CN104869107A

CN104869107A - Identity authentication method, wearable equipment, authentication server and system thereof

Info

Publication number: CN104869107A
Application number: CN201410066562.6A
Authority: CN
Inventors: 秦雷; 吴伊竹
Original assignee: Tencent Technology Shenzhen Co Ltd
Current assignee: Tencent Technology Shenzhen Co Ltd
Priority date: 2014-02-26
Filing date: 2014-02-26
Publication date: 2015-08-26

Abstract

The embodiment of the invention discloses an identity authentication method, wearable equipment, an authentication server and a system thereof. The identity authentication method comprises the steps that: the wearable equipment acquires an environment image carrying an identity authentication scene displayed by a user terminal; the wearable equipment acquires sends the environment image to the authentication server; the authentication server receives the environment image, and authenticates the identity authentication scene in the environment image; and the authenticate server sends an identity authentication success message to the user terminal when the identity authentication scene is authenticated. According to the identity authentication method, the wearable equipment, the authentication server and the system thereof, the identity authentication information does not need to be input manually, the input time and waiting time of the identity authentication process can be shortened, and the identity authentication efficiency can be improved.

Description

A kind of auth method, wearable device, authentication server and system thereof

Technical field

The present invention relates to Internet technical field, be specifically related to identity validation technology field, particularly relate to a kind of auth method, wearable device, authentication server and system thereof.

Background technology

Along with burning the wind of Internet technology, the life networking day by day of people, informationization.Nowadays user can carry out shopping online by the Internet, the business such as online increment, user needs to carry out necessary authentication while paying, existing authentication process itself all requires that user manually inputs authentication information (such as: passport NO., address name, phone number etc.), cause input time in authentication process itself longer, and usually with the input of mobile phone identifying code, if pushed information is overtime, then need again to obtain identifying code, add the stand-by period, reduce the ageing of Internet service, and then reduce the efficiency of authentication.

Summary of the invention

The embodiment of the present invention provides a kind of auth method, wearable device, authentication server and system thereof, without the need to manually inputting authentication information, can reduce input time and the stand-by period of authentication process itself, promotes the efficiency of authentication.

First aspect present invention provides a kind of auth method, can comprise:

Wearable device collection carries the ambient image of the authentication scene shown by user terminal;

Described ambient image is sent to authentication server by described wearable device;

Described authentication server receives described ambient image, and verifies the authentication scene in described ambient image;

When described authentication scene is verified, described authentication server sends authentication successful information to described user terminal.

Second aspect present invention provides a kind of auth method, can comprise:

Described ambient image is sent to authentication server by described wearable device, to make described authentication server, the authentication scene in described ambient image is verified, and when described authentication scene is verified, make described authentication server send authentication successful information to described user terminal.

Third aspect present invention provides a kind of auth method, can comprise:

Authentication server receives the ambient image carrying the authentication scene shown by user terminal of wearable device collection;

Described authentication server is verified the authentication scene in described ambient image;

Fourth aspect present invention provides a kind of wearable device, can comprise:

Image capture module, for gathering the ambient image of the authentication scene carried shown by user terminal;

Image sending module, for described ambient image is sent to authentication server, to make described authentication server, the authentication scene in described ambient image is verified, and when described authentication scene is verified, make described authentication server send authentication successful information to described user terminal.

Fifth aspect present invention provides a kind of authentication server, can comprise:

Image receiver module, for receiving the ambient image carrying the authentication scene shown by user terminal of wearable device collection;

Image authentication module, for verifying the authentication scene in described ambient image;

Information sending module, for when described authentication scene is verified, sends authentication successful information to described user terminal.

Sixth aspect present invention provides a kind of authentication system, can comprise user terminal, also comprises wearable device that above-mentioned fourth aspect provides and the authentication server that above-mentioned 5th aspect provides.

In embodiments of the present invention, the ambient image of the authentication scene shown by user terminal is carried by wearable device collection, ambient image is sent to authentication server, by authentication server, the authentication scene in described ambient image is verified, and send authentication successful information to described user terminal after being verified.Gather owing to adopting the ambient image of wearable device to the authentication scene included shown by user terminal, manually authentication information is inputted without the need to user, decrease input time and the stand-by period of authentication process itself, improve the ageing of Internet service, and then improve the efficiency of authentication.

Accompanying drawing explanation

In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.

Fig. 1 is the schematic flow sheet of a kind of auth method that the embodiment of the present invention provides;

Fig. 2 is the flow process sequential chart of a kind of auth method that the embodiment of the present invention provides;

Fig. 3 is the schematic flow sheet of the another kind of auth method that the embodiment of the present invention provides;

Fig. 4 is the schematic flow sheet of another auth method that the embodiment of the present invention provides;

Fig. 5 is the schematic flow sheet of another authentication mode that the embodiment of the present invention provides;

Fig. 6 is the schematic flow sheet of another auth method that the embodiment of the present invention provides;

Fig. 7 is the structural representation of a kind of wearable device that the embodiment of the present invention provides;

Fig. 8 is the structural representation of the another kind of wearable device that the embodiment of the present invention provides;

Fig. 9 is the structural representation of another wearable device that the embodiment of the present invention provides;

Figure 10 is the structural representation of a kind of authentication server that the embodiment of the present invention provides;

Figure 11 is the structural representation of the image authentication module that the embodiment of the present invention provides;

Figure 12 is the structural representation of the image matching unit that the embodiment of the present invention provides;

Figure 13 is the structural representation of the another kind of authentication server that the embodiment of the present invention provides;

Figure 14 is the structural representation of another authentication server that the embodiment of the present invention provides;

Figure 15 is the structural representation of a kind of authentication system that the embodiment of the present invention provides.

Embodiment

Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.

The auth method that the embodiment of the present invention provides can be applied to the scene of the authentication carried out in shopping online payment process or online birth process, such as: when carrying out shopping online in the user terminal and paying, need to carry out authentication, user can use wearable device collection to carry the ambient image of the authentication scene shown by user terminal, described ambient image is sent to authentication server by described wearable device, described authentication server receives described ambient image, and the authentication scene in described ambient image is verified, when described authentication scene is verified, described authentication server sends authentication successful information to described user terminal, after passing through authentication, described user terminal can perform the scene etc. of continuation payment flow process, the scene of carrying out authentication in terminal applies login process can also be applied to, such as: when carrying out terminal applies and logging in, need to carry out authentication, user can use wearable device collection to carry the ambient image of the authentication scene shown by user terminal, described ambient image is sent to authentication server by described wearable device, described authentication server receives described ambient image, and the authentication scene in described ambient image is verified, when described authentication scene is verified, described authentication server sends authentication successful information to described user terminal, after passing through authentication, described user terminal can perform subsequent login flow process, and enter the scene etc. of this terminal applies.Manually input authentication information without the need to user, decrease input time and the stand-by period of authentication process itself, and then improve the efficiency of authentication.

The user terminal that the embodiment of the present invention relates to can comprise: the terminal equipments such as panel computer, smart mobile phone, notebook computer, palmtop PC and mobile internet device (MID), or can be the applications client in described terminal equipment; Described wearable device can be accessories or the necessary articles such as wrist-watch, suspension member, glasses, can also for the equipment that accessories or necessary article are settled; Described authentication server can for comprising the background devices of the function such as authentication, Business Processing; Described authentication scene is the image shown in described user terminal when carrying out authentication, the image that can distribute from user terminal described in behavior for described authentication server, also can for one fixing and need user to provide the image of authentication information; The image (such as: photographic images) that described ambient image gathers for described wearable device, can comprise the image etc. of the component environment around authentication scene shown in the image of user terminal, user terminal and user terminal.

Below in conjunction with accompanying drawing 1-accompanying drawing 6, a kind of auth method that the embodiment of the present invention provides is described in detail.

Refer to Fig. 1, for embodiments providing a kind of schematic flow sheet of auth method.The embodiment of the present invention sets forth the idiographic flow of auth method jointly from wearable device side and authentication server side, and the method can comprise the following steps S101-step S104.

S101, wearable device collection carries the ambient image of the authentication scene shown by user terminal;

Concrete, when carrying out authentication, user terminal can show authentication scene, and wearable device can possess camera and open camera function, gathers the ambient image of the authentication scene carried shown by user terminal.

Further, can identification in order to what improve gathered ambient image, described wearable device can once carry authentication scene shown by user terminal in interior ambient image every Preset Time collection, such as: gathered one inferior every 1 second.

It should be noted that, before carrying out authentication, authentication server can the device identification of the user ID that uses in described user terminal of user bound and described wearable device, and described device identification can be the described wearable device unique identification set when dispatching from the factory; The terminal iidentification of the user account that described user ID can use in terminal applies for user or the described user terminal that user uses.When binding, described user ID is sent to described authentication server by described user terminal, described device identification is sent to described authentication server by described wearable device, described authentication server stores the incidence relation of the device identification of the user ID of described user terminal transmission and the described wearable device of described wearable device transmission, certainly, binding procedure can also be: user inputs the device identification of described wearable device and described user ID in the user terminal, by described user terminal, described device identification and described user ID are sent to described authentication server, described authentication server stores the incidence relation of described user ID and described device identification.When described authentication server receives the authentication request of described user terminal transmission, described authentication request carries described user ID, described authentication server searches the device identification be associated with described user ID, and the wearable device corresponding to described device identification sends image capture instruction.

Further, if the user account that described user ID uses in terminal applies for user, then user needs to use this user account to log in terminal applies, and the wearable device using the device identification of association corresponding performs the process of authentication, terminal applies can be not limited in a user terminal; If the terminal iidentification of the described user terminal that described user ID uses for user, then user can only use the user terminal being equipped with this user ID, and the wearable device corresponding with the device identification that this user terminal associates performs the process of authentication.

S102, described ambient image is sent to authentication server by described wearable device;

Concrete, the described ambient image gathered is sent to authentication server by described wearable device, and further, described wearable device often can gather an ambient image, just this ambient image is sent to authentication server; Or described wearable device can set the time limit, when the time limit arrives, at least one gathered ambient image is sent to described authentication server.

S103, described authentication server receives described ambient image, and verifies the authentication scene in described ambient image;

Concrete, when described authentication server receives the ambient image of described wearable device transmission, described authentication server is verified the authentication scene in described ambient image.

It should be noted that, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image, when described reference image is consistent with described authentication scene matching, described authentication server determines that described authentication scene is verified.Described reference image can for being stored in advance in the still image for mating authentication scene in described authentication server, or for described authentication server obtains the image of the current display of described user terminal, by mating with reference to image and described authentication scene described, if consistent, then can think the operation carried out at local terminal, namely authentication is passed through.Owing to comprising the image etc. of the component environment around authentication scene shown in the image of user terminal, user terminal and user terminal in described ambient image, described authentication server needs the authentication scene determined in described ambient image, and because received ambient image is at least one, therefore described authentication server needs to carry out binding analysis to all authentication scenes at least one ambient image.

Further, in order to improve the efficiency of matching process, described authentication server carries out information extraction process to described ambient image, obtain the authentication information entrained by authentication scene in described ambient image, the match information in the reference image preset is adopted to mate described authentication information, when described match information is mated consistent with described authentication information, described authentication server is determined described consistent with described authentication scene matching with reference to image, and when described match information is mated consistent with described authentication information, described authentication server is determined described consistent with described authentication scene matching with reference to image, and then determine that described authentication scene is verified.Described authentication information can be critical field, key images etc. in described authentication scene, described match information can be described with reference to the critical field, key images etc. in image, by adopting match information, described authentication information is mated, that can carry out in certain limit is fault-tolerant, key content is mated, other content is carried out tactic and is let slip, and can reduce because of the not fogging clear unnecessary repeated authentication process caused simultaneously.

S104, when described authentication scene is verified, described authentication server sends authentication successful information to described user terminal;

Concrete, when described authentication scene is verified, described authentication server sends authentication successful information to described user terminal, described authentication successful information can indicate described user terminal subscriber authentication to pass through, to make described user terminal complete subsequent operation flow process, such as: payment flow, terminal applies login process etc.

In embodiments of the present invention, the ambient image of the authentication scene shown by user terminal is carried by wearable device collection, ambient image is sent to authentication server, by authentication server, the authentication scene in described ambient image is verified, and send authentication successful information to described user terminal after being verified.Owing to adopting the ambient image of wearable device to the authentication scene included shown by user terminal to gather, manually input authentication information without the need to user, decrease input time and the stand-by period of authentication process itself; Wearable device carries out the collection of authentication scene at least one times, and what improve gathered ambient image can identification; Authentication server is in the proof procedure of authentication scene, can mate key content, and tactic is carried out to other content let slip, ensure that the fault tolerant workspace in certain limit, decrease because of the not fogging clear unnecessary repeated authentication process caused, improve the ageing of Internet service, and then improve the efficiency of authentication.

Refer to Fig. 2, for embodiments providing a kind of flow process sequential chart of auth method.The embodiment of the present invention sets forth the idiographic flow of auth method jointly from wearable device side and authentication server side, and the method can comprise the following steps S201-step S211.

S201, user terminal sends user ID to authentication server;

S202, wearable device sends the device identification of described wearable device to described authentication server;

S203, described authentication server stores the incidence relation of the device identification of user's sequence number ID of user terminal transmission and the described wearable device of wearable device transmission;

Concrete, authentication server can the device identification of the user ID that uses in described user terminal of user bound and described wearable device, and described device identification can be the described wearable device unique identification set when dispatching from the factory; The terminal iidentification of the user account that described user ID can use in terminal applies for user or the described user terminal that user uses.When binding, described user ID is sent to described authentication server by described user terminal, described device identification is sent to described authentication server by described wearable device, described authentication server stores the incidence relation of the device identification of the user ID of described user terminal transmission and the described wearable device of described wearable device transmission, certainly, binding procedure can also be: user inputs the device identification of described wearable device and described user ID in the user terminal, by described user terminal, described device identification and described user ID are sent to described authentication server, described authentication server stores the incidence relation of described user ID and described device identification.

S204, described user terminal sends authentication request to described authentication server, and described authentication request carries described user ID;

Concrete, when user terminal monitor current user operation need to carry out subscriber authentication time, described user terminal sends authentication request to described authentication server, and described authentication request carries described user ID.

S205, described authentication server searches the device identification be associated with described user ID;

Concrete, the user ID of described authentication server entrained by described authentication request searches the device identification of the wearable device be associated.

S206, described authentication server sends image capture instruction to the wearable device that described device identification is corresponding;

S207, described wearable device once carries authentication scene shown by user terminal in interior ambient image every Preset Time collection;

S208, described ambient image is sent to authentication server by described wearable device;

S209, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image;

It should be noted that, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image, described reference image can for being stored in advance in the still image for mating authentication scene in described authentication server, or for described authentication server obtains the image of the current display of described user terminal, owing to comprising the image of user terminal in described ambient image, the image etc. of the authentication scene shown by user terminal and the component environment around user terminal, described authentication server needs the authentication scene determined in described ambient image, and because received ambient image is at least one, therefore described authentication server needs to carry out binding analysis to all authentication scenes at least one ambient image.

S210, when described reference image is consistent with described authentication scene matching, described authentication server determines that described authentication scene is verified;

Concrete, by mating with reference to image and described authentication scene described, if unanimously, then can think the operation carried out at local terminal, namely authentication is passed through.

S211, when described authentication scene is verified, described authentication server sends authentication successful information to described user terminal;

Refer to Fig. 3, for embodiments providing the schematic flow sheet of another kind of auth method.The embodiment of the present invention sets forth the idiographic flow of auth method from wearable device side, the method can comprise the following steps S301-step S302.

S301, wearable device collection carries the ambient image of the authentication scene shown by user terminal;

S302, described ambient image is sent to authentication server by described wearable device, to make described authentication server, the authentication scene in described ambient image is verified, and when described authentication scene is verified, make described authentication server send authentication successful information to described user terminal;

Concrete, the described ambient image gathered is sent to authentication server by described wearable device, and further, described wearable device often can gather an ambient image, just this ambient image is sent to authentication server; Or described wearable device can set the time limit, when the time limit arrives, at least one gathered ambient image is sent to described authentication server.When described authentication server receives the ambient image of described wearable device transmission, described authentication server is verified the authentication scene in described ambient image.When described authentication scene is verified, described authentication server sends authentication successful information to described user terminal, described authentication successful information can indicate described user terminal subscriber authentication to pass through, to make described user terminal complete subsequent operation flow process, such as: payment flow, terminal applies login process etc.

In embodiments of the present invention, the ambient image of the authentication scene shown by user terminal is carried by wearable device collection, ambient image is sent to authentication server, by authentication server, the authentication scene in described ambient image is verified, and send authentication successful information to described user terminal after being verified.Gather owing to adopting the ambient image of wearable device to the authentication scene included shown by user terminal, manually authentication information is inputted without the need to user, decrease input time and the stand-by period of authentication process itself, improve the ageing of Internet service, and then improve the efficiency of authentication; Wearable device carries out the collection of authentication scene at least one times, and what improve gathered ambient image can identification.

Refer to Fig. 4, for embodiments providing the schematic flow sheet of another auth method.The embodiment of the present invention sets forth the idiographic flow of auth method from wearable device side, the method can comprise the following steps S401-step S403.

S401, when authentication server receives the authentication request of user terminal transmission, wearable device receives the image capture instruction that described authentication server sends.

Concrete, when user terminal monitor current user operation need to carry out subscriber authentication time, described user terminal sends authentication request to described authentication server, described authentication request carries user ID, the user ID of described authentication server entrained by described authentication request searches the device identification of the wearable device be associated, and sending image capture instruction to the wearable device that described device identification is corresponding, described wearable device receives the image capture instruction that described authentication server sends.

It should be noted that, described authentication server association store has described user ID and described device identification.

S402, wearable device collection carries the ambient image of the authentication scene shown by user terminal;

S403, described ambient image is sent to authentication server by described wearable device, to make described authentication server, the authentication scene in described ambient image is verified, and when described authentication scene is verified, make described authentication server send authentication successful information to described user terminal.

Wherein, the step S402 of the embodiment of the present invention and S403 can distinguish step S301 and the S302 of embodiment shown in Figure 3, does not repeat at this.

Refer to Fig. 5, for embodiments providing the schematic flow sheet of another auth method.The embodiment of the present invention sets forth the idiographic flow of auth method from authentication server side, the method can comprise the following steps S501-step S503.

S501, authentication server receives the ambient image carrying the authentication scene shown by user terminal of wearable device collection;

Concrete, when carrying out authentication, user terminal can show authentication scene, wearable device can possess camera and open camera function, gather the ambient image of the authentication scene carried shown by user terminal, described authentication server receives the ambient image that described wearable device gathers.

S502, described authentication server is verified the authentication scene in described ambient image;

S503, when described authentication scene is verified, described authentication server sends authentication successful information to described user terminal;

In embodiments of the present invention, the ambient image of the authentication scene shown by user terminal is carried by wearable device collection, ambient image is sent to authentication server, by authentication server, the authentication scene in described ambient image is verified, and send authentication successful information to described user terminal after being verified.Owing to adopting the ambient image of wearable device to the authentication scene included shown by user terminal to gather, manually input authentication information without the need to user, decrease input time and the stand-by period of authentication process itself; Authentication server is in the proof procedure of authentication scene, can mate key content, and tactic is carried out to other content let slip, ensure that the fault tolerant workspace in certain limit, decrease because of the not fogging clear unnecessary repeated authentication process caused, improve the ageing of Internet service, and then improve the efficiency of authentication.

Refer to Fig. 6, for embodiments providing the schematic flow sheet of another auth method.The embodiment of the present invention sets forth the idiographic flow of auth method from authentication server side, the method can comprise the following steps S601-step S606.

S601, authentication server stores the incidence relation of the device identification of the user ID of user terminal transmission and the described wearable device of wearable device transmission;

S602, when described authentication server receives the authentication request of described user terminal transmission, described authentication request carries described user ID, described authentication server searches the device identification be associated with described user ID, and the wearable device corresponding to described device identification sends image capture instruction;

Concrete, when user terminal monitor current user operation need to carry out subscriber authentication time, described user terminal sends authentication request to described authentication server, described authentication request carries described user ID, the user ID of described authentication server entrained by described authentication request searches the device identification of the wearable device be associated, and sends image capture instruction to the wearable device that described device identification is corresponding.

S603, authentication server receives the ambient image carrying the authentication scene shown by user terminal of wearable device collection;

S604, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image;

It should be noted that, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image, described reference image can for being stored in advance in the still image for mating authentication scene in described authentication server, or for described authentication server obtains the image of the current display of described user terminal, owing to comprising the image of user terminal in described ambient image, the image etc. of the authentication scene shown by user terminal and the component environment around user terminal, described authentication server needs the authentication scene determined in described ambient image, and because received ambient image can be at least one, therefore described authentication server needs to carry out binding analysis to all authentication scenes at least one ambient image.

S605, when described reference image is consistent with described authentication scene matching, described authentication server determines that described authentication scene is verified;

S606, when described authentication scene is verified, described authentication server sends authentication successful information to described user terminal.

Wherein, the step S606 of the embodiment of the present invention can the step S503 of embodiment shown in Figure 5, does not repeat at this.

Below in conjunction with accompanying drawing 7 and accompanying drawing 8, the wearable device that the embodiment of the present invention provides is described in detail.It should be noted that, wearable device shown in accompanying drawing 7 and accompanying drawing 8, for performing Fig. 3 of the present invention and method embodiment illustrated in fig. 4, for convenience of explanation, illustrate only the part relevant to the embodiment of the present invention, concrete ins and outs do not disclose, and please refer to the embodiment shown in Fig. 3 and Fig. 4 of the present invention.

Refer to Fig. 7, for embodiments providing a kind of structural representation of wearable device.As shown in Figure 7, the described wearable device 1 of the embodiment of the present invention can comprise: image capture module 11 and image sending module 12.

Image capture module 11, for gathering the ambient image of the authentication scene carried shown by user terminal;

In specific implementation, when carrying out authentication, user terminal can show authentication scene, and described image capture module 11 can possess camera and open camera function, gathers the ambient image of the authentication scene carried shown by user terminal.

Further, can identification in order to what improve gathered ambient image, described image capture module 11 can once carry authentication scene shown by user terminal in interior ambient image every Preset Time collection, such as: gathered one inferior every 1 second.

It should be noted that, before carrying out authentication, authentication server can the device identification of the user ID that uses in described user terminal of user bound and described wearable device 1, and described device identification can be described wearable device 1 unique identification set when dispatching from the factory; The terminal iidentification of the user account that described user ID can use in terminal applies for user or the described user terminal that user uses.When binding, described user ID is sent to described authentication server by described user terminal, described device identification is sent to described authentication server by described wearable device 1, described authentication server stores the incidence relation of the device identification of the user ID of described user terminal transmission and the described wearable device 1 of described wearable device 1 transmission, certainly, binding procedure can also be: user inputs the device identification of described wearable device 1 and described user ID in the user terminal, by described user terminal, described device identification and described user ID are sent to described authentication server, described authentication server stores the incidence relation of described user ID and described device identification.When described authentication server receives the authentication request of described user terminal transmission, described authentication request carries described user ID, described authentication server searches the device identification be associated with described user ID, and the wearable device 1 corresponding to described device identification sends image capture instruction.

Further, if the user account that described user ID uses in terminal applies for user, then user needs to use this user account to log in terminal applies, and using wearable device 1 corresponding to the device identification of association to perform the process of authentication, terminal applies can be not limited in a user terminal; If the terminal iidentification of the described user terminal that described user ID uses for user, then user can only use the user terminal being equipped with this user ID, and the wearable device 1 corresponding with the device identification that this user terminal associates performs the process of authentication.

Image sending module 12, for described ambient image is sent to authentication server, to make described authentication server, the authentication scene in described ambient image is verified, and when described authentication scene is verified, make described authentication server send authentication successful information to described user terminal;

In specific implementation, the described ambient image gathered is sent to authentication server by described image sending module 12, and further, at least one gathered ambient image is sent to authentication server by described image sending module 12.When described authentication server receives the ambient image of described image sending module 12 transmission, described authentication server is verified the authentication scene in described ambient image.When described authentication scene is verified, described authentication server sends authentication successful information to described user terminal, described authentication successful information can indicate described user terminal subscriber authentication to pass through, to make described user terminal complete subsequent operation flow process, such as: payment flow, terminal applies login process etc.

Refer to Fig. 8, for embodiments providing the structural representation of another kind of wearable device.As shown in Figure 8, the wearable device 1 of the embodiment of the present invention can comprise: image capture module 11, image sending module 12 and command reception module 13; Wherein, the structure of image capture module 11 and image sending module 12 can the associated description of embodiment shown in Figure 7, does not repeat at this.

Command reception module 13, for receive when authentication server user terminal send authentication request time, receive described authentication server send image capture instruction;

In specific implementation, when user terminal monitor current user operation need to carry out subscriber authentication time, described user terminal sends authentication request to described authentication server, described authentication request carries user ID, the user ID of described authentication server entrained by described authentication request searches the device identification of the wearable device 1 be associated, and sending image capture instruction to the wearable device 1 that described device identification is corresponding, described command reception module 13 receives the image capture instruction that described authentication server sends.

Refer to Fig. 9, for embodiments providing the structural representation of another wearable device.As shown in Figure 8, described wearable device 1000 can comprise: at least one processor 1001, such as CPU, at least one network interface 1004, user interface 1003, memory 1005, at least one communication bus 1002.Wherein, communication bus 1002 is for realizing the connection communication between these assemblies.Wherein, user interface 1003 can comprise camera (Camera), and optional user interface 1003 can also comprise wireline interface, the wave point of standard.Network interface 1004 optionally can comprise wireline interface, the wave point (as WI-FI interface) of standard.Memory 1005 can be high-speed RAM memory, also can be non-labile memory (non-volatile memory), such as at least one magnetic disc store.Memory 1005 can also be optionally that at least one is positioned at the storage device away from aforementioned processor 1001.As shown in Figure 8, operating system, network communication module, Subscriber Interface Module SIM and authentication application program can be comprised as in a kind of memory 1005 of computer-readable storage medium.

In the wearable device 1000 shown in Fig. 9, network interface 1004 is mainly used in connectivity verification server, carries out data communication with described authentication server; And user interface 1003 is mainly used in providing the interface of input for user, obtain the data that user exports; And processor 1001 may be used for calling the authentication application program stored in memory 1005, and specifically perform following steps:

Gather the ambient image of the authentication scene carried shown by user terminal;

Described ambient image is sent to authentication server, to make described authentication server, the authentication scene in described ambient image is verified, and when described authentication scene is verified, make described authentication server send authentication successful information to described user terminal.

In one embodiment, described processor 1001, before performing the ambient image gathering the authentication scene carried shown by user terminal, also performs following steps:

When authentication server receives the authentication request of user terminal transmission, receive the image capture instruction that described authentication server sends.

In one embodiment, described processor 1001, when performing the ambient image gathering the authentication scene carried shown by user terminal, specifically performs following steps:

Authentication scene shown by user terminal is once carried in interior ambient image every Preset Time collection.

Below in conjunction with accompanying drawing 10-accompanying drawing 13, the authentication server that the embodiment of the present invention provides is described in detail.It should be noted that, authentication server shown in accompanying drawing 10-accompanying drawing 13, for performing Fig. 5 of the present invention and method embodiment illustrated in fig. 6, for convenience of explanation, illustrate only the part relevant to the embodiment of the present invention, concrete ins and outs do not disclose, and please refer to the embodiment shown in Fig. 5 and Fig. 6 of the present invention.

Refer to Figure 10, for embodiments providing a kind of structural representation of authentication server.As shown in Figure 10, the described authentication server 2 of the embodiment of the present invention can comprise: image receiver module 21, image authentication module 22 and information sending module 23.

Image receiver module 21, for receiving the ambient image carrying the authentication scene shown by user terminal of wearable device collection;

In specific implementation, when carrying out authentication, user terminal can show authentication scene, wearable device can possess camera and open camera function, gather the ambient image of the authentication scene carried shown by user terminal, described image receiver module 21 receives the ambient image that described wearable device gathers.

It should be noted that, before carrying out authentication, authentication server 2 can the device identification of the user ID that uses in described user terminal of user bound and described wearable device, and described device identification can be the described wearable device unique identification set when dispatching from the factory; The terminal iidentification of the user account that described user ID can use in terminal applies for user or the described user terminal that user uses.When binding, described user ID is sent to described authentication server 2 by described user terminal, described device identification is sent to described authentication server 2 by described wearable device, described authentication server 2 stores the incidence relation of the device identification of the user ID of described user terminal transmission and the described wearable device of described wearable device transmission, certainly, binding procedure can also be: user inputs the device identification of described wearable device and described user ID in the user terminal, by described user terminal, described device identification and described user ID are sent to described authentication server 2, described authentication server 2 stores the incidence relation of described user ID and described device identification.When described authentication server 2 receives the authentication request of described user terminal transmission, described authentication request carries described user ID, described authentication server 2 searches the device identification be associated with described user ID, and the wearable device corresponding to described device identification sends image capture instruction.

Image authentication module 22, for verifying the authentication scene in described ambient image;

In specific implementation, when described image receiver module 21 receives the ambient image of described wearable device transmission, described image authentication module 22 is verified the authentication scene in described ambient image.

Concrete, please also refer to Figure 11, for embodiments providing the structural representation of image authentication module.As shown in figure 11, described image authentication module 22 can comprise:

Image matching unit 221, for adopting default mating the authentication scene in described ambient image with reference to image;

In specific implementation, described image matching unit 221 adopts the reference image preset to mate the authentication scene in described ambient image, described reference image can for being stored in advance in the still image for mating authentication scene in described authentication server 1, or for described authentication server 1 obtains the image of the current display of described user terminal, owing to comprising the image of user terminal in described ambient image, the image etc. of the authentication scene shown by user terminal and the component environment around user terminal, described image matching unit 221 needs the authentication scene determined in described ambient image, and because received ambient image can be at least one, therefore described image matching unit 221 needs to carry out binding analysis to all authentication scenes at least one ambient image.

Concrete, please also refer to Figure 12, for embodiments providing the structural representation of image matching unit.As shown in figure 12, described image matching unit 221 can comprise:

Acquisition of information subelement 2211, for carrying out information extraction process to described ambient image, obtains the authentication information entrained by authentication scene in described ambient image;

Information matches subelement 2212, for adopting default mating described authentication information with reference to the match information in image;

Coupling determines subelement 2213, for when described match information is mated consistent with described authentication information, determines described consistent with described authentication scene matching with reference to image.

In specific implementation, in order to improve the efficiency of matching process, described acquisition of information subelement 2211 carries out information extraction process to described ambient image, obtain the authentication information entrained by authentication scene in described ambient image, described information matches subelement 2212 adopts the match information in the reference image preset to mate described authentication information, when described match information is mated consistent with described authentication information, described coupling determines that subelement 2213 is determined described consistent with described authentication scene matching with reference to image, and when described match information is mated consistent with described authentication information, described image matching unit 221 is determined described consistent with described authentication scene matching with reference to image, and then described checking determining unit 222 can determine that described authentication scene is verified.Described authentication information can be critical field, key images etc. in described authentication scene, described match information can be described with reference to the critical field, key images etc. in image, by adopting match information, described authentication information is mated, that can carry out in certain limit is fault-tolerant, key content is mated, other content is carried out tactic and is let slip, and can reduce because of the not fogging clear unnecessary repeated authentication process caused simultaneously.

Checking determining unit 222, for when described reference image is consistent with described authentication scene matching, determines that described authentication scene is verified;

In specific implementation, mated with reference to image and described authentication scene described by described image matching unit 221, if consistent, then described checking determining unit 222 can think the operation that user carries out at local terminal (user terminal), and namely authentication is passed through.

Information sending module 23, for when described authentication scene is verified, sends authentication successful information to described user terminal;

In specific implementation, when described authentication scene is verified, described information sending module 23 sends authentication successful information to described user terminal, described authentication successful information can indicate described user terminal subscriber authentication to pass through, to make described user terminal complete subsequent operation flow process, such as: payment flow, terminal applies login process etc.

Refer to Figure 13, for embodiments providing the structural representation of another kind of authentication server.As shown in figure 13, the described authentication server 2 of the embodiment of the present invention can comprise: image receiver module 21, image authentication module 22, information sending module 23, memory module 24 and search sending module 25; Wherein, the structure of image receiver module 21, image authentication module 22 and information sending module 23 can the specific descriptions of embodiment shown in Figure 9, do not repeat at this.

Memory module 24, the incidence relation of the device identification of the described wearable device that user ID and wearable device for storing user terminal transmission send;

In specific implementation, described memory module 24 can the device identification of the user ID that uses in described user terminal of user bound and described wearable device, and described device identification can be the described wearable device unique identification set when dispatching from the factory; The terminal iidentification of the user account that described user ID can use in terminal applies for user or the described user terminal that user uses.When binding, described user ID is sent to described authentication server 2 by described user terminal, described device identification is sent to described authentication server 2 by described wearable device, described memory module 24 stores the incidence relation of the device identification of the user ID of described user terminal transmission and the described wearable device of described wearable device transmission, certainly, binding procedure can also be: user inputs the device identification of described wearable device and described user ID in the user terminal, by described user terminal, described device identification and described user ID are sent to described authentication server 2, described memory module 24 stores the incidence relation of described user ID and described device identification.

Search sending module 25, for receive when described authentication server described user terminal send authentication request time, described authentication request carries described user ID, search the device identification be associated with described user ID, the wearable device corresponding to described device identification sends image capture instruction;

In specific implementation, when user terminal monitor current user operation need to carry out subscriber authentication time, described user terminal sends authentication request to described authentication server 2, described authentication request carries described user ID, describedly search the device identification that the user ID of sending module 25 entrained by described authentication request searches the wearable device be associated, and send image capture instruction to the wearable device that described device identification is corresponding.

Refer to Figure 14, for embodiments providing the structural representation of another authentication server.As shown in figure 14, described authentication server 2000 can comprise: at least one processor 2001, such as CPU, at least one network interface 2004, user interface 2003, memory 2005, at least one communication bus 2002.Wherein, communication bus 2002 is for realizing the connection communication between these assemblies.Wherein, user interface 2003 can comprise display screen (Display), keyboard (Keyboard), and optional user interface 2003 can also comprise wireline interface, the wave point of standard.Network interface 2004 optionally can comprise wireline interface, the wave point (as WI-FI interface) of standard.Memory 2005 can be high-speed RAM memory, also can be non-labile memory (non-volatile memory), such as at least one magnetic disc store.Memory 2005 can also be optionally that at least one is positioned at the storage device away from aforementioned processor 2001.As shown in figure 14, operating system, network communication module, Subscriber Interface Module SIM and authentication application program can be comprised as in a kind of memory 2005 of computer-readable storage medium.

In the authentication server 2000 shown in Figure 14, network interface 2004 is mainly used in connecting user terminal and wearable device, carries out data communication with described user terminal and described wearable device; And user interface 2003 is mainly used in providing the interface of input for user, obtain the data that user exports; And processor 2001 may be used for calling the authentication application program stored in memory 2005, and specifically perform following steps:

Receive the ambient image carrying the authentication scene shown by user terminal of wearable device collection;

Authentication scene in described ambient image is verified;

When described authentication scene is verified, send authentication successful information to described user terminal.

In one embodiment, described processor 2001 perform receive wearable device collection carry the ambient image of the authentication scene shown by user terminal before, also perform following steps:

Store the incidence relation of the device identification of the user ID of user terminal transmission and the described wearable device of wearable device transmission;

When receiving the authentication request that described user terminal sends, described authentication request carries described user ID, searches the device identification be associated with described user ID, and the wearable device corresponding to described device identification sends image capture instruction.

In one embodiment, described processor 2001, when execution is verified the authentication scene in described ambient image, specifically performs following steps:

The reference image preset is adopted to mate the authentication scene in described ambient image;

When described reference image is consistent with described authentication scene matching, determine that described authentication scene is verified.

In one embodiment, described processor 2001, when performing the default reference image of employing and mating the authentication scene in described ambient image, specifically performs following steps:

Information extraction process is carried out to described ambient image, obtains the authentication information entrained by authentication scene in described ambient image;

The match information in the reference image preset is adopted to mate described authentication information;

When described match information is mated consistent with described authentication information, determine described consistent with described authentication scene matching with reference to image;

Wherein, described authentication information is critical field, the key images in described authentication scene.

Refer to Figure 15, for embodiments providing a kind of structural representation of authentication system.As shown in figure 15, the described system of the embodiment of the present invention can comprise user terminal, wearable device and authentication server, wherein, described wearable device is specifically as follows Fig. 7 or wearable device 1 embodiment illustrated in fig. 8, or described wearable device is specifically as follows wearable device 1000 embodiment illustrated in fig. 9; Described authentication server is specifically as follows the authentication server 2 of the arbitrary illustrated embodiment of Figure 10-Figure 13, or described authentication server can be authentication server 2000 embodiment illustrated in fig. 14.Described user terminal and described authentication server, and can be interconnected by network between described wearable device and described authentication server.Described user terminal is used for when carrying out authentication, for described wearable device provides authentication scene.

When carrying out authentication, user terminal can show authentication scene, and wearable device can possess camera and open camera function, gathers the ambient image of the authentication scene carried shown by user terminal.Further, can identification in order to what improve gathered ambient image, described wearable device can once carry authentication scene shown by user terminal in interior ambient image every Preset Time collection, such as: gathered one inferior every 1 second.It should be noted that, before carrying out authentication, authentication server can the device identification of the user ID that uses in described user terminal of user bound and described wearable device, and described device identification can be the described wearable device unique identification set when dispatching from the factory; The terminal iidentification of the user account that described user ID can use in terminal applies for user or the described user terminal that user uses.When binding, described user ID is sent to described authentication server by described user terminal, described device identification is sent to described authentication server by described wearable device, described authentication server stores the incidence relation of the device identification of the user ID of described user terminal transmission and the described wearable device of described wearable device transmission, certainly, binding procedure can also be: user inputs the device identification of described wearable device and described user ID in the user terminal, by described user terminal, described device identification and described user ID are sent to described authentication server, described authentication server stores the incidence relation of described user ID and described device identification.When described authentication server receives the authentication request of described user terminal transmission, described authentication request carries described user ID, described authentication server searches the device identification be associated with described user ID, and the wearable device corresponding to described device identification sends image capture instruction.

The described ambient image gathered is sent to authentication server by described wearable device, and further, described wearable device often can gather an ambient image, just this ambient image is sent to authentication server; Or described wearable device can set the time limit, when the time limit arrives, at least one gathered ambient image is sent to described authentication server.

When described authentication server receives the ambient image of described wearable device transmission, described authentication server is verified the authentication scene in described ambient image.It should be noted that, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image, when described reference image is consistent with described authentication scene matching, described authentication server determines that described authentication scene is verified.Described reference image can for being stored in advance in the still image for mating authentication scene in described authentication server, or for described authentication server obtains the image of the current display of described user terminal, by mating with reference to image and described authentication scene described, if consistent, then can think the operation carried out at local terminal, namely authentication is passed through.Owing to comprising the image etc. of the component environment around authentication scene shown in the image of user terminal, user terminal and user terminal in described ambient image, described authentication server needs the authentication scene determined in described ambient image, and because received ambient image is at least one, therefore described authentication server needs to carry out binding analysis to all authentication scenes at least one ambient image.Further, in order to improve the efficiency of matching process, described authentication server carries out information extraction process to described ambient image, obtain the authentication information entrained by authentication scene in described ambient image, the match information in the reference image preset is adopted to mate described authentication information, when described match information is mated consistent with described authentication information, described authentication server is determined described consistent with described authentication scene matching with reference to image, and when described match information is mated consistent with described authentication information, described authentication server is determined described consistent with described authentication scene matching with reference to image, and then determine that described authentication scene is verified.Described authentication information can be critical field, key images etc. in described authentication scene, described match information can be described with reference to the critical field, key images etc. in image, by adopting match information, described authentication information is mated, that can carry out in certain limit is fault-tolerant, key content is mated, other content is carried out tactic and is let slip, and can reduce because of the not fogging clear unnecessary repeated authentication process caused simultaneously.

When described authentication scene is verified, described authentication server sends authentication successful information to described user terminal, described authentication successful information can indicate described user terminal subscriber authentication to pass through, to make described user terminal complete subsequent operation flow process, such as: payment flow, terminal applies login process etc.

One of ordinary skill in the art will appreciate that all or part of flow process realized in above-described embodiment method, that the hardware that can carry out instruction relevant by computer program has come, described program can be stored in a computer read/write memory medium, this program, when performing, can comprise the flow process of the embodiment as above-mentioned each side method.Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-Only Memory, ROM) or random store-memory body (Random Access Memory, RAM) etc.

Above disclosedly be only present pre-ferred embodiments, certainly can not limit the interest field of the present invention with this, therefore according to the equivalent variations that the claims in the present invention are done, still belong to the scope that the present invention is contained.

Claims

1. an auth method, is characterized in that, comprising:

2. method according to claim 1, is characterized in that, described wearable device collection also comprises before carrying the ambient image of the authentication scene shown by user terminal:

Authentication server stores the incidence relation of the device identification of the user ID of user terminal transmission and the described wearable device of wearable device transmission;

When described authentication server receives the authentication request of described user terminal transmission, described authentication request carries described user ID, described authentication server searches the device identification be associated with described user ID, and the wearable device corresponding to described device identification sends image capture instruction.

3. method according to claim 1, is characterized in that, described wearable device collection carries the ambient image of the authentication scene shown by user terminal, comprising:

Wearable device once carries authentication scene shown by user terminal in interior ambient image every Preset Time collection.

4. method according to claim 1, is characterized in that, describedly verifies the authentication scene in described ambient image, comprising:

Described authentication server adopts the reference image preset to mate the authentication scene in described ambient image;

When described reference image is consistent with described authentication scene matching, described authentication server determines that described authentication scene is verified.

5. method according to claim 4, is characterized in that, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image, comprising:

Described authentication server carries out information extraction process to described ambient image, obtains the authentication information entrained by authentication scene in described ambient image;

Described authentication server adopts the match information in the reference image preset to mate described authentication information;

When described match information is mated consistent with described authentication information, described authentication server is determined described consistent with described authentication scene matching with reference to image;

6. an auth method, is characterized in that, comprising:

7. method according to claim 6, is characterized in that, described wearable device collection also comprises before carrying the ambient image of the authentication scene shown by user terminal:

When authentication server receives the authentication request of user terminal transmission, wearable device receives the image capture instruction that described authentication server sends.

8. method according to claim 6, is characterized in that, described wearable device collection carries the ambient image of the authentication scene shown by user terminal, comprising:

9. an auth method, is characterized in that, comprising:

10. method according to claim 9, is characterized in that, described authentication server receive wearable device collection carry the ambient image of the authentication scene shown by user terminal before, also comprise:

11. methods according to claim 9, is characterized in that, described authentication server is verified the authentication scene in described ambient image, comprising:

12. methods according to claim 11, is characterized in that, described authentication server adopts the reference image preset to mate the authentication scene in described ambient image, comprising:

13. 1 kinds of wearable devices, is characterized in that, comprising:

14. wearable devices according to claim 13, is characterized in that, also comprise:

Command reception module, for receive when authentication server user terminal send authentication request time, receive described authentication server send image capture instruction.

15. wearable devices according to claim 13, is characterized in that, described image capture module is specifically for once carrying authentication scene shown by user terminal in interior ambient image every Preset Time collection.

16. 1 kinds of authentication servers, is characterized in that, comprising:

17. servers according to claim 16, is characterized in that, also comprise:

Memory module, the incidence relation of the device identification of the described wearable device that user ID and wearable device for storing user terminal transmission send;

Search sending module, for receive when described authentication server described user terminal send authentication request time, described authentication request carries described user ID, search the device identification be associated with described user ID, the wearable device corresponding to described device identification sends image capture instruction.

18. servers according to claim 16, is characterized in that, described image authentication module comprises:

Image matching unit, for adopting default mating the authentication scene in described ambient image with reference to image;

Checking determining unit, for when described reference image is consistent with described authentication scene matching, determines that described authentication scene is verified.

19. servers according to claim 18, is characterized in that, described image matching unit comprises:

Acquisition of information subelement, for carrying out information extraction process to described ambient image, obtains the authentication information entrained by authentication scene in described ambient image;

Information matches subelement, for adopting default mating described authentication information with reference to the match information in image;

Coupling determines subelement, for when described match information is mated consistent with described authentication information, determines described consistent with described authentication scene matching with reference to image;

20. 1 kinds of authentication systems, comprise user terminal, it is characterized in that, also comprise the wearable device as described in any one of claim 13-15, and the authentication server as described in any one of claim 16-19.