CN105072080B - A kind of Information Authentication method, apparatus and system - Google Patents

A kind of Information Authentication method, apparatus and system Download PDF

Info

Publication number
CN105072080B
CN105072080B CN201510379708.7A CN201510379708A CN105072080B CN 105072080 B CN105072080 B CN 105072080B CN 201510379708 A CN201510379708 A CN 201510379708A CN 105072080 B CN105072080 B CN 105072080B
Authority
CN
China
Prior art keywords
short message
account
identifying code
sent
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510379708.7A
Other languages
Chinese (zh)
Other versions
CN105072080A (en
Inventor
吴洪声
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangzhou cipher technology Co., Ltd.
Original Assignee
Guangzhou Cipher Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangzhou Cipher Technology Co Ltd filed Critical Guangzhou Cipher Technology Co Ltd
Priority to CN201510379708.7A priority Critical patent/CN105072080B/en
Publication of CN105072080A publication Critical patent/CN105072080A/en
Application granted granted Critical
Publication of CN105072080B publication Critical patent/CN105072080B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)

Abstract

The invention discloses a kind of Information Authentication method, this method performs in the terminal, and mobile terminal can be connected by network with application server, short message server, including step:Under loopback mode, identifying code is generated;The operation of passback is confirmed in response to user, calls short message interface to send the verification short message comprising identifying code and application account to short message server, verification short message is sent to application server by short message server;Receive application account input by user and identifying code, in response to user login operation, identifying code is sent with application account to application server, so that application server is verified, the corresponding identifying code of application account that wherein application server is sent by comparing short message server, identifying code corresponding with the application account that mobile terminal is sent, whether the two is consistent, to complete to verify;And the verification result sent by application server is received, logged in if verification is consistent and apply account.

Description

A kind of Information Authentication method, apparatus and system
Technical field
The present invention relates to field of communication technology, especially a kind of Information Authentication method, apparatus and system.
Background technology
In today that computer technology and network technology continue to develop, people substantially can whenever and wherever possible by network come Enjoy all kinds of businessmans, the service that service provider provides.In network activity, how to ensure the safety of network environment is to need emphasis to examine The content of worry.The substantial amounts of technology for being used to ensure network security has been developed at present, each network security technology is due to it Respective advantage and disadvantage are used by different users.Wherein, based on the safe practice of identifying code due to it is simple, be easily achieved and It is widely used.
The verification mode of identifying code can more efficiently prevent the malice in malice decryption, brush ticket, forum from posting, The functions such as continuous login attempt can be initiated in a manner of effectively preventing from carrying out Brute Force to some particular registered user.
A kind of existing identifying code push mode is in user's progress user's registration, transmission message, downloading data, is propped up Pay and wait under verification scene, display identifying code fills in frame, and then mobile terminal receives a short message for carrying identifying code, Yong Hu Fill in input validation code in frame.However, when the network environment residing for user is bad or is not received since third party filters During short message, user can only try to identifying code short message by repeatedly refreshing identifying code, or, with user to itself Secret protection and awareness of safety greatly enhance, and many users can open the function of similar white list on mobile phone, and filtering is not communication The short message that number in record is sent, and authentication server will send substantial amounts of short message daily, easily indicated and intercept by security software, In this case, even if sending identifying code short message again, user is still difficult to obtain its particular content, so that identifying code Lose the effect of corresponding.
Therefore, it is necessary to a kind of intelligence, effective Information Authentication mode, user experience is improved.
The content of the invention
For this reason, the present invention provides a kind of Information Authentication method, apparatus and system, solved or at least alleviated above with trying hard to Existing at least one problem.
According to an aspect of the invention, there is provided a kind of Information Authentication method, this method perform in the terminal, move Dynamic terminal can be connected by network with application server, short message server, including step:Under loopback mode, generation verification Code;In response to user confirm passback operation, call short message interface send comprising identifying code and application account verification short message to Short message server, verification short message is sent to application server by short message server;Receive application account input by user and verification Code, in response to user login operation, sends identifying code with application account to application server, so that application server is tested The corresponding identifying code of application account that card, wherein application server are sent by comparing short message server, sends with mobile terminal The corresponding identifying code of application account, whether the two consistent, to complete to verify;And receive the verification sent by application server Described account is applied as a result, being logged in if verification is consistent.
Alternatively, in Information Authentication method according to the present invention, step is further included:Input interface is monitored, when detecting When the number that user carries out verification operation reaches predetermined threshold, into loopback mode.
Alternatively, in Information Authentication method according to the present invention, identifying code is the numeral generated at random.
According to another aspect of the present invention, there is provided a kind of Information Authentication device, which arranges on mobile terminals, moves Dynamic terminal can be connected by network with application server, short message server, and device includes:Information generating unit, suitable for into After entering loopback mode, identifying code is generated;Connection management unit, is adapted to respond to user's operation, sends comprising identifying code and using account Number verification short message to short message server, verification short message is sent to application server by short message server, and respond user's Register, application service is sent to by application account and identifying code that the user received inputs on mobile terminal display screen Device, so that application server is verified, wherein application server is corresponded to by comparing the application account that short message server is sent Identifying code, the corresponding identifying code of application account sent with mobile terminal, whether the two consistent, to complete to verify, and and also Suitable for receiving the verification result sent by application server, logged in if verification is consistent and described apply account.
Alternatively, in Information Authentication device according to the present invention, monitoring control unit is further included, it is defeated suitable for monitoring in real time Incoming interface, when the number for detecting user's progress verification operation reaches predetermined threshold, into loopback mode.
Alternatively, in Information Authentication device according to the present invention, identifying code is the numeral generated at random.
According to another aspect of the present invention, there is provided a kind of Information Authentication method, this method perform in the application server, Application server can be connected by network with mobile terminal, short message server, including step:Reception is sent by short message server Verification short message, wherein verification short message includes and apply account and identifying code, verify that short message is that mobile terminal is issued in loopback mode Give short message server;Storage is using account and identifying code as preset data;Reception is stepped on by mobile terminal in response to user Identifying code that record operation is sent and using account, by it compared with preset data, if than being verified if more consistent, sends out Verification result is sent to apply account to mobile terminal so that mobile terminal login is described.
Alternatively, in Information Authentication method according to the present invention, in storage using account and identifying code as preset number According to the step of before, further include step:Receive the communication account sent in the lump with verification short message by short message server;Judge communication Whether account and application account consistent, if consistent storage using account and identifying code as preset data to verify;If no It is consistent then return to authentication failed.
Alternatively, in Information Authentication method according to the present invention, receive the identifying code sent by mobile terminal and answer With account, by it compared with preset data the step of includes:According to application, account inquiry user whether there is;And if deposit It is whether consistent using the corresponding identifying code of account then comparing, if identifying code unanimously if be verified.
Alternatively, in Information Authentication method according to the present invention, identifying code is the numeral generated at random.
According to another aspect of the present invention, there is provided a kind of Information Authentication device, the device are arranged in application server On, application server can be connected by network with mobile terminal, short message server, and device includes:Connection management unit, is suitable for The verification short message sent by short message server is received, wherein verification short message includes and applies account and identifying code, verification short message is to move Dynamic terminal is sent to short message server under loopback mode, and receives and sent by mobile terminal in response to user login operation Identifying code and application account, send verification result to mobile terminal, described apply account so that mobile terminal logs in;Information Storage unit, suitable for storing the application account sent by short message server and identifying code as preset data;And Information Authentication Unit, suitable for the identifying code that will be sent by mobile terminal and application account compared with preset data, if than if more consistent It is verified.
Alternatively, in Information Authentication device according to the present invention, connection management unit is further adapted for receiving by short message service The communication account that device is sent in the lump with verification short message;Information Authentication unit is further adapted for receiving testing by short message server transmission After demonstrate,proving short message and communication account, judge to communicate account and whether application account is consistent, if consistent send an indication to information storage Unit, by its storage using account and identifying code as preset data.
Alternatively, in Information Authentication device according to the present invention, Information Authentication unit further includes:Information query unit, Suitable for whether there is according to application account inquiry user;And judging unit, suitable for after inquiry user exists, comparing using account Whether number corresponding identifying code consistent, if identifying code unanimously if be verified.
Alternatively, in Information Authentication device according to the present invention, identifying code is the numeral generated at random.
According to another aspect of the present invention, there is provided a kind of information authentication system, system include:With as described above The mobile terminal of Information Authentication device;And the application server with Information Authentication device as described above.
Information Authentication scheme according to the present invention, different from sending identifying code again, but uses the side of identifying code passback Formula so that Information Authentication is more efficient, and ensure that the safety of user information.
Brief description of the drawings
In order to realize above-mentioned and related purpose, some illustrative sides are described herein in conjunction with following description and attached drawing Face, these aspects indicate the various modes that can put into practice principles disclosed herein, and all aspects and its equivalent aspect It is intended to fall under in the range of theme claimed.Read following detailed description in conjunction with the accompanying drawings, the disclosure it is above-mentioned And other purposes, feature and advantage will be apparent.Throughout the disclosure, identical reference numeral generally refers to identical Component or element.
Fig. 1 shows the construction block diagram of the mobile terminal 100 of an illustrative embodiments according to the present invention;
Fig. 2 shows the schematic diagram of information authentication system 200 according to an embodiment of the invention;
Fig. 3 shows the flow chart of Information Authentication method 300 according to an embodiment of the invention;
Fig. 4 shows the schematic diagram of Information Authentication device 400 according to an embodiment of the invention;
Fig. 5 shows the flow chart of Information Authentication method 500 in accordance with another embodiment of the present invention;
Fig. 6 shows the schematic diagram of Information Authentication device 600 in accordance with another embodiment of the present invention;
Fig. 7 A show that user according to an embodiment of the invention confirms the interface schematic diagram returned;And
Fig. 7 B show the interface schematic diagram for being shown on mobile terminal according to an embodiment of the invention and postbacking identifying code.
Embodiment
The exemplary embodiment of the disclosure is more fully described below with reference to accompanying drawings.Although the disclosure is shown in attached drawing Exemplary embodiment, it being understood, however, that may be realized in various forms the disclosure without should be by embodiments set forth here Limited.On the contrary, these embodiments are provided to facilitate a more thoroughly understanding of the present invention, and can be by the scope of the present disclosure Completely it is communicated to those skilled in the art.
Fig. 1 is 100 organigram of mobile terminal according to an embodiment of the invention.With reference to Fig. 1, mobile terminal 100 include:Memory interface 102, one or more data processor, image processor and/or central processing unit 104, with And peripheral interface 106.Memory interface 102, one or more processors 104 and/or peripheral interface 106 are either discrete member Part, can also be integrated in one or more integrated circuits.In the mobile terminal 100, various elements can pass through one or more Bar communication bus or signal wire couple.Sensor, equipment and subsystem may be coupled to peripheral interface 106, to help reality Existing multiple functions.For example, motion sensor 110, optical sensor 112 and range sensor 114 may be coupled to peripheral interface 106, to facilitate the functions such as orientation, illumination and ranging.Other sensors 116 can equally be connected with peripheral interface 106, such as fixed Position system (such as GPS receiver), temperature sensor, biometric sensor or other sensor devices, it is possible thereby to help reality Apply relevant function.
Camera sub-system 120 and optical sensor 122 can be used for the camera of convenient such as recording photograph and video clipping The realization of function, wherein the camera sub-system and optical sensor for example can be charge coupling device (CCD) or complementary gold Belong to oxide semiconductor (CMOS) optical sensor.It can help to realize by one or more radio communication subsystems 124 Communication function, wherein radio communication subsystem can include radio-frequency transmitter and transmitter and/or light (such as infrared) receiver And transmitter.The particular design and embodiment of radio communication subsystem 124 can depend on mobile terminal 100 is supported one A or multiple communication networks.For example, mobile terminal 100 can include being designed to support GSM network, GPRS network, EDGE nets The communication subsystem 124 of network, Wi-Fi or WiMax network and BlueboothTM networks.Audio subsystem 126 can be with raising one's voice Device 128 and microphone 130 are coupled, to help to implement the function of enabling voice, such as speech recognition, speech reproduction, number Word records and telephony feature.
I/O subsystems 140 can include touch screen controller 142 and/or other one or more input controllers 144. Touch screen controller 142 may be coupled to touch-screen 146.For example, the touch-screen 146 and touch screen controller 142 can be with The contact carried out therewith and movement or pause are detected using any one of a variety of touch-sensing technologies, wherein sensing skill Art includes but is not limited to capacitive character, resistive, infrared and surface acoustic wave technique.Other one or more input controllers 144 May be coupled to other input/control devicess 148, for example, one or more buttons, rocker switch, thumb wheel, infrared port, The pointer device of USB port, and/or stylus etc.One or more of button (not shown)s can include being used to control The up/down button of 130 volume of loudspeaker 128 and/or microphone.
Memory interface 102 can be coupled with memory 150.The memory 150 can be deposited including high random access Reservoir and/or nonvolatile memory, such as one or more disk storage equipments, one or more optical storage apparatus, and/ Or flash memories (such as NAND, NOR).Memory 150 can store an operating system 152, for example, Android, IOS or The operating system of Windows Phone etc.The operating system 152 can include being used to handle basic system services and execution Instruction dependent on the task of hardware.Memory 150 can also be stored using 154.These applications in operation, can be from memory 150 are loaded on processor 104, and are run on the operating system run via processor 104, and utilize operating system And the interface that bottom hardware provides realizes the desired function of various users, such as instant messaging, web page browsing, pictures management. Using can be independently of operating system offer or operating system carries.
According to one embodiment of present invention, there is provided a kind of mobile terminal 100, Ke Yitong with Information Authentication The client application for crossing placement information authentication function realizes the function, which is stored in using in 154.
Fig. 2 shows information authentication system 200 according to an embodiment of the invention.The system 200 includes mobile whole End 100, application server 210 and short message server 220, application server for example can be to be physically located at one or more The remote cloud server in a place, the said equipment are connected with each other by network.
The workflow of the information authentication system 200 is described in detail below.
Under normal circumstances, the process of short message verification code verification is as follows:User is carrying out user's registration, is sending message, download Data, when pay etc. operation, can show in the client application of mobile terminal 100 and fill in frame, user need to fill in from Oneself communication account, under normal circumstances, communication account can be phone numbers, and client software is sent to account is communicated using clothes Business device 210, application server 210 call the server of short message operator, i.e., the short message server 220 in the system is filled out to user The communication account write sends the short message for including identifying code, and after mobile terminal 100 receives said short message, user is in mobile terminal The identifying code in short message is write in 100, and application server 210, application server 210 are sent it to by mobile terminal 100 Compare the identifying code issued and whether the identifying code that mobile terminal 100 is sent back be consistent, pass through verification if consistent.
But influenced by a variety of causes, sometimes user can not receive the short message for carrying identifying code in time, or even In some cases, for example short message is indicated by the security software in mobile terminal and intercepted, and repeats to send short message not under this scene It can solve the problems, such as.Therefore, present invention proposes the scheme that the mode using short message returning carries out Information Authentication.
According to one embodiment of present invention, set when mobile terminal 100 detects that user carries out the number of verification operation When reaching predetermined threshold (for example be carried out continuously 3 requests verification operations and still failed), loopback mode is put into.Returning Under pattern, mobile terminal 100 generates identifying code, according to an embodiment, 6 digits which can be randomly generated Word.Then identifying code can be shown on the display screen of mobile terminal 100, and needs user to be confirmed whether to postback identifying code, As shown in Figure 7 A.User clicks on " confirmation ", and the operation of passback is confirmed in response to user, and mobile terminal 100 calls short message interface hair Sending the verification short message comprising identifying code and application account, according to one embodiment of present invention, verification is short to short message server 220 The content of letter is generated by following form:Using account+identifying code+check code.It should be noted that the present invention is not intended to limit verification The content and/or form of short message, as long as including in verification short message using account and identifying code, subsequently to carry out Information Authentication .
After short message server 220 receives verification short message, by verify short message and postback identifying code mobile terminal it is logical News account is sent to application server 210 in the lump.Application server 210 can judge to communicate first account with verifying answering in short message It is whether consistent with account, stored if consistent using account and identifying code as preset data;Verification is returned if inconsistent to lose Lose.Application server 210 has been given below and has obtained the example code that user postbacks the interface of short message verification code:
Then the display screen of mobile terminal 100 jumps to as shown in Figure 7 B, and account and identifying code are applied in user's input, are rung Should be in the register of user, mobile terminal 100 sends identifying code input by user with application account to application server 210, Complete to verify by application server 210.Specifically verification step is:The user is inquired about according to application account first whether there is, Herein using account include as preset data store using account and the application account sent by mobile terminal 100, And above-mentioned two application account should be consistent.Apply accounts consistent and in the presence of the user when two, it is more above-mentioned Whether two corresponding identifying codes of application accounts consistent, if identifying code unanimously if be verified, send verification result to it is mobile eventually End 100, makes it log in this and applies account.So far, information verification process terminates.
Information Authentication scheme according to the present invention, different from sending identifying code again, but uses the side of identifying code passback Formula so that Information Authentication is more efficient, and can ensure the safety of user information well.
Fig. 3 shows the flow chart of Information Authentication method 300 according to an embodiment of the invention.This method is mobile whole Performed in end 100, mobile terminal 100 can be connected by network with application server 210, short message server 220, and this method begins In step S310, under loopback mode, identifying code is generated.According to one embodiment of present invention, mobile terminal 100 monitors in real time Input interface, when the number for detecting user's progress verification operation reaches predetermined threshold, is put into loopback mode.Wherein verify The numeral that code can be randomly generated.
Then in step s 320, the operation of passback is confirmed in response to user, calls short message interface to send and includes identifying code Verification short message with application account sends the verification short message to application server to short message server 220 by short message server 220 210。
Then in step S330, application account input by user and identifying code are received, in response to user login operation, hair Send identifying code with application account to application server 210, so that application server 210 is verified, wherein application server 210 The corresponding identifying code of application account sent by comparing short message server 220, the application account pair sent with mobile terminal 100 The identifying code answered, whether the two is consistent, to complete to verify.
Then in step S340, the verification result sent by application server 210 is received, being logged in if verification is consistent should Using account.
Fig. 4 shows the schematic diagram of Information Authentication device 400 according to an embodiment of the invention.The device is arranged in shifting In dynamic terminal 100, mobile terminal 100 can be connected by network with application server 210, short message server 220, described device Including:Information generating unit 410 and connection management unit 420.
According to one embodiment of present invention, which further includes monitoring control unit, is connect suitable for real time monitoring input Mouthful, when the number for detecting user's progress verification operation reaches predetermined threshold, into loopback mode.Predetermined threshold can be set 3 requests verification operations are carried out continuously for user still to fail, certainly, the present invention is not limited this.Monitoring control is single The information for entering loopback mode is sent to information generating unit 410 coupled thereto by member.
Information generating unit 410 is suitable for after loopback mode is entered, and generates identifying code.Wherein identifying code can be random life Into numeral.
Connection management unit 420 is adapted to respond to user's operation, send the verification short message comprising identifying code and application account to Short message server 220, verification short message is sent to application server 210 by short message server 220, and responds the login behaviour of user Make, the application account and identifying code that the user received is inputted on 100 display screen of mobile terminal are sent to application server 210, so that application server 210 is verified, wherein application server 210 is by comparing answering for the transmission of short message server 220 With the corresponding identifying code of account, identifying code corresponding with the application account that mobile terminal 100 is sent, whether the two is consistent, has come It is further adapted for receiving the verification result sent by application server into verification, and connection management unit 420, is stepped on if verification is consistent Record and described apply account.
Fig. 5 shows the flow chart of Information Authentication method 500 in accordance with another embodiment of the present invention.This method is being applied Performed in server 210, application server can be connected by network with mobile terminal, short message server, and this method starts from step Rapid S510, receives the verification short message sent by short message server 220, wherein verification short message is contained using account and identifying code, And it is that mobile terminal 100 is sent to short message server 220 under loopback mode, is sent to and answered by short message server to verify short message With server 210.
Then in step S520, store by the obtained application accounts of step S510 and identifying code, as preset data.Root According to one embodiment of the present invention, before step S520, step is further included:Receive short with verifying by short message server 220 Believe the communication account sent in the lump;Judge whether the communication account and application account consistent, if consistent storage using account and Identifying code is as preset data to verify;Authentication failed is returned if inconsistent.
Then in step S530, the identifying code that is sent by mobile terminal 100 is received and using account, by itself and step Preset data in S520 is compared, and if than being verified if more consistent, sends verification result to mobile terminal 100.According to One embodiment of the present of invention, can be completed to verify by following steps.Inquire about whether the user deposits according to using account first In being answered by what mobile terminal was sent in the preset data and the step S530 that include using account in step S520 herein With account, and the two should be consistent by comparison using account.If two application account is consistent and user exists, Whether consistent compare two corresponding identifying codes of application accounts again, if identifying code unanimously if be verified.
Fig. 6 shows the schematic diagram of Information Authentication device 600 in accordance with another embodiment of the present invention.600 cloth of device To put on application server 210, application server 210 can be connected by network with mobile terminal 100, short message server 220, The device 600 includes connection management unit 610, information memory cell 620 and Information Authentication unit 630.
Connection management unit 610 is suitable for receiving the verification short message sent by short message server 220, wherein the verification short message Comprising apply account and identifying code, verification short message be mobile terminal 100 be sent under loopback mode short message server 220, by Short message server is sent to application server 210.According to one embodiment of present invention, connection management unit 610 is further adapted for Receive the communication account sent in the lump with the verification short message by short message server 220.Then receive and sent by mobile terminal 100 Identifying code and application account, send verification result to mobile terminal 100.
Information memory cell 620 is suitable for storing the application account sent by short message server 220 and identifying code as preset Data.
Information Authentication unit 630 is suitable for the identifying code that will be sent by mobile terminal 100 and applies account and preset data It is compared, if than being verified if more consistent.Specifically, Information Authentication unit 630 can include:Information query unit and sentence Disconnected unit.Information query unit is suitable for whether there is according to application account inquiry user, if sending an indication to preset coupling in the presence of if The judging unit connect, whether judging unit is suitable for comparing two corresponding identifying codes of application accounts consistent, if identifying code unanimously if It is verified.
According to one embodiment of present invention, Information Authentication unit 630 is further adapted for being sent out by short message server 220 receiving After the verification short message and communication account sent, judge to communicate account and whether application account is consistent, if unanimously sending an indication to letter Storage unit is ceased, by its storage using account and identifying code as preset data.
It should be appreciated that in order to simplify the disclosure and help to understand one or more of each inventive aspect, it is right above The present invention exemplary embodiment description in, each feature of the invention be grouped together into sometimes single embodiment, figure or In person's descriptions thereof.However, the method for the disclosure should be construed to reflect following intention:I.e. claimed hair The bright feature more features required than being expressly recited in each claim.More precisely, as the following claims As book reflects, inventive aspect is all features less than single embodiment disclosed above.Therefore, it then follows specific real Thus the claims for applying mode are expressly incorporated in the embodiment, wherein each claim is used as this hair in itself Bright separate embodiments.
Those skilled in the art should understand that the module or unit or group of the equipment in example disclosed herein Part can be arranged in equipment as depicted in this embodiment, or alternatively can be positioned at and the equipment in the example In different one or more equipment.Module in aforementioned exemplary can be combined as a module or be segmented into addition multiple Submodule.
Those skilled in the art, which are appreciated that, to carry out adaptively the module in the equipment in embodiment Change and they are arranged in one or more equipment different from the embodiment.Can be the module or list in embodiment Member or component be combined into a module or unit or component, and can be divided into addition multiple submodule or subelement or Sub-component.In addition at least some in such feature and/or process or unit exclude each other, it can use any Combination is disclosed to all features disclosed in this specification (including adjoint claim, summary and attached drawing) and so to appoint Where all processes or unit of method or equipment are combined.Unless expressly stated otherwise, this specification (including adjoint power Profit requires, summary and attached drawing) disclosed in each feature can be by providing the alternative features of identical, equivalent or similar purpose come generation Replace.
C1, the method as described in 7 or 8, wherein receiving the identifying code sent by mobile terminal and using account, by it The step of compared with preset data, includes:According to application, account inquiry user whether there is;And should if comparing in the presence of if It is whether consistent with the corresponding identifying code of account, if identifying code unanimously if be verified.C2, as any one of 7-8 or C1 Method, wherein identifying code are the numeral generated at random.D12, the device as described in D11, wherein, connection management unit is further adapted for connecing Receive the communication account sent in the lump with the verification short message by short message server;Information Authentication unit is further adapted for receiving by short After verification short message and communication account that telecommunications services device is sent, judge to communicate account and whether application account is consistent, if consistent hair Send and be indicated to information memory cell, by its storage using account and identifying code as preset data.D13, such as D11 or D12 institutes The device stated, wherein Information Authentication unit further include:Information query unit, suitable for whether being deposited according to application account inquiry user ;And judging unit, it is whether consistent using the corresponding identifying code of account suitable for after inquiry user exists, comparing, if verification Code is unanimously then verified.D14, the device as any one of D11-13, wherein identifying code are the numeral generated at random.
In addition, it will be appreciated by those of skill in the art that although some embodiments described herein include other embodiments In included some features rather than further feature, but the combination of the feature of different embodiments means in of the invention Within the scope of and form different embodiments.For example, in the following claims, embodiment claimed is appointed One of meaning mode can use in any combination.
In addition, be described as herein can be by the processor of computer system or by performing for some in the embodiment The method or the combination of method element that other devices of the function are implemented.Therefore, have and be used to implement the method or method The processor of the necessary instruction of element forms the device for being used for implementing this method or method element.In addition, device embodiment Element described in this is the example of following device:The device is used to implement as in order to performed by implementing the element of the purpose of the invention Function.
As used in this, unless specifically stated, come using ordinal number " first ", " second ", " the 3rd " etc. Description plain objects are merely representative of the different instances for being related to similar object, and are not intended to imply that the object being so described must Must have the time it is upper, spatially, in terms of sequence or given order in any other manner.
Although according to the embodiment of limited quantity, the invention has been described, benefits from above description, the art It is interior it is clear for the skilled person that in the scope of the present invention thus described, it can be envisaged that other embodiments.Additionally, it should be noted that The language that is used in this specification primarily to readable and teaching purpose and select, rather than in order to explain or limit Determine subject of the present invention and select.Therefore, in the case of without departing from the scope and spirit of the appended claims, for this Many modifications and changes will be apparent from for the those of ordinary skill of technical field.For the scope of the present invention, to this The done disclosure of invention is illustrative and not restrictive, and it is intended that the scope of the present invention be defined by the claims appended hereto.

Claims (15)

1. a kind of Information Authentication method, the method perform in the terminal, the mobile terminal can be by network with answering It is connected with server, short message server, the method includes the steps:
Under loopback mode, identifying code is generated;
In response to user confirm passback operation, call short message interface send comprising identifying code and application account verification short message to Short message server, the verification short message is sent to application server by short message server;
Application account input by user and identifying code are received, in response to user login operation, the identifying code is sent and applies account Number application server is given, so that application server is verified, wherein application server is sent by comparing short message server Using the corresponding identifying code of account, identifying code corresponding with the application account that mobile terminal is sent, whether the two is consistent, to complete Verification;And
The verification result sent by application server is received, is logged in if verification is consistent and described applies account.
2. the method as described in claim 1, further includes step:Monitor input interface, when detect user carry out verification operation Number when reaching predetermined threshold, into loopback mode.
3. method as claimed in claim 1 or 2, wherein, the identifying code is the numeral generated at random.
4. a kind of Information Authentication device, described device is arranged on mobile terminals, and the mobile terminal can be by network with answering It is connected with server, short message server, described device includes:
Information generating unit, suitable for after loopback mode is entered, generating identifying code;
Connection management unit, is adapted to respond to user's operation, sends the verification short message comprising identifying code and application account and is taken to short message Business device, the verification short message is sent to application server by short message server, and responds the register of user, will be received The application account that is inputted on mobile terminal display screen of user and identifying code be sent to application server, so as to application server Verified, the corresponding identifying code of application account that wherein application server is sent by comparing short message server, with movement eventually The corresponding identifying code of application account sent is held, whether the two is consistent, to complete to verify, and
It is further adapted for receiving the verification result sent by application server, is logged in if verification is consistent and described apply account.
5. device as claimed in claim 4, further includes:
Control unit is monitored, suitable for monitoring input interface in real time, when the number for detecting user's progress verification operation reaches predetermined During threshold value, into loopback mode.
6. device as described in claim 4 or 5, wherein the identifying code is the numeral generated at random.
7. a kind of Information Authentication method, the method perform in the application server, the application server can pass through network It is connected with mobile terminal, short message server, the method includes the steps:
The verification short message sent by short message server is received, wherein the verification short message includes and applies account and identifying code, it is described Verify that short message is that mobile terminal is sent to short message server under loopback mode;
The application account and identifying code are stored as preset data;
The identifying code that is sent by mobile terminal in response to user login operation is received and using account, by itself and the preset number According to being compared, if than being verified if more consistent, sending verification result to mobile terminal, for mobile terminal log in it is described should Use account.
8. the method for claim 7, wherein applying the step of account and identifying code are as preset data in the storage Before, step is further included:
Receive the communication account sent in the lump with the verification short message by short message server;
Judge to communicate account and whether application account consistent, if consistent storage apply account and identifying code as preset data with Just verify;Authentication failed is returned if inconsistent.
9. method as claimed in claim 8, wherein described receive by the identifying code of mobile terminal transmission and using account, will The step of it is compared with preset data includes:
It whether there is according to the application account inquiry user;And
It is whether consistent using the corresponding identifying code of account if comparing in the presence of if, if identifying code is unanimously verified.
10. method as claimed in claim 9, wherein the identifying code is the numeral generated at random.
11. a kind of Information Authentication device, described device arranges that the application server can pass through network on the application server It is connected with mobile terminal, short message server, described device includes:
Connection management unit, suitable for receiving the verification short message sent by short message server, wherein the verification short message includes application Account and identifying code, the verification short message is that mobile terminal is sent to short message server under loopback mode, and receive by Identifying code that mobile terminal is sent in response to user login operation and application account, send verification result to mobile terminal, with Account is applied for mobile terminal login is described;
Information memory cell, suitable for storing the application account sent by short message server and identifying code as preset data;And
Information Authentication unit, suitable for the identifying code that will be sent by mobile terminal and using account compared with preset data, If than being verified if more consistent.
12. device as claimed in claim 11, wherein,
The connection management unit is further adapted for receiving the communication account sent in the lump with the verification short message by short message server;
Described information authentication unit is further adapted for after the verification short message sent by short message server and communication account is received, and sentences Whether open close news account and application account are consistent, if unanimously sending an indication to information memory cell, described account is applied by its storage Number and identifying code as preset data.
13. device as claimed in claim 12, wherein described information authentication unit further includes:
Information query unit, suitable for whether there is according to the application account inquiry user;And
Judging unit, it is whether consistent using the corresponding identifying code of account suitable for after inquiry user exists, comparing, if identifying code one Cause is then verified.
14. device as claimed in claim 13, wherein the identifying code is the numeral generated at random.
15. a kind of information authentication system, the system comprises:
Mobile terminal with the Information Authentication device as any one of claim 4-6;And
Application server with the Information Authentication device as any one of claim 11-14.
CN201510379708.7A 2015-07-01 2015-07-01 A kind of Information Authentication method, apparatus and system Active CN105072080B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510379708.7A CN105072080B (en) 2015-07-01 2015-07-01 A kind of Information Authentication method, apparatus and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510379708.7A CN105072080B (en) 2015-07-01 2015-07-01 A kind of Information Authentication method, apparatus and system

Publications (2)

Publication Number Publication Date
CN105072080A CN105072080A (en) 2015-11-18
CN105072080B true CN105072080B (en) 2018-04-13

Family

ID=54501365

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510379708.7A Active CN105072080B (en) 2015-07-01 2015-07-01 A kind of Information Authentication method, apparatus and system

Country Status (1)

Country Link
CN (1) CN105072080B (en)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106357632A (en) * 2016-08-31 2017-01-25 全通支付网络科技有限公司 Intelligent verification method
CN107707529A (en) * 2017-09-06 2018-02-16 北京五八到家信息技术有限公司 A kind of client validation method for realizing limitation identifying code transmission times
CN109714297A (en) * 2017-10-26 2019-05-03 中国电信股份有限公司 Safe verification method, system and user terminal and application platform
CN107896218A (en) * 2017-11-29 2018-04-10 郑州云海信息技术有限公司 A kind of method and system of automatic detection identifying code passback logic leak
CN110020529B (en) * 2018-01-08 2021-04-27 武汉斗鱼网络科技有限公司 Method and device for detecting user information and computer equipment
US11785013B2 (en) 2018-05-18 2023-10-10 Telefonaktiebolaget Lm Ericsson (Publ) Application program access control
CN110276180A (en) * 2019-06-04 2019-09-24 北京达佳互联信息技术有限公司 Authority checking method, authority checking device and computer readable storage medium
CN110839217B (en) * 2019-10-24 2022-03-11 深圳市梦网科技发展有限公司 Addressing method, device, server and medium for mobile terminal
CN110895603B (en) * 2019-11-05 2021-11-26 泰康保险集团股份有限公司 Multi-system account information integration method and device
CN113132925B (en) * 2020-01-16 2022-02-18 中国移动通信集团山东有限公司 Short message authentication method, system, short message gateway equipment and terminal equipment
CN111835765B (en) * 2020-07-13 2022-09-23 中国联合网络通信集团有限公司 Verification method and device
CN114125737A (en) * 2021-11-17 2022-03-01 深圳市一诺成电子有限公司 Intelligent control method and equipment for sending intelligent voice click-to-read information in tablet personal computer

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102231746A (en) * 2011-07-11 2011-11-02 华为技术有限公司 Method for validating identification information and terminal thereof
CN102694780A (en) * 2011-03-25 2012-09-26 同方股份有限公司 Digital signature authentication method, payment method containing the same and payment system
CN103152400A (en) * 2013-02-07 2013-06-12 百度在线网络技术(北京)有限公司 Method and system for logging in through mobile terminal and cloud server
CN104579649A (en) * 2013-10-28 2015-04-29 腾讯科技(深圳)有限公司 Identity recognition method and system

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9749828B2 (en) * 2013-11-18 2017-08-29 Kirill KAZANTSEV Communication system and method for making telephone calls over the internet

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102694780A (en) * 2011-03-25 2012-09-26 同方股份有限公司 Digital signature authentication method, payment method containing the same and payment system
CN102231746A (en) * 2011-07-11 2011-11-02 华为技术有限公司 Method for validating identification information and terminal thereof
CN103152400A (en) * 2013-02-07 2013-06-12 百度在线网络技术(北京)有限公司 Method and system for logging in through mobile terminal and cloud server
CN104579649A (en) * 2013-10-28 2015-04-29 腾讯科技(深圳)有限公司 Identity recognition method and system

Also Published As

Publication number Publication date
CN105072080A (en) 2015-11-18

Similar Documents

Publication Publication Date Title
CN105072080B (en) A kind of Information Authentication method, apparatus and system
CN104902028B (en) A kind of a key login authentication method, apparatus and system
KR102225192B1 (en) Method and apparatus for generating security questions and verifying identities
CN104270404B (en) A kind of login method and device based on terminal iidentification
US20160275281A1 (en) Selectively providing personal information and access to functionality on lock screen based on biometric user authentication
CN104902479B (en) A kind of network security management equipment, method and mobile terminal
CN105100108B (en) A kind of login authentication method based on recognition of face, apparatus and system
CN105141427B (en) A kind of login authentication method, apparatus and system based on Application on Voiceprint Recognition
EP3203709A1 (en) Cloud service server and method for managing cloud service server
CN105101205B (en) A kind of a key login authentication method, apparatus and system
US9887996B1 (en) Bidirectional authentication
US8689308B2 (en) Portable authentication device
CN105512033B (en) A kind of automated testing method of mobile terminal, device and mobile terminal
CN108960839B (en) Payment method and device
CN105187412B (en) A kind of login authentication method based on gesture identification, apparatus and system
CN104318185B (en) A kind of application control method, equipment and mobile terminal
CN110247898B (en) Identity verification method, identity verification device, identity verification medium and electronic equipment
CN106454800A (en) Identity verification method, device and system
CN104318186A (en) Code switching method, equipment and terminal
CN107710725A (en) For the method and system by number verification user
CN107656866A (en) A kind of method, mobile terminal and computing device tested using fluency
CN110730162B (en) Page verification method, mobile terminal and readable storage medium
CN104125267A (en) Account protection method, device and terminal equipment
TW201833759A (en) Contact information display method and device, and information display method and device
CN106453257A (en) Security verification method, apparatus and system, terminal device and network server

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
CB03 Change of inventor or designer information

Inventor after: Wu Hongsheng

Inventor before: Wu Hongsheng

Inventor before: Wu Yunbin

COR Change of bibliographic data
TA01 Transfer of patent application right

Effective date of registration: 20170523

Address after: 510660, room 2, 388 central street, Huangcun village, Guangzhou, Guangdong, Tianhe District

Applicant after: Guangzhou cipher technology Co., Ltd.

Address before: 100000 Beijing city Chaoyang District South Mill Road No. 37 room 1701-1703 (Downtown North boring centralized Office District No. 177427)

Applicant before: SECKEN, INC.

TA01 Transfer of patent application right
GR01 Patent grant
GR01 Patent grant