information is consistent.
Correspondingly, receiving unit 704 are also used to send certification request to certificate server when above-mentioned transmission unit 703, with When certificate server being made to judge that the corresponding registration information of current motion state information, which is not stored in advance, makes a summary, certification clothes are received The authentication failure information that business device returns.
Receiving unit 704, be also used to above-mentioned acquiring unit 701 obtain user hold terminal grip status information it Before, receive the registration request of user's input.
Above-mentioned acquiring unit 701, is also used to respond the registration request, obtains terminal respectively and believes at least one motion state Status information is held in the registration that the lower corresponding user of breath holds terminal.
Above-mentioned generation unit 702 is also used to that state is held in the registration obtained under each movement state information respectively Information generates corresponding registration information abstract.
Correspondingly, terminal shown in Fig. 7 can also include:
Associative cell 705, for each movement state information to be associated with corresponding registration information abstract respectively.
Uploading unit 706 is made a summary with corresponding registration information for each movement state information after being associated with and is uploaded To certificate server.
As an alternative embodiment, terminal shown in Fig. 7 can also include:
Output unit 707, for being obtained above-mentioned after the registration request that above-mentioned receiving unit 704 receives user's input It takes unit 701 to respond the registration request, obtains terminal user's grip corresponding under at least one movement state information respectively Before the registration grip status information of terminal, prompt information is exported, which enters registration information for prompt terminal and adopt Integrated mode.
In this embodiment, prompt information can be the form of text, be also possible to the form or the two of voice Combination etc., the embodiment of the present invention is not construed as limiting.
As an alternative embodiment, terminal shown in Fig. 7 can also include:
First control unit 708, when for entering the authentication interface of a target application in terminal, response certification clothes The authentication successful information that business device returns, controls the target application and enters logging state.
In this embodiment, target application can be the application defaulted in terminal, be also possible to installed in terminal Tripartite's application, when the authentication login interface in the target application, above-mentioned receiving unit 704 receives certification successfully letter When breath, first control unit 708 can control the target application automated log on.
As an alternative embodiment, terminal shown in Fig. 7 can also include:
Second control unit 709, when a target application for carrying out authentication in the terminal is in logging state, The authentication failure information that certificate server returns is responded, the target application is controlled and logs off state.
In this embodiment, after target application enters logging state, above-mentioned acquiring unit 701 can obtain use in real time The grip status information that terminal is held at family carries out authentication, can also obtain the grip that user holds terminal every preset time Status information carries out authentication, and when authentication success, then the second control unit 709 controls the target application and keeps logging in shape State is constant, and when authentication failure, then the second control unit 709 is immediately controlled the target application and logs off state, returns Login interface can continue authentication at this time, until authentication success just logs in the target application again;Or it uses Family is manually entered account and password is logged in, which can be character string password, is also possible to biological characteristic password, such as refers to Line password, vocal print password and iris password etc. are manually entered account by user and password are logged in and can no longer be tieed up The state for holding long login, that is, can be set to short login, that is, logging in is more than that preset duration then disconnects logins, at this time user need to again into Row logs in, and preset duration can be configured according to the self-demand of user.
Implement terminal shown in Fig. 7, since the grip mode that user holds terminal varies with each individual, get not It is then different with the grip status information of user, user can be used as according to the informative abstract that grip status information generates and uniquely mark Know, by the way that informative abstract to be compared with the registration information abstract saved when registration, the safety of authentication can be improved. In addition, the embodiment of the present invention is manually entered account and password without user when carrying out authentication, so as to improve identity The convenience of authentication operation, and it is effectively improved user experience.
Referring to Fig. 8, Fig. 8 is the structural schematic diagram of another terminal provided in an embodiment of the present invention, for executing this hair The identity identifying method that bright embodiment provides.As shown in figure 8, the terminal 800 may include: at least one processor 801, at least One network interface 802, user interface 803, the equal components of memory 804.Wherein, these components pass through one or more bus 805 are communicatively coupled.It will be understood by those skilled in the art that the structure of terminal shown in Fig. 8 is not constituted to the present invention The restriction of embodiment, it is also possible to hub-and-spoke configuration either busbar network, can also include more more or less than illustrating Component, perhaps combine certain components or different component layouts.Wherein:
Processor 801 is the control centre of terminal, using the various pieces of various interfaces and the entire terminal of connection, is led to It crosses operation or executes the program and/or module being stored in memory 804, and call the data being stored in memory 804, To execute the various functions and processing data of terminal.Processor 801 can be by integrated circuit (Integrated Circuit, letter Claim IC) composition, such as can be made of the IC of single encapsulation, it can also be by the envelope of more identical functions of connection or different function It fills IC and forms.For example, processor 801 can only include central processing unit (Central Processing Unit, letter Claim CPU), it is also possible to CPU, digital signal processor (digital signal processor, abbreviation DSP), graphics process The combination of device (Graphic Processing Unit, abbreviation GPU) and various control chips.In embodiments of the present invention, CPU can be single operation core, also may include multioperation core.
Network interface 802 may include wireline interface, wireless interface etc., be mainly used for connecting certificate server progress data Communication.
User interface 803 may include display screen (Display), keyboard (Keyboard), touch screen etc., also may include Wireline interface, wireless interface etc..
Memory 804 can be high speed RAM memory, be also possible to non-labile memory (non-volatile Memory), a for example, at least magnetic disk storage.Memory 804 optionally can also be that at least one is located remotely from aforementioned place Manage the storage device of device 801.As shown in figure 8, as may include operation system in a kind of memory 804 of computer storage medium System, network communication module, Subscriber Interface Module SIM and application program etc..In embodiments of the present invention, operating system can be Android system, iOS system or Windows operating system etc..
Specifically, processor 801 calls the application program being stored in memory 804, for performing the following operations:
The grip status information that user holds terminal is obtained, and obtains the current motion state information of terminal;
Corresponding informative abstract is generated according to grip status information;
It controls network interface 802 and sends certification request to certificate server, which includes informative abstract and current Movement state information, the registration corresponding with pre-stored current motion state information so that certificate server authentication information is made a summary Whether informative abstract is consistent;
If consistent, control network interface 802 receives the authentication successful information that certificate server returns.
In the embodiment of the present invention, before processor 801 obtains the grip status information that user holds terminal, it may call upon The application program being stored in memory 804, and execute following operation:
Control the registration request that user interface 803 receives user's input;
The registration request is responded, terminal user corresponding under at least one movement state information is obtained respectively and holds eventually Status information is held in the registration at end;
The registration obtained under each movement state information grip status information is generated into corresponding registration information respectively Abstract;
Each movement state information is associated with corresponding registration information abstract respectively, and controls network interface Each movement state information after association is uploaded to certificate server with corresponding registration information abstract by 802.
As an alternative embodiment, processor 801 controls the registration request that user interface 803 receives user's input Later, and the registration request is responded, obtains terminal user's grip corresponding under at least one movement state information respectively Before the registration grip status information of terminal, the application program being stored in memory 804 may call upon, and execute following behaviour Make:
It controls user interface 803 and exports prompt information, which enters registration information acquisition mould for prompt terminal Formula.
In the embodiment of the present invention, processor 801 controls network interface 802 and sends certification request to certificate server, this is recognized Card request includes informative abstract and current motion state information, so that certificate server authentication information abstract is worked as with pre-stored Whether consistent mode is specifically as follows the corresponding registration information abstract of preceding movement state information:
It controls network interface 802 and sends certification request to certificate server, which includes informative abstract and current Movement state information, so that certificate server using current motion state information as foundation, judges whether to be previously stored with current fortune The corresponding registration information abstract of status information is moved, if so, by certificate server authentication information abstract and current motion state information Whether corresponding registration information abstract is consistent.
Correspondingly, processor 801 may call upon the application program being stored in memory 804, and execute following operation:
If judging that the corresponding registration information of current motion state information, which is not stored in advance, makes a summary by certificate server, control Network interface 802 processed receives the authentication failure information that certificate server returns.
In the embodiment of the present invention, processor 801 may call upon the application program being stored in memory 804, and execute It operates below:
If by certificate server authentication information abstract registration information corresponding with pre-stored current motion state information It makes a summary inconsistent, control network interface 802 receives the authentication failure information that certificate server returns.
As an alternative embodiment, when terminal enters the authentication interface of a target application, processor After 801 control network interfaces 802 receive the authentication successful information that certificate server returns, it may call upon and be stored in Application program in reservoir 804, and execute following operation:
The authentication successful information is responded, above-mentioned target application is controlled and enters logging state.
As an alternative embodiment, a target application for carrying out authentication in the terminal is in logging state When, after processor 801 controls the authentication failure information that network interface 802 receives certificate server return, it can also adjust With the application program being stored in memory 804, and execute following operation:
The authentication failure information is responded, above-mentioned target application is controlled and logs off state.
In the embodiment of the present invention, grip status information may include the palm print information of user, the finger print information of user, user With at least one of the temperature value of the pressure value of each contact point of terminal and each contact point information.
In the embodiment of the present invention, movement state information includes in the acceleration magnitude of terminal and the acceleration direction of terminal It is at least one.
Specifically, the body that the present invention combines Fig. 1, Fig. 2 or Fig. 3 introduction can be implemented in the terminal introduced in the embodiment of the present invention Process some or all of in identity authentication method embodiment.
The steps in the embodiment of the present invention can be sequentially adjusted, merged and deleted according to actual needs.
Unit in the terminal of that embodiment of the invention can be combined, divided and deleted according to actual needs.
Referring to Fig. 9, Fig. 9 is a kind of structural schematic diagram of identity authorization system provided in an embodiment of the present invention.Such as Fig. 9 institute Show, which at least may include terminal 901 and certificate server 902, terminal 901 and certificate server 902 it Between data communication can be carried out by internet, in which:
Terminal 901 holds the grip status information of terminal for obtaining user, and obtains the current motion state of terminal Information;
Terminal 901 is also used to generate corresponding informative abstract according to grip status information;
Terminal 901 is also used to send certification request to certificate server 902, which includes informative abstract and work as Preceding movement state information;
Certificate server 902, for receive terminal 901 transmission certification request, the certification request include informative abstract and Current motion state information;
Certificate server 902 is also used to authentication information abstract note corresponding with pre-stored current motion state information Whether volume informative abstract is consistent;
Certificate server 902 is also used to when authentication information abstract is corresponding with pre-stored current motion state information When registration information abstract is consistent, authentication successful information is sent to terminal 901;
Terminal 901 is also used to receive the authentication successful information of the transmission of certificate server 902.
In the embodiment of the present invention, before terminal 901 obtains the grip status information that user holds terminal, it is also used to receive use The registration request of family input;
And terminal 901, it is also used to respond the registration request, obtains terminal respectively at least one movement state information Status information is held in the registration that lower corresponding user holds terminal;
Terminal 901 is also used to respectively generate the registration obtained under each movement state information grip status information Corresponding registration information abstract;
Terminal 901 is also used to for each movement state information being associated with corresponding registration information abstract respectively, and Each movement state information after association is uploaded to certificate server 902 with corresponding registration information abstract.
Correspondingly, certificate server 902, each movement after being also used to receive and save the association of the upload of terminal 901 Status information is made a summary with corresponding registration information.
Optionally, terminal 901 are also used to after the registration request for receiving user's input, are responding the registration request, point Not Huo Qu before terminal user corresponding under at least one movement state information holds the registration grip status information of terminal, Prompt information is exported, which enters registration information acquisition mode for prompt terminal.
In the embodiment of the present invention, certificate server 902 is also used to after receiving the certification request that terminal 901 is sent, with Current motion state information is foundation, judges whether to be previously stored with the corresponding registration information abstract of current motion state information, If so, whether execute authentication information abstract registration information abstract corresponding with pre-stored current motion state information consistent Step.
Correspondingly, terminal 901 are also used to judge in certificate server 902 that current motion state information is not stored in advance When corresponding registration information is made a summary, the authentication failure information that certificate server 902 returns is received.
In the embodiment of the present invention, terminal 901, be also used to 902 authentication information of certificate server make a summary with it is pre-stored When the corresponding registration information abstract of current motion state information is inconsistent, receives the authentication that certificate server 902 returns and lose Lose information.
Optionally, when terminal enters the authentication interface of a target application, terminal 901 is also used to recognize in reception After demonstrate,proving the authentication successful information that server 902 is sent, the authentication successful information is responded, above-mentioned target application is controlled Into logging state.
Optionally, when a target application of progress authentication is in logging state in the terminal, terminal 901 is also used In after receiving the authentication failure information that certificate server 902 returns, the authentication failure information is responded, in control Target application is stated to log off state.
In the embodiment of the present invention, grip status information includes the palm print information of user, the finger print information of user, user and end The pressure value of each contact point at end and at least one of the temperature value information of each contact point.
In the embodiment of the present invention, movement state information includes in the acceleration magnitude of terminal and the acceleration direction of terminal It is at least one.
By implementing system described in Fig. 9, since the grip mode that user holds terminal varies with each individual, obtain The grip status information of the different user arrived is then different, can be used as user only according to the informative abstract that grip status information generates Authentication can be improved by the way that informative abstract to be compared with the registration information abstract saved when registration in one mark Safety.In addition, when carrying out authentication, being manually entered account and close without user by implementing system described in Fig. 9 Code so as to improve the convenience of authentication operation, and is effectively improved user experience.
Those of ordinary skill in the art will appreciate that realizing all or part of the process in above-described embodiment method, being can be with Relevant hardware is instructed to complete by computer program, the program can be stored in a computer-readable storage medium In, the program is when being executed, it may include such as the process of the embodiment of above-mentioned each method.Wherein, the storage medium can be magnetic Dish, CD, read-only memory (Read-Only Memory, ROM) or random access memory (Random Access Memory, abbreviation RAM) etc..
A kind of identity identifying method provided in an embodiment of the present invention is described in detail above, tool used herein Principle and implementation of the present invention are described for body example, the above embodiments are only used to help understand this hair Bright method and its core concept;At the same time, for those skilled in the art, according to the thought of the present invention, specific real Apply in mode and application range that there will be changes, in conclusion the content of the present specification should not be construed as to limit of the invention System.

Claims (9)

1. a kind of identity identifying method characterized by comprising
The grip status information that user holds terminal is obtained, and obtains the current motion state information of the terminal;
Corresponding informative abstract is generated according to the grip status information;
Certification request is sent to certificate server, the certification request includes the informative abstract and current motion state letter Breath so that the certificate server using the current motion state information as foundation, judge whether to be previously stored with it is described current The corresponding registration information abstract of movement state information, works as if so, authenticating the informative abstract by the certificate server with described Whether the corresponding registration information abstract of preceding movement state information is consistent;
If consistent, the authentication successful information that the certificate server returns is received.
2. the method according to claim 1, wherein it is described obtain user hold terminal grip status information it Before, the method also includes:
Receive the registration request of user's input;
The registration request is responded, obtains terminal user grip corresponding under at least one movement state information respectively Status information is held in the registration of the terminal;
The registration obtained under each movement state information grip status information corresponding registration information is generated respectively to make a summary;
Each described movement state information is associated with corresponding registration information abstract respectively, and will be described in after association Each movement state information is uploaded to the certificate server with corresponding registration information abstract.
3. according to the method described in claim 2, it is characterized in that, it is described receive user input registration request after, it is described The registration request is responded, is obtained described in terminal user grip corresponding under at least one movement state information respectively Before the registration grip status information of terminal, the method also includes:
Prompt information is exported, the prompt information is for prompting the terminal to enter registration information acquisition mode.
4. method according to claim 1-3, which is characterized in that the method also includes:
If judging that the corresponding registration information of the current motion state information, which is not stored in advance, plucks by the certificate server It wants, receives the authentication failure information that the certificate server returns.
5. described in any item methods according to claim 1~3, which is characterized in that the method also includes:
If it is corresponding with the pre-stored current motion state information to authenticate the informative abstract by the certificate server Registration information abstract is inconsistent, receives the authentication failure information that the certificate server returns.
6. described in any item methods according to claim 1~3, which is characterized in that enter the body of a target application in terminal When part authentication interface, the method also includes:
The authentication successful information is responded, the target application is controlled and enters logging state.
7. according to the method described in claim 5, it is characterized in that, being carried out at a target application of authentication in the terminal When logging state, the method also includes:
The authentication failure information is responded, the target application is controlled and logs off state.
8. described in any item methods according to claim 1~3, which is characterized in that the grip status information includes the use The pressure value and institute of the palm print information at family, the finger print information of the user, the user with each contact point of the terminal State at least one of the temperature value of each contact point information.
9. described in any item methods according to claim 1~3, which is characterized in that the current motion state information includes institute State at least one of the acceleration magnitude of terminal and the acceleration direction of the terminal.
CN201510159018.0A 2015-04-07 2015-04-07 A kind of identity identifying method Active CN104811443B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510159018.0A CN104811443B (en) 2015-04-07 2015-04-07 A kind of identity identifying method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510159018.0A CN104811443B (en) 2015-04-07 2015-04-07 A kind of identity identifying method

Publications (2)

Publication Number Publication Date
CN104811443A CN104811443A (en) 2015-07-29
CN104811443B true CN104811443B (en) 2019-05-14

Family

ID=53695937

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510159018.0A Active CN104811443B (en) 2015-04-07 2015-04-07 A kind of identity identifying method

Country Status (1)

Country Link
CN (1) CN104811443B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106060019A (en) * 2016-05-20 2016-10-26 张宇川 Bank account management system and method based on intelligent client
CN108629170A (en) * 2018-04-20 2018-10-09 北京元心科技有限公司 Personal identification method and corresponding device, mobile terminal
CN113162903B (en) * 2021-02-02 2022-11-04 上海大学 Authentication method based on connection information in network slice

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1742252A (en) * 2003-05-21 2006-03-01 株式会社日立高新技术 Portable terminal device with built-in fingerprint sensor
JP2010044639A (en) * 2008-08-14 2010-02-25 Toshiba Corp Personal identification device
CN101754215A (en) * 2008-12-01 2010-06-23 华为技术有限公司 Authentication method and system
CN102841997A (en) * 2012-07-10 2012-12-26 郭小卫 Method and device for achieving authentication on intelligent device by mobile terminal
CN103200298A (en) * 2013-02-05 2013-07-10 鹤山世达光电科技有限公司 System and method for controlling mobile terminal to conduct voice communication
CN103339634A (en) * 2011-01-27 2013-10-02 株式会社Ntt都科摩 Mobile information terminal, grip characteristic learning method, and grip characteristic authentication method
CN103634328A (en) * 2013-12-19 2014-03-12 青岛海尔软件有限公司 Authentication method, device and system for network platform authentication server
CN103873500A (en) * 2012-12-12 2014-06-18 腾讯科技(深圳)有限公司 Application control method, terminal and system based on mobile terminal sensor
CN104392160A (en) * 2014-09-22 2015-03-04 贵阳朗玛信息技术股份有限公司 Identity authentication method and identity authentication device

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8244211B2 (en) * 2008-02-07 2012-08-14 Inflexis Llc Mobile electronic security apparatus and method
WO2009109014A1 (en) * 2008-03-05 2009-09-11 Rpo Pty Limited Methods for operation of a touch input device

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1742252A (en) * 2003-05-21 2006-03-01 株式会社日立高新技术 Portable terminal device with built-in fingerprint sensor
JP2010044639A (en) * 2008-08-14 2010-02-25 Toshiba Corp Personal identification device
CN101754215A (en) * 2008-12-01 2010-06-23 华为技术有限公司 Authentication method and system
CN103339634A (en) * 2011-01-27 2013-10-02 株式会社Ntt都科摩 Mobile information terminal, grip characteristic learning method, and grip characteristic authentication method
CN102841997A (en) * 2012-07-10 2012-12-26 郭小卫 Method and device for achieving authentication on intelligent device by mobile terminal
CN103873500A (en) * 2012-12-12 2014-06-18 腾讯科技(深圳)有限公司 Application control method, terminal and system based on mobile terminal sensor
CN103200298A (en) * 2013-02-05 2013-07-10 鹤山世达光电科技有限公司 System and method for controlling mobile terminal to conduct voice communication
CN103634328A (en) * 2013-12-19 2014-03-12 青岛海尔软件有限公司 Authentication method, device and system for network platform authentication server
CN104392160A (en) * 2014-09-22 2015-03-04 贵阳朗玛信息技术股份有限公司 Identity authentication method and identity authentication device

Also Published As

Publication number Publication date
CN104811443A (en) 2015-07-29

Similar Documents

Publication Publication Date Title
CN106487511B (en) Identity authentication method and device
CN105139204B (en) A kind of method and system carrying out safety certification
US20160180068A1 (en) Technologies for login pattern based multi-factor authentication
CN105404809B (en) A kind of identity identifying method and user terminal
CN106713241B (en) A kind of auth method, device and system
CN105592014B (en) A kind of trusted terminal verification method, device
CN105245346B (en) A kind of identity identifying method and user terminal
CN106453205B (en) identity verification method and device
US10958639B2 (en) Preventing unauthorized access to secure information systems using multi-factor, hardware based and/or advanced biometric authentication
WO2018055406A1 (en) Passive availability testing
CN104065823A (en) User mode control method and user mode control system based on iris recognition technology for mobile terminal
CN105760725B (en) A kind of identity identifying method and user terminal
CN110502886A (en) Multifactor authentication method, apparatus, terminal and computer storage medium
CN106790129A (en) A kind of identity authentication method and device
Huang et al. Development of a typing behaviour recognition mechanism on android
CN104811443B (en) A kind of identity identifying method
CN104836795B (en) A kind of terminal
CN110084011A (en) A kind of method and device of the verifying of user's operation
CN105827406A (en) Identity verification method, identity verification device, and identity verification system
CN109067881A (en) Remote-authorization method and its device, equipment and storage medium
CN110120928A (en) A kind of identity authentication method, device, server and computer-readable medium
WO2019001566A1 (en) Authentication method and device
CN110324350A (en) Identity identifying method and server based on the non-sensitive sensing data in mobile terminal
CN110175448A (en) A kind of credible equipment login authentication method and the application system with authentication function
CN110336870A (en) Method for building up, device, system and the storage medium in telecommuting O&M channel

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20210224

Address after: 518057 Desai Science and Technology Building, 9789 Shennan Avenue, Yuehai Street, Nanshan District, Shenzhen City, Guangdong Province, 17th Floor (15th Floor of Natural Floor) 1702-1703

Patentee after: Shenzhen Microphone Holdings Co.,Ltd.

Address before: 518040 21 floor, east block, Times Technology Building, 7028 Shennan Road, Futian District, Shenzhen, Guangdong.

Patentee before: DONGGUAN GOLDEX COMMUNICATION TECHNOLOGY Co.,Ltd.