CN105100047A - Method and device for authentication of terminal application program - Google Patents

Method and device for authentication of terminal application program Download PDF

Info

Publication number
CN105100047A
CN105100047A CN201510257243.8A CN201510257243A CN105100047A CN 105100047 A CN105100047 A CN 105100047A CN 201510257243 A CN201510257243 A CN 201510257243A CN 105100047 A CN105100047 A CN 105100047A
Authority
CN
China
Prior art keywords
authentication information
application program
mark
information server
characteristic information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201510257243.8A
Other languages
Chinese (zh)
Other versions
CN105100047B (en
Inventor
杨惠
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nubia Technology Co Ltd
Original Assignee
Nubia Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nubia Technology Co Ltd filed Critical Nubia Technology Co Ltd
Priority to CN201510257243.8A priority Critical patent/CN105100047B/en
Publication of CN105100047A publication Critical patent/CN105100047A/en
Application granted granted Critical
Publication of CN105100047B publication Critical patent/CN105100047B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1073Registration or de-registration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • H04L67/125Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks involving control of end-device applications over a network

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Power Engineering (AREA)
  • Multimedia (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Medical Informatics (AREA)
  • Biomedical Technology (AREA)
  • Telephone Function (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The embodiment of the invention discloses a method and device for authentication of a terminal application program. The method may comprise the steps that: a terminal obtains an identifier of the application program and sends the identifier of the application program to an authentication information server when the application program in the terminal is activated not for the first time; the terminal obtains characteristic information of a to-be-verified image and sends the characteristic information of the to-be-verified image to the authentication information server when the authentication information server determines that the authentication information of the application program is stored in the authentication information server based on the identifier of the application program; and the terminal receives the authentication information of the application program returned by the authentication information server when the characteristic information of the to-be-verified image is in accordance with the characteristic information of a comparative image which is pre-stored in the authentication information server.

Description

A kind of method for authenticating of end application and device
Technical field
The present invention relates to field of information security technology, particularly relate to a kind of method for authenticating and device of end application.
Background technology
At present along with the development of mobile Internet, end application (App, Application) emerges in an endless stream, and each application has the authentication informations such as corresponding account and password respectively.If all corresponding identical account of all application and password, easily reduce fail safe; And the corresponding different account of each application and password, the again memory capacitance of easy adding users, cause forgeing of authentication information.
Summary of the invention
Main purpose of the present invention is the method for authenticating and the device that propose a kind of end application, while being intended to ensure terminal APP fail safe, reduces the memory capacitance of user.
For achieving the above object, technical scheme of the present invention is achieved in that
First aspect, embodiments provide a kind of method for authenticating of end application, the method comprises:
When the non-initial activation of the application program in terminal, described terminal obtains the mark of described application program, and the mark of described application program is sent to authentication information server;
When according to the mark of described application program, described authentication information server determines that the authentication information of application program is stored in described authentication information server, described terminal obtains the characteristic information of image to be verified, and the characteristic information of described image to be verified is sent to described authentication information server;
When the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, described terminal receives the authentication information of the application program that described authentication information server returns.
In such scheme, when the application program in described terminal is activated first or when according to the mark of described application program, described authentication information server determines that the authentication information of application program is not stored in described authentication information server, described method also comprises:
Described terminal obtains the characteristic information of the mark of described application program, authentication information and contrast images;
The characteristic information of the mark of described application program, described authentication information and described contrast images is sent to described authentication information server by described terminal, sets up corresponding relation between the characteristic information of the mark of described application program, described authentication information and described contrast images to make described authentication information server.
In such scheme, when described authentication information is lost or be stolen, described method also comprises:
Reset indication is sent to described authentication information server by described terminal; Wherein, described reset indication comprises the mark of described application program and the characteristic information of described image to be verified, and described reset indication is used to indicate described authentication information server after determining that the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, the corresponding relation between the characteristic information removing the mark of described application program, described authentication information and described contrast images;
Described terminal receives the replacement response that described authentication information server returns.
Second aspect, embodiments provide a kind of method for authenticating of end application, the method comprises:
The mark of the application program that authentication information server receiving terminal sends;
When according to the mark of described application program, described authentication information server determines that the authentication information of described application program is stored in described authentication information server, send to described terminal and obtain instruction;
Described authentication information server receives the characteristic information of the image to be verified that described terminal sends according to described acquisition instruction;
When the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server self prestores, described authentication information server sends the authentication information of application program to described terminal.
In such scheme, when the user of application program registers, described method also comprises:
Described authentication information server preserves the characteristic information of the mark of described application program, described authentication information and described contrast images; And the characteristic information of the mark of described application program, described contrast images and described authentication information are done Hash mapping, with the unique index making the characteristic information of the mark of described application program and described contrast images become described authentication information.
The third aspect, embodiments provides a kind of terminal, and described terminal comprises: acquiring unit, the first transmitting element and the first receiving element, wherein,
Described acquiring unit, for when the non-initial activation of the application program in terminal, obtains the mark of described application program;
Described first transmitting element, for being sent to authentication information server by the mark of described application program;
Described acquiring unit, also for when according to the mark of described application program, described authentication information server determines that the authentication information of application program is stored in described authentication information server, obtains the characteristic information of image to be verified;
Described first transmitting element, also for the characteristic information of described image to be verified is sent to described authentication information server;
Described first receiving element, for when the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, receives the authentication information of the application program that described authentication information server returns.
In such scheme, when the application program in described terminal is activated first or when according to the mark of described application program, described authentication information server determines that the authentication information of application program is not stored in described authentication information server, described acquiring unit, also for obtaining the characteristic information of the mark of described application program, authentication information and contrast images;
Described first transmitting element, also for the characteristic information of the mark of described application program, described authentication information and described contrast images is sent to described authentication information server, set up corresponding relation between the characteristic information of the mark of described application program, described authentication information and described contrast images to make described authentication information server.
In such scheme, when described authentication information is lost or be stolen, described first transmitting element, also for reset indication being sent to described authentication information server; Wherein, described reset indication comprises the mark of described application program and the characteristic information of described image to be verified, and described reset indication is used to indicate described authentication information server after determining that the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, the corresponding relation between the characteristic information removing the mark of described application program, described authentication information and described contrast images;
Described first receiving element, also for receiving the replacement response that described authentication information server returns.
Fourth aspect, embodiments provides a kind of authentication information server, and described authentication information server comprises the second receiving element, determining unit, the second transmitting element and comparing unit, wherein,
Described second receiving element, for the mark of the application program that receiving terminal sends;
Described determining unit, for determining according to the mark of described application program whether the authentication information of described application program is stored in described authentication information server; And, when the authentication information of described application program is stored in described authentication information server, trigger described second transmitting element;
Described second transmitting element, obtains instruction for sending to described terminal;
Described second receiving element, also for receiving the characteristic information of the image to be verified that described terminal sends according to described acquisition instruction;
Described comparing unit, the characteristic information for the contrast images characteristic information of described image to be verified and described authentication information server self prestored compares; And, when the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server self prestores, trigger described transmitting element;
Described second transmitting element, also for sending the authentication information of application program to described terminal.
In such scheme, described authentication information server also comprises storage unit and map unit, wherein, when the user of application program registers, described storage unit, for preserving the characteristic information of the mark of described application program, described authentication information and described contrast images;
Described map unit, for the characteristic information of the mark of described application program, described contrast images and described authentication information are done Hash mapping, with the unique index making the characteristic information of the mark of described application program and described contrast images become described authentication information.
The method for authenticating of a kind of end application that the embodiment of the present invention provides and device, by terminal, image to be verified is sent to server, the authentication information corresponding to application program is obtained according to the characteristic information of image to be verified and the consistency of the characteristic information of the contrast images prestored to make server, thus achieve and both ensured terminal APP fail safe, additionally reduce the memory capacitance of user.
Accompanying drawing explanation
The hardware configuration schematic diagram of a kind of mobile terminal that Fig. 1 provides for the embodiment of the present invention;
The communication system schematic diagram of a kind of mobile terminal operation that Fig. 2 provides for the embodiment of the present invention;
The method for authenticating schematic flow sheet of a kind of end application that Fig. 3 provides for the embodiment of the present invention;
The method for authenticating schematic flow sheet of the another kind of end application that Fig. 4 provides for the embodiment of the present invention;
Fig. 5 sets up the schematic flow sheet of mapping relations for authentication information server that the embodiment of the present invention provides;
The detailed process schematic diagram of the method for authenticating of a kind of end application that Fig. 6 provides for the embodiment of the present invention;
The reset process schematic diagram of a kind of authentication information that Fig. 7 provides for the embodiment of the present invention;
Fig. 8 is the structural representation of a kind of terminal of the embodiment of the present invention;
The structural representation of a kind of authentication information server that Fig. 9 provides for the embodiment of the present invention;
The structural representation of the another kind of authentication information server that Figure 10 provides for the embodiment of the present invention;
The structural representation of the right discriminating system of a kind of end application that Figure 11 provides for the embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described.
Referring now to accompanying drawing 1, the mobile terminal realizing each embodiment of the present invention is described.In follow-up description, use the suffix of such as " module ", " parts " or " unit " for representing element only in order to be conducive to explanation of the present invention, itself is specific meaning not.Therefore, " module " and " parts " can mixedly use.
Mobile terminal can be implemented in a variety of manners.Such as, the terminal described in the present invention can comprise the such as mobile terminal of mobile phone, smart phone, notebook computer, digit broadcasting receiver, personal digital assistant (PDA), panel computer (PAD), portable media player (PMP), guider etc. and the fixed terminal of such as digital TV, desktop computer etc.Below, suppose that terminal is mobile terminal.But it will be appreciated by those skilled in the art that except the element except being used in particular for mobile object, structure according to the embodiment of the present invention also can be applied to the terminal of fixed type.
Fig. 1 is the hardware configuration signal of the mobile terminal realizing each embodiment of the present invention.
Mobile terminal 100 can comprise wireless communication unit 110, audio/video (A/V) input unit 120, user input unit 130, sensing cell 140, output unit 150, memory 160, interface unit 170, controller 180 and power subsystem 190 etc.Fig. 1 shows the mobile terminal with various assembly, it should be understood that, does not require to implement all assemblies illustrated, can alternatively implement more or less assembly, will be discussed in more detail below the element of mobile terminal.
Wireless communication unit 110 generally includes one or more assembly, and it allows the radio communication between mobile terminal 100 and wireless communication system or network.Such as, wireless communication unit can comprise at least one in broadcast reception module 111, mobile communication module 112, wireless Internet module 113, short range communication module 114 and positional information module 115.
Broadcast reception module 111 via broadcast channel from external broadcasting management server receiving broadcast signal and/or broadcast related information.Broadcast channel can comprise satellite channel and/or terrestrial channel.Broadcast management server can be generate and send the server of broadcast singal and/or broadcast related information or the broadcast singal generated before receiving and/or broadcast related information and send it to the server of terminal.Broadcast singal can comprise TV broadcast singal, radio signals, data broadcasting signal etc.And broadcast singal may further include the broadcast singal combined with TV or radio signals.Broadcast related information also can provide via mobile communications network, and in this case, broadcast related information can be received by mobile communication module 112.Broadcast singal can exist in a variety of manners, such as, it can exist with the form of the electronic service guidebooks (ESG) of the electronic program guides of DMB (DMB) (EPG), digital video broadcast-handheld (DVB-H) etc.Broadcast reception module 111 can by using the broadcast of various types of broadcast system Received signal strength.Especially, broadcast reception module 111 can by using such as multimedia broadcasting-ground (DMB-T), DMB-satellite (DMB-S), digital video broadcasting-hand-held (DVB-H), the digit broadcasting system receiving digital broadcast of the Radio Data System, received terrestrial digital broadcasting integrated service (ISDB-T) etc. of forward link media (MediaFLO).Broadcast reception module 111 can be constructed to be applicable to providing the various broadcast system of broadcast singal and above-mentioned digit broadcasting system.The broadcast singal received via broadcast reception module 111 and/or broadcast related information can be stored in memory 160 (or storage medium of other type).
Radio signal is sent at least one in base station (such as, access point, Node B etc.), exterior terminal and server and/or receives radio signals from it by mobile communication module 112.Various types of data that such radio signal can comprise voice call signal, video calling signal or send according to text and/or Multimedia Message and/or receive.
Wireless Internet module 113 supports the Wi-Fi (Wireless Internet Access) of mobile terminal.This module can be inner or be externally couple to terminal.Wi-Fi (Wireless Internet Access) technology involved by this module can comprise WLAN (WLAN) (Wi-Fi), Wibro (WiMAX), Wimax (worldwide interoperability for microwave access), HSDPA (high-speed downlink packet access) etc.
Short range communication module 114 is the modules for supporting junction service.Some examples of short-range communication technology comprise bluetooth TM, radio-frequency (RF) identification (RFID), Infrared Data Association (IrDA), ultra broadband (UWB), purple honeybee TM etc.
Positional information module 115 is the modules of positional information for checking or obtain mobile terminal.The typical case of positional information module 115 is GPS (global positioning systems).According to current technology, GPS module 115 calculates from the range information of three or more satellite and correct time information and for the Information application triangulation calculated, thus calculates three-dimensional current location information according to longitude, latitude and pin-point accuracy.Current, the method for calculating location and temporal information uses three satellites and by the error of the position that uses an other satellite correction calculation to go out and temporal information.In addition, GPS module 115 can carry out computational speed information by Continuous plus current location information in real time.
A/V input unit 120 is for audio reception or vision signal.A/V input unit 120 can comprise camera 121 and microphone 122, and the view data of camera 121 to the static images obtained by image capture apparatus in Video Capture pattern or image capture mode or video processes.Picture frame after process may be displayed on display unit 151.Picture frame after camera 121 processes can be stored in memory 160 (or other storage medium) or via wireless communication unit 110 and send, and can provide two or more cameras 121 according to the structure of mobile terminal.Microphone 122 can receive sound (voice data) via microphone 122 in telephone calling model, logging mode, speech recognition mode etc. operational mode, and can be voice data by such acoustic processing.Audio frequency (voice) data after process can be converted to the formatted output that can be sent to mobile communication base station via mobile communication module 112 when telephone calling model.Microphone 122 can be implemented various types of noise and eliminate (or suppress) algorithm and receiving and sending to eliminate (or suppression) noise or interference that produce in the process of audio signal.
User input unit 130 can generate key input data to control the various operations of mobile terminal according to the order of user's input.User input unit 130 allows user to input various types of information, and keyboard, the young sheet of pot, touch pad (such as, detecting the touch-sensitive assembly of the change of the resistance, pressure, electric capacity etc. that cause owing to being touched), roller, rocking bar etc. can be comprised.Especially, when touch pad is superimposed upon on display unit 151 as a layer, touch-screen can be formed.
Sensing cell 140 detects the current state of mobile terminal 100, (such as, mobile terminal 100 open or close state), the position of mobile terminal 100, user for mobile terminal 100 contact (namely, touch input) presence or absence, the orientation of mobile terminal 100, the acceleration or deceleration of mobile terminal 100 move and direction etc., and generate order or the signal of the operation for controlling mobile terminal 100.Such as, when mobile terminal 100 is embodied as sliding-type mobile phone, sensing cell 140 can sense this sliding-type phone and open or close.In addition, whether whether sensing cell 140 can detect power subsystem 190 provides electric power or interface unit 170 to couple with external device (ED).Sensing cell 140 can comprise proximity transducer 141 and will be described this in conjunction with touch-screen below.
Interface unit 170 is used as at least one external device (ED) and is connected the interface that can pass through with mobile terminal 100.Such as, external device (ED) can comprise wired or wireless head-band earphone port, external power source (or battery charger) port, wired or wireless FPDP, memory card port, for connecting the port, audio frequency I/O (I/O) port, video i/o port, ear port etc. of the device with identification module.Identification module can be that storage uses the various information of mobile terminal 100 for authentication of users and can comprise subscriber identification module (UIM), client identification module (SIM), Universal Subscriber identification module (USIM) etc.In addition, the device (hereinafter referred to " recognition device ") with identification module can take the form of smart card, and therefore, recognition device can be connected with mobile terminal 100 via port or other jockey.Interface unit 170 may be used for receive from external device (ED) input (such as, data message, electric power etc.) and the input received be transferred to the one or more element in mobile terminal 100 or may be used for transmitting data between mobile terminal and external device (ED).
In addition, when mobile terminal 100 is connected with external base, interface unit 170 can be used as to allow by it electric power to be provided to the path of mobile terminal 100 from base or can be used as the path that allows to be transferred to mobile terminal by it from the various command signals of base input.The various command signal inputted from base or electric power can be used as and identify whether mobile terminal is arranged on the signal base exactly.Output unit 150 is constructed to provide output signal (such as, audio signal, vision signal, alarm signal, vibration signal etc.) with vision, audio frequency and/or tactile manner.Output unit 150 can comprise display unit 151, dio Output Modules 152, alarm unit 153 etc.
Display unit 151 may be displayed on the information of process in mobile terminal 100.Such as, when mobile terminal 100 is in telephone calling model, display unit 151 can show with call or other communicate (such as, text messaging, multimedia file are downloaded etc.) be correlated with user interface (UI) or graphic user interface (GUI).When mobile terminal 100 is in video calling pattern or image capture mode, display unit 151 can the image of display capture and/or the image of reception, UI or GUI that video or image and correlation function are shown etc.
Meanwhile, when display unit 151 and touch pad as a layer superposed on one another to form touch-screen time, display unit 151 can be used as input unit and output device.Display unit 151 can comprise at least one in liquid crystal display (LCD), thin-film transistor LCD (TFT-LCD), Organic Light Emitting Diode (OLED) display, flexible display, three-dimensional (3D) display etc.Some in these displays can be constructed to transparence and watch from outside to allow user, and this can be called transparent display, and typical transparent display can be such as TOLED (transparent organic light emitting diode) display etc.According to the specific execution mode wanted, mobile terminal 100 can comprise two or more display units (or other display unit), such as, mobile terminal can comprise outernal display unit (not shown) and inner display unit (not shown).Touch-screen can be used for detecting touch input pressure and touch input position and touch and inputs area.
When dio Output Modules 152 can be under the isotypes such as call signal receiving mode, call mode, logging mode, speech recognition mode, broadcast reception mode at mobile terminal, voice data convert audio signals that is that wireless communication unit 110 is received or that store in memory 160 and exporting as sound.And dio Output Modules 152 can provide the audio frequency relevant to the specific function that mobile terminal 100 performs to export (such as, call signal receives sound, message sink sound etc.).Dio Output Modules 152 can comprise loud speaker, buzzer etc.
Alarm unit 153 can provide and export that event informed to mobile terminal 100.Typical event can comprise calling reception, message sink, key signals input, touch input etc.Except audio or video exports, alarm unit 153 can provide in a different manner and export with the generation of notification event.Such as, alarm unit 153 can provide output with the form of vibration, when receive calling, message or some other enter communication (incomingcommunication) time, alarm unit 153 can provide sense of touch to export (that is, vibrating) to notify to user.By providing such sense of touch to export, even if when the mobile phone of user is in the pocket of user, user also can identify the generation of various event.Alarm unit 153 also can provide the output of the generation of notification event via display unit 151 or dio Output Modules 152.
Memory 160 software program that can store process and the control operation performed by controller 180 etc., or temporarily can store oneself through exporting the data (such as, telephone directory, message, still image, video etc.) that maybe will export.And, memory 160 can store about when touch be applied to touch-screen time the vibration of various modes that exports and the data of audio signal.
Memory 160 can comprise the storage medium of at least one type, described storage medium comprises flash memory, hard disk, multimedia card, card-type memory (such as, SD or DX memory etc.), random access storage device (RAM), static random-access memory (SRAM), read-only memory (ROM), Electrically Erasable Read Only Memory (EEPROM), programmable read only memory (PROM), magnetic storage, disk, CD etc.And mobile terminal 100 can be connected the memory function of execute store 160 network storage device with by network cooperates.
Controller 180 controls the overall operation of mobile terminal usually.Such as, controller 180 performs the control relevant to voice call, data communication, video calling etc. and process.In addition, controller 180 can comprise the multi-media module 181 for reproducing (or playback) multi-medium data, and multi-media module 181 can be configured in controller 180, or can be configured to be separated with controller 180.Controller 180 can pattern recognition process, is identified as character or image so that input is drawn in the handwriting input performed on the touchscreen or picture.
Power subsystem 190 receives external power or internal power and provides each element of operation and the suitable electric power needed for assembly under the control of controller 180.
Various execution mode described herein can to use such as computer software, the computer-readable medium of hardware or its any combination implements.For hardware implementation, execution mode described herein can by using application-specific IC (ASIC), digital signal processor (DSP), digital signal processing device (DSPD), programmable logic device (PLD), field programmable gate array (FPGA), processor, controller, microcontroller, microprocessor, being designed at least one performed in the electronic unit of function described herein and implementing, in some cases, such execution mode can be implemented in controller 180.For implement software, the execution mode of such as process or function can be implemented with allowing the independent software module performing at least one function or operation.Software code can be implemented by the software application (or program) write with any suitable programming language, and software code can be stored in memory 160 and to be performed by controller 180.
So far, oneself is through the mobile terminal according to its functional description.Below, for the sake of brevity, by the slide type mobile terminal that describes in various types of mobile terminals of such as folded form, board-type, oscillating-type, slide type mobile terminal etc. exemplarily.Therefore, the present invention can be applied to the mobile terminal of any type, and is not limited to slide type mobile terminal.
Mobile terminal 100 as shown in Figure 1 can be constructed to utilize and send the such as wired and wireless communication system of data via frame or grouping and satellite-based communication system operates.
Describe wherein according to the communication system that mobile terminal of the present invention can operate referring now to Fig. 2.
Such communication system can use different air interfaces and/or physical layer.Such as, the air interface used by communication system comprises such as frequency division multiple access (FDMA), time division multiple access (TDMA), code division multiple access (CDMA) and universal mobile telecommunications system (UMTS) (especially, Long Term Evolution (LTE)), global system for mobile communications (GSM) etc.As non-limiting example, description below relates to cdma communication system, but such instruction is equally applicable to the system of other type.
With reference to figure 2, cdma wireless communication system can comprise multiple mobile terminal 100, multiple base station (BS) 270, base station controller (BSC) 275 and mobile switching centre (MSC) 280.MSC280 is constructed to form interface with Public Switched Telephony Network (PSTN) 290.MSC280 is also constructed to form interface with the BSC275 that can be couple to base station 270 via back haul link.Back haul link can construct according to any one in some interfaces that oneself knows, described interface comprises such as E1/T1, ATM, IP, PPP, frame relay, HDSL, ADSL or xDSL.Will be appreciated that system as shown in Figure 2 can comprise multiple BSC2750.
Each BS270 can serve one or more subregion (or region), by multidirectional antenna or point to specific direction each subregion of antenna cover radially away from BS270.Or each subregion can by two or more antenna covers for diversity reception.Each BS270 can be constructed to support multiple parallel compensate, and each parallel compensate has specific frequency spectrum (such as, 1.25MHz, 5MHz etc.).
Subregion can be called as CDMA Channel with intersecting of parallel compensate.BS270 also can be called as base station transceiver subsystem (BTS) or other equivalent terms.Under these circumstances, term " base station " may be used for broadly representing single BSC275 and at least one BS270.Base station also can be called as " cellular station ".Or each subregion of particular B S270 can be called as multiple cellular station.
As shown in Figure 2, broadcast singal is sent to the mobile terminal 100 at operate within systems by broadcsting transmitter (BT) 295.Broadcast reception module 111 as shown in Figure 1 is arranged on mobile terminal 100 and sentences the broadcast singal receiving and sent by BT295.In fig. 2, several global positioning system (GPS) satellite 300 is shown.Satellite 300 helps at least one in the multiple mobile terminal 100 in location.
In fig. 2, depict multiple satellite 300, but understand, the satellite of any number can be utilized to obtain useful locating information.GPS module 115 as shown in Figure 1 is constructed to coordinate to obtain the locating information wanted with satellite 300 usually.Substitute GPS tracking technique or outside GPS tracking technique, can use can other technology of position of tracking mobile terminal.In addition, at least one gps satellite 300 optionally or extraly can process satellite dmb transmission.
As a typical operation of wireless communication system, BS270 receives the reverse link signal from various mobile terminal 100.Mobile terminal 100 participates in call usually, information receiving and transmitting communicates with other type.Each reverse link signal that certain base station 270 receives is processed by particular B S270.The data obtained are forwarded to relevant BSC275.BSC provides call Resourse Distribute and comprises the mobile management function of coordination of the soft switching process between BS270.The data received also are routed to MSC280 by BSC275, and it is provided for the extra route service forming interface with PSTN290.Similarly, PSTN290 and MSC280 forms interface, and MSC and BSC275 forms interface, and BSC275 correspondingly control BS270 so that forward link signals is sent to mobile terminal 100.
Based on above-mentioned mobile terminal hardware configuration and communication system, each embodiment of the present invention is proposed.
Embodiment one
See Fig. 3, it illustrates the method for authenticating of a kind of end application that the embodiment of the present invention provides, the method can be applied to a terminal, and the method can comprise:
S301: when the non-initial activation of the application program in terminal, terminal obtains the mark of application program, and the mark of application program is sent to authentication information server;
Particularly, the mark of application program can be APPID corresponding to application program, when application program be activated open time, terminal just can get APPID corresponding to application program.Now, application program can eject prompting frame and input the authentication information such as account and password to point out user; In the present embodiment, due to authentication information, the uniqueness of such as account and password, and the uniqueness of the characteristic information of contrast images, therefore, authentication information server can set up the mapping relations between authentication information and the characteristic information of contrast images, thus makes authentication information server can save authentication information corresponding to APPID in advance, and every bar authentication information is all to the characteristic information that should have contrast images.
S302: when according to the mark of application program, authentication information server determines that the authentication information of application program is stored in authentication information server, terminal obtains the characteristic information of image to be verified, and the characteristic information of image to be verified is sent to authentication information server;
Exemplarily, terminal obtains the process of the characteristic information of image to be verified, specifically can comprise:
Terminal receives the acquisition instruction that authentication information server sends, and obtains the characteristic information of image to be verified according to acquisition instruction; Wherein, obtain instruction and be used to indicate the characteristic information that terminal obtains image to be verified.
It should be noted that, in the present embodiment, the facial image of the user that image to be verified can be obtained by the camera mode such as to take pictures for terminal; Because the pixel of present terminal camera is higher, cause the storage size of image excessive, therefore, in the present embodiment, the characteristic information of image to be verified can be sent to authentication information server by terminal, namely the characteristic information of user's facial image can be sent, thus the transmission data volume of terminal and the operand of authentication information server can be reduced.
S303: when the characteristic information of image to be verified is consistent with the characteristic information of the contrast images that authentication information server prestores, terminal receives the authentication information of the application program that authentication information server returns.
Particularly, authentication information, after the authentication information receiving application program, can be input in the prompting frame of the application program ejection described in step S301, thus achieve the authentication process of application program by terminal.
Exemplarily, when the application program in terminal is activated first or when according to the mark of application program, authentication information server determines that the authentication information of application program is not stored in authentication information server, all need the user's registration carrying out application program, now, the method described in the present embodiment can also comprise:
Terminal obtains the characteristic information of the mark of application program, authentication information and contrast images;
The characteristic information of the mark of application program, authentication information and contrast images is sent to authentication information server by terminal, to make after authentication information server preserves the characteristic information of the mark of application program, authentication information and contrast images, the corresponding relation between the characteristic information setting up the mark of application program, authentication information and contrast images.
Particularly, when the user carrying out application program registers, terminal is except the authentication information that the mark and user that can obtain application program inputs, also need the characteristic information of facial image obtaining user, thus when the user of application program is registered by authentication information server obtain the facial image of user the characteristic information of characteristic information image as a comparison preserve.Compare when being convenient to subsequent activation application program.
Exemplarily, when the characteristic information of the contrast images that characteristic information and the authentication information server of image to be verified prestores is inconsistent, the method described in the present embodiment can also comprise: terminal notifying input authentication information.
Particularly, the change of user's appearance, or the characteristic information of the contrast images that the situations such as replacement operation user all can cause the characteristic information of image to be verified and authentication information server to prestore is inconsistent, so now, terminal can receive the inconsistent feedback information that authentication information server sends, and points out current operator to log according to existing authentication the input that flow process carries out authentication information.Follow-up authentication process is the conventional techniques means of this area, does not repeat them here.
Exemplarily, when authentication information is lost or be stolen, the method described in the present embodiment also comprises the reset process to authentication information, and this process specifically can comprise:
Terminal obtains the mark of application program and the characteristic information of image to be verified, and the characteristic information of the mark of application program, image to be verified and reset indication are sent to authentication information server;
Terminal receives the replacement response that authentication information server returns.
Particularly, when user finds authentication information loss or be stolen, the replacement of authentication information can be initiated.Terminal can send reset indication to make authentication information server after being verified according to the mark of application program and the characteristic information of image to be verified, the characteristic information of the mark of application program, image to be verified and existing authentication information are carried out demapping, and the server of notification application.
Present embodiments provide a kind of method for authenticating of end application, by terminal, image to be verified is sent to server, the authentication information corresponding to application program is obtained according to the characteristic information of image to be verified and the consistency of the characteristic information of the contrast images prestored to make server, thus achieve and both ensured terminal APP fail safe, additionally reduce the memory capacitance of user.
Embodiment two
See Fig. 4, it illustrates the method for authenticating of the another kind of end application that the embodiment of the present invention provides, the method can be applied in an authentication information server, and the method can comprise:
S401: the mark of the application program that authentication information server receiving terminal sends;
It should be noted that, the mark of application program can be APPID corresponding to application program, in the present embodiment, due to authentication information, the uniqueness of such as account and password, and the uniqueness of the characteristic information of contrast images, therefore, authentication information server can set up the mapping relations between authentication information and the characteristic information of contrast images, thus authentication information server can save the authentication information corresponding to APPID in advance, and every bar authentication information is all to the characteristic information that should have contrast images, and the process that authentication information server sets up the mapping relations between authentication information and the characteristic information of contrast images can be carried out when the user of application program registers extraly, see Fig. 5, when the user of application program registers, the method of the present embodiment can also comprise S501 to S502:
S501: the characteristic information of the mark of application program that authentication information server receiving terminal sends, authentication information and contrast images;
S502: authentication information server preserves the characteristic information of the mark of application program, authentication information and contrast images; And the mark of application program, the characteristic information of contrast images and authentication information are done Hash mapping, becomes the unique index of authentication information with the characteristic information of the mark and contrast images that make application program.
The process of above-mentioned S501 to S502 can the application program in terminal when being activated first or authentication information server determine that the authentication information of application program carries out user's registration of application program when not being stored in authentication information server according to the mark of application program, compare when being convenient to subsequent activation application program.
S402: when according to the mark of application program, authentication information server determines that the authentication information of application program is stored in authentication information server, sends to terminal and obtains instruction;
It should be noted that, obtain instruction and be used to indicate the characteristic information that terminal obtains image to be verified.Understandably, understandably, when according to the mark of application program, authentication information server determines that the authentication information of application program is not stored in authentication information server or when being activated first when the application program in terminal, authentication information server can process as shown in Figure 5 carry out application program user registration, do not repeat them here.
S403: authentication information server receiving terminal is according to the characteristic information obtaining the image to be verified that instruction sends;
It should be noted that, in the present embodiment, the facial image of the user that image to be verified can be obtained by the camera mode such as to take pictures for terminal; Because the pixel of present terminal camera is higher, cause the storage size of image excessive, therefore, in the present embodiment, authentication information server can send the characteristic information of image to be verified by receiving terminal, namely the characteristic information of user's facial image can be sent, thus the transmission data volume of terminal and the operand of authentication information server can be reduced.
S404: when the characteristic information of image to be verified is consistent with the characteristic information of the contrast images that authentication information server self prestores, authentication information server sends the authentication information of application program to terminal.
Understandably, terminal, after the authentication information receiving application program, just can realize the authentication process of application program.
It should be noted that, when the characteristic information of the contrast images that characteristic information and the authentication information server of image to be verified self prestore is inconsistent, authentication information server can also send inconsistent feedback information to terminal, inputs authentication information to make terminal notifying.
Exemplarily, when authentication information is lost or be stolen, the method described in the present embodiment also comprises the reset process to authentication information, and this process specifically can comprise:
Authentication information server receives the mark of application program, the characteristic information of image to be verified and the reset indication that are sent by terminal;
Authentication information server according to the mark of application program, the characteristic information of image to be verified by the mark of application program, between the characteristic information of contrast images and authentication information, Hash mapping relation carries out demapping;
The server of authentication information server and application program carries out alternately, completing the replacement of authentication information, and to the replacement response that terminal returns.
Particularly, when user finds authentication information loss or be stolen, the replacement of authentication information can be initiated.Authentication information server is after being verified according to the mark of application program and the characteristic information of image to be verified, the characteristic information of the mark of application program, image to be verified and existing authentication information can be carried out demapping, and the server of notification application completes the replacement of authentication information.
Present embodiments provide a kind of method for authenticating of end application, authentication information corresponding to application program is obtained according to the characteristic information of image to be verified and the consistency of the characteristic information of contrast images prestored by server, thus achieve and both ensured terminal APP fail safe, additionally reduce the memory capacitance of user.
Embodiment three
Based on the technical conceive that previous embodiment is identical, see Fig. 6, it illustrates the detailed process of the method for authenticating of a kind of end application that the embodiment of the present invention provides, this process can comprise:
S601: terminal obtains the characteristic information of the mark of application program, authentication information and contrast images;
S602: the characteristic information of the mark of application program, authentication information and contrast images is sent to authentication information server by terminal;
S603: authentication information server preserves the characteristic information of the mark of application program, authentication information and contrast images; And the mark of application program, the characteristic information of contrast images and authentication information are done Hash mapping, becomes the unique index of authentication information with the characteristic information of the mark and contrast images that make application program;
It should be noted that, step S601 to step S603 can think the user registration course of application program, this process can be carried out when application program is activated first, thus make authentication information server set up mapping relations between authentication information and the characteristic information of contrast images, thus when application program is registered by authentication information server obtain the facial image of user the characteristic information of characteristic information image as a comparison preserve.Compare when being convenient to subsequent activation application program.
S604: when the application program in terminal is activated, terminal obtains the mark of application program, and the mark of application program is sent to authentication information server;
It should be noted that, when application program is activated unlatching time, terminal just can get APPID corresponding to application program.Now, application program can eject prompting frame and input the authentication information such as account and password to point out user.
S605: according to the mark of application program, authentication information server determines whether the authentication information of application program is stored in authentication information server; When the authentication information of application program is stored in authentication information server, authentication information server performs step S606; When the authentication information of application program is not stored in authentication information server, authentication information server indicating terminal performs S601;
It should be noted that, when the authentication information of application program is not stored in authentication information server, represent the user's registration now still needing to carry out application program, therefore, can by step S601 to step S603 to realize the user registration course of application program between authentication information server and terminal.
S606: authentication information server sends to terminal and obtains instruction;
S607: terminal obtains the characteristic information of image to be verified according to obtaining instruction, and the characteristic information of image to be verified is sent to authentication information server;
S608: the characteristic information of the contrast images that the characteristic information of image to be verified and self prestore compares by authentication information server, when both are consistent, turns to step S609; When both are inconsistent, turn to step S610.
S609: authentication information server sends the authentication information of application program to terminal;
It should be noted that, authentication information, after the authentication information receiving application program, can be input in the prompting frame of application program ejection, thus achieve the authentication process of application program by terminal.
S610: authentication information server sends inconsistent feedback information to terminal;
S611: terminal inputs authentication information according to inconsistent feedback information prompting user;
It should be noted that, the change of user's appearance, or the characteristic information of the contrast images that the situations such as replacement operation user all can cause the characteristic information of image to be verified and authentication information server to prestore is inconsistent, so now, terminal can receive the inconsistent feedback information that authentication information server sends, and points out current operator to log according to existing authentication the input that flow process carries out authentication information.Follow-up authentication process is the conventional techniques means of this area, does not repeat them here.
Achieve once detailed authentication process by step S601 to step S611, but when authentication information is lost or be stolen, see Fig. 7, this flow process can also comprise the reset process to authentication information, and this process specifically can comprise:
S701: terminal obtains the mark of application program and the characteristic information of image to be verified, and the characteristic information of the mark of application program, image to be verified and reset indication are sent to authentication information server;
S702: authentication information server according to the mark of application program, the characteristic information of image to be verified by the mark of application program, between the characteristic information of contrast images and authentication information, Hash mapping relation carries out demapping;
S703: the server of authentication information server and application program carries out alternately, the replacement of completing user account and password, and to the replacement response that terminal returns.
Understandably, when user finds authentication information loss or be stolen, the replacement of authentication information can be initiated.Terminal can send reset indication to make authentication information server after being verified according to the mark of application program and the characteristic information of image to be verified, the characteristic information of the mark of application program, image to be verified and existing authentication information are carried out demapping, and the server of notification application completes the replacement of authentication information.
Present embodiments provide the detailed process of the method for authenticating of end application, authentication information corresponding to application program is obtained according to the characteristic information of image to be verified and the consistency of the characteristic information of contrast images prestored by server, thus achieve and both ensured terminal APP fail safe, additionally reduce the memory capacitance of user.
Embodiment four
Based on the technical conceive that previous embodiment is identical, see Fig. 8, it illustrates a kind of terminal 80 that the embodiment of the present invention provides, this terminal 80 comprises: acquiring unit 801, first transmitting element 802 and the first receiving element 803, wherein,
Acquiring unit 801, for when the non-initial activation of the application program in terminal 80, obtains the mark of application program;
First transmitting element 802, for being sent to authentication information server by the mark of application program;
Acquiring unit 801, also for when according to the mark of application program, authentication information server determines that the authentication information of application program is stored in authentication information server, obtains the characteristic information of image to be verified;
First transmitting element 802, also for the characteristic information of image to be verified is sent to authentication information server;
First receiving element 803, for when the characteristic information of image to be verified is consistent with the characteristic information of the contrast images that authentication information server prestores, receives the authentication information of the application program that authentication information server returns.
In the above-described embodiments, when the application program in terminal 80 is activated first or when according to the mark of application program, authentication information server determines that the authentication information of application program is not stored in authentication information server, acquiring unit 801, also for obtaining the characteristic information of the mark of application program, authentication information and contrast images;
First transmitting element 802, also for the characteristic information of the mark of application program, authentication information and contrast images is sent to authentication information server, set up corresponding relation between the characteristic information of the mark of application program, authentication information and contrast images to make authentication information server.
In the above-described embodiments, the first transmitting element 802, also for reset indication is sent to authentication information server; Wherein, reset indication comprises the mark of application program and the characteristic information of image to be verified, and reset indication is used to indicate authentication information server after determining that the characteristic information of image to be verified is consistent with the characteristic information of the contrast images that authentication information server prestores, the corresponding relation between the characteristic information removing the mark of application program, authentication information and contrast images;
First receiving element 803, also for receiving the replacement response that authentication information server returns.
Present embodiments provide a kind of terminal 80, by terminal 80, image to be verified is sent to server, the authentication information corresponding to application program is obtained according to the characteristic information of image to be verified and the consistency of the characteristic information of the contrast images prestored to make server, thus achieve and both ensured terminal APP fail safe, additionally reduce the memory capacitance of user.
Embodiment five
Based on the technical conceive that previous embodiment is identical, see Fig. 9, it illustrates a kind of authentication information server 90 that the embodiment of the present invention provides, this authentication information server 90 comprises the second receiving element 901, determining unit 902, second transmitting element 903 and comparing unit 904, wherein
Second receiving element 901, for the mark of the application program that receiving terminal sends;
Determining unit 902, for determining according to the mark of application program whether the authentication information of application program is stored in authentication information server 90; And, when the authentication information of application program is stored in authentication information server 90, trigger the second transmitting element 903;
Second transmitting element 903, obtains instruction for sending to terminal;
Second receiving element 901, also for the characteristic information of receiving terminal according to the image to be verified of acquisition instruction transmission;
Comparing unit 904, the characteristic information for the contrast images characteristic information of image to be verified and authentication information server 90 self prestored compares; And, when the characteristic information of image to be verified is consistent with the characteristic information of the contrast images that authentication information server 90 self prestores, trigger the second transmitting element 903;
Second transmitting element 903, also for sending the authentication information of application program to terminal.
See Figure 10, authentication information server 90 also comprises storage unit 905 and map unit 906, wherein, when the user of application program registers,
Storage unit 905, for preserving the characteristic information of the mark of application program, authentication information and contrast images;
Map unit 906, for the mark of application program, the characteristic information of contrast images and authentication information are done Hash mapping, becomes the unique index of authentication information with the characteristic information of the mark and contrast images that make application program.
Present embodiments provide a kind of authentication information server 90, authentication information corresponding to application program is obtained according to the characteristic information of image to be verified and the consistency of the characteristic information of contrast images prestored by authentication information server 90, thus achieve and both ensured terminal APP fail safe, additionally reduce the memory capacitance of user.
Embodiment six
Based on the technical conceive that previous embodiment is identical, see Figure 11, it illustrates the right discriminating system 110 of a kind of end application that the embodiment of the present invention provides, this system 110 can comprise terminal 80 and authentication information server 90, wherein,
Terminal 80, for when the application program in terminal 80 is activated, obtains the mark of application program, and the mark of application program is sent to authentication information server 90; And,
When according to the mark of application program, authentication information server 90 determines that the authentication information of application program is stored in authentication information server 90, obtain the characteristic information of image to be verified, and the characteristic information of image to be verified is sent to authentication information server 90; And
When the characteristic information of image to be verified is consistent with the characteristic information of the contrast images that authentication information server 90 prestores, receive the authentication information of the application program that authentication information server 90 returns;
Authentication information server 90, for the mark of the application program that receiving terminal 80 sends; And,
When according to the mark of application program, authentication information server 90 determines that the authentication information of application program is stored in authentication information server 90, send to terminal 80 and obtain instruction; And,
Receiving terminal 80 is according to the characteristic information obtaining the image to be verified that instruction sends; And,
When the characteristic information of image to be verified is consistent with the characteristic information of the contrast images that authentication information server 90 self prestores, send the authentication information of application program to terminal 80.
It should be noted that, in this article, term " comprises ", " comprising " or its any other variant are intended to contain comprising of nonexcludability, thus make to comprise the process of a series of key element, method, article or device and not only comprise those key elements, but also comprise other key elements clearly do not listed, or also comprise by the intrinsic key element of this process, method, article or device.When not more restrictions, the key element limited by statement " comprising ... ", and be not precluded within process, method, article or the device comprising this key element and also there is other identical element.
The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment.
Through the above description of the embodiments, those skilled in the art can be well understood to the mode that above-described embodiment method can add required general hardware platform by software and realize, hardware can certainly be passed through, but in a lot of situation, the former is better execution mode.Based on such understanding, technical scheme of the present invention can embody with the form of software product the part that prior art contributes in essence in other words, this computer software product is stored in a storage medium (as ROM/RAM, magnetic disc, CD), comprising some instructions in order to make a station terminal equipment (can be mobile phone, computer, server, air conditioner, or the network equipment etc.) perform the method for each embodiment of the present invention.
These are only the preferred embodiments of the present invention; not thereby the scope of the claims of the present invention is limited; every utilize specification of the present invention and accompanying drawing content to do equivalent structure or equivalent flow process conversion; or be directly or indirectly used in other relevant technical fields, be all in like manner included in scope of patent protection of the present invention.

Claims (10)

1. a method for authenticating for end application, is characterized in that, described method comprises:
When the non-initial activation of the application program in terminal, described terminal obtains the mark of described application program, and the mark of described application program is sent to authentication information server;
When according to the mark of described application program, described authentication information server determines that the authentication information of application program is stored in described authentication information server, described terminal obtains the characteristic information of image to be verified, and the characteristic information of described image to be verified is sent to described authentication information server;
When the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, described terminal receives the authentication information of the application program that described authentication information server returns.
2. method according to claim 1, it is characterized in that, when the application program in described terminal is activated first or when according to the mark of described application program, described authentication information server determines that the authentication information of application program is not stored in described authentication information server, described method also comprises:
Described terminal obtains the characteristic information of the mark of described application program, authentication information and contrast images;
The characteristic information of the mark of described application program, described authentication information and described contrast images is sent to described authentication information server by described terminal, sets up corresponding relation between the characteristic information of the mark of described application program, described authentication information and described contrast images to make described authentication information server.
3. method according to claim 2, is characterized in that, when described authentication information is lost or be stolen, described method also comprises:
Reset indication is sent to described authentication information server by described terminal; Wherein, described reset indication comprises the mark of described application program and the characteristic information of described image to be verified, and described reset indication is used to indicate described authentication information server after determining that the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, the corresponding relation between the characteristic information removing the mark of described application program, described authentication information and described contrast images;
Described terminal receives the replacement response that described authentication information server returns.
4. a method for authenticating for end application, is characterized in that, described method comprises:
The mark of the application program that authentication information server receiving terminal sends;
When according to the mark of described application program, described authentication information server determines that the authentication information of described application program is stored in described authentication information server, send to described terminal and obtain instruction;
Described authentication information server receives the characteristic information of the image to be verified that described terminal sends according to described acquisition instruction;
When the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server self prestores, described authentication information server sends the authentication information of application program to described terminal.
5. method according to claim 4, is characterized in that, when the user of application program registers, described method also comprises:
Described authentication information server preserves the characteristic information of the mark of described application program, described authentication information and described contrast images; And the characteristic information of the mark of described application program, described contrast images and described authentication information are done Hash mapping, with the unique index making the characteristic information of the mark of described application program and described contrast images become described authentication information.
6. a terminal, is characterized in that, described terminal comprises: acquiring unit, the first transmitting element and the first receiving element, wherein,
Described acquiring unit, for when the non-initial activation of the application program in terminal, obtains the mark of described application program;
Described first transmitting element, for being sent to authentication information server by the mark of described application program;
Described acquiring unit, also for when according to the mark of described application program, described authentication information server determines that the authentication information of application program is stored in described authentication information server, obtains the characteristic information of image to be verified;
Described first transmitting element, also for the characteristic information of described image to be verified is sent to described authentication information server;
Described first receiving element, for when the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, receives the authentication information of the application program that described authentication information server returns.
7. terminal according to claim 6, it is characterized in that, when the application program in described terminal is activated first or when according to the mark of described application program, described authentication information server determines that the authentication information of application program is not stored in described authentication information server, described acquiring unit, also for obtaining the characteristic information of the mark of described application program, authentication information and contrast images;
Described first transmitting element, also for the characteristic information of the mark of described application program, described authentication information and described contrast images is sent to described authentication information server, set up corresponding relation between the characteristic information of the mark of described application program, described authentication information and described contrast images to make described authentication information server.
8. terminal according to claim 7, is characterized in that, when described authentication information is lost or be stolen, described first transmitting element, also for reset indication being sent to described authentication information server; Wherein, described reset indication comprises the mark of described application program and the characteristic information of described image to be verified, and described reset indication is used to indicate described authentication information server after determining that the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server prestores, the corresponding relation between the characteristic information removing the mark of described application program, described authentication information and described contrast images;
Described first receiving element, also for receiving the replacement response that described authentication information server returns.
9. an authentication information server, is characterized in that, described authentication information server comprises the second receiving element, determining unit, the second transmitting element and comparing unit, wherein,
Described second receiving element, for the mark of the application program that receiving terminal sends;
Described determining unit, for determining according to the mark of described application program whether the authentication information of described application program is stored in described authentication information server; And, when the authentication information of described application program is stored in described authentication information server, trigger described second transmitting element;
Described second transmitting element, obtains instruction for sending to described terminal;
Described second receiving element, also for receiving the characteristic information of the image to be verified that described terminal sends according to described acquisition instruction;
Described comparing unit, the characteristic information for the contrast images characteristic information of described image to be verified and described authentication information server self prestored compares; And, when the characteristic information of described image to be verified is consistent with the characteristic information of the contrast images that described authentication information server self prestores, trigger described transmitting element;
Described second transmitting element, also for sending the authentication information of application program to described terminal.
10. authentication information server according to claim 9, is characterized in that,
Described authentication information server also comprises storage unit and map unit, and wherein, when the user of application program registers, described storage unit, for preserving the characteristic information of the mark of described application program, described authentication information and described contrast images;
Described map unit, for the characteristic information of the mark of described application program, described contrast images and described authentication information are done Hash mapping, with the unique index making the characteristic information of the mark of described application program and described contrast images become described authentication information.
CN201510257243.8A 2015-05-19 2015-05-19 A kind of method for authenticating and device of end application Active CN105100047B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510257243.8A CN105100047B (en) 2015-05-19 2015-05-19 A kind of method for authenticating and device of end application

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510257243.8A CN105100047B (en) 2015-05-19 2015-05-19 A kind of method for authenticating and device of end application

Publications (2)

Publication Number Publication Date
CN105100047A true CN105100047A (en) 2015-11-25
CN105100047B CN105100047B (en) 2019-03-08

Family

ID=54579594

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510257243.8A Active CN105100047B (en) 2015-05-19 2015-05-19 A kind of method for authenticating and device of end application

Country Status (1)

Country Link
CN (1) CN105100047B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112597451A (en) * 2020-12-26 2021-04-02 中国农业银行股份有限公司 Method and device for distributing application programs
WO2021169305A1 (en) * 2020-02-24 2021-09-02 平安科技(深圳)有限公司 Voiceprint data processing method and apparatus, computer device, and storage medium

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1477584A (en) * 2002-08-19 2004-02-25 英保达股份有限公司 Information storage system fingerprint identification function and its method
CN101316169A (en) * 2008-07-18 2008-12-03 张曌 Network identity verification method based on internet third party biological characteristic validation
CN101958792A (en) * 2009-07-17 2011-01-26 华为技术有限公司 Method and device for authenticating finger print of user
CN102646174A (en) * 2012-02-23 2012-08-22 江苏华丽网络工程有限公司 Mobile electronic equipment with multimedia-authentication encryption and protection functions
CN103106736A (en) * 2012-12-28 2013-05-15 华为软件技术有限公司 Identity authentication method, terminal and server
CN104346122A (en) * 2013-07-29 2015-02-11 欧姆龙株式会社 Programmable display apparatus, control method, and program
CN104540129A (en) * 2014-12-29 2015-04-22 广州唯品会信息科技有限公司 Registration and login method and system for third party application

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1477584A (en) * 2002-08-19 2004-02-25 英保达股份有限公司 Information storage system fingerprint identification function and its method
CN101316169A (en) * 2008-07-18 2008-12-03 张曌 Network identity verification method based on internet third party biological characteristic validation
CN101958792A (en) * 2009-07-17 2011-01-26 华为技术有限公司 Method and device for authenticating finger print of user
CN102646174A (en) * 2012-02-23 2012-08-22 江苏华丽网络工程有限公司 Mobile electronic equipment with multimedia-authentication encryption and protection functions
CN103106736A (en) * 2012-12-28 2013-05-15 华为软件技术有限公司 Identity authentication method, terminal and server
CN104346122A (en) * 2013-07-29 2015-02-11 欧姆龙株式会社 Programmable display apparatus, control method, and program
CN104540129A (en) * 2014-12-29 2015-04-22 广州唯品会信息科技有限公司 Registration and login method and system for third party application

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2021169305A1 (en) * 2020-02-24 2021-09-02 平安科技(深圳)有限公司 Voiceprint data processing method and apparatus, computer device, and storage medium
CN112597451A (en) * 2020-12-26 2021-04-02 中国农业银行股份有限公司 Method and device for distributing application programs

Also Published As

Publication number Publication date
CN105100047B (en) 2019-03-08

Similar Documents

Publication Publication Date Title
CN104765994A (en) User identity recognition method and device
CN105117123A (en) Device and method for displaying hidden object
CN105100476A (en) Device and method for unlocking mobile terminal
CN104660912A (en) Photographing method and photographing device
CN104883658A (en) Virtual card information processing method and system
CN104735255A (en) Split screen display method and system
CN105138260A (en) Application switching method and terminal
CN104992101A (en) Mobile terminal desktop icon display method and device
CN104731512A (en) Method, device and terminal for sharing pictures
CN105208011A (en) Verification system and method
CN104915140A (en) Processing method based on virtual key touch operation data and processing device based on virtual key touch operation data
CN104836900A (en) Mobile terminal unlocking method and mobile terminal
CN105159700A (en) Application self-start control apparatus and method
CN104850799A (en) Mobile terminal and method of hiding data in mobile terminal
CN104820555A (en) Transverse and vertical screen modes switching method and device, and terminal
CN104636030A (en) Method and device for starting application programs and mobile terminal
CN104968033A (en) Terminal network processing method and apparatus
CN105095790A (en) Hidden object view method and device
CN104951236A (en) Wallpaper configuration method for terminal device, and terminal device
CN104811865A (en) Audio output method, device and system
CN105357367A (en) Keystroke identification device and method based on pressure sensor
CN105227754A (en) Mobile terminal solution lock control system and method
CN105100673A (en) Voice over long term evolution (VoLTE) based desktop sharing method and device
CN104834863A (en) Wi-Fi password storage method and apparatus
CN105138871A (en) Unlocking method and apparatus for mobile terminal and mobile terminal

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant