CN104883367A - Method for auxiliary verification login, system, and application client - Google Patents
Method for auxiliary verification login, system, and application client Download PDFInfo
- Publication number
- CN104883367A CN104883367A CN201510260086.6A CN201510260086A CN104883367A CN 104883367 A CN104883367 A CN 104883367A CN 201510260086 A CN201510260086 A CN 201510260086A CN 104883367 A CN104883367 A CN 104883367A
- Authority
- CN
- China
- Prior art keywords
- user
- applications client
- instant
- good friend
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0869—Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
Abstract
The invention discloses a method for auxiliary verification login, a system, and an application client. A user is verified in an auxiliary manner to log in the application client via on-line friends of an instant communication application account of the user of the application client, subjective discrimination of the on-line friends for the user identity is employed to replace the mechanical discrimination of a computer, and hidden risks of conventional verification login can be effectively avoided. The technical scheme of the method for auxiliary verification login, the system, and the application client can be applicable to common user auxiliary verification login of the application client, and especially more applicable to the application clients with high security requirement, such as the application clients related to information and property safety, e.g. a bank system or a payment system etc.
Description
Technical field
The present invention relates to internet security technical field, particularly relate to method, system and applications client that a kind of aided verification logs in.
Background technology
Along with the development of Internet technology, the demand of internet security improves day by day.Current internet security technology mainly uses based on digital and alphabetical password as user rs authentication login method, but this type of traditional verification method is often decoded by third party's illegal program thus endangered the information security of user in our daily life.Comparatively emerging advanced method for verifying login also comprises at present: based on the method for verifying login of particular device, based on the method for verifying login identified, based on third-party method for verifying login.
Based on the method for verifying login of particular device, the identity of information to user mainly provided based on the particular device such as smart card or electron key is verified.The shortcoming of this type of method for verifying login is, this type of particular device carries inconvenience and easily loses.If this type of particular device suffers hack and copied, the information security of user will suffer great threat.
Based on the method for verifying login identified, mainly based on picture, the multimedia messagess such as audio frequency, as the method for verifying login of voucher, carry out by user the voucher whether multimedia messages that recognition system provides meet user preset.Such as, it is the particular picture arranged in certain sequence that user sets its condition be verified, when user uses this system, system can provide a series of pictures, the picture selecting user oneself to preset from this series of pictures by user, and being arranged in the order oneself preset, checking just can be passed through.The shortcoming of this type of method for verifying login is, the multimedia messages preset, owing to being fixing, is easy to be decrypted; And store a large amount of pictures, the complex informations such as audio frequency are a kind of white elephants for system itself.
Based on third-party method for verifying login, mainly based on the mode that third party's authorized user logs in.The flow process that this type of checking logs in is: verification system requirement user bundlees the third party's instrument (as E-mail address, phone number) of oneself in this system, and it is that user can provide third party's instrument to return to the information of user that checking logs in the condition passed through.The shortcoming of this type of method for verifying login is, this verification mode, indeed through third party's instrument, carries out self-authentication, and when third party's instrument of user is lost stolen, the information security of user just receives threat.
In sum, the shortcoming of prior art is: traditional user rs authentication login method, is often decoded by third party's illegal program thus endangers the information security of user.And existing emerging checking login mode, when certain validation instrument is lost or be stolen, or illegal program is stolen, and decodes, and when copying the information of this type of instrument, the information security of user is still difficult to be protected.
Summary of the invention
The invention provides method, system and applications client that a kind of aided verification logs in, safer aided verification can be provided when user logs in, strengthen the information security of user.
For achieving the above object, technical scheme of the present invention is specifically achieved in that
The method that aided verification logs in, comprising:
The account the account and this user being associated in the instant messaging account that instant communication server is set up that the server of applications client is set up the user of applications client is bound;
The server of instant communication server mandate applications client passes through the interface accessing instant communication server of instant communication server;
The server of applications client reads the online buddy list info of the instant messaging account of the user of described applications client and is presented in applications client from instant communication server, characteristic information is sent to online good friend by the user of applications client, and online good friend is verified immediately by the identity of instant communication client to the user of applications client;
The server of applications client receives the result from instant communication client, and judges whether to allow the user of applications client to log according to the result.
Namely instant messaging described in the present invention can be obtained the interactive application of its service for checking credentials by interface, comprise the social activity application with These characteristics, the such as social activity such as QQ, micro-letter, microblogging, Facebook application, also can comprise and do not possess basic chat feature and be specifically designed to the application that the service for checking credentials is provided, also comprise the conventional Conventional communication terminal with the service for checking credentials, such as mobile phone, phone etc.Described applications client contains the applications client of various ways, it can be a kind of client of website, also can be the client etc. of bank or payment system, be preferably the exigent applications client of safety certification in the present invention, client of such as bank, payment system etc., in addition, described applications client also can be a kind of instant communication client.Mandate described in the present invention to be docked with the application programming interfaces of instant communication server by the server of applications client to realize, authorize can refer to unidirectional, as only allowed the server access instant communication server of applications client; Also can refer to two-way, as accessed mutually between the server of applications client and instant communication server, concrete condition needs to determine according to the agreement of arranging between instant communication server and the server of applications client sometimes.The account of the user of described applications client and this user associate in the instant messaging account that instant communication server is set up the account that the account of the user binding applications client and this user set up in instant communication server and produce corresponding relation, specifically the server of applications client can match data for setting up mandate relation between the server of applications client and instant communication server by the account of the user of described applications client from the server of applications client, the authority of the account that the server of applications client is set up in instant communication server by the user that these data can also obtain applications client or resource.These data can be can by the token etc. of the interface identifier of instant communication server identification, the secret key of interface and user.Described characteristic information generally refers to and can be identified by the online good friend of the instant messaging account of user and the instant messages of true identity for the user that verifies applications client, refers to as follows especially: instant photo, instant video, real-time phonetic, instant signature and immediately talk secretly.According to the result, the server of applications client judges that the general instant checking grade preset with the user of applications client that adopts is as criterion, also can adopt the criterion etc. of system mandatory provision.The transmission of described characteristic information can be carry out indirect communication by instant communication server, also directly can not carry out point-to-point transmission etc. by between applications client and instant communication client by instant communication server.
The advantage that the present invention has is the present invention is log in applications client by the online good friend's aided verification user in the instant messaging application account of the user of applications client, make use of the subjective discrimination of online good friend to user identity to go to replace the mechanization of computer to distinguish, effectively prevent the potential safety hazard that conventional authentication logs in.Technical scheme provided by the invention, the user's aided verification that not only may be used for some common applications client logs in, particularly be more applicable for the applications client that some are higher to security requirement, as banking system or payment system etc. are related to the applications client of information and property safety.
Further be set in the present invention:
Characteristic information is sent to instant communication server by the user of applications client, and instant communication server distributes described characteristic information to the instant communication client of the online good friend participating in checking and represented described online good friend is verified immediately by the identity of instant communication client to the user of applications client by described instant communication client.
It is distribute to by instant communication server the online good friend participating in checking again after first characteristic information being sent to instant communication server that the present invention arranges the advantage had further, can improve the fail safe of characteristic information transmission.
The present invention is further set to:
The online good friend that the pre-configured specific participation of applications client is verified immediately, and immediately verify that the user of permission applications client logs in by this online good friend, wherein applications client is the client of bank or payment system.
In above-mentioned, " the online good friend that specific participation is verified immediately " arranges the group being specifically designed to instant checking in applications client, good friend that is that some got close to by user or that be usually used in immediately verifying is added to group, then in group, send the characteristic information of user, allow online good friend in group according to the instant authentication of users of characteristic information; Also can be carry out instant authentication of users by the online good friend that system Random assignment is current; Can also be the online good friend selecting for immediately verifying voluntarily by user.
It is the fail safe that above-mentioned setting can improve aided verification further and logs in that the present invention arranges the advantage had further.
The present invention is further set to:
The pre-configured instant checking grade of applications client, comprising: regulation participates in online good friend's quantity of checking, or/and regulation is by online good friend's quantity of checking, or/and specify the binding hours of online good friend instant proof procedure.
Usually, the online good friend's quantity participating in checking is more, and accuracy of its checking is then higher, and the state being in the state of leaving to get rid of wherein some online good friend or being in None-identified user's characteristic information can also specify the online good friend's quantity by checking.The binding hours of the instant proof procedure of online good friend can reinforcing security further.
The present invention is further set to:
Described characteristic information is that the online good friend of the instant messaging account of the user that can be employed client identifies and for the instant messages of authentication of users true identity, the described instant communication client that is immediately verified as provides the option allowing and do not allow the user rs authentication of applications client to log in online good friend, online good friend judges the rear option selecting to allow or do not allow the user rs authentication of applications client to log according to the identity of characteristic information to the user of applications client, the result of online good friend is sent to the server of applications client by instant communication client, wherein characteristic information is instant characteristic information, the corresponding collecting device being provided with instant characteristic information in applications client.
Above-mentioned characteristic information can be instant photo, instant video, real-time phonetic, instant signature and instant cipher etc. as previously mentioned, also can be the event, mark etc. that characteristic information that both sides arrange such as only has two of them to know, refer to instant characteristic information wherein especially, the collection of this instant characteristic information needs to have come by some hardware devices, such as instant photo needs camera device, and real-time phonetic needs microphone apparatus etc.The information such as sound, action, appearance of the user of these hardware device acquisition applications clients by its datumization, the instant communication client of the online good friend information after have received these datumizations is just by image, sound etc. that its instantiated becomes to be identified by online good friend.In addition, instant communication client correspondingly on each option can arrange the Option code that can be employed the server identification of client when providing the option allowed and do not allow the user rs authentication of applications client to log in online good friend.Online good friend is after have selected the option allowed or do not allow the user rs authentication of applications client to log in, and the option flag code corresponding with selected option is sent by instant communication client, and is received by the server of applications client.In above-mentioned a series of data transmitting procedure in, as the result, the data such as characteristic information are all generally transmitted by the form of packet, transmitting terminal cryptographic algorithm is encrypted needing the data of transmission, receiving terminal is then by corresponding decipherment algorithm decrypted data packet, there is the algorithm of multiple encryption and decryption now, as AES(Advanced Encryption Standard, Advanced Encryption Standard) algorithm or Elgamal algorithm etc., by above-mentioned algorithm, transmission is encrypted and decrypted to packet, can prevent lawless person from intercepting data in transmission and pretending to be, thus raising fail safe.
The system that a kind of aided verification of the present invention logs in, comprises the server of instant communication server, instant communication client and applications client and applications client;
Instant communication server is for authorizing the server of applications client by the interface accessing instant communication server of instant communication server, and the account the account and this user being associated in the instant messaging account that instant communication server is set up setting up the user of applications client is bound;
Instant communication client is used for the identity of online good friend to the user of applications client and immediately verifies;
Applications client for representing the online buddy list info of the instant messaging account of the user of the applications client read from instant communication server, for generate user input characteristic information;
The server of applications client is bound for the account the account and this user being associated in the instant messaging account that instant communication server is set up setting up the user of applications client, for reading the online buddy list info of the instant messaging account of described user from instant communication server, for receiving the result from instant communication client, and judge whether to allow user to log according to the result.
The advantage that the present invention has logs in applications client by the online good friend's aided verification user in the instant messaging application account of the user of applications client, make use of the subjective discrimination of online good friend to user identity to go to replace the mechanization of computer to distinguish, effectively prevent the potential safety hazard that conventional authentication logs in.Technical scheme provided by the invention, the user's aided verification that not only may be used for some common applications client logs in, particularly be more applicable for the applications client that some are higher to security requirement, as banking system or payment system etc. are related to the applications client of information and property safety.
The present invention is further set to:
Described applications client is used for the online good friend that pre-configured specific participation is verified immediately, also be provided with the equipment of acquisition characteristics information in this applications client, the online good friend that described instant communication client is verified immediately for specific participation allows the user of applications client to log in; Described instant communication client also allows and the option that do not allow the user rs authentication of applications client to log in, for the result of online good friend being sent to the server of applications client for providing to online good friend; Applications client also comprises for pre-configured online good friend's quantity that regulation participates in checking, or/and regulation is by online good friend's quantity of checking, or/and specify the instant checking grade of the binding hours of online good friend instant proof procedure.
Applications client of the present invention, comprises online buddy list info and represents module, characteristic information input module, and account sets up module and instant messaging account binding module;
Online buddy list info represents module for representing the online buddy list info of the instant messaging account of the described user read from instant communication server;
Characteristic information input module is for generating the characteristic information of user's input;
Account sets up module for setting up the account of the user of applications client;
Instant messaging account binding module is used for the account of the user of applications client and this user to associate in the instant messaging account that instant communication server is set up to bind.
The advantage that the present invention has is the applications client with above-mentioned module and effect thereof, can help to realize aided verification and log in, therefore have higher fail safe.
The present invention is further set to:
Also comprise instant checking grade module;
Instant checking grade module, for pre-configured instant checking grade, comprise: regulation participates in online good friend's quantity of checking, or/and regulation by checking online good friend's quantity, or/and the binding hours of regulation online good friend instant proof procedure, for the online good friend that pre-configured specific participation is verified immediately, and immediately verify that the user of permission applications client logs in by this online good friend.
Above-mentioned complex art solution provided by the invention, the aided verification that not only may be used for some common applications client logs in, particularly be more applicable for the applications client that some are higher to security requirement, as banking system or payment system etc. are related to the applications client of information security and property safety.
Accompanying drawing explanation
Fig. 1 is the flow chart of the method that aided verification of the present invention logs in;
Fig. 2 is the flow chart of the method that the aided verification of the embodiment of the present invention logs in;
The flow chart that Fig. 3 launches further for step 104 shown in Fig. 1 and Fig. 2 of the present invention;
Fig. 4 is the structure chart of aided verification login system of the present invention;
Fig. 5 is the structure chart of applications client of the present invention;
Fig. 6 is the structure chart of the applications client of the embodiment of the present invention.
Embodiment
For making object of the present invention, technical scheme and advantage clearly understand, to develop simultaneously embodiment referring to accompanying drawing, the present invention is described in more detail.
The embodiment of the method that aided verification of the present invention logs in is as shown in the figure:
Comprise:
Step 101, the account the account and this user being associated in the instant messaging account that instant communication server is set up that the server of applications client is set up the user of applications client is bound;
Step 103, the server of instant communication server mandate applications client passes through the interface accessing instant communication server of instant communication server;
Step 104, the server of applications client reads the online buddy list info of the instant messaging account of the user of described applications client and is presented in applications client from instant communication server, characteristic information is sent to online good friend by the user of applications client, and online good friend is verified immediately by the identity of instant communication client to the user of applications client;
Step 105, the server of applications client receives the result from instant communication client, and judges whether to allow the user of applications client to log according to the result.
In step 101 and step 103, relate to the agreement of access authorization between the server of applications client and instant communication server, the present embodiment preferably adopts OAuth protocol realization, and described OAUTH agreement is that the mandate of user resources provides a safety, open and easy standard.The mandate being OAUTH with authorization difference in the past can not make application software side touch the account (as user name and password) of user, the i.e. mandate of application software side without the need to using the user name of user and password just can apply for obtaining these user resources, therefore OAUTH is safe.OAUTH is writing a Chinese character in simplified form of Open Authorization.
The effect produced is: after namely the user of applications client to input the username and password of the instant messaging account that this user sets up at instant communication server in applications client from first time, whenever the username and password of this user when applications client carries out aided verification without the need to inputting instant messaging account more just can apply for the mandate obtaining this user proper account resource in instant communication server.
Namely instant messaging described in the embodiment of the present invention can be obtained the interactive application of its service for checking credentials by interface, comprise the social activity application with These characteristics, the such as social activity such as QQ, micro-letter, microblogging, Facebook application, also can comprise and do not possess basic chat feature and be specifically designed to the application that the service for checking credentials is provided, also comprise the conventional Conventional communication terminal with the service for checking credentials, such as mobile phone, phone etc.Described applications client contains the applications client of various ways, it can be a kind of client of website, also can be the client etc. of bank or payment system, adopt the exigent applications client of safety certification in the embodiment of the present invention, client of such as bank, payment system etc., in addition, described applications client also can be a kind of instant communication client.Mandate described in the present invention to be docked with the application programming interfaces of instant communication server by the server of applications client to realize, authorize can refer to unidirectional, as only allowed the server access instant communication server of applications client; Also can refer to two-way, as accessed mutually between the server of applications client and instant communication server, concrete condition needs to determine according to the agreement of arranging between instant communication server and the server of applications client sometimes.The account of the user of described applications client and this user associate in the instant messaging account that instant communication server is set up the account that the account of the user binding applications client and this user set up in instant communication server and produce corresponding relation, specifically the server of applications client can match data for setting up mandate relation between the server of applications client and instant communication server by the account of the user of described applications client from the server of applications client, the authority of the account that the server of applications client is set up in instant communication server by the user that these data can also obtain applications client or resource.These data can be can by the interface identifier of instant communication server identification, access token etc.Described characteristic information generally refers to and can be identified by the online good friend of the instant messaging account of user and the instant messages of true identity for the user that verifies applications client, refers to as follows especially: instant photo, instant video, real-time phonetic, instant signature and immediately talk secretly.According to the result, the server of applications client judges that the general instant checking grade preset with the user of applications client that adopts is as criterion, also can adopt the criterion etc. of system mandatory provision.The transmission of described characteristic information can be carry out indirect communication by instant communication server, also directly can not carry out point-to-point transmission etc. by between applications client and instant communication client by instant communication server.
The present embodiment also includes:
Step 301, characteristic information is sent to instant communication server by the user of applications client;
Step 302, instant communication server distributes described characteristic information to the instant communication client of the online good friend participating in checking;
Step 303, the instant communication client of online good friend represents described characteristic information;
Step 304, online good friend is verified immediately by the identity of instant communication client to the user of applications client.
The present embodiment also includes:
The online good friend that the pre-configured specific participation of applications client is verified immediately, and immediately verify that the user of permission applications client logs in by this online good friend, wherein applications client is the client of bank or payment system.
In above-mentioned, " the online good friend that specific participation is verified immediately " arranges the group being specifically designed to instant checking in applications client, good friend that is that some got close to by user or that be usually used in immediately verifying is added to group, then in group, send the characteristic information of user, allow online good friend in group according to the instant authentication of users of characteristic information; Also can be carry out instant authentication of users by the online good friend that system Random assignment is current; Can also be the online good friend selecting for immediately verifying voluntarily by user.
The present embodiment also includes:
The pre-configured instant checking grade of applications client, comprising: regulation participates in online good friend's quantity of checking, or/and regulation is by online good friend's quantity of checking, or/and specify the binding hours of online good friend instant proof procedure.
Usually, the online good friend's quantity participating in checking is more, and accuracy of its checking is then higher, and the state being in the state of leaving to get rid of wherein some online good friend or being in None-identified user's characteristic information can also specify the online good friend's quantity by checking.The binding hours of the instant proof procedure of online good friend can reinforcing security further.
The present embodiment also includes:
Described characteristic information is that the online good friend of the instant messaging account of the user that can be employed client identifies and for the instant messages of authentication of users true identity, the described instant communication client that is immediately verified as provides the option allowing and do not allow the user rs authentication of applications client to log in online good friend, online good friend judges the rear option selecting to allow or do not allow the user rs authentication of applications client to log according to the identity of characteristic information to the user of applications client, the result of online good friend is sent to the server of applications client by instant communication client, wherein characteristic information is instant characteristic information.
Above-mentioned characteristic information can be instant photo, instant video, real-time phonetic, instant signature and instant cipher etc. as previously mentioned, also can be the event, mark etc. that characteristic information that both sides arrange such as only has two of them to know, refer to instant characteristic information wherein especially, the collection of this instant characteristic information needs to have come by some hardware devices, such as instant photo needs camera device, and real-time phonetic needs microphone apparatus etc.The information such as sound, action, appearance of the user of these hardware device acquisition applications clients by its datumization, the instant communication client of the online good friend information after have received these datumizations is just by image, sound etc. that its instantiated becomes to be identified by online good friend.In addition, instant communication client correspondingly on each option can arrange the Option code that can be employed the server identification of client when providing the option allowed and do not allow the user rs authentication of applications client to log in online good friend.Online good friend is after have selected the option allowed or do not allow the user rs authentication of applications client to log in, and the option flag code corresponding with selected option is sent by instant communication client, and is received by the server of applications client.In above-mentioned a series of data transmitting procedure in, as the result, the data such as characteristic information are all transmitted by the form of packet, transmitting terminal cryptographic algorithm is encrypted needing the data of transmission, receiving terminal is then by corresponding decipherment algorithm decrypted data packet, there is the algorithm of multiple encryption and decryption now, as AES(Advanced Encryption Standard, Advanced Encryption Standard) algorithm or Elgamal algorithm etc., by above-mentioned algorithm, transmission is encrypted and decrypted to packet, can prevent lawless person from intercepting data in transmission and pretending to be, thus raising fail safe.In the present embodiment, the encryption and decryption of data have employed aes algorithm, and the fail safe of aes algorithm is high and simple.
The embodiment of the system that aided verification of the present invention logs in is as shown in the figure: the system 400 that described aided verification logs in comprises the server 404 of instant communication server 401, instant communication client 402 and applications client 403 and applications client;
Instant communication server 401 is for authorizing the interface accessing instant communication server 401 of server 403 by instant communication server 401 of applications client, and the account the account and this user being associated in the instant messaging account that instant communication server 401 is set up setting up the user of applications client 403 is bound;
Instant communication client 402 is verified the identity of the user of applications client 403 immediately for online good friend;
Applications client 403 for representing the online buddy list info of instant messaging account of the user of the applications client 403 read from instant communication server 401, for generating the characteristic information of user's input;
The server 404 of applications client is bound for the account the account and this user being associated in the instant messaging account that instant communication server 401 is set up setting up the user of applications client 403, for reading the online buddy list info of the instant messaging account of described user from instant communication server 401, for receiving the result from instant communication client 402, and judge whether to allow user to log according to the result.
The online good friend that described applications client 403 is verified immediately for pre-configured specific participation, also be provided with the equipment of acquisition characteristics information in this applications client 403, described instant communication client 402 allows the user of applications client 403 to log in for the online good friend that specific participation is verified immediately; Described instant communication client 402 also allows and the option that do not allow the user rs authentication of applications client 403 to log in, for the result of online good friend being sent to the server 404 of applications client for providing to online good friend; Applications client 403 also comprises for pre-configured online good friend's quantity that regulation participates in checking, or/and regulation is by online good friend's quantity of checking, or/and specify the instant checking grade of the binding hours of online good friend instant proof procedure.
The embodiment of applications client of the present invention, as shown in the figure, described applications client 500 comprises online buddy list info and represents module 501, characteristic information input module 502, and account sets up module 503 and instant messaging account binding module 504;
Online buddy list info represents module 501 for representing the online buddy list info of the instant messaging account of the described user read from instant communication server;
Characteristic information input module 502 is for generating the characteristic information of user's input;
Account sets up module 503 for setting up the account of the user of applications client 500;
Instant messaging account binding module 504 to associate in the instant messaging account that instant communication server is set up for account and this user of the user by applications client 500 and binds.
The embodiment of applications client of the present invention also includes:
Instant checking grade module 505, for pre-configured instant checking grade, comprise: regulation participates in online good friend's quantity of checking, or/and regulation by checking online good friend's quantity, or/and the binding hours of regulation online good friend instant proof procedure, for the online good friend that pre-configured specific participation is verified immediately, and immediately verify that the user of permission applications client 500 logs in by this online good friend.
The above, be only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention, and all any amendments done within the spirit and principles in the present invention, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. the method that logs in of aided verification, is characterized in that:
Comprise:
The account the account and this user being associated in the instant messaging account that instant communication server is set up that the server of applications client is set up the user of applications client is bound;
The server of instant communication server mandate applications client passes through the interface accessing instant communication server of instant communication server;
The server of applications client reads the online buddy list info of the instant messaging account of the user of described applications client and is presented in applications client from instant communication server, characteristic information is sent to online good friend by the user of applications client, and online good friend is verified immediately by the identity of instant communication client to the user of applications client;
The server of applications client receives the result from instant communication client, and judges whether to allow the user of applications client to log according to the result.
2. according to the method that the aided verification described in claim 1 logs in, it is characterized in that: characteristic information is sent to instant communication server by the user of applications client, instant communication server distributes described characteristic information to the instant communication client of the online good friend participating in checking and is represented described online good friend is verified immediately by the identity of instant communication client to the user of applications client by described instant communication client.
3. the method that logs in of aided verification according to claim 1 and 2, it is characterized in that the online good friend that the pre-configured specific participation of applications client is verified immediately, and immediately verify that the user of permission applications client logs in by this online good friend, wherein applications client is the client of bank or payment system.
4. the method that logs in of aided verification according to claim 1 and 2, it is characterized in that: the pre-configured instant checking grade of applications client, comprise: regulation participates in online good friend's quantity of checking, or/and regulation is by online good friend's quantity of checking, or/and specify the binding hours of online good friend instant proof procedure.
5. the method that logs in of aided verification according to claim 3, it is characterized in that: the pre-configured instant checking grade of applications client, comprise: regulation participates in online good friend's quantity of checking, or/and regulation is by online good friend's quantity of checking, or/and specify the binding hours of online good friend instant proof procedure.
6. the method that logs in of aided verification according to claim 5, it is characterized in that: described characteristic information is that the online good friend of the instant messaging account of the user that can be employed client identifies and for the instant messages of authentication of users true identity, the described instant communication client that is immediately verified as provides the option allowing and do not allow the user rs authentication of applications client to log in online good friend, online good friend judges the rear option selecting to allow or do not allow the user rs authentication of applications client to log according to the identity of characteristic information to the user of applications client, the result of online good friend is sent to the server of applications client by instant communication client, wherein characteristic information is instant characteristic information, the corresponding collecting device being provided with instant characteristic information in applications client.
7. the system that logs in of aided verification, is characterized in that: the server comprising instant communication server, instant communication client and applications client and applications client;
Instant communication server is for authorizing the server of applications client by the interface accessing instant communication server of instant communication server, and the account the account and this user being associated in the instant messaging account that instant communication server is set up setting up the user of applications client is bound;
Instant communication client is used for the identity of online good friend to the user of applications client and immediately verifies;
Applications client for representing the online buddy list info of the instant messaging account of the user of the applications client read from instant communication server, for generate user input characteristic information;
The server of applications client is bound for the account the account and this user being associated in the instant messaging account that instant communication server is set up setting up the user of applications client, for reading the online buddy list info of the instant messaging account of described user from instant communication server, for receiving the result from instant communication client, and judge whether to allow user to log according to the result.
8., according to the system that the aided verification described in claim 7 logs in, it is characterized in that:
Described applications client is used for the online good friend that pre-configured specific participation is verified immediately, also be provided with the equipment of acquisition characteristics information in this applications client, the online good friend that described instant communication client is verified immediately for specific participation allows the user of applications client to log in; Described instant communication client also allows and the option that do not allow the user rs authentication of applications client to log in, for the result of online good friend being sent to the server of applications client for providing to online good friend; Applications client also comprises for pre-configured online good friend's quantity that regulation participates in checking, or/and regulation is by online good friend's quantity of checking, or/and specify the instant checking grade of the binding hours of online good friend instant proof procedure.
9. an applications client, is characterized in that: comprise online buddy list info and represent module, characteristic information input module, and account sets up module and instant messaging account binding module;
Online buddy list info represents module for representing the online buddy list info of the instant messaging account of the described user read from instant communication server;
Characteristic information input module is for generating the characteristic information of user's input;
Account sets up module for setting up the account of the user of applications client;
Instant messaging account binding module is used for the account of the user of applications client and this user to associate in the instant messaging account that instant communication server is set up to bind.
10. according to the applications client described in claim 9, it is characterized in that: also comprise instant checking grade module;
Instant checking grade module, for pre-configured instant checking grade, comprise: regulation participates in online good friend's quantity of checking, or/and regulation by checking online good friend's quantity, or/and the binding hours of regulation online good friend instant proof procedure, for the online good friend that pre-configured specific participation is verified immediately, and immediately verify that the user of permission applications client logs in by this online good friend.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510260086.6A CN104883367B (en) | 2015-05-20 | 2015-05-20 | A kind of method, system and applications client that auxiliary verification logs in |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510260086.6A CN104883367B (en) | 2015-05-20 | 2015-05-20 | A kind of method, system and applications client that auxiliary verification logs in |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104883367A true CN104883367A (en) | 2015-09-02 |
| CN104883367B CN104883367B (en) | 2018-10-30 |
Family
ID=53950701
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510260086.6A Active CN104883367B (en) | 2015-05-20 | 2015-05-20 | A kind of method, system and applications client that auxiliary verification logs in |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104883367B (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105516133A (en) * | 2015-12-08 | 2016-04-20 | 腾讯科技(深圳)有限公司 | User identity verification method, server and client |
| CN106330872A (en) * | 2016-08-16 | 2017-01-11 | 广州比特软件科技有限公司 | Rapid qualification authentication method and system based on voucher |
| CN106534041A (en) * | 2015-09-09 | 2017-03-22 | 腾讯科技(深圳)有限公司 | Verification method, verification platform and client |
| CN106559387A (en) * | 2015-09-28 | 2017-04-05 | 腾讯科技(深圳)有限公司 | A kind of auth method and device |
| CN106941475A (en) * | 2016-01-04 | 2017-07-11 | 阿里巴巴集团控股有限公司 | A kind of authentication method and device based on trusting relationship |
| WO2018121739A1 (en) * | 2016-12-30 | 2018-07-05 | 北京奇虎科技有限公司 | Method and device for transmitting stream data |
| CN108600220A (en) * | 2018-04-24 | 2018-09-28 | 上海掌门科技有限公司 | The method and apparatus given for change for log-on message |
| CN109885995A (en) * | 2018-12-29 | 2019-06-14 | 弦子科技(北京)有限公司 | A kind of digital identity confirmation method, device and electronic equipment |
| CN110177042A (en) * | 2019-06-18 | 2019-08-27 | 深圳市靠谱网络科技有限公司 | A kind of auth method based on social relations and device |
| CN110213210A (en) * | 2018-05-22 | 2019-09-06 | 腾讯科技(深圳)有限公司 | A kind of network operation requesting method, server and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101047503A (en) * | 2006-03-30 | 2007-10-03 | 腾讯科技(深圳)有限公司 | Method and system for fetching cipher |
| CN102739708A (en) * | 2011-04-07 | 2012-10-17 | 腾讯科技(深圳)有限公司 | System and method for accessing third party application based on cloud platform |
| CN102821085A (en) * | 2011-11-23 | 2012-12-12 | 腾讯科技(深圳)有限公司 | Third party authorization login method, open platform and system |
| CN104283862A (en) * | 2013-07-10 | 2015-01-14 | 深圳市腾讯计算机系统有限公司 | Method, device and system for retrieving account |
-
2015
- 2015-05-20 CN CN201510260086.6A patent/CN104883367B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101047503A (en) * | 2006-03-30 | 2007-10-03 | 腾讯科技(深圳)有限公司 | Method and system for fetching cipher |
| CN102739708A (en) * | 2011-04-07 | 2012-10-17 | 腾讯科技(深圳)有限公司 | System and method for accessing third party application based on cloud platform |
| CN102821085A (en) * | 2011-11-23 | 2012-12-12 | 腾讯科技(深圳)有限公司 | Third party authorization login method, open platform and system |
| CN104283862A (en) * | 2013-07-10 | 2015-01-14 | 深圳市腾讯计算机系统有限公司 | Method, device and system for retrieving account |
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106534041A (en) * | 2015-09-09 | 2017-03-22 | 腾讯科技(深圳)有限公司 | Verification method, verification platform and client |
| CN106534041B (en) * | 2015-09-09 | 2020-08-07 | 腾讯科技(深圳)有限公司 | Verification method, verification platform and client |
| CN106559387A (en) * | 2015-09-28 | 2017-04-05 | 腾讯科技(深圳)有限公司 | A kind of auth method and device |
| US10728033B2 (en) | 2015-09-28 | 2020-07-28 | Tencent Technology (Shenzhen) Company Limited | Identity authentication method, apparatus, and storage medium |
| CN105516133B (en) * | 2015-12-08 | 2019-12-13 | 腾讯科技(深圳)有限公司 | User identity verification method, server and client |
| CN105516133A (en) * | 2015-12-08 | 2016-04-20 | 腾讯科技(深圳)有限公司 | User identity verification method, server and client |
| CN106941475A (en) * | 2016-01-04 | 2017-07-11 | 阿里巴巴集团控股有限公司 | A kind of authentication method and device based on trusting relationship |
| CN106330872A (en) * | 2016-08-16 | 2017-01-11 | 广州比特软件科技有限公司 | Rapid qualification authentication method and system based on voucher |
| WO2018121739A1 (en) * | 2016-12-30 | 2018-07-05 | 北京奇虎科技有限公司 | Method and device for transmitting stream data |
| CN108600220A (en) * | 2018-04-24 | 2018-09-28 | 上海掌门科技有限公司 | The method and apparatus given for change for log-on message |
| CN110213210A (en) * | 2018-05-22 | 2019-09-06 | 腾讯科技(深圳)有限公司 | A kind of network operation requesting method, server and storage medium |
| CN110213210B (en) * | 2018-05-22 | 2021-08-31 | 腾讯科技(深圳)有限公司 | Network operation request method, server and storage medium |
| CN109885995A (en) * | 2018-12-29 | 2019-06-14 | 弦子科技(北京)有限公司 | A kind of digital identity confirmation method, device and electronic equipment |
| CN110177042A (en) * | 2019-06-18 | 2019-08-27 | 深圳市靠谱网络科技有限公司 | A kind of auth method based on social relations and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104883367B (en) | 2018-10-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11323272B2 (en) | Electronic identification verification methods and systems with storage of certification records to a side chain | |
| US10652018B2 (en) | Methods and apparatus for providing attestation of information using a centralized or distributed ledger | |
| CN104883367A (en) | Method for auxiliary verification login, system, and application client | |
| CN105429760B (en) | A kind of auth method and system of the digital certificate based on TEE | |
| WO2018145127A1 (en) | Electronic identification verification methods and systems with storage of certification records to a side chain | |
| CN104735065B (en) | A kind of data processing method, electronic equipment and server | |
| US9100171B1 (en) | Computer-implemented forum for enabling secure exchange of information | |
| KR20150077446A (en) | Method for signing electronic documents with an analog-digital signature with additional verification | |
| CN104662870A (en) | Data security management system | |
| AU2013272184A1 (en) | Enhanced 2CHK authentication security with query transactions | |
| TWI632798B (en) | Server, mobile terminal, and network real-name authentication system and method | |
| CN105790962B (en) | Method, device and system for acquiring conference document | |
| JP2014527787A (en) | Communication method for authentication using fingerprint information | |
| WO2017206524A1 (en) | Electronic device control method, terminal and control system | |
| CN102404337A (en) | Data encryption method and device | |
| JP2015194879A (en) | Authentication system, method, and provision device | |
| CN108833431A (en) | A kind of method, apparatus, equipment and the storage medium of password resetting | |
| CN103368831B (en) | A kind of anonymous instant communicating system identified based on frequent visitor | |
| CN106533677B (en) | A kind of user login method, user terminal and server | |
| CN109740319B (en) | Digital identity verification method and server | |
| TW201328280A (en) | Instant communication identity authentication system and method | |
| KR102191111B1 (en) | System and method of providing anonymity message service using block chain | |
| US20230188345A1 (en) | System and methods for interactive document sharing and authentication with privacy guarantee | |
| KR102053993B1 (en) | Method for Authenticating by using Certificate | |
| Vaziripour et al. | Social Authentication for {End-to-End} Encryption |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |