CN104852802B

CN104852802B - Auth method, equipment and system

Info

Publication number: CN104852802B
Application number: CN201410053335.XA
Authority: CN
Inventors: 陈荣; 陈梦; 陈远斌; 董梁; 唐艳平; 李德春; 刘飞飞; 孙增昕
Original assignee: Tencent Technology Shenzhen Co Ltd
Current assignee: Tencent Technology Shenzhen Co Ltd; Tencent Cloud Computing Beijing Co Ltd
Priority date: 2014-02-17
Filing date: 2014-02-17
Publication date: 2017-08-25
Anticipated expiration: 2034-02-17
Also published as: CN104852802A

Abstract

The invention discloses a kind of auth method, equipment and system, belong to electronic technology field.Methods described includes：Monitor the broadcast message that at least one authorisation device is sent in preset time；Determined to participate in the authorisation device of authentication according to the equipment identification information carried in each broadcast message monitored in preset time, and current total credit rating is determined according to each authorisation device for participating in authentication；Obtain the corresponding verification mode of current total credit rating；The checking information of the corresponding verification mode matching of current total credit rating is obtained, and authentication is carried out according to checking information.The present invention triggers authentication by monitoring broadcast message that at least one authorisation device sends in preset time, possesses two-dimensional code scanning ability without authorisation device, to the configuration requirement of authorisation device than relatively low.Further, since without frequently being interacted with authorisation device, improving the efficiency of authentication.

Description

Auth method, equipment and system

Technical field

The present invention relates to electronic technology field, more particularly to a kind of auth method, equipment and system.

Background technology

With developing rapidly for electronic technology, increasing smart machine is occurred in that, is that the life of user brings very big Convenient, such as wearable smart machine, intelligent appliance.Wherein, wearable smart machine such as smart mobile phone, intelligent watch, intelligence The smart machines easy to carry such as energy glasses；The intelligent appliance such as housed device such as intelligent television, domestic intelligent computer.In order to ensure The data safety of user, before using identity-validation devices such as intelligent appliances, identity-validation device is frequently necessary to using body The user of part checking equipment carries out authentication.In order that authentication is simple to operate, user is in use certificate equipment Before, it can assign other smart machines certain right, make the smart machine for being endowed right as authorisation device, by awarding Power equipment interacts to complete authentication with identity-validation device.For example, user can be by the wearable intelligence such as smart mobile phone Energy equipment interacts to complete authentication as authorisation device, and by smart mobile phone and identity-validation device.

Correlation technique carry out authentication when, the method that can be used for：The first step, identity-validation device obtains checking The Quick Response Code of user identity, and the Quick Response Code got is shown, wherein, carried in Quick Response Code and user's progress authentication is tested Card mode；Second step, authorisation device scans the Quick Response Code, and testing user identity of being carried in the Quick Response Code is parsed After the verification mode of card, corresponding with verification mode checking information is obtained, and the checking information got is sent to identity tested Demonstrate,prove equipment；3rd step, identity-validation device receives the checking information that authorisation device is sent, and user is carried out according to checking information Authentication.

During the present invention is realized, inventor has found that correlation technique at least has problems with：

First, due to correlation technique carry out authentication when, it is necessary to authorisation device possess scanning Quick Response Code ability, because This, it is higher to the configuration requirement of authorisation device.Second, frequently handed over identity-validation device due to needing authorisation device Mutually, the less efficient of authentication is caused.

The content of the invention

The problem of in order to solve correlation technique, the embodiments of the invention provide a kind of auth method, equipment and system. The technical scheme is as follows：

First aspect includes there is provided a kind of auth method, methods described：

The broadcast message that at least one authorisation device is sent in preset time is monitored, wherein, each authorisation device is sent Broadcast message in carry the equipment identification information of each authorisation device；

Determine that participating in identity tests according to the equipment identification information carried in each broadcast message monitored in preset time The authorisation device of card, current total credit rating is determined according to each authorisation device of the participation authentication；

Obtain the corresponding verification mode of current total credit rating, the different verification modes of the total credit rating correspondence of difference；

The checking information of the corresponding verification mode matching of the current always credit rating is obtained, and is entered according to the checking information Row authentication.

Second aspect includes there is provided a kind of auth method, methods described：

Equipment identification information is obtained, and to the broadcast message of the identity-validation device transmission carrying equipment identification information, Make the identity-validation device according to the equipment mark of each authorisation device carried in the broadcast message monitored in preset time Know information to determine to participate in the authorisation device of authentication, and current total letter is determined according to each authorisation device for participating in authentication Expenditure, obtains verification mode corresponding with the current total credit rating and acquisition is corresponding with the current always credit rating verifies After the checking information that mode is matched, authentication is carried out according to the checking information.

The third aspect includes there is provided a kind of identity-validation device, the equipment：

First monitors module, for monitoring the broadcast message that at least one authorisation device is sent in preset time, wherein, The equipment identification information of each authorisation device is carried in the broadcast message that each authorisation device is sent；

First determining module, for according to the device identification carried in each broadcast message monitored in the preset time Information determines to participate in the authorisation device of authentication；

Second determining module, for determining current total credit rating according to each authorisation device of the participation authentication；

First acquisition module, for obtaining the corresponding verification mode of current total credit rating, different total credit rating correspondences Different verification modes；

Second acquisition module, the checking information for obtaining the corresponding verification mode matching of the current always credit rating；

Authentication module, for carrying out authentication according to the checking information.

Fourth aspect includes there is provided a kind of authorisation device, the equipment：

Acquisition module, for obtaining equipment identification information；

Sending module, the broadcast message of the equipment identification information is carried for being sent to identity-validation device, is made described Identity-validation device is according to the equipment identification information of each authorisation device carried in the broadcast message monitored in preset time It is determined that participating in the authorisation device of authentication, and current total credit rating is determined according to each authorisation device for participating in authentication, Obtain verification mode corresponding with the current total credit rating and acquisition and the currently total corresponding verification mode of credit rating After the checking information of matching, authentication is carried out according to the checking information.

5th aspect is there is provided a kind of authentication system, and the system includes identity-validation device and at least one is awarded Weigh equipment；

Wherein, equipment of the identity-validation device as described in the above-mentioned third aspect；

Equipment of at least one the described authorisation device as described in above-mentioned fourth aspect.

The beneficial effect that technical scheme provided in an embodiment of the present invention is brought is：

Authentication is triggered by monitoring broadcast message that at least one authorisation device sends in preset time, without Authorisation device possesses two-dimensional code scanning ability, to the configuration requirement of authorisation device than relatively low.Further, since without and authorisation device Frequently interacted, improve the efficiency of authentication.

Brief description of the drawings

Technical scheme in order to illustrate the embodiments of the present invention more clearly, makes required in being described below to embodiment Accompanying drawing is briefly described, it should be apparent that, drawings in the following description are only some embodiments of the present invention, for For those of ordinary skill in the art, on the premise of not paying creative work, other can also be obtained according to these accompanying drawings Accompanying drawing.

Fig. 1 is a kind of schematic diagram of the implementation environment of auth method provided in an embodiment of the present invention；

Fig. 2 is a kind of auth method flow chart that the embodiment of the present invention one is provided；

Fig. 3 is another auth method flow chart that the embodiment of the present invention one is provided；

Fig. 4 is a kind of auth method flow chart that the embodiment of the present invention two is provided；

Fig. 5 is a kind of structural representation for identity-validation device that the embodiment of the present invention three is provided；

Fig. 6 is a kind of structural representation for identity-validation device that the embodiment of the present invention four is provided；

Fig. 7 is a kind of structural representation for authorisation device that the embodiment of the present invention seven is provided；

Fig. 8 is a kind of structural representation for authorisation device that the embodiment of the present invention eight is provided；

Fig. 9 is a kind of structural representation for authentication system that the embodiment of the present invention 11 is provided.

Embodiment

To make the object, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing to embodiment party of the present invention Formula is described in further detail.

Fig. 1 is refer to, it illustrates the structural representation of the implementation environment involved by method provided in an embodiment of the present invention. As shown in figure 1, the implementation environment includes identity-validation device 101 and at least one authorisation device 102.Wherein, authentication is set Standby 101 can include but is not limited to need to carry out authentication before the uses such as intelligent television, intelligent door lock, home Personal Computer Equipment.It is easy to carry or can wear that authorisation device 102 can include but is not limited to smart mobile phone, intelligent watch, intelligent glasses etc. The smart machine worn.

By auth method provided in an embodiment of the present invention, identity-validation device 101 can be by being assigned by user At least one authorisation device 102 of certain power carries out authentication to the user of use certificate equipment 101.Wherein, body Part checking equipment 101 by least one authorisation device 102 when carrying out authentication, identity-validation device 101 and at least one Individual authorisation device 102 can call a kind of interface in wireless communication interface to be communicated.Specific auth method is detailed See below embodiment one and embodiment two：

Embodiment one

Structural representation and the above with reference to shown in Fig. 1, the embodiments of the invention provide a kind of authentication side Method.By taking the angle that identity-validation device performs method provided in an embodiment of the present invention as an example, referring to Fig. 2, the embodiment of the present invention is carried The method flow of confession includes：

201：The broadcast message that at least one authorisation device is sent in preset time is monitored, wherein, each authorisation device The equipment identification information of each authorisation device is carried in the broadcast message of transmission.

202:Determined to participate in body according to the equipment identification information carried in each broadcast message monitored in preset time The authorisation device of part checking, current always credit rating is determined according to each authorisation device for participating in authentication.

Preferably, current total credit rating is determined according to each authorisation device for participating in authentication, including：

The credit weight for obtaining each authorisation device for participating in authentication and each mandate for participating in authentication are set Standby current credit；

Set according to the credit weight for each authorisation device for participating in authentication and each mandate for participating in authentication Standby current credit determines current total credit rating.

203:Obtain the corresponding verification mode of current total credit rating, the different verification modes of the total credit rating correspondence of difference.

204:The checking information of the corresponding verification mode matching of current total credit rating is obtained, and body is carried out according to checking information Part checking.

Preferably, before monitoring the broadcast message that at least one authorisation device is sent in preset time, in addition to：

Authorisation device addition request is received, and request monitoring at least one smart machine transmission is added according to authorisation device Broadcast message, wherein, the broadcast message that each smart machine is sent carries the equipment identification information of each smart machine；

The equipment identification information carried in the broadcast message for obtaining at least one smart machine transmission listened to, and according to Equipment identification information, which is obtained, confirms addition instruction；

At least one smart machine of addition is instructed to be used as authorisation device according to confirming to add.

Preferably, after according to confirming that addition instruction adds at least one smart machine as authorisation device, in addition to：

Obtain the authorisation device removal request for carrying at least one equipment identification information；

Delete in authorisation device removal request that the equipment identification information that carries is corresponding to be awarded in the authorisation device added Weigh equipment.

Preferably, after monitoring the broadcast message that at least one authorisation device is sent in preset time, in addition to：

Determine whether the authorisation device for sending broadcast message is legal according to the equipment identification information carried in broadcast message；

If it is determined that the authorisation device for sending broadcast message is legal, then perform according to each broadcast monitored in preset time The step of equipment identification information carried in message determines to participate in the authorisation device of authentication.

Preferably, after according to checking information progress authentication, in addition to：

If the verification passes, then the credit rating of score value is preset for the authorisation device increase of each participation authentication, obtained Participate in the credit rating after each authorisation device renewal of authentication.

By taking the angle that any authorisation device performs the method for the present embodiment offer as an example, referring to Fig. 3, the embodiment of the present invention is carried The method flow of confession includes：

301：Obtain equipment identification information.

302：To identity-validation device send Portable device identification information broadcast message, make identity-validation device according to The equipment identification information of each authorisation device carried in the broadcast message monitored in preset time determines to participate in authentication Authorisation device, and current total credit rating is determined according to each authorisation device for participating in authentication, obtain and current total credit rating After corresponding verification mode and the checking information of acquisition verification mode matching corresponding with current always credit rating, believed according to checking Breath carries out authentication.

Method provided in an embodiment of the present invention, by monitoring the broadcast that at least one authorisation device is sent in preset time Message triggers authentication, without authorisation device possesses two-dimensional code scanning ability, to the configuration requirement of authorisation device than relatively low. Further, since without frequently being interacted with authorisation device, improving the efficiency of authentication.In addition, by according to participation body The authorisation device that part is verified determines current total credit rating, and acquisition verification mode corresponding with current always credit rating so as to body Part employs hierarchical policy when being verified, the operation to authentication is flexible.

Embodiment two

With reference to the content of above-described embodiment one, the embodiments of the invention provide a kind of auth method.Referring to Fig. 4, sheet The method flow that inventive embodiments are provided includes：

401：The each authorisation device for participating in authentication obtains equipment identification information, and is taken to identity-validation device transmission The broadcast message of carrying device identification information.

In order that identity-validation device can be carried out by authorisation device to the identity of the user of use certificate equipment Checking, identity-validation device is before authentication is carried out, it is necessary to obtain the information for the authorisation device for participating in authentication.And be Identity-validation device is set to obtain the information for the authorisation device for participating in authentication, each mandate for participating in authentication is set It is standby to need to obtain equipment identification information, and send to identity-validation device the broadcast message of Portable device identification information.

Wherein, when each authorisation device for participating in authentication obtains equipment identification information, including but is not limited to can root Equipment identification information is obtained according to the configuration file prestored.Specifically, each authorisation device can be according to the CPU of the equipment The information such as (Central Processing Unit, central processing unit) information, operating system generate globally unique device identification Information, and the equipment identification information is stored in configuration file.Therefore, each authorisation device acquisition for participating in authentication is set During standby identification information, directly equipment identification information can be obtained from corresponding configuration file.

If however, the authorisation device of participation authentication is when obtaining equipment identification information, it is determined that not generating equipment also Identification information, then the authorisation device can be first globally unique according to the information such as the CPU information of the equipment, operating system generation one Equipment identification information, and directly regard the equipment identification information of generation as the equipment identification information got.

Further, in order that identity-validation device determines to participate in the authorisation device of authentication, and set authentication The different authorisation devices of each participation authentication of preparation area point, each authorisation device for participating in authentication is required to test to identity Demonstrate,prove after the broadcast message that equipment sends Portable device identification information, what identity-validation device was carried in the broadcast message according to monitoring Equipment identification information just can determine and distinguish each authorisation device for participating in authentication.

Wherein, on participate in authentication each authorisation device to identity-validation device send Portable device identification information Broadcast message mode, the embodiment of the present invention is not especially limited.For example, each authorisation device for participating in authentication can be with The wireless communication interface of configuration is called to send the broadcast message of Portable device identification information to identity-validation device.For channel radio The concrete form of communication interface, can there is many kinds, and it can be NFC to include but is not limited to（Near Field Communication, Near-field communication）, bluetooth, any of the wireless communication interface such as infrared interface.

When authorisation device calls the wireless communication interface of configuration to send Portable device identification information to identity-validation device During broadcast message, the non-wireless network communication interface such as bluetooth can be made full use of to be communicated with identity-validation device, without It is required that authorisation device has the ability of connection network, therefore, to the configuration requirement of authorisation device than relatively low.In addition, again due to one As smart machine be respectively provided with the wireless communication interface such as NFC, bluetooth, infrared, therefore, with the channel radio such as NFC, bluetooth, infrared The common smart machine of communication interface may act as authorisation device so that auth method provided in an embodiment of the present invention makes It is wider with scope.

Certainly, participating in each authorisation device of authentication can also be set by network to identity-validation device transmission carrying The broadcast message of standby identification information, the present embodiment is not especially limited to this.

402：Identity-validation device monitors the broadcast message that at least one authorisation device is sent in preset time.

Identity-validation device is when carrying out authentication, in order to determine that authentication is participated in this authentication process itself Authorisation device, method provided in an embodiment of the present invention supports identity-validation device to pass through at least one mandate in the preset monitored time The broadcast message that equipment is sent triggers authentication.Wherein, the size on preset time, the embodiment of the present invention is not made specifically Limit.When it is implemented, the size of the preset time can be 30s（Second）、50s（Second）, 1min, etc..

Preferably, in order to increase the quantity for the authorisation device that can participate in authentication, identity-validation device is being monitored extremely Before the broadcast message that a few authorisation device is sent in preset time, other smart machines can also be added at any time as awarding Weigh equipment.Wherein, identity-validation device adds other smart machines as the method for authorisation device, includes but is not limited to lead to Following steps are crossed to realize：

The first step：Identity-validation device receives authorisation device addition request, and adds request monitoring extremely according to authorisation device The broadcast message that a few smart machine is sent, wherein, the broadcast message that each smart machine is sent carries each smart machine Equipment identification information.

In order that identity-validation device determines a certain smart machine of addition as authorisation device, user would generally select needs Add as authorisation device smart machine, it is determined that using the smart machine as authorisation device when, user can be by corresponding Terminal sends authorisation device addition to identity-validation device and asked, and identity-validation device is received authorisation device addition request, and Broadcast message that request monitoring at least one smart machine sends is added according to authorisation device to determine which smart machine can be with It is added as authorisation device.

Wherein, identity-validation device determines that the mode for receiving authorisation device addition request can have many kinds, specific real Shi Shi, can install an authentication App on identity-validation device（Application, application）, and in the App The option of addition authorisation device is set, the operation being selected when the option that identity-validation device detects the addition authorisation device Afterwards, you can it is determined that receiving authorisation device addition request.Certainly, identity-validation device can also determine to receive using other manner Add and ask to authorisation device, the embodiment of the present invention is not especially limited to this.

After identity-validation device receives authorisation device addition request, just it can be touched according to authorisation device addition request The other smart machines of hair addition are used as authorisation device.Wherein, other smart machines are added as awarding in triggering identity-validation device When weighing equipment, there can be a variety of methods.When it is implemented, including but not limited to identity-validation device can be according to authorisation device The broadcast message that request monitoring at least one smart machine is sent is added, and then triggers according to the broadcast message listened to addition Other smart machines are used as authorisation device.

Wherein, identity-validation device is adding the broadcast of request monitoring at least one smart machine transmission according to authorisation device , still can be by calling the wireless communication interface of configuration to realize during message, and wireless communication interface includes but is not limited to have One kind in the wireless communication interface such as NFC, bluetooth, infrared.If for example, identity-validation device calls bluetooth to monitor at least one During the broadcast message that individual smart machine is sent, bluetooth can be first opened, other needs add the smart machine as authorisation device Also bluetooth is opened, and broadcast message is sent to identity-validation device by bluetooth；Identity-validation device determines to set up bluetooth therewith The smart machine of connection, and the broadcast message that at least one smart machine is sent is monitored by bluetooth.

In addition, identity-validation device is adding the broadcast of request monitoring at least one smart machine transmission according to authorisation device During message, in order that identity-validation device distinguishes each smart machine of the transmission broadcast message listened to, each smart machine It is required to obtain equipment identification information, and when sending broadcast message to identity-validation device, in the broadcast message of transmission Carry the equipment identification information of each smart machine.Wherein, each smart machine obtains the mode of equipment identification information, Ke Yican See in above-mentioned steps 401 that each authorisation device for participating in authentication obtains the mode of equipment identification information, will not be repeated here.

Second step：Identity-validation device obtains what is carried in the broadcast message that at least one smart machine listened to is sent Equipment identification information, and confirmation addition instruction is obtained according to equipment identification information.

What is carried in the broadcast message that at least one smart machine listened on identity-validation device acquisition is sent sets The mode of standby identification information, the embodiment of the present invention is not especially limited.For example, identity-validation device is listening at least one intelligence Can parse the broadcast message listened to after the broadcast message that sends of equipment, and analytically after broadcast message in obtain prison The equipment identification information carried in the broadcast message that at least one smart machine heard is sent.

Because the quantity for the smart machine for sending broadcast message to identity-validation device within the same period may have many Individual, in order to determine to add which smart machine as authorisation device, identity-validation device obtains at least one intelligence listened to After the equipment identification information carried in the broadcast message that equipment is sent, in addition it is also necessary to obtained according to equipment identification information and confirm addition Instruction.The mode for confirming addition instruction is obtained according to equipment identification information on identity-validation device, there can be many kinds.Example Such as, identity-validation device can be by the equipment identification information of the smart machine of the transmission broadcast message listened in the same period An equipment identification information list is formed, each smart machine for sending broadcast message is have recorded in the equipment identification information list Equipment identification information.Identity-validation device can be by detecting that the equipment identification information in the equipment identification information list is chosen Middle operation, which to be obtained according to equipment identification information, confirms addition instruction.If for example, equipment identification information list is as shown in Table 1：

Table one

Equipment identification information
	Device A
Equipment B

When identity-validation device, which detects " device A ", to be selected, then confirmation addition device A is got as authorisation device Instruction.Certainly, identity-validation device can also confirm to add instruction using other manner to be obtained according to equipment identification information, The embodiment of the present invention is not especially limited to this.

3rd step：Identity-validation device adds at least one smart machine according to confirmation addition instruction and is used as authorisation device.

Identity-validation device can then add after confirmation addition instruction is got according to equipment identification information according to the confirmation Plus instruction adds at least one smart machine and is used as authorisation device.It is added on identity-validation device according to confirmation addition instruction A few smart machine can have many kinds as the mode of authorisation device.When it is implemented, including but is not limited to when identity is tested When the operation that card equipment is selected by detection device identification information confirms that addition is instructed to be obtained according to equipment identification information, body Part checking equipment can be by detecting whether the click time on the selected equipment identification information exceedes preset time come really Recognize and whether add the smart machine as authorisation device；When identity-validation device is detected on the selected equipment identification information The click time exceed preset time, then add the corresponding smart machine of the equipment identification information as authorisation device.On pre- If the size of time, the present embodiment is not especially limited, it can specifically be set according to actual conditions.

Preferably, after according to confirming that addition instruction adds at least one smart machine as authorisation device, in order to stop Only added at least one authorisation device participates in authentication, identity-validation device can also delete it is added at least One authorisation device.Wherein, delete added at least one authorisation device method include but is not limited to can by with Lower step is realized：

The first step：Identity-validation device obtains the authorisation device removal request for carrying at least one equipment identification information.

In order to delete at least one added authorisation device, identity-validation device needs acquisition authorisation device to delete please Ask.In addition, in order to determine which added authorisation device deleted, the authorisation device that identity-validation device is got is deleted please At least one equipment identification information is carried in asking.

Wherein, the authorisation device removal request for carrying at least one equipment identification information is obtained on identity-validation device Mode, can have many kinds.When it is implemented, including but not limited to identity-validation device is stored with the authorisation device added List, the equipment identification information for each authorisation device that identity-validation device has been added is listed in the list.If identity The equipment identification information that checking equipment detects a certain authorisation device added is selected, it is determined that is got and is carried at least The authorisation device removal request of one equipment identification information.Certainly, identity-validation device can also be obtained using other manner and taken With the authorisation device removal request of at least one equipment identification information, the embodiment of the present invention is not especially limited to this.

Second step：Identity-validation device deletes setting of being carried in authorisation device removal request in the authorisation device added Authorisation device corresponding to standby identification information.

After identity-validation device gets the authorisation device removal request for carrying at least one equipment identification information, body Part checking equipment just can be according to carrying the authorisation device removal request of at least one equipment identification information in awarding for having added The corresponding authorisation device of equipment identification information carried in authorisation device removal request is deleted in power equipment.

The equipment carried in authorisation device removal request is deleted in the authorisation device added on identity-validation device The mode of authorisation device corresponding to identification information, the embodiment of the present invention is not especially limited to this.If for example, authentication is set It is standby to support contact action, when the equipment identification information that identity-validation device detects some authorisation device added is selected Afterwards, at least one mandate added can be deleted by skidding off preset shape on the equipment identification information that this is chosen to set It is standby.Wherein, the track of preset shape can have many kinds, for example, can be the circular, track to hooking or skidding off screen edge Etc..

Preferably, identity-validation device monitor the broadcast message that is sent in preset time of at least one authorisation device it Afterwards, in order to determine whether the authorisation device that broadcast message is sent in preset time listened to is legal, and identity-validation device is also It can determine whether the authorisation device for sending broadcast message is legal according to the equipment identification information carried in broadcast message.

Wherein, determined to send broadcast message according to the equipment identification information carried in broadcast message in identity-validation device When whether authorisation device is legal, the equipment mark of the authorisation device of the transmission broadcast message listened in preset time can be first obtained Know information, and the equipment identification information of the authorisation device added by the equipment identification information with prestoring is compared； If the equipment identification information of the authorisation device of the transmission broadcast message listened in the preset time got is with prestoring The authorisation device added equipment identification information it is consistent, it is determined that send broadcast message authorisation device it is legal, otherwise, really The fixed authorisation device for sending broadcast message is illegal.Certainly, identity-validation device can also determine to send wide using other methods Whether the authorisation device for broadcasting message is legal, and the embodiment of the present invention is not especially limited to this.

403：Identity-validation device is according to the equipment identification information carried in each broadcast message monitored in preset time It is determined that participating in the authorisation device of authentication, and current total credit rating is determined according to each authorisation device for participating in authentication.

During once authentication is carried out, when identity-validation device monitors the authorisation device of transmission broadcast message When time interval reaches preset time, then the broadcast message of authorisation device transmission is ceased listening in this authentication process itself. Now, identity-validation device just can be true according to the equipment identification information carried in each broadcast message monitored in preset time Surely the authorisation device of authentication is participated in.If for example, preset time is 1min（Minute）, in the 1min, authentication is set Standby listen to respectively has authorisation device A and authorisation device B to be sent to broadcast message, then identity-validation device determines to participate in this time The authorisation device of authentication process itself has authorisation device A and authorisation device B.

Further, since auth method provided in an embodiment of the present invention supports identity-validation device according to all participation bodies Total reliability of the authorisation device of part checking and the verification mode of different stage is provided, therefore, identity-validation device also needs to basis The each authorisation device for participating in authentication determines current total credit rating.

Wherein, identity-validation device determines the side of current total credit rating according to each authorisation device for participating in authentication Formula, includes but is not limited to be implemented by the following steps：

Step one：Identity-validation device obtains the credit weight for each authorisation device for participating in authentication and participates in body The current credit of each authorisation device of part checking.

Because different authorisation devices from the identity of user has different relations.For example, generally smart phone user all can Carry with, different users often carries different smart mobile phones, and user gives smart mobile phone other people possibility Property is smaller；In another example, intelligent watch, can also be by the intelligent watch institute in addition to the user belonging to the intelligent watch can wear Other people outside the user of category wear, and the possibility that intelligent watch is given other people by user is larger.Therefore, authentication Equipment can be that each authorisation device for having been added as authorisation device specifies credit power by user after addition authorisation device Weight, and different authorisation devices can have different credit weights.For example：If the authorisation device added have smart mobile phone and Intelligent watch, then can be that smart mobile phone specifies credit weight to be 0.7, be that intelligent watch specifies credit weight to be 0.3.

In addition, method provided in an embodiment of the present invention has carried out the credit rating of each authorisation device the side of step increments Method.That is, the initial user's credit for having neither part nor lot in the authorisation device of authentication is 0；When some authorisation device is successfully joined With completing an authentication, then increase the credit rating of default score value for the authorisation device；Participated in when some authorisation device Authentication does not pass through, then does not increase credit rating for the authorisation device after this authentication.Set on some mandate The default score value of the standby credit rating for because successfully participating in authentication of completion being the increased default score value of the authorisation device Size, the embodiment of the present invention is not especially limited.When it is implemented, can be depending on the type according to authorisation device.If for example, Authorisation device is smart mobile phone, then after the smart mobile phone successfully participates in completing an authentication, for smart mobile phone increase by 5 The credit rating divided；If authorisation device is intelligent watch, after the intelligent watch successfully participates in completing an authentication, it is The intelligent watch increases by 7 points credit rating, etc..

To sum up, identity-validation device is determining the side of current total credit rating according to each authorisation device for participating in authentication , it is necessary to first obtain the credit weight for each authorisation device for participating in authentication and participate in each mandate of authentication during formula The current credit of equipment.

Step 2：Identity-validation device according to participate in authentication each authorisation device credit weight and participate in body The current credit of each authorisation device of part checking determines current total credit rating.

Wherein, identity-validation device according to participate in authentication each authorisation device credit weight and participate in identity When the current credit of each authorisation device of checking determines current total credit rating, it can be realized by equation below：

If each authorisation device that this time participates in authentication is the 1st participation authentication, current total credit Degree=J₁S₁W₁+J₂S₂W₂+…+J_nS_nW_n。

Wherein, n is the quantity for the authorisation device for participating in this authentication；W₁,W₂,…,W_nRespectively user specifies The credit weight of all authorisation devices of addition, and total weight and be 1；S₁,S₂,…,S_nFor each of having added of specifying of user Authorisation device needs increased credit rating score value after successfully authentication is participated in every time.J₁,J₂,…,J_nRepresent that certain identity is tested In card, whether whole authorisation devices participate in checking, are worth and represent not participating in this authentication for 0, are worth and represent to participate in this body for 1 Part checking.

If each authorisation device that this time participates in authentication is the m times participation authentication, current total credit Degree=m* (J₁S₁W₁+J₂S₂W₂+…+J_nS_nW_n)。

If the number of times that each authorisation device added participates in authentication is different, authentication is participated in calculating Each authorisation device current credit when, the number of times of authentication can be participated in the authorisation device of the participation authentication And user specify when each authorisation device of the participation authentication successfully participates in needing increased credit rating after authentication Score value obtains the current credit of the authorisation device of the participation authentication；Each mandate that this time participates in authentication is set After the standby current credit for calculating each authorisation device for participating in authentication in the method, then it will each participate in identity The current credit superposition of the authorisation device of checking just can determine that current total credit rating.

404：Identity-validation device obtains the corresponding verification mode of current total credit rating, and different total credit rating correspondence differences are tested Card mode.

Method provided in an embodiment of the present invention supports identity-validation device to provide different according to different total credit ratings Verification mode.Total credit rating is higher, and corresponding verification mode is simpler；Total credit rating is lower, and corresponding verification mode is more complicated. Therefore, after current total credit rating is determined according to each authorisation device for participating in authentication, identity-validation device needs to obtain Take the corresponding verification mode of current total credit rating.

Wherein, the particular content on the corresponding different verification modes of different total credit ratings, the embodiment of the present invention is not made to have Body is limited.For example, 5 checking grades can be pre-set, and this 5 checking grades are respectively A, B, C, D and E, and these are tested It is 0-20,20-40,40-60,60-80 and 80-100 to demonstrate,prove grade to distinguish corresponding credit rating.The corresponding verification mode of A grades is Need to obtain an account and password using target device；The corresponding verification mode of B grades is to require that obtaining one uses mesh The password of marking device；The corresponding verification mode of E grades is to require to obtain identifying code, etc..If identity is tested It is 35 to demonstrate,prove equipment and obtain currently total credit rating, because the credit rating that the credit rating is located at the corresponding verification mode of B grades is interval interior, Therefore, identity-validation device obtains B level authentication modes, that is, requires to obtain the password of a use certificate equipment to carry out Authentication.

405：Identity-validation device obtains the checking information of the corresponding verification mode matching of current total credit rating, and according to testing Demonstrate,prove information and carry out authentication.

The mode of the checking information of the corresponding verification mode matching of current total credit rating is obtained on identity-validation device, this Inventive embodiments are not especially limited, when it is implemented, identity-validation device can obtain user by input equipment in identity The information inputted in equipment is verified to obtain the checking information of the corresponding verification mode matching of current total credit rating.

After checking information is got, identity-validation device just can carry out authentication according to checking information.On body Part checking equipment carries out auth method, Ke Yiwei according to checking information：Identity-validation device is by the checking information got It is compared with the checking information that prestores；When the checking information that identity-validation device is got and the checking prestored are believed When ceasing consistent, authentication passes through；When the checking information that identity-validation device is got and the checking information that prestores differ During cause, authentication does not pass through.

Preferably, identity-validation device carries out authentication according to checking information, and after being verified, authentication is set It is standby to increase the credit rating of default score value for each authorisation device for participating in authentication, obtain participating in the every of authentication Credit rating after individual authorisation device renewal.In that case, identity-validation device is awarded according to each of participation authentication When the current credit of the credit weight for weighing equipment and each authorisation device for participating in authentication determines current total credit rating, Just without participating in the number of times of authentication further according to each authorisation device for participating in authentication and successfully participating in identity every time After checking increased credit rating score value come determine participate in authentication each authorisation device current credit, and by Originally obtained participation authentication each authorisation device current credit on the basis of along with each authorisation device into Work(participate in authentication after increased default score value can be updated after credit rating, and using the credit rating after updating as Each authorisation device carries out current credit during authentication next time.If tested for example, smart mobile phone participates in this identity Card, and before this time participates in authentication, the credit rating of smart mobile phone is 20, and after each successfully participation authentication, It is 5 for the increased default score value of smart mobile phone, then the credit after smart mobile phone renewal can be directly determined by 20+5=25 Degree, and the current credit for participating in authentication next time as the smart mobile phone using 25.

Preferably, after being verified, identity-validation device can also be according to total credit rating score value when being verified To limit the scope that user uses the identity-validation device.It is specifically as follows：Credit rating score value when if the verification passes is higher, The scope for comprehensively using the identity-validation device can then be obtained；Credit rating score value when if the verification passes is relatively low, then obtains The scope of the use identity-validation device can have certain limitations.If for example, identity-validation device be intelligent television, and During authentication, total credit rating when being verified is 80, then user can use the repertoire of the intelligent television, for example both All TV programme can be seen, video resource can also be obtained by connecting network；Total credit when if the verification passes Spend for 50, then user can use the function of the intelligent television limited, for example, may only see all TV programme and can not lead to Connection network is crossed to obtain video resource, etc..

Embodiment three

The embodiments of the invention provide a kind of identity-validation device, the identity-validation device can be used for performing above-mentioned implementation Function in example one or embodiment two performed by identity-validation device.Referring to Fig. 5, the identity-validation device includes：

First monitors module 501, for monitoring the broadcast message that at least one authorisation device is sent in preset time, its In, the equipment identification information of each authorisation device is carried in the broadcast message that each authorisation device is sent；

First determining module 502, for according to the equipment mark carried in each broadcast message monitored in preset time Know information to determine to participate in the authorisation device of authentication；

Second determining module 503, for determining current total credit rating according to each authorisation device for participating in authentication；

First acquisition module 504, for obtaining the corresponding verification mode of current total credit rating, different total credit rating correspondences are not Same verification mode；

Second acquisition module 505, the checking information for obtaining the corresponding verification mode matching of current total credit rating；

Authentication module 506, for carrying out authentication according to checking information.

Preferably, equipment, in addition to：

Receiving module, for receiving authorisation device addition request；

Second monitors module, and the broadcast for adding request monitoring at least one smart machine transmission according to authorisation device disappears Breath, wherein, the broadcast message that each smart machine is sent carries the equipment identification information of each smart machine；

What is carried in 3rd acquisition module, the broadcast message that at least one smart machine listened to for obtaining is sent sets Standby identification information, and confirmation addition instruction is obtained according to equipment identification information；

Add module, authorisation device is used as adding at least one smart machine according to confirmation addition instruction.

Preferably, equipment, in addition to：

4th acquisition module, the authorisation device removal request of at least one equipment identification information is carried for obtaining；

Removing module, for deleting the device identification carried in authorisation device removal request in the authorisation device added The corresponding authorisation device of information.

Preferably, equipment, in addition to：

3rd determining module, for being determined to send awarding for broadcast message according to the equipment identification information carried in broadcast message Whether legal weigh equipment；

First determining module, for when it is determined that the authorisation device for sending broadcast message is legal, performing according to preset time The step of equipment identification information carried in each broadcast message of interior monitoring determines to participate in the authorisation device of authentication.

Preferably, the second determining module, including：

Acquiring unit, for obtaining the credit weight for each authorisation device for participating in authentication and participating in authentication Each authorisation device current credit；

Determining unit, for the credit weight according to each authorisation device for participating in authentication and participation authentication The current credit of each authorisation device determine current total credit rating.

Preferably, equipment, in addition to：

Increase module, the default score value of authorisation device increase for when being verified, being each participation authentication Credit rating, obtains participating in the credit rating after each authorisation device renewal of authentication.

Identity-validation device provided in an embodiment of the present invention, is sent out by monitoring at least one authorisation device in preset time The broadcast message sent triggers authentication, without authorisation device possesses two-dimensional code scanning ability, and the configuration to authorisation device will Ask than relatively low.Further, since without frequently being interacted with authorisation device, improving the efficiency of authentication.In addition, passing through root Current total credit rating, and acquisition verification mode corresponding with current always credit rating are determined according to the authorisation device of participation authentication, So that employing hierarchical policy when being verified to identity, the operation to authentication is flexible.

Example IV

Fig. 6 is refer to, it illustrates the structural representation of the identity-validation device involved by the embodiment of the present invention, the identity Checking equipment can be used for the auth method for implementing to provide in above-described embodiment.Specifically：

Identity-validation device 600 can include RF（Radio Frequency, radio frequency）Circuit 110, include one or one The memory 120 of individual above computer-readable recording medium, input block 130, display unit 140, sensor 150, audio-frequency electric Road 160, WiFi（Wireless Fidelity, Wireless Fidelity）Module 170, include one or more than one processing core Processor 180 and the part such as power supply 190.It will be understood by those skilled in the art that the identity-validation device shown in Fig. 6 Structure do not constitute restriction to identity-validation device, can include than illustrating more or less parts, or combine certain A little parts, or different part arrangements.Wherein：

RF circuits 110 can be used for receive and send messages or communication process in, the reception and transmission of signal, especially, by base station After downlink information is received, transfer to one or more than one processor 180 is handled；In addition, being sent to up data are related to Base station.Generally, RF circuits 110 include but is not limited to antenna, at least one amplifier, tuner, one or more oscillators, use Family identity module（SIM）Card, transceiver, coupler, LNA（Low Noise Amplifier, low-noise amplifier）, duplex Device etc..In addition, RF circuits 110 can also be communicated by radio communication with network and other equipment.The radio communication can make With any communication standard or agreement, and including but not limited to GSM (Global System of Mobile communication, entirely Ball mobile communcations system), GPRS (General Packet Radio Service, general packet radio service), CDMA (Code Division Multiple Access, CDMA), WCDMA (Wideband Code Division Multiple Access, WCDMA), LTE (Long Term Evolution, Long Term Evolution), Email, SMS (Short Messaging Service, Short Message Service) etc..

Memory 120 can be used for storage software program and module, and processor 180 is stored in memory 120 by operation Software program and module, so as to perform various function application and data processing.Memory 120 can mainly include storage journey Sequence area and storage data field, wherein, the application program that storing program area can be needed for storage program area, at least one function（Than Such as sound-playing function, image player function）Deng；Storage data field can store the use institute according to identity-validation device 600 The data of establishment（Such as voice data, phone directory etc.）Deng.In addition, memory 120 can include high-speed random access memory, Nonvolatile memory can also be included, for example, at least one disk memory, flush memory device or other volatile solid-states are deposited Memory device.Correspondingly, memory 120 can also include Memory Controller, to provide 130 pairs of processor 180 and input block The access of memory 120.

Input block 130 can be used for the numeral or character information for receiving input, and generation to be set with user and function The relevant keyboard of control, mouse, action bars, optics or the input of trace ball signal.Specifically, input block 130 may include to touch Sensitive surfaces 131 and other input equipments 132.Touch sensitive surface 131, also referred to as touch display screen or Trackpad, collect and use Touch operation of the family on or near it（Such as user is using any suitable objects such as finger, stylus or annex in touch-sensitive table Operation on face 131 or near touch sensitive surface 131）, and corresponding attachment means are driven according to formula set in advance.It is optional , touch sensitive surface 131 may include both touch detecting apparatus and touch controller.Wherein, touch detecting apparatus detection is used The touch orientation at family, and the signal that touch operation is brought is detected, transmit a signal to touch controller；Touch controller is from touch Touch information is received in detection means, and is converted into contact coordinate, then gives processor 180, and can reception processing device 180 The order sent simultaneously is performed.Furthermore, it is possible to using polytypes such as resistance-type, condenser type, infrared ray and surface acoustic waves Realize touch sensitive surface 131.Except touch sensitive surface 131, input block 130 can also include other input equipments 132.Specifically, Other input equipments 132 can include but is not limited to physical keyboard, function key（Such as volume control button, switch key etc.）、 One or more in trace ball, mouse, action bars etc..

Display unit 140 can be used for showing the information inputted by user or be supplied to the information of user and authentication to set Standby 600 various graphical user interface, these graphical user interface can be by figure, text, icon, video and its any combination To constitute.Display unit 140 may include display panel 141, optionally, can use LCD (Liquid Crystal Display, liquid crystal display), the form such as OLED (Organic Light-Emitting Diode, Organic Light Emitting Diode) comes Configure display panel 141.Further, touch sensitive surface 131 can cover display panel 141, when touch sensitive surface 131 is detected at it On or near touch operation after, send processor 180 to determine the type of touch event, with preprocessor 180 according to touch The type for touching event provides corresponding visual output on display panel 141.Although in figure 6, touch sensitive surface 131 and display surface Plate 141 is that input and input function are realized as two independent parts, but in some embodiments it is possible to by touch-sensitive table Face 131 and display panel 141 are integrated and realize input and output function.

Identity-validation device 600 may also include at least one sensor 150, such as optical sensor, motion sensor and Other sensors.Specifically, optical sensor may include ambient light sensor and proximity transducer, wherein, ambient light sensor can The brightness of display panel 141 is adjusted according to the light and shade of ambient light, proximity transducer can be moved in identity-validation device 600 When in one's ear, display panel 141 and/or backlight are closed.As one kind of motion sensor, gravity accelerometer is detectable each On individual direction（Generally three axles）The size of acceleration, can detect that size and the direction of gravity when static, available for identification body The application of part checking posture of equipment 600（Such as horizontal/vertical screen switching, dependent game, magnetometer pose calibrating）, Vibration identification it is related Function（Such as pedometer, percussion）Deng;The gyroscope that can also configure as identity-validation device 600, barometer, hygrometer, temperature The other sensors such as meter, infrared ray sensor are spent, be will not be repeated here.

Voicefrequency circuit 160, loudspeaker 161, microphone 162 can provide the audio between user and identity-validation device 600 Interface.Electric signal after the voice data received conversion can be transferred to loudspeaker 161, by loudspeaker by voicefrequency circuit 160 161 are converted to voice signal output；On the other hand, the voice signal of collection is converted to electric signal by microphone 162, by audio-frequency electric Road 160 is converted to voice data after receiving, then after voice data output processor 180 is handled, through RF circuits 110 to be sent to Such as another terminal, or voice data is exported to memory 120 so as to further processing.Voicefrequency circuit 160 is also possible to bag Earphone jack is included, to provide the communication of peripheral hardware earphone and identity-validation device 600.

WiFi belongs to short range wireless transmission technology, and identity-validation device 600 can help user by WiFi module 170 Send and receive e-mail, browse webpage and access streaming video etc., it has provided the user wireless broadband internet and accessed.Although Fig. 6 shows WiFi module 170, but it is understood that, it is simultaneously not belonging to must be configured into for identity-validation device 600, complete It can be omitted as needed in the essential scope for do not change invention entirely.

Processor 180 is the control centre of identity-validation device 600, is tested using various interfaces and the whole identity of connection The various pieces of equipment 600 are demonstrate,proved, software program and/or module in memory 120 are stored in by operation or execution, and adjust With the data being stored in memory 120, the various functions and processing data of identity-validation device 600 are performed, so as to identity Verify that equipment 600 carries out integral monitoring.Optionally, processor 180 may include one or more processing cores；It is preferred that, processing Device 180 can integrated application processor and modem processor, wherein, application processor mainly handles operating system, Yong Hujie Face and application program etc., modem processor mainly handles radio communication.It is understood that above-mentioned modem processor It can not also be integrated into processor 180.

Identity-validation device 600 also includes the power supply 190 powered to all parts（Such as battery）, it is preferred that power supply can With logically contiguous by power-supply management system and processor 180, thus by power-supply management system realize management charging, electric discharge, And the function such as power managed.Power supply 190 can also include one or more direct current or AC power, recharge The random component such as system, power failure detection circuit, power supply changeover device or inverter, power supply status indicator.

Although not shown, identity-validation device 600 can also include camera, bluetooth module etc., will not be repeated here.Tool In the present embodiment, the display unit of identity-validation device is touch-screen display to body, and identity-validation device also includes storage Device, and one or more than one program, one of them or more than one program storage are configured in memory With by one or more than one computing device.One or more than one program bag, which contains, to be used to perform what is operated below Instruction：

Determine that participating in identity tests according to the equipment identification information carried in each broadcast message monitored in preset time The authorisation device of card, current total credit rating is determined according to each authorisation device for participating in authentication；

The checking information of the corresponding verification mode matching of current total credit rating is obtained, and identity is carried out according to checking information and is tested Card.

Assuming that above-mentioned is the first possible embodiment, then provided based on the first possible embodiment Second of possible embodiment in, in the memory of identity-validation device, also comprising for performing the instruction operated below： Before monitoring the broadcast message that at least one authorisation device is sent in preset time, in addition to：

In the third the possible embodiment provided based on second of possible embodiment, authentication In the memory of equipment, also comprising for performing the instruction operated below：At least one intelligence is added according to confirming that addition is instructed After equipment is as authorisation device, in addition to：

The equipment identification information carried in authorisation device removal request is deleted in the authorisation device added and deletes correspondence Authorisation device.

In the 4th kind of possible embodiment provided based on the first possible embodiment, authentication In the memory of equipment, also comprising for performing the instruction operated below：At least one authorisation device is monitored in preset time After the broadcast message of transmission, in addition to：

If it is determined that the authorisation device for sending broadcast message is legal, then perform each wide according to what is monitored in preset time Broadcast the step of equipment identification information carried in message determines to participate in the authorisation device of authentication.

In the 5th kind of possible embodiment provided based on the first possible embodiment, authentication In the memory of equipment, also comprising for performing the instruction operated below：It is true according to each authorisation device for participating in authentication Total credit rating before settled, including：

In the 6th kind of possible embodiment provided based on the 5th kind of possible embodiment, authentication In the memory of equipment, also comprising for performing the instruction operated below：After checking information progress authentication, also wrap Include：

Embodiment five

The embodiments of the invention provide a kind of computer-readable recording medium, on the computer-readable recording medium can be State the computer-readable recording medium included in the memory in embodiment；Can also be individualism, without supplying identity Verify the computer-readable recording medium in equipment.The computer-readable recording medium storage has one or more than one journey Sequence, this or more than one program are used for performing auth method, the party by one or more than one processor Method includes：

If the authorisation device for sending broadcast message is legal, perform according to each broadcast message monitored in preset time The step of equipment identification information of middle carrying determines to participate in the authorisation device of authentication.

Computer-readable recording medium provided in an embodiment of the present invention, by monitoring at least one authorisation device when default In the broadcast message that sends trigger authentication, possess two-dimensional code scanning ability without authorisation device, to authorisation device Configuration requirement is than relatively low.Further, since without frequently being interacted with authorisation device, improving the efficiency of authentication.In addition, By according to the authorisation device determination currently total credit rating, and obtain verify corresponding with current total credit rating for participating in authentication Mode so that hierarchical policy is employed when being verified to identity, the operation to authentication is flexible.

Embodiment six

A kind of graphical user interface is provided in the embodiment of the present invention, the graphical user interface is used in identity-validation device On, the identity-validation device include touch-screen display, memory and for performing one or more than one program one Individual or more than one processor；The graphical user interface includes：

Graphical user interface provided in an embodiment of the present invention, is sent out by monitoring at least one authorisation device in preset time The broadcast message sent triggers authentication, without authorisation device possesses two-dimensional code scanning ability, and the configuration to authorisation device will Ask than relatively low.Further, since without frequently being interacted with authorisation device, improving the efficiency of authentication.In addition, passing through root Current total credit rating, and acquisition verification mode corresponding with current always credit rating are determined according to the authorisation device of participation authentication, So that employing hierarchical policy when being verified to identity, the operation to authentication is flexible.

Embodiment seven

The embodiments of the invention provide a kind of authorisation device, the authorisation device can be used for performing above-described embodiment one or real Apply the function performed by authorisation device in example two.Referring to Fig. 7, the authorisation device includes：

Acquisition module 701, for obtaining equipment identification information；

Sending module 702, the broadcast message for sending Portable device identification information to identity-validation device, tests identity Card equipment determines to join according to the equipment identification information of each authorisation device carried in the broadcast message monitored in the time that is preset in With the authorisation device of authentication, and current total credit rating is determined according to each authorisation device for participating in authentication, obtain with Current total corresponding verification mode of credit rating and the checking information for obtaining verification mode matching corresponding with current always credit rating Afterwards, authentication is carried out according to checking information.

Authorisation device provided in an embodiment of the present invention, by sending the wide of Portable device identification information to identity-validation device Message is broadcast, makes identity-validation device monitor broadcast message that at least one authorisation device sends in preset time to trigger identity Checking, without possessing two-dimensional code scanning ability, configuration requirement is than relatively low.Further, since without frequently being interacted, improving body The efficiency of part checking.In addition, identity-validation device is by determining current total credit rating according to the authorisation device for participating in authentication, And obtain verification mode corresponding with current always credit rating so that hierarchical policy is employed when being verified to identity, to identity The operation of checking is flexible.

Embodiment eight

Fig. 8 is refer to, it illustrates the structural representation of the authorisation device involved by the embodiment of the present invention, the authorisation device The auth method for implementing to provide in above-described embodiment is provided.Specifically：

Authorisation device 800 can include RF（Radio Frequency, radio frequency）Circuit 110, include one or one with Memory 120, input block 130, display unit 140, sensor 150, the voicefrequency circuit of upper computer-readable recording medium 160、WiFi（Wireless Fidelity, Wireless Fidelity）Module 170, include one or more than one processing core The part such as processor 180 and power supply 190.It will be understood by those skilled in the art that the structure of the authorisation device shown in Fig. 8 Do not constitute the restriction to authorisation device, can include than illustrating more or less parts, either combine some parts or Different part arrangements.Wherein：

Memory 120 can be used for storage software program and module, and processor 180 is stored in memory 120 by operation Software program and module, so as to perform various function application and data processing.Memory 120 can mainly include storage journey Sequence area and storage data field, wherein, the application program that storing program area can be needed for storage program area, at least one function（Than Such as sound-playing function, image player function）Deng；Storage data field can be stored to be created according to using for authorisation device 800 Data（Such as voice data, phone directory etc.）Deng.In addition, memory 120 can include high-speed random access memory, may be used also With including nonvolatile memory, for example, at least one disk memory, flush memory device or other volatile solid-states Part.Correspondingly, memory 120 can also include Memory Controller, to provide processor 180 and input block 130 pairs of storages The access of device 120.

Display unit 140 can be used for the information and authorisation device for showing the information inputted by user or being supplied to user 800 various graphical user interface, these graphical user interface can by figure, text, icon, video and its any combination Lai Constitute.Display unit 140 may include display panel 141, optionally, can using LCD (Liquid Crystal Display, Liquid crystal display), the form such as OLED (Organic Light-Emitting Diode, Organic Light Emitting Diode) configure display Panel 141.Further, touch sensitive surface 131 can cover display panel 141, when touch sensitive surface 131 is detected on or near it Touch operation after, processor 180 is sent to determine the type of touch event, with preprocessor 180 according to touch event Type provides corresponding visual output on display panel 141.Although in fig. 8, touch sensitive surface 131 is with display panel 141 Realized as two independent parts input and input function, but in some embodiments it is possible to by touch sensitive surface 131 with Display panel 141 is integrated and realizes input and output function.

Authorisation device 800 may also include at least one sensor 150, such as optical sensor, motion sensor and other Sensor.Specifically, optical sensor may include ambient light sensor and proximity transducer, wherein, ambient light sensor can basis The light and shade of ambient light adjusts the brightness of display panel 141, proximity transducer can when authorisation device 800 is moved in one's ear, Close display panel 141 and/or backlight.As one kind of motion sensor, gravity accelerometer can detect all directions On（Generally three axles）The size of acceleration, can detect that size and the direction of gravity when static, available for identification authorisation device The application of posture（Such as horizontal/vertical screen switching, dependent game, magnetometer pose calibrating）, Vibration identification correlation function（Such as meter step Device, percussion）Deng;Gyroscope, barometer, hygrometer, thermometer, the infrared ray sensor that can also configure as authorisation device 800 Etc. other sensors, it will not be repeated here.

Voicefrequency circuit 160, loudspeaker 161, microphone 162 can provide the COBBAIF between user and authorisation device 800. Electric signal after the voice data received conversion can be transferred to loudspeaker 161, is changed by loudspeaker 161 by voicefrequency circuit 160 Exported for voice signal；On the other hand, the voice signal of collection is converted to electric signal by microphone 162, is connect by voicefrequency circuit 160 Be converted to voice data after receipts, then after voice data output processor 180 is handled, it is such as another to be sent to through RF circuits 110 One terminal, or voice data is exported to memory 120 so as to further processing.Voicefrequency circuit 160 is also possible that earplug Jack, to provide the communication of peripheral hardware earphone and authorisation device 800.

WiFi belongs to short range wireless transmission technology, and authorisation device 800 can help user to receive and dispatch by WiFi module 170 Email, browse webpage and access streaming video etc., it has provided the user wireless broadband internet and accessed.Although Fig. 8 WiFi module 170 is shown, but it is understood that, it is simultaneously not belonging to must be configured into for authorisation device 800, completely can root Omitted according to needs in the essential scope for do not change invention.

Processor 180 is the control centre of authorisation device 800, utilizes various interfaces and the whole authorisation device of connection Various pieces, by operation or perform and are stored in software program and/or module in memory 120, and call and be stored in Data in reservoir 120, perform the various functions and processing data of authorisation device 800, so as to carry out overall prison to authorisation device Control.Optionally, processor 180 may include one or more processing cores；It is preferred that, processor 180 can integrated application processor And modem processor, wherein, application processor mainly handles operating system, user interface and application program etc., modulatedemodulate Processor is adjusted mainly to handle radio communication.It is understood that above-mentioned modem processor can not also be integrated into processor In 180.

Authorisation device 800 also includes the power supply 190 powered to all parts（Such as battery）, it is preferred that power supply can lead to Cross power-supply management system and processor 180 be logically contiguous, thus by power-supply management system realize management charging, electric discharge and The functions such as power managed.Power supply 190 can also include one or more direct current or AC power, recharging system, electricity The random component such as source failure detector circuit, power supply changeover device or inverter, power supply status indicator.

Although not shown, authorisation device 800 can also include camera, bluetooth module etc., will not be repeated here.Specifically exist In the present embodiment, the display unit of authorisation device is touch-screen display, and authorisation device also includes memory, and one or The more than one program of person, one of them or more than one program storage in memory, and be configured to by one or More than one computing device.One or more than one program bag, which contains, is used to perform the instruction operated below：

Equipment identification information is obtained, and the broadcast message of Portable device identification information is sent to identity-validation device, makes body Part checking equipment is true according to the equipment identification information of each authorisation device carried in the broadcast message monitored in preset time Surely the authorisation device of authentication is participated in, and current total credit rating is determined according to each authorisation device for participating in authentication, is obtained Take verification mode corresponding with current always credit rating and obtain the checking of verification mode matching corresponding with current always credit rating After information, authentication is carried out according to checking information.

Embodiment nine

The embodiments of the invention provide a kind of computer-readable recording medium, on the computer-readable recording medium can be State the computer-readable recording medium included in the memory in embodiment；It can also be individualism, be authorized without supplying Computer-readable recording medium in equipment.The computer-readable recording medium storage has one or more than one program, should One or more than one program are used for performing auth method, this method bag by one or more than one processor Include：

Computer-readable recording medium provided in an embodiment of the present invention, by sending Portable device mark to identity-validation device Know the broadcast message of information, identity-validation device is monitored the broadcast message that at least one authorisation device is sent in preset time To trigger authentication, without possessing two-dimensional code scanning ability, configuration requirement is than relatively low.Further, since without frequently being handed over Mutually, the efficiency of authentication is improved.In addition, identity-validation device is worked as by being determined according to the authorisation device for participating in authentication Preceding total credit rating, and obtain verification mode corresponding with current always credit rating so that classification is employed when being verified to identity Strategy, the operation to authentication is flexible.

Embodiment ten

A kind of graphical user interface is provided in the embodiment of the present invention, the graphical user interface is somebody's turn to do with authorisation device Authorisation device includes touch-screen display, memory and for performing one or one of more than one program or one Processor above；The graphical user interface includes：

Graphical user interface provided in an embodiment of the present invention, by sending Portable device identification information to identity-validation device Broadcast message, make identity-validation device monitor broadcast message that at least one authorisation device sends in preset time to trigger Authentication, without possessing two-dimensional code scanning ability, configuration requirement is than relatively low.Further, since without frequently being interacted, improving The efficiency of authentication.In addition, identity-validation device is by determining current total letter according to the authorisation device for participating in authentication Expenditure, and obtain verification mode corresponding with current always credit rating so that hierarchical policy is employed when being verified to identity, it is right The operation of authentication is flexible.

Embodiment 11

Referring to Fig. 9, the embodiments of the invention provide a kind of authentication system, the system includes：Identity-validation device 901 With at least one authorisation device 902；

Wherein, the equipment that such as above-mentioned embodiment three is provided of identity-validation device 901, specifically refers to the interior of above-described embodiment three Hold, here is omitted；

At least one authorisation device 902 equipment that such as above-mentioned embodiment seven is provided, specifically refers to the interior of above-described embodiment seven Hold, here is omitted.

System provided in an embodiment of the present invention, at least one authorisation device is monitored in preset time by identity-validation device The broadcast message of interior transmission triggers authentication, possesses two-dimensional code scanning ability without authorisation device, authorisation device is matched somebody with somebody Requirement is put than relatively low.Further, since without frequently being interacted with authorisation device, improving the efficiency of authentication.In addition, logical Cross and current total credit rating is determined according to the authorisation device of participation authentication, and obtain authentication corresponding with current always credit rating Formula so that hierarchical policy is employed when being verified to identity, the operation to authentication is flexible.

It should be noted that：Above-described embodiment provide identity-validation device, authorisation device carry out authentication when, only With the division progress of above-mentioned each functional module for example, in practical application, can as needed and by above-mentioned functions distribution by Different functional modules is completed, i.e., the internal structure of equipment is divided into different functional modules, described above complete to complete Portion or partial function.In addition, identity-validation device, authorisation device and authentication system and body that above-described embodiment is provided Part verification method embodiment belongs to same design, and it implements process and refers to embodiment of the method, repeats no more here.

The embodiments of the present invention are for illustration only, and the quality of embodiment is not represented.

One of ordinary skill in the art will appreciate that realizing that all or part of step of above-described embodiment can be by hardware To complete, the hardware of correlation can also be instructed to complete by program, described program can be stored in a kind of computer-readable In storage medium, storage medium mentioned above can be read-only storage, disk or CD etc..

The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the invention, it is all the present invention spirit and Within principle, any modification, equivalent substitution and improvements made etc. should be included in the scope of the protection.

Claims

1. a kind of auth method, it is characterised in that methods described includes：

The broadcast message that at least one authorisation device is sent in preset time is monitored, wherein, it is wide that each authorisation device is sent Broadcast the equipment identification information that each authorisation device is carried in message；

Determined to participate in authentication according to the equipment identification information carried in each broadcast message monitored in preset time Authorisation device；

Obtain the credit weight of each authorisation device for participating in authentication and each of the participation authentication awards Weigh the current credit of equipment；

Awarded according to the credit weight of each authorisation device of the participation authentication and each of the participation authentication The current credit for weighing equipment determines current total credit rating；

The checking information of the corresponding verification mode matching of the current always credit rating is obtained, and body is carried out according to the checking information Part checking.

2. according to the method described in claim 1, it is characterised in that described at least one authorisation device of monitoring is in preset time Before the broadcast message of transmission, in addition to：

Authorisation device addition request is received, and request monitoring at least one smart machine transmission is added according to the authorisation device Broadcast message, wherein, the broadcast message that each smart machine is sent carries the equipment identification information of each smart machine；

The equipment identification information carried in the broadcast message that at least one smart machine listened to is sent is obtained, and according to described Equipment identification information, which is obtained, confirms addition instruction；

Confirm that addition instruction adds at least one smart machine and is used as authorisation device according to described.

3. method according to claim 2, it is characterised in that described to confirm that addition instruction adds at least one according to described After smart machine is as authorisation device, in addition to：

Delete that the equipment identification information carried in the authorisation device removal request is corresponding to be awarded in the authorisation device added Weigh equipment.

4. according to the method described in claim 1, it is characterised in that described at least one authorisation device of monitoring is in preset time After the broadcast message of transmission, in addition to：

Determine whether the authorisation device for sending the broadcast message is legal according to the equipment identification information carried in broadcast message；

If it is determined that the authorisation device for sending the broadcast message is legal, then perform each wide according to what is monitored in preset time Broadcast the step of equipment identification information carried in message determines to participate in the authorisation device of authentication.

5. according to the method described in claim 1, it is characterised in that it is described according to the checking information carry out authentication it Afterwards, in addition to：

If the verification passes, then the credit rating of score value is preset for the authorisation device increase of each participation authentication, is participated in Credit rating after each authorisation device renewal of authentication.

6. a kind of auth method, it is characterised in that methods described includes：

Equipment identification information is obtained, and the broadcast message for carrying the equipment identification information is sent to identity-validation device, makes institute Identity-validation device is stated according to the device identification of each authorisation device carried in the broadcast message monitored in preset time to be believed Breath determine participate in authentication authorisation device, and obtain it is described participation authentication each authorisation device credit weight with And the current credit of each authorisation device for participating in authentication, set according to each mandate of the participation authentication Standby credit weight and the current credit of each authorisation device of the participation authentication determine current total credit rating, obtain Take verification mode corresponding with the current total credit rating and acquisition verification mode corresponding with the current always credit rating After the checking information matched somebody with somebody, authentication is carried out according to the checking information.

7. a kind of identity-validation device, it is characterised in that the equipment includes：

First monitors module, for monitoring the broadcast message that at least one authorisation device is sent in preset time, wherein, each The equipment identification information of each authorisation device is carried in the broadcast message that authorisation device is sent；

First determining module, for true according to the equipment identification information carried in each broadcast message monitored in preset time Surely the authorisation device of authentication is participated in；

First acquisition module, for obtaining the corresponding verification mode of current total credit rating, different total credit rating correspondences are different Verification mode；

Authentication module, for carrying out authentication according to the checking information；

Wherein, second determining module, including：

Acquiring unit, the credit weight and the participation identity of each authorisation device for obtaining the participation authentication The current credit of each authorisation device of checking；

Determining unit, credit weight and the participation identity for each authorisation device according to the participation authentication The current credit of each authorisation device of checking determines current total credit rating.

8. equipment according to claim 7, it is characterised in that the equipment, in addition to：

Receiving module, for receiving authorisation device addition request；

Second monitors module, and the broadcast for adding request monitoring at least one smart machine transmission according to the authorisation device disappears Breath, wherein, the broadcast message that each smart machine is sent carries the equipment identification information of each smart machine；

The equipment mark carried in 3rd acquisition module, the broadcast message that at least one smart machine listened to for obtaining is sent Know information, and confirmation addition instruction is obtained according to the equipment identification information；

Add module, for confirming that addition instruction adds at least one smart machine and is used as authorisation device according to described.

9. equipment according to claim 8, it is characterised in that the equipment, in addition to：

Removing module, for deleting the device identification carried in the authorisation device removal request in the authorisation device added The corresponding authorisation device of information.

10. equipment according to claim 7, it is characterised in that the equipment, in addition to：

3rd determining module, for being determined to send awarding for the broadcast message according to the equipment identification information carried in broadcast message Whether legal weigh equipment；

First determining module, for when it is determined that the authorisation device for sending the broadcast message is legal, performing according to pre- If the equipment identification information carried in each broadcast message monitored in the time determines to participate in the step of the authorisation device of authentication Suddenly.

11. equipment according to claim 7, it is characterised in that the equipment, in addition to：

Increase module, for when being verified, being that the authorisation device of each participation authentication increases the credit of default score value Degree, obtains participating in the credit rating after each authorisation device renewal of authentication.

12. a kind of authorisation device, it is characterised in that the equipment includes：

Acquisition module, for obtaining equipment identification information；

Sending module, the broadcast message of the equipment identification information is carried for being sent to identity-validation device, makes the identity Verify that equipment is determined according to the equipment identification information of each authorisation device carried in the broadcast message monitored in preset time The authorisation device of authentication is participated in, and obtains the credit weight of each authorisation device of the participation authentication and described The current credit of each authorisation device of authentication is participated in, according to the letter of each authorisation device of the participation authentication Current total credit rating is determined with the current credit of weight and each authorisation device of the participation authentication, is obtained and institute That states that the current total corresponding verification mode of credit rating and acquisition verification mode corresponding with the current total credit rating matches tests Demonstrate,prove after information, authentication is carried out according to the checking information.

13. a kind of authentication system, it is characterised in that the system includes identity-validation device and at least one mandate is set It is standby；

Wherein, equipment of the identity-validation device as described in any one of claim 7 to 11 claim；Described at least one Individual authorisation device equipment as claimed in claim 12.