CN104811443B - A kind of identity identifying method - Google Patents
A kind of identity identifying method Download PDFInfo
- Publication number
- CN104811443B CN104811443B CN201510159018.0A CN201510159018A CN104811443B CN 104811443 B CN104811443 B CN 104811443B CN 201510159018 A CN201510159018 A CN 201510159018A CN 104811443 B CN104811443 B CN 104811443B
- Authority
- CN
- China
- Prior art keywords
- information
- terminal
- user
- authentication
- certificate server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The present invention provides a kind of identity identifying methods, this method comprises: obtaining the grip status information that user holds terminal, and obtain the current motion state information of the terminal;Corresponding informative abstract is generated according to the grip status information;Certification request is sent to certificate server, the certification request includes the informative abstract and the current motion state information so that the certificate server authenticate informative abstract registration information corresponding with the pre-stored current motion state information make a summary it is whether consistent;If consistent, the authentication successful information that the certificate server returns is received.Implement the embodiment of the present invention, can be improved the safety of authentication, and improve the convenience of authentication operation, and be effectively improved user experience.
Description
Technical field
The present invention relates to security technology area more particularly to a kind of identity identifying methods.
Background technique
With the continuous development of Internet technology, while internet brings convenient to people's lives, the network that faces
Phenomena such as security situation is also increasingly severeer, and user's bank account is stolen, fund is stolen, user identity is falsely used is shown in not repeatly
It is fresh.Currently, common identity identifying technology is the form of " user account+static password ", however, it has been found in practice that, user
Account and static password should when illegal user obtains user account and static password in the presence of leakage and the risk being stolen
Identity identifying technology can not efficiently differentiate out legitimate user and illegal user.Furthermore in order to reinforce safeguard protection, one kind is based on
The Identity Authentication Mode of dynamic password arises, and dynamic password is higher than static password in safety, however, output dynamic
The token of password can be replicated, and when illegal user gets token and its password, dynamic password just loses security implications,
So that there are still biggish security risks for authentication.It is manually entered in addition, above two identity identifying technology is required to user
Account and password, and the case where forgetting account and password, happens occasionally, to bring inconvenience to authentication.
Summary of the invention
The embodiment of the invention provides a kind of identity identifying method, it can be improved the safety of authentication and improve body
The convenience of part authentication operation.
The embodiment of the invention provides a kind of identity identifying methods, comprising:
The grip status information that user holds terminal is obtained, and obtains the current motion state information of the terminal;
Corresponding informative abstract is generated according to the grip status information;
Certification request is sent to certificate server, the certification request includes the informative abstract and the current kinetic shape
State information, so that the certificate server certification informative abstract is corresponding with the pre-stored current motion state information
Registration information abstract it is whether consistent;
If consistent, the authentication successful information that the certificate server returns is received.
In the embodiment of the present invention, the grip status information of terminal is held obtaining user, and obtain the current fortune of terminal
After dynamic status information, corresponding informative abstract can be generated according to grip status information, it is possible to further to certificate server
The certification request for carrying informative abstract and current motion state information is sent, so that certificate server receives the certification request
Afterwards, it is consistent to authenticate informative abstract registration information abstract whether corresponding with pre-stored current motion state information, if one
It causes, then receives the successful information of authentication of certificate server return, and successfully pass certification.Implemented by implementing the present invention
Example, can be improved the safety of authentication, and the convenience of authentication operation can be improved, and be effectively improved user's body
It tests.
Detailed description of the invention
It to describe the technical solutions in the embodiments of the present invention more clearly, below will be to needed in the embodiment
Attached drawing is briefly described, it should be apparent that, drawings in the following description are some embodiments of the invention, general for this field
For logical technical staff, without creative efforts, it is also possible to obtain other drawings based on these drawings.
Fig. 1 is a kind of flow diagram of identity identifying method provided in an embodiment of the present invention;
Fig. 2 is a kind of schematic diagram of grip mode for holding terminal provided in an embodiment of the present invention;
Fig. 3 is sensor distributed architecture schematic diagram in a kind of terminal provided in an embodiment of the present invention;
Fig. 4 is the flow diagram of another identity identifying method provided in an embodiment of the present invention;
Fig. 5 is the flow diagram of another identity identifying method provided in an embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of terminal provided in an embodiment of the present invention;
Fig. 7 is the structural schematic diagram of another terminal provided in an embodiment of the present invention;
Fig. 8 is the structural schematic diagram of another terminal provided in an embodiment of the present invention;
Fig. 9 is a kind of structural schematic diagram of identity authorization system provided in an embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete
Site preparation description, it is clear that described embodiments are some of the embodiments of the present invention, instead of all the embodiments.Based on this hair
Embodiment in bright, every other implementation obtained by those of ordinary skill in the art without making creative efforts
Example, shall fall within the protection scope of the present invention.
The embodiment of the invention provides a kind of identity identifying method, the safety of authentication can be improved, and improve
The convenience of authentication operation, and it is effectively improved user experience.It is described in detail separately below.
Referring to Fig. 1, Fig. 1 is a kind of flow diagram of identity identifying method provided in an embodiment of the present invention.Such as Fig. 1 institute
Show, which may comprise steps of:
S101, the grip status information that user holds terminal is obtained, and obtains the current motion state information of terminal.
In the embodiment of the present invention, terminal can include but is not limited to smart phone, tablet computer, palm PC, a number
Word assistant (Personal Digital Assistant, PAD), multimedia player, smartwatch, Intelligent bracelet etc..
In the embodiment of the present invention, the grip status information that user holds terminal may include the palm print information of user, user
Finger print information, user and terminal each contact point pressure value and at least one of the temperature value of each contact point.
In the embodiment of the present invention, the grip mode of different user grip terminal is had differences.Referring to Figure 2 together, Fig. 2
It is a kind of schematic diagram of grip mode for holding terminal provided in an embodiment of the present invention.It will be understood by those skilled in the art that Fig. 2
Shown in grip mode do not constitute the restriction to the embodiment of the present invention, the grip mode that user holds terminal is varied, Fig. 2
Shown in grip mode be only one of common grip mode.
In the embodiment of the present invention, the palm print collecting device for acquiring user's palm print information can be integrated in the terminal, slapped
Line acquisition device can be one or more, it is contemplated that palmmprint can generally be acquired and be filled by user's grip mode as shown in Figure 2
Install the position in terminal back side partial below;The fingerprint collecting for acquiring user fingerprints information can also be integrated in the terminal
Device, fingerprint acquisition device can be one or more, can be set in the position of terminal back side;It can also be in the terminal
Integrate multiple pressure sensors for measured pressure value or pressure values, wherein pressure sensor is for measuring user and terminal
Each contact point pressure value or pressure values, such as the pressure value that generates of when each finger of user and terminal contact or pressure
Value;It can also integrate in the terminal multiple for measuring the temperature sensor of temperature value, wherein temperature sensor is used for measuring
The temperature value at family and each contact point of terminal, for example, user contacted with terminal each finger transmitting temperature value and/or use
The temperature value etc. of palm transmitting when family palm and terminal contact.It is provided in an embodiment of the present invention one also referring to Fig. 3, Fig. 3
Sensor distributed architecture schematic diagram in kind terminal.In view of user's grip mode as shown in Figure 2, generally by pressure sensor with
And temperature sensor is distributed in the edge side of terminal, forms sensor array, as shown in Figure 3, wherein 3a-1 to 3a-22 be
The array of pressure sensors that terminal edge is distributed along side, 3b-1 to 3b-22 are the array of temperature sensor being distributed in terminal edge along side,
It will be understood by those skilled in the art that sensor distributed architecture shown in Fig. 3 does not constitute the restriction to the embodiment of the present invention, it
Either the symmetrical structure of rule, is also possible to unsymmetric structure, it can also include sensors more more or fewer than diagram,
Or different distributing position.
In the embodiment of the present invention, the current kinetic shape of terminal can be obtained by Integrated Accelerometer in the terminal
State information, wherein the current motion state information of terminal may include the acceleration magnitude of terminal and the acceleration direction of terminal
At least one of.It may determine that terminal is stationary state or motion state by the acceleration magnitude of terminal, and pass through
The acceleration direction of terminal may determine that whether terminal screen rotates.
It holds the grip status information of terminal it is understood that obtaining user and obtains the current motion state letter of terminal
There is no inevitable execution sequencing between breath, execution can be synchronized and also staggeredly executed, certainly, can also first carry out and obtain terminal
The step of current motion state information, then execute and obtain the step of user holds the grip status information of terminal.
S102, corresponding informative abstract is generated according to grip status information.
In the embodiment of the present invention, can use target algorithm will hold the corresponding informative abstract of status information generation, wherein
Target algorithm may include message digest algorithm (Message Digest Algorithm 5, MD5), secure hash algorithm
(Secure Hash Algorithm, SHA), RACE raw integrity verification message digest algorithm (RACE Integrity
Primitives Evaluation Message Digest Algorithm, RIPEMD) etc., the embodiment of the present invention does not limit
It is fixed.Wherein, the principle of MD5 algorithm is the information of input to be handled with 512 groupings, and each grouping is divided into 16 32 again
Seat grouping, after have passed through a series of processing, the output of algorithm is formed by four 32, by this four 32 packet levels
128 hashed values will be generated after connection.One segment information can be compressed into a kind of format of encryption by MD5 algorithm, and different is defeated
Enter to obtain different as a result, there is uniqueness using the abstract that MD5 algorithm obtains, and MD5 is highly-safe, is not easy to crack.SHA is calculated
The principle of method is similar with MD5, and highly-safe, common are SHA-1, SHA-2 scheduling algorithm.RIPEMD algorithm is built upon MD5
On the basis of, principle is also similar with MD5.In addition, above-mentioned several target algorithms can be used alone, use can also be integrated.
In the embodiment of the present invention, corresponding information is generated according to the grip status information that the user got holds terminal and is plucked
It wants, which is encryption, is not easy to crack and forge, highly-safe.
In the embodiment of the present invention, before executing step S102, the grip status information that can be will acquire is filtered
Processing, to filter out garbage signal, farthest retains useful signal.
S103, certification request is sent to certificate server, which includes informative abstract and current motion state letter
Breath, so that certificate server authentication information is made a summary, registration information abstract corresponding with pre-stored current motion state information is
It is no consistent, if unanimously, thening follow the steps S104.
In the embodiment of the present invention, before executing step S103 and sending certification request to certificate server, terminal need to be detected
Communication connection, after establishing communication connection between terminal and certificate server, terminal whether are established between certificate server
Certification request can be sent to certificate server.Communication link can be carried out between terminal and certificate server wirelessly
It connects, can also be communicatively coupled by wired mode, wherein wireless mode can be Wi-Fi mode, 4G (the 4th
Generation mobile communication technology, fourth generation mobile communication technology) mode, 3G (3rd-
Generation, 3rd generation mobile communication technology) mode, GSM (Global System for Mobile
Communications, global system for mobile communications) mode and other communications, the embodiment of the present invention do not limit
It is fixed.
In the embodiment of the present invention, terminal includes holding the letter of status information generation to the certification request that certificate server is sent
The current operating conditions information of abstract and terminal is ceased, the certification request is for triggering authentication server authentication information abstract and in advance
Whether the corresponding registration information abstract of the current motion state information first stored is consistent, at this point, authentication procedures take in certification
It is completed in business device.It is previously stored with the corresponding registration information abstract of at least one movement state information in certificate server, that is, exists
Before certification, need to first it be registered.Wherein, the corresponding registration information abstract of at least one movement state information is terminal at least one
The registration information that registration grip status information when user is registered by holding terminal under kind movement state information generates is plucked
It wants.
As an alternative embodiment, the embodiment of step S103 can be with are as follows:
11) certification request is sent to certificate server, which carries the current operating conditions information of terminal, with
Make certificate server that the corresponding registration information abstract of pre-stored current operating conditions information is sent to terminal;
12) the corresponding registration information abstract of current operating conditions information that certificate server is sent is received;
13) whether authentication information abstract registration information abstract corresponding with current operating conditions information is consistent, if unanimously,
Export authentication successful information.
In this embodiment, terminal can obtain the corresponding registration information of current operating conditions information to certificate server
Abstract, then plucks informative abstract registration information whether corresponding with the current operating conditions information that certificate server sends over
Certification comparison is carried out, so that authentication procedures are completed in the terminal.
S104, the authentication successful information that certificate server returns is received.
In the embodiment of the present invention, certification request is sent to certificate server when executing step S103, so that certificate server
Authenticate informative abstract corresponding with pre-stored current motion state information registration information abstract it is consistent when, can receive and recognize
The authentication successful information that server returns is demonstrate,proved, and the authentication successful information can be responded, to execute corresponding operation.
As an alternative embodiment, certification request is sent to certificate server, so that certificate server authenticates
When informative abstract registration information abstract corresponding with pre-stored current motion state information is inconsistent, it can receive certification clothes
The authentication failure information that business device returns, and the authentication failure information can be responded, to execute corresponding operation.
In this embodiment, qualifications can be preset, when n times continuous within the unit time receive certification
The authentication failure information that server returns can then lock the application for carrying out authentication at this time, no longer obtain when locked
The grip status information of user, but allow the manual input authentication information of user, or until obtain use again after the unlock of specific duration
The grip status information at family is authenticated.Wherein, the unit time can be one day, one hour, 1 minute etc., and n is positive integer.
Such as: user connects 3 equal authentification failures when carrying out authentication to terminal unlocking interface in 1 minute, then can should
Unlock interface is locked, and user can only be manually entered unlocking pin at this time.
In the embodiment of the present invention, need to carry out authentication can be the included application of terminal and tool, such as open a terminal
Address list when can carry out authentication, the i.e. openable address list when authentication passes through;It is also possible to install in terminal
Third party software, such as: payment application, instant chat software (such as QQ, wechat, microblogging), multimedia software etc.;It can also be
It, can be in the case where not being manually entered unlocking pin in unlock interface for the unlock interface of terminal, it can be by obtaining
The grip status information for taking family grip terminal carries out authentication, then can be with automatic unlocking terminal when authentication success;
Further, it is also possible to carry out authentication etc. for the other application in terminal, the embodiment of the present invention is not construed as limiting.
For example, when user wants to log in a payment platform in terminal, in the authentication for entering payment platform
Interface (i.e. the login interface of payment platform), available user at this time holds the grip status information of terminal, such as the palm of user
Line information, finger print information, user and terminal each contact point pressure value and temperature value etc. and available terminal it is current
Movement state information.Then, it can use MD5 algorithm and these grip status informations generated into corresponding informative abstract, and will take
Certification request with informative abstract and current motion state information is sent to certificate server, and the information is judged by server
Whether whether registration information corresponding with pre-stored current operating conditions information abstract is consistent for abstract.Therefore, this is being carried out
Before secondary certification, user needs to register in the payment platform in advance, to obtain the registration under at least one movement state information
Informative abstract, when server judges informative abstract registration information abstract corresponding with pre-stored current operating conditions information
Unanimously, then terminal can receive the authentication successful information that certificate server returns, and judge that active user is legitimate user,
And successfully log into the payment platform;When server judges that the informative abstract is corresponding with pre-stored current operating conditions information
Registration information abstract it is inconsistent, then terminal can receive certificate server return authentication failure information, judge to work as
Preceding user is illegal user, and can export the prompt for logging in payment platform failure.
In the method depicted in fig. 1, the grip status information of user's grip terminal is being obtained, and is obtaining working as terminal
After preceding movement state information, corresponding informative abstract can be generated according to grip status information, it is possible to further take to certification
Business device sends the certification request for carrying informative abstract and current motion state information, so that certificate server receives the certification
After request, informative abstract registration information abstract whether corresponding with pre-stored current motion state information is authenticated unanimously,
If consistent, the successful information of authentication of certificate server return is received, and successfully passes certification.By implementing Fig. 1 institute
The method of description, since the grip mode that user holds terminal varies with each individual, the grip state of the different user got
Information is then different, can be used as user according to the informative abstract that grip status information generates and uniquely identifies, by plucking information
It to be compared with the registration information abstract saved when registration, the safety of authentication can be improved.In addition, the present invention is implemented
Example is manually entered account and password without user when carrying out authentication, so as to improve the convenient of authentication operation
Property, and it is effectively improved user experience.
Referring to Fig. 4, Fig. 4 is the flow diagram of another identity identifying method provided in an embodiment of the present invention.Such as Fig. 4
Shown, which may comprise steps of:
S401, certificate server receive the certification request that terminal is sent, which includes informative abstract and terminal
Current motion state information.
In the embodiment of the present invention, certificate server can be communicatively coupled with terminal through internet in advance, work as the two
After being successfully connected, certificate server can receive the certification request that terminal sends over, the certification request include informative abstract and
The current motion state information of terminal.Wherein, informative abstract is to hold terminal in the user will acquire when authentication
Grip status information by MD5 or SHA scheduling algorithm calculate obtain, user hold terminal grip status information may include
The palm print information of user, the finger print information of user, user and terminal each contact point pressure value and each contact point
The palm print information of at least one of temperature value, user can be obtained by palm print collecting device or circuit integrated in terminal
Take, the finger print information of user can be obtained by the fingerprint acquisition device that integrates in terminal or circuit, user and terminal it is each
The pressure value of a contact point can be obtained by the array of pressure sensors integrated in terminal, and user contacts with each of terminal
The temperature value of point can be obtained by the array of temperature sensor integrated in terminal.In addition, the current motion state of terminal is believed
Breath may include at least one of the acceleration magnitude of terminal and the acceleration direction of terminal, the current motion state letter of terminal
Breath can be obtained by the acceleration transducer integrated in terminal.
S402, certificate server judge whether that being previously stored with the corresponding registration information of current motion state information makes a summary,
If so, thening follow the steps S403;If it is not, thening follow the steps S405.
In the embodiment of the present invention, after execution step S401 receives the certification request of terminal transmission, certificate server can
To judge whether to be previously stored with the abstract of registration information corresponding to the current motion state information carried in certification request, if
Have, then can further execute step S403;If nothing, step S405 can be executed and unsuccessfully believed to terminal transmission authentication
Breath.
In the embodiment of the present invention, registration information abstract is that terminal is believed at least one motion state before carrying out authentication
The registration grip status information that the user that gets under breath holds terminal is generated, and by movement state information and corresponding note
Volume informative abstract is uploaded to certificate server after being associated, and a kind of movement state information correspond to a kind of registration information and makes a summary.
Whether S403, certificate server authenticate informative abstract registration information abstract corresponding with current motion state information
Unanimously, if so, thening follow the steps S404;If it is not, thening follow the steps S405.
In the embodiment of the present invention, judge to be previously stored with the corresponding note of current motion state information when executing step S402
When volume informative abstract, certificate server can further authenticate informative abstract registration letter corresponding with current motion state information
Whether breath abstract is consistent, if unanimously, can execute step S404 to terminal and send authentication successful information;If inconsistent,
Step S405 can then be executed and send authentication failure information to terminal.
As an alternative embodiment, to authenticate the informative abstract corresponding with current motion state information for certificate server
Registration information abstract whether consistent mode is specifically as follows:
The data that the informative abstract is included by certificate server registration information abstract corresponding with current motion state information
Including data matched, obtain matching threshold, when matching threshold be less than predetermined threshold value when, authenticate the informative abstract and work as
The corresponding registration information abstract of preceding movement state information is consistent, otherwise, authenticates the informative abstract and current motion state information pair
The registration information abstract answered is inconsistent.
S404, certificate server send authentication successful information to terminal.
S405, certificate server send authentication failure information to terminal.
In the embodiment of the present invention, Fig. 4 describes the process that certificate server carries out authentication, in addition, authentication
Process can also be carried out in terminal, believe at this point, terminal can obtain the corresponding registration of current operating conditions information to server
Breath abstract, it is whether consistent by terminal authentication information abstract registration information abstract corresponding with current motion state information.
In the method described in Fig. 4, certificate server can be after the certification request for receiving terminal transmission, and judgement is
The no corresponding registration information abstract of current motion state information for being previously stored with certification request carrying, if so, then can be into one
Whether the informative abstract registration information abstract corresponding with current motion state information that step authenticates certification request carrying is consistent, and
Authentication result can be sent to terminal.By implementing method described in Fig. 4, the safety of authentication can be improved.
Referring to Fig. 5, Fig. 5 is the flow diagram of another identity identifying method provided in an embodiment of the present invention.Such as Fig. 5
Shown, which may comprise steps of:
S501, terminal obtain the grip status information that user holds terminal, and obtain the current motion state letter of terminal
Breath.
In the embodiment of the present invention, the grip status information that user holds terminal is obtained executing step S501 terminal, and
Obtain terminal current motion state information before, method described in Fig. 5 can with the following steps are included:
51) registration request of user's input is received;
52) registration request is responded, terminal user corresponding under at least one movement state information is obtained respectively and holds
Hold the registration grip status information of terminal;
53) registration obtained under each movement state information grip status information corresponding registration is generated respectively to believe
Breath abstract;
54) each movement state information is associated with corresponding registration information abstract respectively, and will be after association
Each movement state information is uploaded to certificate server with corresponding registration information abstract.
In the embodiment of the present invention, it can be reception user and asked in the registration that authentication interface operation target key is triggered
It asks, terminal responds the registration request, can export prompt information, prompts user to hold terminal according to predetermined manner, the default side
Formula can be the mode of the most common grip terminal of user, be also possible to the grip mode set in advance, in output prompt letter
The corresponding grip figure of the grip mode set in advance etc. is exported while breath.In addition, terminal can also provide multi-motion
State, user can choose one or more motion states and register, such as registered when static, or when on foot
It is registered, different registration grip status informations is obtained under different movement state informations.
In the embodiment of the present invention, can use at least one of MD5, SHA, RIPEMD scheduling algorithm algorithm will be at each
The registration grip status information obtained under movement state information generates corresponding registration information abstract, and when registration will registration grip shape
State information generates corresponding registration information abstract and grip status information is generated what corresponding informative abstract was utilized with when certification
Algorithm is identical.
In the embodiment of the present invention, each movement state information is associated with corresponding registration information abstract respectively,
Such as will acquire when static registration information abstract with it is static when status information be associated, the registration that will acquire when on foot
Informative abstract on foot when status information be associated, and can by the movement state information of each after association with it is corresponding
Registration information abstract be uploaded in certificate server and stored.
As an alternative embodiment, after executing step 51), and before executing step 52), Fig. 5 institute
The method of description can with the following steps are included:
55) prompt information is exported, which enters registration information acquisition mode for prompt terminal.
In this embodiment, prompt information can be the form of text, be also possible to the form or the two of voice
Combination etc., the embodiment of the present invention is not construed as limiting.
S502, terminal generate corresponding informative abstract according to grip status information.
S503, terminal send certification request to certificate server, which includes informative abstract and current kinetic shape
State information.
S504, certificate server judge whether that being previously stored with the corresponding registration information of current motion state information makes a summary,
If it is not, thening follow the steps S505;If so, thening follow the steps S506.
S505, certificate server send authentication failure information to terminal.
S506, certificate server authentication information make a summary corresponding with current motion state information registration information make a summary whether one
It causes, if inconsistent, thens follow the steps S507;If consistent, S508 is thened follow the steps.
S507, certificate server send authentication failure information to terminal.
S508, certificate server send authentication successful information to terminal.
In the embodiment of the present invention, terminal receives the authentication successful information that certificate server sends over or identity is recognized
After demonstrate,proving failure information, authentication successful information or authentication failure information can be exported, so that user understands certification in time
Result.
As an alternative embodiment, terminal connects when terminal enters the authentication interface of a target application
After the authentication successful information for receiving certificate server return, the authentication successful information can be responded, and control the mesh
Mark application enters logging state.
In this embodiment, target application can be the application defaulted in terminal, be also possible to installed in terminal
Tripartite's application when receiving the successful information of certification, can control this when the authentication login interface in the target application
Target application automated log on.
For example, available when entering authentication interface (i.e. the login interface) of instant chat application
User currently holds the grip status information of terminal and the current motion state information of terminal, can be raw by grip status information
It is compared at informative abstract, and by informative abstract registration information abstract corresponding with current motion state information, if unanimously,
Then authentication success, terminal can be with automated log on into the instant chat application at this time;If inconsistent, authentication failure,
The instant chat is applied still in the authentication interface, and the mode of the adjustable grip terminal of user to be recognized again at this time
It demonstrate,proves or is manually entered account and password is logged in.
As another optional embodiment, a target application for carrying out authentication in the terminal, which is in, logs in shape
When state, after terminal receives the authentication failure information of certificate server return, the authentication failure information can be responded,
The target application is controlled to log off state.
In this embodiment, after target application enters logging state, user can be obtained in real time and holds holding for terminal
It holds status information and carries out authentication, the grip status information progress body that user holds terminal can also be obtained every preset time
Part certification, when authentication success, then the target application keep logging state it is constant, when authentication failure when, then immediately will
The target application is logged off state, is returned to login interface, can be continued authentication at this time, until authentication success
The target application is just logged in again;Or user is manually entered account and password logs in, it is close which can be character string
Code, is also possible to biological characteristic password, such as finger-print cipher, vocal print password and iris password, is manually entered by user
Account and password, which log in, can no longer maintain the long state logged in, that is, can be set to short login, i.e., when login is more than default
Long then disconnect login, user need to re-start login at this time, and preset duration can be configured according to the self-demand of user.
For example, after logging into a payment platform, user's grip can be obtained eventually in real time or every preset time
The grip state at end carries out authentication, when authentication fails, then the payment platform is logged off state, at this time can be again
Secondary progress authentication receives user and is manually entered account and password logs in;When authentication success, then maintain to prop up
The logging state for paying platform is constant, the grip status information progress authentication by obtaining user is successfully paid flat
Platform, when carrying out payment transaction, can so as not to input payment cipher with regard to achievable payment.And for by being manually entered account and close
The login of code, then when being paid, need to input payment cipher could complete to pay.The former with the latter is compared, and branch can be saved
Pay the operating time.
In the method described in Fig. 5, terminal holds the grip status information of terminal obtaining user, and obtains terminal
Current motion state information after, corresponding informative abstract can be generated according to grip status information, it is possible to further to recognizing
Card server sends the certification request for carrying informative abstract and current motion state information, and certificate server receives the certification
After request, it can be determined that whether there is the corresponding memorial information of current motion state information, and if it exists, then can be further
Whether authentication information abstract memorial information corresponding with current motion state information is consistent, and authentication result is fed back to end
End.By implementing method described in Fig. 5, since the grip mode that user holds terminal varies with each individual, get not
It is then different with the grip status information of user, user can be used as according to the informative abstract that grip status information generates and uniquely mark
Know, by the way that informative abstract to be compared with the registration information abstract saved when registration, the safety of authentication can be improved.
In addition, the embodiment of the present invention is manually entered account and password without user when carrying out authentication, so as to improve identity
The convenience of authentication operation, and it is effectively improved user experience.
Referring to Fig. 6, Fig. 6 is a kind of structural schematic diagram of terminal provided in an embodiment of the present invention, for executing the present invention
The identity identifying method that embodiment provides.As shown in fig. 6, the terminal may include:
Acquiring unit 601 holds the grip status information of terminal for obtaining user, and obtains the current kinetic of terminal
Status information.
In the embodiment of the present invention, the grip status information that user holds terminal may include the palm print information of user, user
Finger print information, user and terminal each contact point pressure value and at least one of the temperature value of each contact point.
In the embodiment of the present invention, the grip mode of different user grip terminal is had differences.It can integrate in the terminal
For acquiring the palm print collecting device of user's palm print information, palm print collecting device can be one or more, can will generally slap
The position of terminal back side partial below is arranged in line acquisition device, and acquiring unit 601 can be acquired by the palm print collecting device and be used
Hold palm print information when terminal in family;The fingerprint acquisition device for acquiring user fingerprints information can also be integrated in the terminal,
Fingerprint acquisition device can be one or more, can be set in the position of terminal back side, acquiring unit 601 can pass through
The fingerprint acquisition device acquires finger print information when user holds terminal;It can also integrate in the terminal multiple for measuring pressure
The pressure sensor of value or pressure values, wherein pressure sensor is used to measure the pressure value of each contact point of user and terminal
Or pressure values, such as pressure value or pressure values that when each finger of user and terminal contact generates, acquiring unit 601 can pass through
Pressure sensor senses pressure value when user holds terminal with each contact point of terminal;Multiple use can also be integrated in the terminal
In the temperature sensor of measurement temperature value, wherein temperature sensor is used to measure the temperature of each contact point of user and terminal
Value, such as palm transmits when the temperature value of each finger transmitting that contact with terminal of user and/or user's palm and terminal contact
Temperature value etc., acquiring unit 601 can pass through temperature sensor sense when user holds terminal with each contact point of terminal
Temperature value etc..
In the embodiment of the present invention, acquiring unit 601 can obtain terminal by Integrated Accelerometer in the terminal
Current motion state information, wherein the current motion state information of terminal may include the acceleration magnitude and terminal of terminal
At least one of acceleration direction.It may determine that terminal is stationary state or movement shape by the acceleration magnitude of terminal
State, and may determine that whether terminal screen rotates by the acceleration direction of terminal.
Generation unit 602, for generating corresponding informative abstract according to grip status information.
In the embodiment of the present invention, generation unit 602, which can use target algorithm, will hold the corresponding letter of status information generation
Breath abstract, wherein target algorithm may include message digest algorithm MD5, secure hash algorithm SHA, RACE raw integrity school
Message Digest 5 RIPEMD etc. is tested, the embodiment of the present invention is not construed as limiting.Wherein, the principle of MD5 algorithm is grouped with 512
Handle the information of input, and each grouping is divided into 16 32 seats groupings, after have passed through a series of processing, algorithm again
Output formed by four 32, will after this four 32 packet concatenations will generate 128 hashed values.MD5 algorithm
One segment information can be compressed into a kind of format of encryption, different inputs obtains different as a result, using the acquisition of MD5 algorithm
Abstract has uniqueness, and MD5 is highly-safe, is not easy to crack.The principle of SHA algorithm is similar with MD5, and highly-safe, common
Have SHA-1, SHA-2 scheduling algorithm.RIPEMD algorithm is built upon on the basis of MD5, and principle is also similar with MD5.On in addition,
Stating several target algorithms can be used alone, and can also integrate use.
In the embodiment of the present invention, the user that generation unit 602 gets above-mentioned acquiring unit 601 holds the grip of terminal
Status information generates corresponding informative abstract, which is encryption, is not easy to crack and forge, highly-safe.
In the embodiment of the present invention, before generation unit 602 generates corresponding informative abstract according to grip status information, eventually
The grip status information that above-mentioned acquiring unit 601 is got can be filtered processing by end, maximum to filter out garbage signal
Retain useful signal to degree.
Transmission unit 603, for sending certification request to certificate server, which includes informative abstract and current
Movement state information, the registration corresponding with pre-stored current motion state information so that certificate server authentication information is made a summary
Whether informative abstract is consistent.
In the embodiment of the present invention, transmission unit 603 to certificate server send certification request before, need to detect terminal with
Communication connection whether is established between certificate server, after establishing communication connection between terminal and certificate server, is sent single
Member 603 can send certification request to certificate server.It can be led to wirelessly between terminal and certificate server
Letter connection, can also be communicatively coupled by wired mode, wherein wireless mode can be Wi-Fi, 4G, 3G, GSM and
Other communications, the embodiment of the present invention are not construed as limiting.
In the embodiment of the present invention, the certification request that transmission unit 603 is sent to certificate server includes grip status information
The informative abstract of generation and the current operating conditions information of terminal, the certification request are used for triggering authentication server authentication information
Whether registration information abstract corresponding with pre-stored current motion state information of making a summary is consistent, at this point, authentication procedures
It is completed in certificate server.The corresponding registration information of at least one movement state information is previously stored in certificate server to pluck
It wants, i.e., before certification, need to first be registered.Wherein, the corresponding registration information abstract of at least one movement state information is terminal
The note that registration grip status information when user is registered by holding terminal under at least one movement state information generates
Volume informative abstract.
Receiving unit 604, for sending certification request to certificate server when above-mentioned transmission unit 603, so that certification takes
When device authentication information abstract registration information corresponding with pre-stored current motion state information of being engaged in makes a summary consistent, certification is received
The authentication successful information that server returns.
In the embodiment of the present invention, when above-mentioned transmission unit 603 sends certification request to certificate server, so that authentication service
Device authenticate informative abstract corresponding with pre-stored current motion state information registration information abstract it is consistent when, receiving unit
604 can receive the authentication successful information of certificate server return, and can respond the authentication successful information, to hold
Row corresponding operation.
As an alternative embodiment, when above-mentioned transmission unit 603 sends certification request to certificate server, so that
It is inconsistent that certificate server authenticates informative abstract registration information abstract corresponding with pre-stored current motion state information
When, receiving unit 604 is also used to receive the authentication failure information of certificate server return, and can respond the authentication
Failure information, to execute corresponding operation.
In this embodiment, qualifications can be preset, when the continuous n times of receiving unit 604 within the unit time
The authentication failure information of certificate server return is received, then terminal can lock and carry out answering for authentication at this time
With no longer allowing above-mentioned acquiring unit 601 to obtain the grip status information of user when locked, but allow the manual input authentication of user
Information, or until the grip status information for obtaining user after the unlock of specific duration again authenticates.Wherein, the unit time can be with
It is one day, one hour, 1 minute etc., n is positive integer.Such as: user is when carrying out authentication to terminal unlocking interface, 1
3 equal authentification failures are connected in minute, then can be locked the unlock interface, user can only be manually entered unlocking pin at this time.
In the embodiment of the present invention, need to carry out authentication can be the included application of terminal and tool, such as open a terminal
Address list when can carry out authentication, the i.e. openable address list when authentication passes through;It is also possible to install in terminal
Third party software, such as: payment application, instant chat software (such as QQ, wechat, microblogging), multimedia software etc.;It can also be
It, can be in the case where not being manually entered unlocking pin in unlock interface for the unlock interface of terminal, it can be by obtaining
The grip status information for taking family grip terminal carries out authentication, then can be with automatic unlocking terminal when authentication success;
Further, it is also possible to carry out authentication etc. for the other application in terminal, the embodiment of the present invention is not construed as limiting.
Terminal shown in fig. 6 holds the grip status information of terminal obtaining user, and obtains the current kinetic of terminal
After status information, corresponding informative abstract can be generated according to grip status information, it is possible to further send out to certificate server
The certification request for carrying informative abstract and current motion state information is sent, so that certificate server receives the certification request
Afterwards, it is consistent to authenticate informative abstract registration information abstract whether corresponding with pre-stored current motion state information, if one
It causes, then receives the successful information of authentication of certificate server return, and successfully pass certification.Implement terminal shown in fig. 6,
Since the grip mode that user holds terminal varies with each individual, the grip status information of the different user got is then different,
It can be used as user according to the informative abstract that grip status information generates uniquely to identify, be protected when by by informative abstract with registration
The registration information abstract deposited is compared, and the safety of authentication can be improved.In addition, the embodiment of the present invention is carrying out identity
When certification, it is manually entered account and password without user, so as to improve the convenience of authentication operation, and is effectively improved
User experience.
Referring to Fig. 7, Fig. 7 is the structural schematic diagram of another terminal provided in an embodiment of the present invention, for executing this hair
The identity identifying method that bright embodiment provides.As shown in fig. 7, the terminal may include:
Acquiring unit 701 holds the grip status information of terminal for obtaining user, and obtains the current kinetic of terminal
Status information.
In the embodiment of the present invention, grip status information may include the palm print information of user, the finger print information of user, user
With at least one of the temperature value of the pressure value of each contact point of terminal and each contact point information.
In the embodiment of the present invention, current motion state information includes the acceleration magnitude of terminal and the acceleration direction of terminal
At least one of.
Generation unit 702, for generating corresponding informative abstract according to grip status information.
Transmission unit 703, for sending certification request to certificate server, which includes informative abstract and current
Movement state information, the registration corresponding with pre-stored current motion state information so that certificate server authentication information is made a summary
Whether informative abstract is consistent.
Receiving unit 704, for sending certification request to certificate server when above-mentioned transmission unit 603, so that certification takes
When device authentication information abstract registration information corresponding with pre-stored current motion state information of being engaged in makes a summary consistent, certification is received
The authentication successful information that server returns.
In the embodiment of the present invention, receiving unit 704 is also used to recognize when above-mentioned transmission unit 603 to certificate server transmission
Card request, so that certificate server authentication information is made a summary, registration information corresponding with pre-stored current motion state information is plucked
When wanting inconsistent, the authentication failure information that certificate server returns is received.
In the embodiment of the present invention, above-mentioned transmission unit 703 can be specifically used for sending certification request to certificate server, should
Certification request includes informative abstract and current motion state information so that certificate server with current motion state information be according to
According to judging whether to be previously stored with the corresponding registration information abstract of current motion state information, if so, being authenticated by certificate server
Whether informative abstract registration information abstract corresponding with current motion state information is consistent.
Correspondingly, receiving unit 704 are also used to send certification request to certificate server when above-mentioned transmission unit 703, with
When certificate server being made to judge that the corresponding registration information of current motion state information, which is not stored in advance, makes a summary, certification clothes are received
The authentication failure information that business device returns.
Receiving unit 704, be also used to above-mentioned acquiring unit 701 obtain user hold terminal grip status information it
Before, receive the registration request of user's input.
Above-mentioned acquiring unit 701, is also used to respond the registration request, obtains terminal respectively and believes at least one motion state
Status information is held in the registration that the lower corresponding user of breath holds terminal.
Above-mentioned generation unit 702 is also used to that state is held in the registration obtained under each movement state information respectively
Information generates corresponding registration information abstract.
Correspondingly, terminal shown in Fig. 7 can also include:
Associative cell 705, for each movement state information to be associated with corresponding registration information abstract respectively.
Uploading unit 706 is made a summary with corresponding registration information for each movement state information after being associated with and is uploaded
To certificate server.
As an alternative embodiment, terminal shown in Fig. 7 can also include:
Output unit 707, for being obtained above-mentioned after the registration request that above-mentioned receiving unit 704 receives user's input
It takes unit 701 to respond the registration request, obtains terminal user's grip corresponding under at least one movement state information respectively
Before the registration grip status information of terminal, prompt information is exported, which enters registration information for prompt terminal and adopt
Integrated mode.
In this embodiment, prompt information can be the form of text, be also possible to the form or the two of voice
Combination etc., the embodiment of the present invention is not construed as limiting.
As an alternative embodiment, terminal shown in Fig. 7 can also include:
First control unit 708, when for entering the authentication interface of a target application in terminal, response certification clothes
The authentication successful information that business device returns, controls the target application and enters logging state.
In this embodiment, target application can be the application defaulted in terminal, be also possible to installed in terminal
Tripartite's application, when the authentication login interface in the target application, above-mentioned receiving unit 704 receives certification successfully letter
When breath, first control unit 708 can control the target application automated log on.
As an alternative embodiment, terminal shown in Fig. 7 can also include:
Second control unit 709, when a target application for carrying out authentication in the terminal is in logging state,
The authentication failure information that certificate server returns is responded, the target application is controlled and logs off state.
In this embodiment, after target application enters logging state, above-mentioned acquiring unit 701 can obtain use in real time
The grip status information that terminal is held at family carries out authentication, can also obtain the grip that user holds terminal every preset time
Status information carries out authentication, and when authentication success, then the second control unit 709 controls the target application and keeps logging in shape
State is constant, and when authentication failure, then the second control unit 709 is immediately controlled the target application and logs off state, returns
Login interface can continue authentication at this time, until authentication success just logs in the target application again;Or it uses
Family is manually entered account and password is logged in, which can be character string password, is also possible to biological characteristic password, such as refers to
Line password, vocal print password and iris password etc. are manually entered account by user and password are logged in and can no longer be tieed up
The state for holding long login, that is, can be set to short login, that is, logging in is more than that preset duration then disconnects logins, at this time user need to again into
Row logs in, and preset duration can be configured according to the self-demand of user.
Implement terminal shown in Fig. 7, since the grip mode that user holds terminal varies with each individual, get not
It is then different with the grip status information of user, user can be used as according to the informative abstract that grip status information generates and uniquely mark
Know, by the way that informative abstract to be compared with the registration information abstract saved when registration, the safety of authentication can be improved.
In addition, the embodiment of the present invention is manually entered account and password without user when carrying out authentication, so as to improve identity
The convenience of authentication operation, and it is effectively improved user experience.
Referring to Fig. 8, Fig. 8 is the structural schematic diagram of another terminal provided in an embodiment of the present invention, for executing this hair
The identity identifying method that bright embodiment provides.As shown in figure 8, the terminal 800 may include: at least one processor 801, at least
One network interface 802, user interface 803, the equal components of memory 804.Wherein, these components pass through one or more bus
805 are communicatively coupled.It will be understood by those skilled in the art that the structure of terminal shown in Fig. 8 is not constituted to the present invention
The restriction of embodiment, it is also possible to hub-and-spoke configuration either busbar network, can also include more more or less than illustrating
Component, perhaps combine certain components or different component layouts.Wherein:
Processor 801 is the control centre of terminal, using the various pieces of various interfaces and the entire terminal of connection, is led to
It crosses operation or executes the program and/or module being stored in memory 804, and call the data being stored in memory 804,
To execute the various functions and processing data of terminal.Processor 801 can be by integrated circuit (Integrated Circuit, letter
Claim IC) composition, such as can be made of the IC of single encapsulation, it can also be by the envelope of more identical functions of connection or different function
It fills IC and forms.For example, processor 801 can only include central processing unit (Central Processing Unit, letter
Claim CPU), it is also possible to CPU, digital signal processor (digital signal processor, abbreviation DSP), graphics process
The combination of device (Graphic Processing Unit, abbreviation GPU) and various control chips.In embodiments of the present invention,
CPU can be single operation core, also may include multioperation core.
Network interface 802 may include wireline interface, wireless interface etc., be mainly used for connecting certificate server progress data
Communication.
User interface 803 may include display screen (Display), keyboard (Keyboard), touch screen etc., also may include
Wireline interface, wireless interface etc..
Memory 804 can be high speed RAM memory, be also possible to non-labile memory (non-volatile
Memory), a for example, at least magnetic disk storage.Memory 804 optionally can also be that at least one is located remotely from aforementioned place
Manage the storage device of device 801.As shown in figure 8, as may include operation system in a kind of memory 804 of computer storage medium
System, network communication module, Subscriber Interface Module SIM and application program etc..In embodiments of the present invention, operating system can be
Android system, iOS system or Windows operating system etc..
Specifically, processor 801 calls the application program being stored in memory 804, for performing the following operations:
The grip status information that user holds terminal is obtained, and obtains the current motion state information of terminal;
Corresponding informative abstract is generated according to grip status information;
It controls network interface 802 and sends certification request to certificate server, which includes informative abstract and current
Movement state information, the registration corresponding with pre-stored current motion state information so that certificate server authentication information is made a summary
Whether informative abstract is consistent;
If consistent, control network interface 802 receives the authentication successful information that certificate server returns.
In the embodiment of the present invention, before processor 801 obtains the grip status information that user holds terminal, it may call upon
The application program being stored in memory 804, and execute following operation:
Control the registration request that user interface 803 receives user's input;
The registration request is responded, terminal user corresponding under at least one movement state information is obtained respectively and holds eventually
Status information is held in the registration at end;
The registration obtained under each movement state information grip status information is generated into corresponding registration information respectively
Abstract;
Each movement state information is associated with corresponding registration information abstract respectively, and controls network interface
Each movement state information after association is uploaded to certificate server with corresponding registration information abstract by 802.
As an alternative embodiment, processor 801 controls the registration request that user interface 803 receives user's input
Later, and the registration request is responded, obtains terminal user's grip corresponding under at least one movement state information respectively
Before the registration grip status information of terminal, the application program being stored in memory 804 may call upon, and execute following behaviour
Make:
It controls user interface 803 and exports prompt information, which enters registration information acquisition mould for prompt terminal
Formula.
In the embodiment of the present invention, processor 801 controls network interface 802 and sends certification request to certificate server, this is recognized
Card request includes informative abstract and current motion state information, so that certificate server authentication information abstract is worked as with pre-stored
Whether consistent mode is specifically as follows the corresponding registration information abstract of preceding movement state information:
It controls network interface 802 and sends certification request to certificate server, which includes informative abstract and current
Movement state information, so that certificate server using current motion state information as foundation, judges whether to be previously stored with current fortune
The corresponding registration information abstract of status information is moved, if so, by certificate server authentication information abstract and current motion state information
Whether corresponding registration information abstract is consistent.
Correspondingly, processor 801 may call upon the application program being stored in memory 804, and execute following operation:
If judging that the corresponding registration information of current motion state information, which is not stored in advance, makes a summary by certificate server, control
Network interface 802 processed receives the authentication failure information that certificate server returns.
In the embodiment of the present invention, processor 801 may call upon the application program being stored in memory 804, and execute
It operates below:
If by certificate server authentication information abstract registration information corresponding with pre-stored current motion state information
It makes a summary inconsistent, control network interface 802 receives the authentication failure information that certificate server returns.
As an alternative embodiment, when terminal enters the authentication interface of a target application, processor
After 801 control network interfaces 802 receive the authentication successful information that certificate server returns, it may call upon and be stored in
Application program in reservoir 804, and execute following operation:
The authentication successful information is responded, above-mentioned target application is controlled and enters logging state.
As an alternative embodiment, a target application for carrying out authentication in the terminal is in logging state
When, after processor 801 controls the authentication failure information that network interface 802 receives certificate server return, it can also adjust
With the application program being stored in memory 804, and execute following operation:
The authentication failure information is responded, above-mentioned target application is controlled and logs off state.
In the embodiment of the present invention, grip status information may include the palm print information of user, the finger print information of user, user
With at least one of the temperature value of the pressure value of each contact point of terminal and each contact point information.
In the embodiment of the present invention, movement state information includes in the acceleration magnitude of terminal and the acceleration direction of terminal
It is at least one.
Specifically, the body that the present invention combines Fig. 1, Fig. 2 or Fig. 3 introduction can be implemented in the terminal introduced in the embodiment of the present invention
Process some or all of in identity authentication method embodiment.
The steps in the embodiment of the present invention can be sequentially adjusted, merged and deleted according to actual needs.
Unit in the terminal of that embodiment of the invention can be combined, divided and deleted according to actual needs.
Referring to Fig. 9, Fig. 9 is a kind of structural schematic diagram of identity authorization system provided in an embodiment of the present invention.Such as Fig. 9 institute
Show, which at least may include terminal 901 and certificate server 902, terminal 901 and certificate server 902 it
Between data communication can be carried out by internet, in which:
Terminal 901 holds the grip status information of terminal for obtaining user, and obtains the current motion state of terminal
Information;
Terminal 901 is also used to generate corresponding informative abstract according to grip status information;
Terminal 901 is also used to send certification request to certificate server 902, which includes informative abstract and work as
Preceding movement state information;
Certificate server 902, for receive terminal 901 transmission certification request, the certification request include informative abstract and
Current motion state information;
Certificate server 902 is also used to authentication information abstract note corresponding with pre-stored current motion state information
Whether volume informative abstract is consistent;
Certificate server 902 is also used to when authentication information abstract is corresponding with pre-stored current motion state information
When registration information abstract is consistent, authentication successful information is sent to terminal 901;
Terminal 901 is also used to receive the authentication successful information of the transmission of certificate server 902.
In the embodiment of the present invention, before terminal 901 obtains the grip status information that user holds terminal, it is also used to receive use
The registration request of family input;
And terminal 901, it is also used to respond the registration request, obtains terminal respectively at least one movement state information
Status information is held in the registration that lower corresponding user holds terminal;
Terminal 901 is also used to respectively generate the registration obtained under each movement state information grip status information
Corresponding registration information abstract;
Terminal 901 is also used to for each movement state information being associated with corresponding registration information abstract respectively, and
Each movement state information after association is uploaded to certificate server 902 with corresponding registration information abstract.
Correspondingly, certificate server 902, each movement after being also used to receive and save the association of the upload of terminal 901
Status information is made a summary with corresponding registration information.
Optionally, terminal 901 are also used to after the registration request for receiving user's input, are responding the registration request, point
Not Huo Qu before terminal user corresponding under at least one movement state information holds the registration grip status information of terminal,
Prompt information is exported, which enters registration information acquisition mode for prompt terminal.
In the embodiment of the present invention, certificate server 902 is also used to after receiving the certification request that terminal 901 is sent, with
Current motion state information is foundation, judges whether to be previously stored with the corresponding registration information abstract of current motion state information,
If so, whether execute authentication information abstract registration information abstract corresponding with pre-stored current motion state information consistent
Step.
Correspondingly, terminal 901 are also used to judge in certificate server 902 that current motion state information is not stored in advance
When corresponding registration information is made a summary, the authentication failure information that certificate server 902 returns is received.
In the embodiment of the present invention, terminal 901, be also used to 902 authentication information of certificate server make a summary with it is pre-stored
When the corresponding registration information abstract of current motion state information is inconsistent, receives the authentication that certificate server 902 returns and lose
Lose information.
Optionally, when terminal enters the authentication interface of a target application, terminal 901 is also used to recognize in reception
After demonstrate,proving the authentication successful information that server 902 is sent, the authentication successful information is responded, above-mentioned target application is controlled
Into logging state.
Optionally, when a target application of progress authentication is in logging state in the terminal, terminal 901 is also used
In after receiving the authentication failure information that certificate server 902 returns, the authentication failure information is responded, in control
Target application is stated to log off state.
In the embodiment of the present invention, grip status information includes the palm print information of user, the finger print information of user, user and end
The pressure value of each contact point at end and at least one of the temperature value information of each contact point.
In the embodiment of the present invention, movement state information includes in the acceleration magnitude of terminal and the acceleration direction of terminal
It is at least one.
By implementing system described in Fig. 9, since the grip mode that user holds terminal varies with each individual, obtain
The grip status information of the different user arrived is then different, can be used as user only according to the informative abstract that grip status information generates
Authentication can be improved by the way that informative abstract to be compared with the registration information abstract saved when registration in one mark
Safety.In addition, when carrying out authentication, being manually entered account and close without user by implementing system described in Fig. 9
Code so as to improve the convenience of authentication operation, and is effectively improved user experience.
Those of ordinary skill in the art will appreciate that realizing all or part of the process in above-described embodiment method, being can be with
Relevant hardware is instructed to complete by computer program, the program can be stored in a computer-readable storage medium
In, the program is when being executed, it may include such as the process of the embodiment of above-mentioned each method.Wherein, the storage medium can be magnetic
Dish, CD, read-only memory (Read-Only Memory, ROM) or random access memory (Random Access
Memory, abbreviation RAM) etc..
A kind of identity identifying method provided in an embodiment of the present invention is described in detail above, tool used herein
Principle and implementation of the present invention are described for body example, the above embodiments are only used to help understand this hair
Bright method and its core concept;At the same time, for those skilled in the art, according to the thought of the present invention, specific real
Apply in mode and application range that there will be changes, in conclusion the content of the present specification should not be construed as to limit of the invention
System.
Claims (9)
1. a kind of identity identifying method characterized by comprising
The grip status information that user holds terminal is obtained, and obtains the current motion state information of the terminal;
Corresponding informative abstract is generated according to the grip status information;
Certification request is sent to certificate server, the certification request includes the informative abstract and current motion state letter
Breath so that the certificate server using the current motion state information as foundation, judge whether to be previously stored with it is described current
The corresponding registration information abstract of movement state information, works as if so, authenticating the informative abstract by the certificate server with described
Whether the corresponding registration information abstract of preceding movement state information is consistent;
If consistent, the authentication successful information that the certificate server returns is received.
2. the method according to claim 1, wherein it is described obtain user hold terminal grip status information it
Before, the method also includes:
Receive the registration request of user's input;
The registration request is responded, obtains terminal user grip corresponding under at least one movement state information respectively
Status information is held in the registration of the terminal;
The registration obtained under each movement state information grip status information corresponding registration information is generated respectively to make a summary;
Each described movement state information is associated with corresponding registration information abstract respectively, and will be described in after association
Each movement state information is uploaded to the certificate server with corresponding registration information abstract.
3. according to the method described in claim 2, it is characterized in that, it is described receive user input registration request after, it is described
The registration request is responded, is obtained described in terminal user grip corresponding under at least one movement state information respectively
Before the registration grip status information of terminal, the method also includes:
Prompt information is exported, the prompt information is for prompting the terminal to enter registration information acquisition mode.
4. method according to claim 1-3, which is characterized in that the method also includes:
If judging that the corresponding registration information of the current motion state information, which is not stored in advance, plucks by the certificate server
It wants, receives the authentication failure information that the certificate server returns.
5. described in any item methods according to claim 1~3, which is characterized in that the method also includes:
If it is corresponding with the pre-stored current motion state information to authenticate the informative abstract by the certificate server
Registration information abstract is inconsistent, receives the authentication failure information that the certificate server returns.
6. described in any item methods according to claim 1~3, which is characterized in that enter the body of a target application in terminal
When part authentication interface, the method also includes:
The authentication successful information is responded, the target application is controlled and enters logging state.
7. according to the method described in claim 5, it is characterized in that, being carried out at a target application of authentication in the terminal
When logging state, the method also includes:
The authentication failure information is responded, the target application is controlled and logs off state.
8. described in any item methods according to claim 1~3, which is characterized in that the grip status information includes the use
The pressure value and institute of the palm print information at family, the finger print information of the user, the user with each contact point of the terminal
State at least one of the temperature value of each contact point information.
9. described in any item methods according to claim 1~3, which is characterized in that the current motion state information includes institute
State at least one of the acceleration magnitude of terminal and the acceleration direction of the terminal.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510159018.0A CN104811443B (en) | 2015-04-07 | 2015-04-07 | A kind of identity identifying method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510159018.0A CN104811443B (en) | 2015-04-07 | 2015-04-07 | A kind of identity identifying method |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104811443A CN104811443A (en) | 2015-07-29 |
CN104811443B true CN104811443B (en) | 2019-05-14 |
Family
ID=53695937
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510159018.0A Active CN104811443B (en) | 2015-04-07 | 2015-04-07 | A kind of identity identifying method |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104811443B (en) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106060019A (en) * | 2016-05-20 | 2016-10-26 | 张宇川 | Bank account management system and method based on intelligent client |
CN108629170A (en) * | 2018-04-20 | 2018-10-09 | 北京元心科技有限公司 | Personal identification method and corresponding device, mobile terminal |
CN113162903B (en) * | 2021-02-02 | 2022-11-04 | 上海大学 | Authentication method based on connection information in network slice |
Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1742252A (en) * | 2003-05-21 | 2006-03-01 | 株式会社日立高新技术 | Portable terminal device with built-in fingerprint sensor |
JP2010044639A (en) * | 2008-08-14 | 2010-02-25 | Toshiba Corp | Personal identification device |
CN101754215A (en) * | 2008-12-01 | 2010-06-23 | 华为技术有限公司 | Authentication method and system |
CN102841997A (en) * | 2012-07-10 | 2012-12-26 | 郭小卫 | Method and device for achieving authentication on intelligent device by mobile terminal |
CN103200298A (en) * | 2013-02-05 | 2013-07-10 | 鹤山世达光电科技有限公司 | System and method for controlling mobile terminal to conduct voice communication |
CN103339634A (en) * | 2011-01-27 | 2013-10-02 | 株式会社Ntt都科摩 | Mobile information terminal, grip characteristic learning method, and grip characteristic authentication method |
CN103634328A (en) * | 2013-12-19 | 2014-03-12 | 青岛海尔软件有限公司 | Authentication method, device and system for network platform authentication server |
CN103873500A (en) * | 2012-12-12 | 2014-06-18 | 腾讯科技(深圳)有限公司 | Application control method, terminal and system based on mobile terminal sensor |
CN104392160A (en) * | 2014-09-22 | 2015-03-04 | 贵阳朗玛信息技术股份有限公司 | Identity authentication method and identity authentication device |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8244211B2 (en) * | 2008-02-07 | 2012-08-14 | Inflexis Llc | Mobile electronic security apparatus and method |
WO2009109014A1 (en) * | 2008-03-05 | 2009-09-11 | Rpo Pty Limited | Methods for operation of a touch input device |
-
2015
- 2015-04-07 CN CN201510159018.0A patent/CN104811443B/en active Active
Patent Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1742252A (en) * | 2003-05-21 | 2006-03-01 | 株式会社日立高新技术 | Portable terminal device with built-in fingerprint sensor |
JP2010044639A (en) * | 2008-08-14 | 2010-02-25 | Toshiba Corp | Personal identification device |
CN101754215A (en) * | 2008-12-01 | 2010-06-23 | 华为技术有限公司 | Authentication method and system |
CN103339634A (en) * | 2011-01-27 | 2013-10-02 | 株式会社Ntt都科摩 | Mobile information terminal, grip characteristic learning method, and grip characteristic authentication method |
CN102841997A (en) * | 2012-07-10 | 2012-12-26 | 郭小卫 | Method and device for achieving authentication on intelligent device by mobile terminal |
CN103873500A (en) * | 2012-12-12 | 2014-06-18 | 腾讯科技(深圳)有限公司 | Application control method, terminal and system based on mobile terminal sensor |
CN103200298A (en) * | 2013-02-05 | 2013-07-10 | 鹤山世达光电科技有限公司 | System and method for controlling mobile terminal to conduct voice communication |
CN103634328A (en) * | 2013-12-19 | 2014-03-12 | 青岛海尔软件有限公司 | Authentication method, device and system for network platform authentication server |
CN104392160A (en) * | 2014-09-22 | 2015-03-04 | 贵阳朗玛信息技术股份有限公司 | Identity authentication method and identity authentication device |
Also Published As
Publication number | Publication date |
---|---|
CN104811443A (en) | 2015-07-29 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106487511B (en) | Identity authentication method and device | |
CN105139204B (en) | A kind of method and system carrying out safety certification | |
US20160180068A1 (en) | Technologies for login pattern based multi-factor authentication | |
CN105404809B (en) | A kind of identity identifying method and user terminal | |
CN106713241B (en) | A kind of auth method, device and system | |
CN105592014B (en) | A kind of trusted terminal verification method, device | |
CN105245346B (en) | A kind of identity identifying method and user terminal | |
CN106453205B (en) | identity verification method and device | |
US10958639B2 (en) | Preventing unauthorized access to secure information systems using multi-factor, hardware based and/or advanced biometric authentication | |
WO2018055406A1 (en) | Passive availability testing | |
CN104065823A (en) | User mode control method and user mode control system based on iris recognition technology for mobile terminal | |
CN105760725B (en) | A kind of identity identifying method and user terminal | |
CN110502886A (en) | Multifactor authentication method, apparatus, terminal and computer storage medium | |
CN106790129A (en) | A kind of identity authentication method and device | |
Huang et al. | Development of a typing behaviour recognition mechanism on android | |
CN104811443B (en) | A kind of identity identifying method | |
CN104836795B (en) | A kind of terminal | |
CN110084011A (en) | A kind of method and device of the verifying of user's operation | |
CN105827406A (en) | Identity verification method, identity verification device, and identity verification system | |
CN109067881A (en) | Remote-authorization method and its device, equipment and storage medium | |
CN110120928A (en) | A kind of identity authentication method, device, server and computer-readable medium | |
WO2019001566A1 (en) | Authentication method and device | |
CN110324350A (en) | Identity identifying method and server based on the non-sensitive sensing data in mobile terminal | |
CN110175448A (en) | A kind of credible equipment login authentication method and the application system with authentication function | |
CN110336870A (en) | Method for building up, device, system and the storage medium in telecommuting O&M channel |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210224 Address after: 518057 Desai Science and Technology Building, 9789 Shennan Avenue, Yuehai Street, Nanshan District, Shenzhen City, Guangdong Province, 17th Floor (15th Floor of Natural Floor) 1702-1703 Patentee after: Shenzhen Microphone Holdings Co.,Ltd. Address before: 518040 21 floor, east block, Times Technology Building, 7028 Shennan Road, Futian District, Shenzhen, Guangdong. Patentee before: DONGGUAN GOLDEX COMMUNICATION TECHNOLOGY Co.,Ltd. |