CN104883367B - A kind of method, system and applications client that auxiliary verification logs in - Google Patents

A kind of method, system and applications client that auxiliary verification logs in Download PDF

Info

Publication number
CN104883367B
CN104883367B CN201510260086.6A CN201510260086A CN104883367B CN 104883367 B CN104883367 B CN 104883367B CN 201510260086 A CN201510260086 A CN 201510260086A CN 104883367 B CN104883367 B CN 104883367B
Authority
CN
China
Prior art keywords
user
applications client
instant
client
good friend
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510260086.6A
Other languages
Chinese (zh)
Other versions
CN104883367A (en
Inventor
吴振祎
靳战鹏
张晓红
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to CN201510260086.6A priority Critical patent/CN104883367B/en
Publication of CN104883367A publication Critical patent/CN104883367A/en
Application granted granted Critical
Publication of CN104883367B publication Critical patent/CN104883367B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The invention discloses a kind of method, system and applications clients that auxiliary verification logs in, verification user is assisted to log in applications client by the online good friend in the instant messaging application account of the user of applications client, online good friend is utilized the subjective discrimination of user identity is gone to distinguish instead of the mechanization of computer, effectively prevents the security risk that conventional authentication logs in.Technical solution provided by the invention, the user that can be not only used for some common applications clients assists verification to log in, it is especially more applicable for some and the applications client of information and property safety is related to the higher applications client of security requirement, such as banking system or payment system.

Description

A kind of method, system and applications client that auxiliary verification logs in
Technical field
The present invention relates to internet security technical field, more particularly to a kind of method that auxiliary verification logs in, system and Applications client.
Background technology
With the development of Internet technology, the demand of internet security increasingly improves.Current internet security technology master If using the password based on number and letter as user's checking login method, but such traditional verification method is at us It is often decoded by third party's illegal program to endanger the information security of user in daily life.More emerging at present is relatively high Grade method for verifying login further include:Method for verifying login based on particular device, the method for verifying login based on identification, is based on Third-party method for verifying login.
Method for verifying login based on particular device is mainly based upon the offer of the particular devices such as smart card or electron key Information the identity of user is verified.The shortcomings that such method for verifying login is, such particular device it is inconvenient to carry and It is easily lost.If such particular device is by hack and is replicated, the information security of user suffers from greatly It threatens.
Method for verifying login based on identification is mainly based upon picture, verification of the multimedia messages such as audio as voucher Whether login method is met the voucher of user preset by user come the multimedia messages that identifying system provides.For example, user sets Its condition being verified is the particular picture arranged in certain sequence, and when user uses the system, system can provide a system Row picture, the picture for selecting from this series of picture user oneself to preset by user, and it is arranged in oneself preset sequence, Verification can just pass through.The shortcomings that such method for verifying login is, preset multimedia messages due to being fixed, be easy to by It decodes;And a large amount of picture is stored, the complex informations such as audio are a kind of white elephants for system itself.
Based on third-party method for verifying login, it is mainly based upon the mode of third party authorized user login.Such verification The flow of login is:Verification system requirements user bundlees the third party's tool of oneself(Such as E-mail address, phone number)It is in this System, it is that user is capable of providing the information that third party's tool returns to user that verification, which logs in the condition passed through,.Such verification login side The shortcomings that method, is that this verification mode carries out self-authentication indeed through third party's tool, and as the third party of user When tool loses stolen, the information security of user just receives threat.
In conclusion the shortcomings that prior art, is:Traditional user's checking login method, often by third party's illegal program It decodes to endanger the information security of user.And existing emerging verification login mode, when certain validation tool lose or by When robber or illegal program is stolen, and when decoding, and replicating the information of such tool, the information security of user is still difficult to obtain It ensures.
Invention content
The present invention provides a kind of method, system and applications clients that auxiliary verification logs in, and can be carried when user logs in It is verified for safer auxiliary, strengthens the information security of user.
In order to achieve the above objectives, technical scheme of the present invention is specifically realized in:
A method of auxiliary verification logs in, including:
The account of the user of applications client is established on the server of applications client and the account and the user exist The instant messaging account association binding that instant communication server is established;
The server of instant communication server mandate applications client is accessed instant by the interface of instant communication server Communication server;
The server of applications client reads the Instant Messenger of the user of the applications client from instant communication server It interrogates the online buddy list info of account and is presented in applications client, characteristic information is sent to by the user of applications client Line good friend, online good friend verify the identity of the user of applications client by instant communication client immediately;
The server of applications client receives the verification result from instant communication client, and is judged according to verification result The user of applications client whether is allowed to log in.
Heretofore described instant messaging can be obtained the interactive application of its service for checking credentials by interface, including The social networking applications such as the social networking application with These characteristics, such as QQ, wechat, microblogging, Facebook can also include not having base This chat feature and dedicated for providing the application of the service for checking credentials, further includes that the common Conventional communication with the service for checking credentials is whole End, such as mobile phone, phone etc..The applications client contains the applications client of diversified forms, can be a kind of net The client stood can also be the client etc. of bank or payment system, preferably be required very safety certification in the present invention High applications client, for example, bank, payment system client etc., in addition, the applications client can also be one kind Instant communication client.Heretofore described mandate is by the server of applications client and answering for instant communication server It is realized with routine interface docking, mandate can refer to unidirectional, such as only allow the server access Instant Messenger of applications client Inquiry server;May also mean that it is two-way, as applications client server and instant communication server between can visit mutually It asks, concrete condition needs to be determined according to the agreement arranged between instant communication server and the server of applications client sometimes It is fixed.The account of the user of the applications client is associated with the instant messaging account that the user establishes in instant communication server It binds the account of the user of applications client and account that the user establishes in instant communication server generates correspondence, Specifically the server of applications client can be by the account of the user of the applications client from the service of applications client The data that mandate relationship is established between server and instant communication server for applications client are matched in device, using visitor The server at family end can also obtain the account that the user of applications client establishes in instant communication server by the data Permission or resource.The data can be the interface identifier that can be identified by instant communication server, interface secret key and user Token etc..The characteristic information generally refers to be identified by the online good friend of the instant messaging account of user and is used to test The instant messages for demonstrate,proving the true identity of the user of applications client, particularly relate to as follows:Instant photo, instant video, instant language Sound, immediately signature and immediately cipher etc..The server of applications client is generally used with application client according to verification result judgement The preset instant verification grade of user at end is criterion, can also use the criterion etc. of system mandatory provision. The transmission of the characteristic information can carry out indirect communication by instant communication server, can not also be taken by instant messaging It is engaged in device but directly by carrying out point-to-point transmission etc. between applications client and instant communication client.
Present invention has the advantage that the present invention is in the instant messaging application account by the user of applications client Online good friend assists verification user to log in applications client, and online good friend is utilized and goes to replace meter to the subjective discrimination of user identity The mechanization of calculation machine distinguishes, effectively prevents the security risk that conventional authentication logs in.Technical solution provided by the invention, not only may be used It assists verification to log in for the user of some common applications clients, is especially more applicable for some to security requirement Higher applications client, such as banking system or payment system are related to the applications client of information and property safety.
It is further set as in the present invention:
Characteristic information is sent to instant communication server by the user of applications client, and instant communication server is tested to participation The instant communication client of the online good friend of card distributes the characteristic information and is showed by the instant communication client so that institute Online good friend is stated to verify the identity of the user of applications client immediately by instant communication client.
The further setting of the present invention, which this have the advantage that, is first sent to characteristic information after instant communication server again by i.e. When communication server distribute to participate in verification online good friend, can improve characteristic information transmission safety.
The present invention is further set as:
Applications client is pre-configured with the specific online good friend for participating in verifying immediately, and verification is permitted immediately by the online good friend Perhaps the user of applications client logs in, and wherein applications client is the client of bank or payment system.
" the specific online good friend for participating in verifying immediately " can be arranged dedicated for i.e. in applications client among the above When the group that verifies, by user by some get close to or the good friend that is usually used in verifying immediately be added to group, then to group In send user characteristic information, allow the online good friend in group to verify user immediately according to characteristic information;Can also be by being System is randomly assigned current online good friend to verify user immediately;It can also be and voluntarily selected by user for verifying immediately Line good friend.
Further setting this have the advantage that above-mentioned setting can further increase the safety that auxiliary verification logs in the present invention Property.
The present invention is further set as:
Applications client is pre-configured with verification grade immediately, including:Regulation participates in online good friend's quantity of verification, or Regulation passes through the online good friend's quantity verified, or the limitation time of the online instant verification process of good friend of regulation.
In general, the online good friend's quantity for participating in verification is more, the accuracy of verification is then higher, in order to exclude some of which Online good friend is in leave state or the state in None- identified user's characteristic information may further specify that and be existed by verification Line good friend's quantity.The limitation time of the instant verification process of online good friend can further strengthen safety.
The present invention is further set as:
The characteristic information is that can be identified to be used in combination by the online good friend of the instant messaging account of the user of applications client In verification user real identification instant messages, it is described immediately be verified as instant communication client to online good friend provide allow and The option for not allowing the user's checking of applications client to log in, online good friend is according to characteristic information to the user's of applications client The option that selection allows or the user's checking of applications client is not allowed to log in after identity judges, instant communication client will The verification result of online good friend is sent to the server of applications client, and wherein characteristic information is instant characteristic information, accordingly It is equipped with the collecting device of instant characteristic information in applications client.
Above-mentioned characteristic information can be as previously described instant photo, instant video, real-time phonetic, immediately signature and i.e. Shi Miyu etc., can also be both sides agreement characteristic information such as only two of them know event, label, particularly relate to The acquisition needs of instant characteristic information therein, the instant characteristic information are completed by some hardware devices, such as are shone immediately Piece needs camera device, real-time phonetic to need microphone apparatus etc..The user's of these hardware device acquisition applications clients Information such as sound, action, appearance and by its digitization, line good friend instant communication client after having received these digitizations Information just by its instantiated at image, the sound etc. that can be identified by online good friend.In addition, instant communication client to Line good friend can be correspondingly arranged when providing the option for allowing and not allowing the user's checking of applications client to log on each option The Option code that can be identified by the server of applications client.Online good friend is selecting to allow or do not allow application client After the option that the user's checking at end logs in, option flag code corresponding with selected option is sent by instant communication client, and by The server of applications client receives.In the transmission process of volume of data among the above, such as verification result, characteristic information number According to all generally by the transmission of the form of data packet, transmitting terminal is encrypted with the data that Encryption Algorithm transmits needs, is connect Receiving end is then by corresponding decipherment algorithm decrypted data packet, and there are many algorithm of encryption and decryption, such as AES now(Advanced Encryption Standard, Advanced Encryption Standard)Algorithm or Elgamal algorithms etc. carry out data packet by above-mentioned algorithm Encryption and decrypted transport, can prevent criminal from the middle data of transmission are intercepted and being pretended to be, to improve safety.
A kind of system that auxiliary verification logs in of the present invention, including instant communication server, instant communication client and application The server of client and applications client;
Instant communication server is used to authorize the server of applications client to be accessed by the interface of instant communication server Instant communication server establishes the account of the user of applications client and builds the account in instant communication server with the user Vertical instant messaging account association binding;
Instant communication client verifies the identity of the user of applications client for online good friend immediately;
Applications client is used to show the instant messaging of the user of the applications client read from instant communication server The online buddy list info of account, for generating characteristic information input by user;
The server of applications client is used to establish the account of the user of applications client and the account and the user exists The instant messaging account association binding that instant communication server is established, for reading the user's from instant communication server The online buddy list info of instant messaging account, for receiving the verification result from instant communication client, and according to testing Card result determines whether that user logs in.
Present invention has the advantage that the online good friend in the instant messaging application account for passing through the user of applications client Auxiliary verification user logs in applications client, and online good friend is utilized and goes to replace the machine of computer to the subjective discrimination of user identity Toolization distinguishes, effectively prevents the security risk that conventional authentication logs in.Technical solution provided by the invention, can be not only used for one The user of a little common applications clients assists verification to log in, and is especially more applicable for some and higher to security requirement answers It is related to the applications client of information and property safety with client, such as banking system or payment system.
The present invention is further set as:
The applications client be used to be pre-configured with it is specific participate in the online good friend that verifies immediately, the applications client also Equipment equipped with acquisition characteristics information, the instant communication client allow to answer for the specific online good friend for participating in verifying immediately It is logged in the user of client;The instant communication client, which is additionally operable to provide to online good friend, to be allowed and does not allow application client The option that the user's checking at end logs in, the server for the verification result of online good friend to be sent to applications client;Using It includes online good friend's quantity that regulation participates in verification that client, which is additionally operable to be pre-configured with, or/with regulation pass through the online good of verification Friendly quantity, or provide the instant verification grade of the limitation time of the online instant verification process of good friend.
The applications client of the present invention, including online buddy list info display module, characteristic information input module, account Establish module and instant messaging account binding module;
Online buddy list info display module be used to show the user read from instant communication server i.e. When communicate account online buddy list info;
Characteristic information input module is for generating characteristic information input by user;
Account establishes the account of user of the module for establishing applications client;
Instant messaging account binding module is used for the account of the user of applications client and the user in instant communication garment The instant messaging account that device is established of being engaged in is associated with binding.
Present invention has the advantage that the applications client with above-mentioned module and its effect, can help to realize that auxiliary is tested Card logs in, therefore has higher safety.
The present invention is further set as:
It further include instant verification grade module;
Immediately verification grade module verifies grade immediately for being pre-configured with, including:Regulation participates in the online good friend of verification Quantity, or regulation pass through the online good friend's quantity verified, or the limitation time of the online instant verification process of good friend of regulation, Allow applications client for being pre-configured with the specific online good friend for participating in verifying immediately, and being verified immediately by the online good friend User logs in.
Above-mentioned complex art solution provided by the invention, can be not only used for the auxiliary of some common applications clients It helps verification to log in, is especially more applicable for some to the higher applications client of security requirement, such as banking system or branch The system of paying etc. is related to the applications client of information security and property safety.
Description of the drawings
Fig. 1 is the flow chart for the method that present invention auxiliary verification logs in;
Fig. 2 is the flow chart for the method that the auxiliary verification of the embodiment of the present invention logs in;
Fig. 3 is the flow chart that step 104 is further spread out shown in Fig. 1 of the present invention and Fig. 2;
Fig. 4 is the structure chart that present invention auxiliary verifies login system;
Fig. 5 is the structure chart of applications client of the present invention;
Fig. 6 is the structure chart of the applications client of the embodiment of the present invention.
Specific implementation mode
To make the objectives, technical solutions, and advantages of the present invention more comprehensible, develop simultaneously embodiment referring to the drawings, right The present invention is further described.
The present invention assists the embodiment for verifying the method logged in as shown in the figure:
Including:
Step 101, established on the server of applications client the account of the user of applications client and by the account with The instant messaging account that the user establishes in instant communication server is associated with binding;
Step 103, the interface that the server of instant communication server mandate applications client passes through instant communication server Access instant communication server;
Step 104, the server of applications client reads the user of the applications client from instant communication server Instant messaging account online buddy list info and be presented in applications client, the user of applications client is by characteristic information It is sent to online good friend, online good friend tests the identity of the user of applications client by instant communication client immediately Card;
Step 105, the server of applications client receives the verification result from instant communication client, and according to verification As a result determine whether that the user of applications client logs in.
In step 101 and step 103, it has been related to visiting between the server of applications client and instant communication server Ask that the agreement of mandate, the present embodiment preferably use OAuth protocol realizations, the OAUTH agreements to be provided for the mandate of user resources One safety, open and easy standard.It is a difference in that the mandate of OAUTH will not make to answer with previous authorization The account of user is touched with software side(Such as user name and password), i.e. user name of the application software side without using user It can apply for obtaining the mandate of the user resources with password, therefore OAUTH is safe.OAUTH is Open Authorization's writes a Chinese character in simplified form.
The effect of generation is:I.e. the user of applications client inputs the user in Instant Messenger from for the first time in applications client After the username and password for the instant messaging account that inquiry server is established, tested whenever the user carries out auxiliary in applications client The username and password of input instant messaging account is no longer needed to when card can apply for obtaining the user in instant communication server The mandate of middle proper account resource.
The interactive mode that instant messaging described in the embodiment of the present invention can be obtained its service for checking credentials by interface is answered With including the social networking applications such as the social networking application with These characteristics, such as QQ, wechat, microblogging, Facebook, can also include Do not have basic chat feature and further includes the common tradition with the service for checking credentials dedicated for providing the application of the service for checking credentials Communicating terminal, such as mobile phone, phone etc..The applications client contains the applications client of diversified forms, Ke Yishi A kind of client of website can also be the client etc. of bank or payment system, using to safety in the embodiment of the present invention The very high applications client of authentication requesting, for example, bank, payment system client etc., in addition, the applications client It can be a kind of instant communication client.Heretofore described mandate is the server and instant messaging by applications client What the application programming interfaces docking of server was realized, mandate can refer to unidirectional, such as only allow the server of applications client Access instant communication server;May also mean that it is two-way, as applications client server and instant communication server between Can access mutually, concrete condition need sometimes according between instant communication server and the server of applications client about Fixed agreement determines.The Instant Messenger that the account of the user of the applications client is established with the user in instant communication server The account of the user of applications client is bound in news account association and the account that the user establishes in instant communication server is produced Raw correspondence, the specifically server of applications client can be objective from application by the account of the user of the applications client It is matched in the server at family end and establishes mandate relationship between server and instant communication server for applications client The server of data, applications client can also obtain the user of applications client in instant communication server by the data The permission or resource of the account of foundation.The data can be the interface identifier that can be identified by instant communication server, access order Board etc..The characteristic information generally refers to be identified and be used for verify by the online good friend of the instant messaging account of user to answer With the instant messages of the true identity of the user of client, particularly relate to as follows:Instant photo, instant video, real-time phonetic, i.e. When signature and immediately cipher etc..The server of applications client judges generally to use the use with applications client according to verification result The preset instant verification grade in family is criterion, can also use the criterion etc. of system mandatory provision.The spy The transmission of reference breath can carry out indirect communication by instant communication server, can not also be by instant communication server It is directly by carrying out point-to-point transmission etc. between applications client and instant communication client.
The present embodiment further includes having:
Step 301, characteristic information is sent to instant communication server by the user of applications client;
Step 302, instant communication server distributes the spy to the instant communication client for the online good friend for participating in verification Reference ceases;
Step 303, the instant communication client of online good friend shows the characteristic information;
Step 304, online good friend tests the identity of the user of applications client by instant communication client immediately Card.
The present embodiment further includes having:
Applications client is pre-configured with the specific online good friend for participating in verifying immediately, and verification is permitted immediately by the online good friend Perhaps the user of applications client logs in, and wherein applications client is the client of bank or payment system.
" the specific online good friend for participating in verifying immediately " can be arranged dedicated for i.e. in applications client among the above When the group that verifies, by user by some get close to or the good friend that is usually used in verifying immediately be added to group, then to group In send user characteristic information, allow the online good friend in group to verify user immediately according to characteristic information;Can also be by being System is randomly assigned current online good friend to verify user immediately;It can also be and voluntarily selected by user for verifying immediately Line good friend.
The present embodiment further includes having:
Applications client is pre-configured with verification grade immediately, including:Regulation participates in online good friend's quantity of verification, or Regulation passes through the online good friend's quantity verified, or the limitation time of the online instant verification process of good friend of regulation.
In general, the online good friend's quantity for participating in verification is more, the accuracy of verification is then higher, in order to exclude some of which Online good friend is in leave state or the state in None- identified user's characteristic information may further specify that and be existed by verification Line good friend's quantity.The limitation time of the instant verification process of online good friend can further strengthen safety.
The present embodiment further includes having:
The characteristic information is that can be identified to be used in combination by the online good friend of the instant messaging account of the user of applications client In verification user real identification instant messages, it is described immediately be verified as instant communication client to online good friend provide allow and The option for not allowing the user's checking of applications client to log in, online good friend is according to characteristic information to the user's of applications client The option that selection allows or the user's checking of applications client is not allowed to log in after identity judges, instant communication client will The verification result of online good friend is sent to the server of applications client, and wherein characteristic information is instant characteristic information.
Above-mentioned characteristic information can be as previously described instant photo, instant video, real-time phonetic, immediately signature and i.e. Shi Miyu etc., can also be both sides agreement characteristic information such as only two of them know event, label, particularly relate to The acquisition needs of instant characteristic information therein, the instant characteristic information are completed by some hardware devices, such as are shone immediately Piece needs camera device, real-time phonetic to need microphone apparatus etc..The user's of these hardware device acquisition applications clients Information such as sound, action, appearance and by its digitization, line good friend instant communication client after having received these digitizations Information just by its instantiated at image, the sound etc. that can be identified by online good friend.In addition, instant communication client to Line good friend can be correspondingly arranged when providing the option for allowing and not allowing the user's checking of applications client to log on each option The Option code that can be identified by the server of applications client.Online good friend is selecting to allow or do not allow application client After the option that the user's checking at end logs in, option flag code corresponding with selected option is sent by instant communication client, and by The server of applications client receives.In the transmission process of volume of data among the above, such as verification result, characteristic information number According to being transmitted by the form of data packet, transmitting terminal is encrypted with the data that Encryption Algorithm transmits needs, receiving terminal Then by corresponding decipherment algorithm decrypted data packet, there are many algorithm of encryption and decryption, such as AES now(Advanced Encryption Standard, Advanced Encryption Standard)Algorithm or Elgamal algorithms etc. carry out data packet by above-mentioned algorithm Encryption and decrypted transport, can prevent criminal from the middle data of transmission are intercepted and being pretended to be, to improve safety.This The encryption and decryption of data use aes algorithm in embodiment, aes algorithm it is safe and simple and practicable.
The present invention assists the embodiment for verifying the system logged in as shown in the figure:The system 400 that the auxiliary verification logs in is wrapped Include the server of instant communication server 401, instant communication client 402 and applications client 403 and applications client 404;
Instant communication server 401 is for authorizing the server 403 of applications client to pass through instant communication server 401 Interface accesses instant communication server 401, establishes the account of the user of the applications client 403 and account and the user is in sight When communication server 401 establish instant messaging account association binding;
Instant communication client 402 verifies the identity of the user of applications client 403 for online good friend immediately;
Applications client 403 is used to show the user's of the applications client 403 read from instant communication server 401 The online buddy list info of instant messaging account, for generating characteristic information input by user;
The server 404 of applications client be used for establish applications client 403 user account and by the account with should The instant messaging account that user establishes in instant communication server 401 is associated with binding, for being read from instant communication server 401 The online buddy list info for taking the instant messaging account of the user, for receiving testing from instant communication client 402 Card according to verification result as a result, and determine whether that user logs in.
The applications client 403 is used to be pre-configured with the specific online good friend for participating in verifying immediately, in the application client The equipment that end 403 is additionally provided with acquisition characteristics information, the instant communication client 402 are verified online immediately for specific participation Good friend allows the user of applications client 403 to log in;The instant communication client 402 is additionally operable to provide permission to online good friend The option for not allowing the user's checking of applications client 403 to log in, for the verification result of online good friend to be sent to application The server 404 of client;Applications client 403 is additionally operable to be pre-configured with online good friend's quantity that verification is participated in including regulation, Or provide to pass through online good friend's quantity of verification, or/instant with the limitation time of the online instant verification process of good friend of regulation Verify grade.
The embodiment of applications client of the present invention, as shown, the applications client 500 is believed including online buddy list Display module 501, characteristic information input module 502 are ceased, account establishes module 503 and instant messaging account binding module 504;
Online buddy list info display module 501 is for showing the user's read from instant communication server The online buddy list info of instant messaging account;
Characteristic information input module 502 is for generating characteristic information input by user;
Account establishes the account of user of the module 503 for establishing applications client 500;
Instant messaging account binding module 504 is used for the account of the user of applications client 500 with the user instant The instant messaging account association binding that communication server is established.
The embodiment of applications client of the present invention further includes having:
Immediately verification grade module 505 verifies grade immediately for being pre-configured with, including:Regulation participates in the online of verification Good friend's quantity, or regulation pass through online good friend's quantity of verification, or the limitation of the online instant verification process of good friend of regulation Time, for being pre-configured with the specific online good friend for participating in verifying immediately, and verification allows using visitor immediately by the online good friend The user at family end 500 logs in.
The foregoing is only a preferred embodiment of the present invention, is not intended to limit the scope of the present invention, it is all Any modification, equivalent substitution, improvement and etc. done within the spirit and principles in the present invention should be included in the protection model of the present invention Within enclosing.

Claims (10)

1. a kind of method that auxiliary verification logs in, it is characterised in that:
Including:
Established on the server of applications client the account of the user of applications client and by the account with the user instant The instant messaging account association binding that communication server is established;
The server of instant communication server mandate applications client accesses instant messaging by the interface of instant communication server Server;
The server of applications client reads the instant messaging account of the user of the applications client from instant communication server The online buddy list info at family is simultaneously presented in applications client, and it is good online that characteristic information is sent to by the user of applications client Friend, online good friend verify the identity of the user of applications client by instant communication client immediately, the feature letter Breath be refer to by the online good friend of the instant messaging account of user identify and be used to verify applications client user it is true The instant messages of identity;
The server of applications client receives the verification result from instant communication client, and is judged whether according to verification result The user of applications client is allowed to log in.
2. the method logged according to the auxiliary verification described in claim 1, it is characterised in that:The user of applications client will be special Reference breath is sent to instant communication server, instant communication client of the instant communication server to the online good friend for participating in verification It distributes the characteristic information and is showed by the instant communication client so that the online good friend passes through instant communication client The identity of the user of applications client is verified immediately.
3. the method that auxiliary verification according to claim 1 or 2 logs in, it is characterised in that applications client is pre-configured with spy The online good friend verified immediately is participated in calmly, and being verified immediately by the online good friend allows the user of applications client to log in, wherein Applications client is the client of bank or payment system.
4. the method that auxiliary verification according to claim 1 or 2 logs in, it is characterised in that:Applications client is pre-configured with Immediately verification grade, including:Regulation participates in online good friend's quantity of verification, or regulation passes through the online good friend's quantity verified, Or the limitation time of the online instant verification process of good friend of regulation.
5. the method that auxiliary verification according to claim 3 logs in, it is characterised in that:Applications client is pre-configured with immediately Grade is verified, including:Regulation participates in online good friend's quantity of verification, or provides online good friend's quantity by verifying, or/ With the limitation time for providing the online instant verification process of good friend.
6. the method that auxiliary verification according to claim 5 logs in, it is characterised in that:The characteristic information is that can be answered The instant messages of user real identification, institute are identified and are used to verify with the online good friend of the instant messaging account of the user of client It states and is verified as instant communication client immediately to online good friend offer permission and the user's checking of applications client is not allowed to log in Option, after line good friend judges the identity of the user of applications client according to characteristic information selection allow or do not allow The verification result of online good friend is sent to using visitor by the option that the user's checking of applications client logs in, instant communication client The server at family end, wherein characteristic information are instant characteristic information, are equipped with instant characteristic information in applications client accordingly Collecting device.
7. a kind of system that auxiliary verification logs in, it is characterised in that:Including instant communication server, instant communication client and answer With the server of client and applications client;
It is instant that instant communication server is used to authorize the server of applications client to be accessed by the interface of instant communication server Communication server establishes the account of the user of applications client and establishes the account and the user in instant communication server The association binding of instant messaging account;
Instant communication client verifies the identity of the user of applications client for online good friend immediately;
Applications client is used to show the instant messaging account of the user of the applications client read from instant communication server Online buddy list info, for generating characteristic information input by user, the characteristic information be refer to by user i.e. When communication account online good friend identify and be used to verify applications client user true identity instant messages;
The server of applications client be used for establish applications client user account and by the account with the user instant The instant messaging account association binding that communication server is established, for reading the instant of the user from instant communication server The online buddy list info for communicating account is tied for receiving the verification result from instant communication client, and according to verification Fruit determines whether that user logs in.
8. the system logged according to the auxiliary verification described in claim 7, it is characterised in that:
The applications client is used to be pre-configured with the specific online good friend for participating in verifying immediately, is additionally provided in the applications client The equipment of acquisition characteristics information, the instant communication client allow for the specific online good friend for participating in verifying immediately using visitor The user at family end logs in;The instant communication client, which is additionally operable to provide to online good friend, to be allowed and does not allow applications client The option that user's checking logs in, the server for the verification result of online good friend to be sent to applications client;Application client End is additionally operable to be pre-configured with online good friend's quantity that verification is participated in including regulation, or regulation passes through the online good friend's number verified Amount, or provide the instant verification grade of the limitation time of the online instant verification process of good friend.
9. a kind of applications client, it is characterised in that:Including online buddy list info display module, characteristic information inputs mould Block, account establish module and instant messaging account binding module;
Online buddy list info display module is used to show the user of the applications client read from instant communication server Instant messaging account online buddy list info;
Characteristic information input module for generating characteristic information input by user, the characteristic information be refer to by user i.e. When communication account online good friend identify and be used to verify applications client user true identity instant messages;
Account establishes the account of user of the module for establishing applications client;
Instant messaging account binding module is used for the account of the user of applications client and the user in instant communication server The instant messaging account association binding of foundation.
10. according to the applications client described in claim 9, it is characterised in that:It further include instant verification grade module;
Immediately verification grade module verifies grade immediately for being pre-configured with, including:Regulation participates in online good friend's number of verification Amount, or regulation are used by online good friend's quantity of verification, or the limitation time of the online instant verification process of good friend of regulation In be pre-configured with it is specific participate in the online good friend that verifies immediately, and verify the use of permission applications client immediately by the online good friend Family logs in.
CN201510260086.6A 2015-05-20 2015-05-20 A kind of method, system and applications client that auxiliary verification logs in Active CN104883367B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510260086.6A CN104883367B (en) 2015-05-20 2015-05-20 A kind of method, system and applications client that auxiliary verification logs in

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510260086.6A CN104883367B (en) 2015-05-20 2015-05-20 A kind of method, system and applications client that auxiliary verification logs in

Publications (2)

Publication Number Publication Date
CN104883367A CN104883367A (en) 2015-09-02
CN104883367B true CN104883367B (en) 2018-10-30

Family

ID=53950701

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510260086.6A Active CN104883367B (en) 2015-05-20 2015-05-20 A kind of method, system and applications client that auxiliary verification logs in

Country Status (1)

Country Link
CN (1) CN104883367B (en)

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106534041B (en) * 2015-09-09 2020-08-07 腾讯科技(深圳)有限公司 Verification method, verification platform and client
CN106559387B (en) 2015-09-28 2021-01-15 腾讯科技(深圳)有限公司 Identity verification method and device
CN105516133B (en) * 2015-12-08 2019-12-13 腾讯科技(深圳)有限公司 User identity verification method, server and client
CN106941475B (en) * 2016-01-04 2020-09-25 阿里巴巴集团控股有限公司 Authentication method and device based on trust relationship
CN106330872A (en) * 2016-08-16 2017-01-11 广州比特软件科技有限公司 Rapid qualification authentication method and system based on voucher
WO2018121739A1 (en) * 2016-12-30 2018-07-05 北京奇虎科技有限公司 Method and device for transmitting stream data
CN108600220A (en) * 2018-04-24 2018-09-28 上海掌门科技有限公司 The method and apparatus given for change for log-on message
CN110213210B (en) * 2018-05-22 2021-08-31 腾讯科技(深圳)有限公司 Network operation request method, server and storage medium
CN109885995A (en) * 2018-12-29 2019-06-14 弦子科技(北京)有限公司 A kind of digital identity confirmation method, device and electronic equipment
CN110177042A (en) * 2019-06-18 2019-08-27 深圳市靠谱网络科技有限公司 A kind of auth method based on social relations and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101047503A (en) * 2006-03-30 2007-10-03 腾讯科技(深圳)有限公司 Method and system for fetching cipher
CN102739708A (en) * 2011-04-07 2012-10-17 腾讯科技(深圳)有限公司 System and method for accessing third party application based on cloud platform
CN102821085A (en) * 2011-11-23 2012-12-12 腾讯科技(深圳)有限公司 Third party authorization login method, open platform and system
CN104283862A (en) * 2013-07-10 2015-01-14 深圳市腾讯计算机系统有限公司 Method, device and system for retrieving account

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101047503A (en) * 2006-03-30 2007-10-03 腾讯科技(深圳)有限公司 Method and system for fetching cipher
CN102739708A (en) * 2011-04-07 2012-10-17 腾讯科技(深圳)有限公司 System and method for accessing third party application based on cloud platform
CN102821085A (en) * 2011-11-23 2012-12-12 腾讯科技(深圳)有限公司 Third party authorization login method, open platform and system
CN104283862A (en) * 2013-07-10 2015-01-14 深圳市腾讯计算机系统有限公司 Method, device and system for retrieving account

Also Published As

Publication number Publication date
CN104883367A (en) 2015-09-02

Similar Documents

Publication Publication Date Title
CN104883367B (en) A kind of method, system and applications client that auxiliary verification logs in
US9990489B2 (en) System and method for peer to peer mobile contextual authentication
CN105376216B (en) A kind of remote access method, proxy server and client
US10136315B2 (en) Password-less authentication system, method and device
CN105429760B (en) A kind of auth method and system of the digital certificate based on TEE
CN106487511B (en) Identity authentication method and device
CN109120597B (en) Identity verification and login method and device and computer equipment
US9722984B2 (en) Proximity-based authentication
CN103107996B (en) Digital certificate download online method and system, digital certificate are provided platform
RU2610419C2 (en) Method, server and system for authentication of person
US20110060694A1 (en) Distributed secure anonymous conferencing
CN107251035A (en) Account recovers agreement
CN107689944A (en) Identity identifying method, device and system
CN101662458A (en) Authentication method
CN105656850B (en) Data processing method, related device and system
CN112989426B (en) Authorization authentication method and device, and resource access token acquisition method
WO2017206524A1 (en) Electronic device control method, terminal and control system
CN109792433A (en) Method and apparatus for equipment application to be tied to network service
CN106998316A (en) A kind of method for authenticating, applications client and gateway device
CN109784024A (en) One kind authenticating FIDO method and system based on the polyfactorial quick online identity of more authenticators
JP2015194879A (en) Authentication system, method, and provision device
CN111949958A (en) Authorization authentication method and device in Oauth protocol
CN114553441B (en) Electronic contract signing method and system
CN106533677A (en) User login method, user terminal and server
CN108667801A (en) A kind of Internet of Things access identity safety certifying method and system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
EXSB Decision made by sipo to initiate substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant