CN105491543B - A kind of short message safety authentication method, equipment and system - Google Patents
A kind of short message safety authentication method, equipment and system Download PDFInfo
- Publication number
- CN105491543B CN105491543B CN201510967100.6A CN201510967100A CN105491543B CN 105491543 B CN105491543 B CN 105491543B CN 201510967100 A CN201510967100 A CN 201510967100A CN 105491543 B CN105491543 B CN 105491543B
- Authority
- CN
- China
- Prior art keywords
- message
- mobile terminal
- nfc chip
- short message
- safety
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/12—Messaging; Mailboxes; Announcements
- H04W4/14—Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a kind of short message safety authentication methods, in the system including multiple mobile terminals, this method to include:First movement terminal reads the first NFC chip information;First movement terminal generates the first message comprising content of short message to be sent, first movement terminal iidentification and the first NFC chip information;Judge whether first movement terminal is connected to data network;If being connected to data network, first message is sent to the second mobile terminal by message security server, to be authenticated by message security server to the safety of first message;If being not connected to data network, first message is sent to the second mobile terminal by telecommunication network, to be authenticated according to the second NFC chip to the safety of first message by the second mobile terminal.The invention also discloses the equipment for realizing above-mentioned short message safety authentication method and using the short message safety Verification System of above-mentioned short message safety authentication method.
Description
Technical field
The present invention relates to mobile communication technology field more particularly to a kind of short message safety authentication methods, equipment and system.
Background technique
Currently, the mobile phone user of China is more than 1,000,000,000, people have got used to the exchange that various information are carried out with short message
With it is shared, short message safety problem is also gradually attract attention.It is mobile as false base station and number forge the appearance of software
Terminal user will receive various refuse messages and fraud text message, this brings puzzlement to the life of user, and may cause user's
Economic loss.
NFC (Near Field Communication, wireless near field communication, also known as near-field communication), is a kind of short distance
From high frequency wireless communication technology, allow electronic equipment between carry out contactless Point-to-Point Data Transmission.With bluetooth, Wifi etc.
Communication protocol is compared, and NFC protocol is highly-safe, connection speed is fast, low in energy consumption, and NFC chip is easy to carry, manufacturing cost is low,
There is good application prospect in fields such as gate inhibition, mobile payment, electronic bills.Currently, NFC has become many mobile terminals, fortune
The official protocol standard that Ying Shangdeng manufacturer supports, NFC on mobile terminals using more and more, become following trend
Trend.
Summary of the invention
For this purpose, the present invention provides a kind of short message safety authentication method, equipment and system, to try hard to solve or at least slow
Solution above there are the problem of.
According to an aspect of the present invention, a kind of short message safety authentication method is provided, for including multiple mobile terminals
System in, this method includes:First movement terminal reads the first NFC chip information;First movement terminal is generated comprising pending
The first message of the content of short message, first movement terminal iidentification and the first NFC chip information that send;First movement terminal judges
Whether one mobile terminal is connected to data network;If first movement terminal is connected to data network, first movement terminal will
First message is sent to the second mobile terminal by message security server, so as to by message security server to first message
Safety is authenticated;If first movement terminal is not connected to data network, first movement terminal passes through first message
Telecommunication network is sent to the second mobile terminal, so as to by the second mobile terminal according to the second NFC chip to the safety of first message
Property is authenticated.
Optionally, in short message safety authentication method according to the present invention, the first NFC chip information includes for unique
Identify the first ID of the first NFC chip and for carrying out matched first password, the second NFC chip information with other NFC chips
Including the 2nd ID for the second NFC chip of unique identification and for carrying out matched second password with other NFC chips.
Optionally, in short message safety authentication method according to the present invention, the first password and the second password Wei Jini
Sub- password encryption.
Optionally, in short message safety authentication method according to the present invention, further include:Message security server will be multiple
The ID associated storage of the corresponding NFC chip of mobile terminal is in lists.
Optionally, in short message safety authentication method according to the present invention, when first movement terminal leads to first message
When crossing message security server and being sent to the second mobile terminal, this method further includes:Message security server is from first message
Extract first movement terminal iidentification and the first ID;Message security server matches extracted first movement terminal mark in lists
Know and the first ID;Message security server sends first message and secure authenticated information to the second mobile terminal, wherein if
With success, then secure authenticated information prompt first message is security information, and otherwise secure authenticated information prompt first message is doubtful
Non-safety information.
Optionally, in short message safety authentication method according to the present invention, when first movement terminal leads to first message
When crossing telecommunication network and being sent to the second mobile terminal, this method further includes:Second mobile terminal reads the second NFC chip information;
Second mobile terminal extracts the first password from first message;First password is matched with the second password;If matching at
Function, then showing the content of short message in first message and prompting first message is that security information is not shown if matching is unsuccessful
Show content of short message.
Optionally, in short message safety authentication method according to the present invention, matching process is vigenere cipher decryption.
According to an aspect of the present invention, a kind of mobile terminal is provided, including:NFC read module, be suitable for read with it is above-mentioned
The information of the corresponding NFC chip of mobile terminal;Short message safety module, suitable for generating comprising content of short message to be sent, moving
The first message of dynamic terminal iidentification and NFC chip information;Short message sending module, suitable for judging whether above-mentioned mobile terminal connects
First message is sent by message security server to data network if above-mentioned mobile terminal is connected to data network
To another mobile terminal, to be authenticated by message security server to the safety of first message;If above-mentioned mobile whole
End is not connected to data network, then first message is sent to another mobile terminal by telecommunication network, so as to by above-mentioned another
Mobile terminal authenticates the safety of first message according to corresponding NFC chip.
Optionally, in mobile terminal according to the present invention, the information of NFC chip corresponding with mobile terminal includes:With
In the ID of unique identification NFC chip and for carrying out matched password with other NFC chips.
Optionally, further include short message receiving module in mobile terminal according to the present invention, be suitable for receiving another movement
The first message that terminal is sent.
Optionally, in mobile terminal according to the present invention, short message safety module is further adapted for docking according to the following steps
The first message that another mobile terminal received is sent carries out safety certification:It is extracted from first message and another mobile terminal
The password of corresponding NFC chip;The password of the password of the NFC chip extracted NFC chip corresponding with mobile terminal is carried out
Matching;If successful match, showing the content of short message in first message and prompting the first message is security information,
If matching is unsuccessful, content of short message is not shown.
According to an aspect of the present invention, a kind of message security server is provided, suitable for being connected to data in mobile terminal
The safety of the first message sent when network to mobile terminal authenticates, wherein message security server is further adapted for will be more
The ID associated storage of a corresponding NFC chip of mobile terminal is in lists.
Optionally, message security server according to the present invention is further adapted for:Mobile terminal is extracted from first message
Mark and NFC chip corresponding with above-mentioned mobile terminal ID;Match in lists extracted mobile terminal mark and
The ID of NFC chip corresponding with above-mentioned mobile terminal;The first message and secure authenticated information are sent to another mobile terminal,
Wherein if successful match, it is security information that the secure authenticated information, which prompts the first message, and otherwise the safety is recognized
Demonstrate,prove the doubtful non-safety information of first message described in information alert.
According to an aspect of the present invention, a kind of short message safety Verification System is provided, including:At least two is mobile whole
End, wherein first movement terminal is the sender of first message, and the second mobile terminal is the recipient of first message;At least two
A NFC chip, wherein the first NFC chip corresponds to first movement terminal, suitable for adding first movement into first message message
Terminal iidentification and the first NFC chip information, the second NFC chip correspond to the second mobile terminal, be suitable for first movement terminal not
The second mobile terminal is assisted to authenticate the safety of the first message when being connected to data network;With at least one message
Security server, suitable for being authenticated when first movement terminal is connected to data network to the safety of the first message.
Optionally, in short message safety Verification System according to the present invention, the first NFC chip information includes for unique
It identifies the first ID of the first NFC chip and for carrying out matched first password with other NFC chips, is deposited in the second NFC chip
Have for the 2nd ID of the second NFC chip of unique identification and for carrying out matched second password with other NFC chips.
Optionally, in short message safety Verification System according to the present invention, the first password and the second password Wei Jini
Sub- password encryption.
Optionally, in short message safety Verification System according to the present invention, message security server is further adapted for will be multiple
The ID associated storage of the corresponding NFC chip of mobile terminal is in lists.
Optionally, in short message safety Verification System according to the present invention, message security server is further adapted for:From
First movement terminal iidentification and the first ID are extracted in first message;Match in lists extracted first movement terminal iidentification and
First ID;The first message and secure authenticated information are sent to the second mobile terminal, wherein if successful match, the peace
It is security information that full authentication information, which prompts the first message, and otherwise the secure authenticated information prompts the first message doubtful
Non-safety information.
Optionally, in short message safety Verification System according to the present invention, the second mobile terminal is further adapted for:It reads
Second NFC chip information;The first password is extracted from first message;First password is matched with the second password;If
With success, then show the content of short message in first message and prompt the first message be security information, if matching not at
Function does not show content of short message then.
Optionally, in short message safety Verification System according to the present invention, matching process is vigenere cipher decryption.
The technical solution provided according to the present invention, the first NFC chip be added into short message first movement terminal iidentification and
First two kinds of NFC chip information identity information can be authenticated by the identity information to SMS sender to distinguish and send
Whether the identity of side is true, and the safety of short message is judged with this, helps user filtering to fall and forges software by false base station or number
The refuse messages and fraud text message of generation improve user experience, ensure user's property safety, avoid unnecessary loss.
In addition, the second NFC chip can assist the second mobile terminal at first movement terminal when no data network connection
Safety certification is carried out to the first message received, so that being no longer dependent on data network to the safety certification process of short message, more
Add practical.
Detailed description of the invention
To the accomplishment of the foregoing and related purposes, certain illustrative sides are described herein in conjunction with following description and drawings
Face, these aspects indicate the various modes that can practice principles disclosed herein, and all aspects and its equivalent aspect
It is intended to fall in the range of theme claimed.Read following detailed description in conjunction with the accompanying drawings, the disclosure it is above-mentioned
And other purposes, feature and advantage will be apparent.Throughout the disclosure, identical appended drawing reference generally refers to identical
Component or element.
Fig. 1 shows the schematic diagram for realizing the system 100 according to the present invention including multiple mobile terminals;
Fig. 2 shows the structure charts of short message safety Verification System 200 according to an embodiment of the invention;
Fig. 3 shows the structure chart of first movement terminal 210 according to an embodiment of the invention;
Fig. 4 A shows the close table of letter of vigenere cipher, and Fig. 4 B shows the close table of number of vigenere cipher;
A kind of data storage method that Fig. 5 shows message security server 250 according to an embodiment of the invention shows
It is intended to;And
Fig. 6 shows the flow chart of short message safety authentication method 300 according to an embodiment of the invention.
Specific embodiment
Exemplary embodiments of the present disclosure are described in more detail below with reference to accompanying drawings.Although showing the disclosure in attached drawing
Exemplary embodiment, it being understood, however, that may be realized in various forms the disclosure without should be by embodiments set forth here
It is limited.On the contrary, these embodiments are provided to facilitate a more thoroughly understanding of the present invention, and can be by the scope of the present disclosure
It is fully disclosed to those skilled in the art.
Fig. 1 shows the schematic diagram for realizing the system 100 according to the present invention including multiple mobile terminals.In system 100
Comprising multiple mobile terminals, such as mobile phone, tablet computer, portable notebook computer etc., but not limited to this.Each mobile terminal it
Between can be communicated by data network or telecommunication network, such as receive short message, voice communication, shared picture, video are chatted
It etc., but not limited to this.
Short message makes the user in system 100 carry out the exchange of various information with can be convenient and share, but its safety
Problem is also gradually attract attention.As false base station and number forge the appearance of software, mobile terminal user be will receive
Various refuse messages and fraud text message for example, user's A number, which forges software, pretends to be user B, and are sent out with the name of B to user C
Short message is sent, asks for wealth to C.Refuse messages and fraud text message bring puzzlement to the life of user, and may cause user's
Economic loss.In order to reduce the puzzlement of user, the property safety of user is ensured, the invention proposes a kind of certifications of short message safety
Method, apparatus and system add identity information into short message using NFC chip, are helped by above-mentioned identity information mobile whole
End subscriber distinguishes whether the identity of sender true, and judges with this safety of short message, help user filtering refuse messages and
Fraud text message avoids unnecessary loss.
Fig. 2 shows the structure charts of short message safety Verification System 200 according to an embodiment of the invention.As schemed
To show, short message safety Verification System 200 includes first movement terminal 210, the first NFC chip 220, the second mobile terminal 230, and the
Two NFC chips 240 and message security server 250.
In other examples, there can be multiple mobile terminals in short message safety Verification System, multiple NFC chips,
Or multiple message security servers.The present invention pacifies mobile terminal, NFC chip and the message in short message safety Verification System
The number of full server is with no restrictions.
In short message safety Verification System 200 according to an embodiment of the invention, first movement terminal 210 is short disappears
The sender of breath.Fig. 3 shows the structure chart of first movement terminal 210 according to an embodiment of the invention.As shown in figure 3,
First movement terminal 210 includes:NFC read module 211, short message safety module 212 and short disappear at short message sending module 213
Cease receiving module 214.
Second mobile terminal 230 is the recipient of short message.Second mobile terminal 230 includes:NFC read module 231, it is short
Message security module 232, short message the sending module 233, (functional module of the second mobile terminal 230 of short message receiving module 234
Diagram is not provided).
First movement terminal 210 is identical with the functional module of the second mobile terminal 230, but Fig. 2 shows it is of the invention
In the short message safety Verification System 200 of one embodiment, sender of the first movement terminal 210 as short message uses it
NFC read module 211, short message safety module 212 and short message sending module 213;Second mobile terminal 230 disappears as short
The recipient of breath, using its NFC read module 231, short message safety module 232 and short message receiving module 234.Another
In a embodiment, the second mobile terminal 230 can also be used as the sender of short message, short to disappear using its NFC read module 231
Cease security module 232, short message sending module 233;Recipient of the first movement terminal 210 as short message, is read using its NFC
Modulus block 211, short message safety module 212 and short message receiving module 214.In short, in short message safety Verification System 200
In, each mobile terminal can be used as the sender of short message, also can be used as the recipient of short message.
In order to realize the authentication of sender, the NFC read module 211 of first movement terminal 210 is for reading first
NFC chip 220.
First NFC chip 220 is read close to first movement terminal 210, the NFC read module 211 of first movement terminal 210
First NFC chip 220, short message safety module 212 can be to the short message addition identity letters that first movement terminal 210 is sent
Breath.First NFC chip 220 close to first movement terminal 210 opportunity can before user edits content of short message, editor it is short
When message content or after content of short message editor completion, the present invention is without limitation.As long as will before short message transmission
First NFC chip 220 can add the identity letter of first movement terminal 210 close to first movement terminal 210 in short message
Breath.
Identity information includes the mark of first movement terminal 210 and the information of the first NFC chip 220.First movement terminal
210 mark can be the character string that phone number, mobile terminal sequence number, user name etc. are capable of uniquely tagged mobile terminal.
In the system 100 for including multiple mobile terminals, the mark of each mobile terminal is all different.
The information of first NFC chip 220 includes the ID for the first NFC chip of unique identification and is used for and other NFC cores
Piece carries out matched password.In fact, having ID and password in each NFC chip in short message safety Verification System 200
Two kinds of information.ID can be the character string that the sequence number of NFC chip, factory number etc. are capable of uniquely tagged NFC chip, each NFC
The ID of chip is all different.The password of NFC chip is a more special character string, and the password of each NFC chip is all different
But there are certain rules, so that can be mutually distinguishable between NFC chip and complete to match.In addition, the password of NFC chip can be with
To pass through encrypted password, i.e. ciphertext password.By the encryption to password, the encoding law and matching rule of NFC chip are more
It is not easy to be cracked, so that the NFC chip forged in the present invention for short message safety certification is more difficult, in this way, making in the present invention
NFC chip quality is more secure, further such that it is more acurrate by the short message safety certification that it is realized, more there is confidence level.
For example, the password of each NFC chip is encrypted using vigenere cipher.The encryption and decryption of vigenere cipher need
Close table and key.Wherein, close table is a two-dimentional square matrix, for defining the rule of encryption and decryption;Key is a character string,
For determining specific cipher mode.Fig. 4 A shows the close table of letter of vigenere cipher, which is the square matrix of 26*26.
A character string is selected as key, will can be encrypted in plain text ciphertext.For example, with character string " KEY " for key, in plain text
" ABCDE " carries out Virginia encryption, and detailed process is as follows:The length of " ABCDE " is greater than the length of key " KEY " in plain text, because
This, first by cipher key spreading at length identical with plaintext, extended mode is that the sequence of key repeats, i.e., is by cipher key spreading
"KEYKE".Plaintext first letter is " A ", and key first letter is " K ", then is close after the first letter encryption of plaintext
The letter of " A " column " K " row infall of table, i.e., alphabetical " K " are " B " column " E " row of close table after the second letter encryption of plaintext
The letter of infall, i.e., alphabetical " F ", and so on, obtaining " ABCDE " encrypted ciphertext in plain text is " KFANI ".
Virginia decrypting process is the reverse procedure of above-mentioned ciphering process.For example, with character string " KEY " for key, it is right
Ciphertext " KFANI " is decrypted that detailed process is as follows:The length of ciphertext " KFANI " is greater than the length of key " KEY ", therefore,
First by cipher key spreading at length identical with plaintext, extended mode is that the sequence of key repeats, i.e., is by cipher key spreading
"KEYKE".Key first letter is " K ", and ciphertext first letter is " K ", then is close table after the decryption of ciphertext first letter
Column name corresponding to the letter " K " of " K " row, i.e., alphabetical " A ".And so on, the plaintext after obtaining ciphertext " KEYKE " decryption is
“ABCDE”。
After successful match refers to the password progress vigenere cipher decryption by two NFC chips between NFC chip,
Plaintext password corresponding to the password of two NFC chips is obtained, the two plaintext passwords meet specific matching rule.For example,
Above-mentioned " matching rule " is set as:First of the plaintext password of NFC chip and last position are check bit, and last
Letter is close to after primary letter in the position in English alphabet sequence list.With the table shown in Fig. 4 A for close table, with
" KEY " is key, carries out Virginia encryption to the password of two NFC chips:
Key:KEYEY
The plaintext password of NFC chip 1:ACDEB
The password (being stored in NFC chip) of NFC chip 1:KGBOF
The plaintext password of NFC chip 2:FHIJG
The password (being stored in NFC chip) of NFC chip 2:PLGTK
When NFC chip 1 is matched with NFC chip 2, firstly, it is close that the password of two NFC chips is carried out Virginia
Code decryption, the plaintext password for obtaining the two is respectively " ACDEB " and " FHIJG ".In the plaintext password of NFC chip 1, first
Letter is A, last letter is B, and B is close to the latter position of A in English alphabet sequence list;In the plaintext mouth of NFC chip 1
In order, first letter is F, last letter is G, and G is close to the latter position of F in English alphabet sequence list.As it can be seen that two
The plaintext password of a NFC chip meets identical rule, i.e., the letter of last in plaintext password is in English alphabet sequence list
In position be close to it is primary letter after, the two NFC chips can be with successful match.If the password of two NFC chips
It is not able to satisfy preset matching rule after carrying out vigenere cipher decryption, then the two NFC chips mismatch.
In addition, the close table of vigenere cipher can also be digital form, as shown in Figure 4 B.Correspondingly, key is also answered
The character string being made of number.Encrypting and decrypting mode is similar with key with the close table of alphabetical form, and details are not described herein again.
Certainly, the close table of vigenere cipher can be other forms, and key can be set to other character strings;NFC
The password of chip can also take other matching rules, the present invention does not make above content using other length
Limitation.
In addition, the password of NFC chip can also be using other cipher modes in addition to vigenere cipher;Or not
Password is encrypted, matching rule directly is formulated to the password of plaintext, realizes the matching between NFC chip.The present invention is to NFC
What encrypted with no restriction whether chip password encryption, with mode.
Particularly, after the user of first movement terminal 210 has purchased the first NFC chip 220, it can choose and moved first
Dynamic terminal 210 is bound with the first NFC chip 220, is by the mark of first movement terminal 210 and the first NFC specifically
First ID of chip 220 is bound, and binding result is uploaded to message security server 250.
The ID associated storage for the NFC chip for binding multiple mobile terminals with it in message security server 250 is in list
In.For example, Fig. 5 shows a kind of data storage method schematic diagram of message security server 250.As shown in figure 5, every record
Including two data item of mobile terminal identification and NFC chip ID.There is the ID of all NFC chips in message security server, but
It is only just to there is corresponding mobile terminal identification to record with the NFC chip of mobile terminal binding.For example, record 1 indicates movement
Terminal " P2BD76C " and NFC chip " 1234 " are bound, and NFC chip " 5555 " is not bound with mobile terminal, mobile terminal
" Li Si " and NFC chip " 6666 " binds, and mobile terminal " 139XXXX1234 " and NFC chip " 7890 " are bound.
It includes content of short message to be sent, first movement that the short message safety module 212 of first movement terminal 210, which generates,
After terminal iidentification and the short message of the first NFC chip information, short message sending module 213 detects the network state of its own, sentences
Breaking, whether it is connected to data network.If first movement terminal is connected to data network, short message sending module 213 will be upper
It states short message and is sent to message security server 250, message security server 250 authenticates the safety of short message, tool
The process of body is:Message security server 250 extracts the ID of first movement terminal iidentification and the first NFC chip from short message,
And the ID of extracted first movement terminal iidentification and the first NFC chip is matched in lists.Then, message security server
Short message and secure authenticated information are sent to the second mobile terminal 230 by 250.Wherein, if successful match, above-mentioned safety is recognized
Card information alert short message is security information;If matching is unsuccessful, the doubtful non-safety information of short message is prompted.
Obviously, during message security server 250 carries out safety certification to short message, if the first NFC chip 220
Illegal, i.e., the first NFC chip 220 is forged by improper channel, then there is no above-mentioned in message security server 250
The relevant information of first NFC chip 220, it is doubtful non-safety information that message security server 250, which will be prompted to the short message,.If the
One NFC chip 220 is not bound with first movement terminal 210, then it is whole that there is no first movements in message security server 250
The mark at end 210, it is doubtful non-safety information that message security server 250, which also will be prompted to the short message,.Only the first NFC chip
220 is legal, and when having carried out binding with first movement terminal 210, and message security server 250 can just prompt the short message for peace
Full information.By binding and adding into short message the information of the first NFC chip 220, the first NFC with first movement terminal 210
Chip 220 provides double shield for short message, and the second mobile terminal 230 is allowed clearly to know the safety of short message
Property.
If first movement terminal 210 is not connected to data network, short message is passed through electricity by short message sending module 213
Communication network is sent to the second mobile terminal 230, and the second mobile terminal 230 passes through safety of second NFC chip 240 to short message
It is authenticated.Second NFC chip 240 has ID and password as other NFC chips.Second mobile terminal 230 passes through the
The detailed process that two NFC chips 240 authenticate the safety of short message is:The short message of second mobile terminal 230 receives
After module 234 receives the short message that first movement terminal 210 is sent, user is mobile whole close to second by the second NFC chip 240
End 230, to start short message safety verification process.The NFC read module 231 of second mobile terminal 230 reads the second NFC chip
240 password, short message safety module 232 extract the password of the first NFC chip 220 from the short message received, by
The password of one NFC chip 220 is matched with the password of the second NFC chip 240, for example, by the password of the first NFC chip 220
Virginia decryption is carried out with the password of the second NFC chip 240, whether two passwords after verifying decryption meet certain matching
Rule.If two passwords after decryption meet certain matching rule, the first NFC chip 220 and the second NFC chip 240
The content of short message can be shown to user with successful match, short message safety module 232, and prompt the short message for safety letter
Breath;If two passwords after decryption do not meet certain matching rule, the first NFC chip 220 and the second NFC chip 240 are not
Matching, it is non-safety information that short message safety module 232, which will be considered to the short message, and is no longer shown in short message to user
Hold.
Obviously, the mistake safety of short message authenticated by the second NFC chip 240 in the second mobile terminal 230
Cheng Zhong, if the first NFC chip 220 is illegal, i.e., the first NFC chip 220 is forged by improper channel, then the first NFC
The password of chip 220 and the password of the second NFC chip 240 have and may greatly not meet same matching rule, i.e. the first NFC core
Piece 220 and the second NFC chip 240 mismatch, so that short message safety module 232 thinks that the short message is non-safety information, directly
The content for abandoning short message is connect, is no longer shown to user.Only when the first NFC chip 220 is legal, short message safety module
232 can just prompt short message for security information, and show content of short message to user.
In above-mentioned short message safety Verification System, the first NFC chip 220 plays crucial effect.When for sending
The short message of the first NFC chip 220 addition identity information is not used, recipient will be unable to judge its safety, which has
Unsafe possibility.The short message of the first NFC chip 220 addition identity information is used when for sending, recipient can lead to
Cross whether the identity authenticated to identity information to distinguish sender is true, and judge the safety of short message with this, helps to use
Family filters out the refuse messages and fraud text message that Software Create is forged by false base station or number, improves user experience, ensures user
Property safety avoids unnecessary loss.
Fig. 6 shows the flow chart of short message safety authentication method 300 according to an embodiment of the invention.Such as Fig. 6 institute
Show, this method starts from step S310.
In step s310, first movement terminal reads the first NFC chip information.
In one embodiment, the first NFC information include for the first NFC chip of unique identification the first ID and for
Other NFC chips carry out matched first password, wherein the first password is encrypted with vigenere cipher.
Then, in step s 320, according to the first NFC chip information read in step S310, first movement terminal is raw
At the first message comprising content of short message to be sent, first movement terminal iidentification and the first NFC chip information.
Then, in step S330, first movement terminal judges the network state locating for itself, that is, judges whether it connects
It is connected to data network.If being connected to data network, S340 is thened follow the steps, if being not connected to data network, is thened follow the steps
S350。
In step S340, first message is sent to message security server by first movement terminal, and by message safety
Server authenticates the safety of first message.
According to a kind of embodiment, message security server deposits the ID association of the corresponding NFC chip of multiple mobile terminals
Storage is in lists.Message security server extracts first movement terminal iidentification and the first ID from first message, and in lists
Match extracted first movement terminal iidentification and the first ID.Then, message security server sends institute to the second mobile terminal
State first message and secure authenticated information, wherein if successful match, the secure authenticated information prompts the first message
For security information, otherwise the secure authenticated information prompts the doubtful non-safety information of first message.
In step S350, first message is sent to the second mobile terminal by telecommunication network by first movement terminal, and
The safety of first message is authenticated according to the second NFC chip by the second mobile terminal.
According to a kind of embodiment, the second mobile terminal reads the second NFC chip information, and the second NFC chip information includes using
In the 2nd ID of the second NFC chip of unique identification and for carrying out matched second password with other NFC chips, wherein second
Password is encrypted with vigenere cipher.Second mobile terminal extracts the first password from first message, and by the first password and
Two passwords are matched, and matching process can be two passwords and meet certain rule after vigenere cipher is decrypted.Such as
Fruit successful match, then show the content of short message in first message and prompt first message be security information, if matching not at
Function does not show content of short message then.
The technical solution provided according to the present invention, the first NFC chip be added into short message first movement terminal iidentification and
First two kinds of NFC chip information identity information can be authenticated by the identity information to SMS sender to distinguish and send
Whether the identity of side is true, and the safety of short message is judged with this, helps user filtering to fall and forges software by false base station or number
The refuse messages and fraud text message of generation improve user experience, ensure user's property safety, avoid unnecessary loss.
A1:The short message safety authentication method further includes:The message security server by multiple mobile terminals with
Its ID associated storage for corresponding to NFC chip is in lists.A2:The short message safety authentication method, wherein working as first movement
When the first message is sent to the second mobile terminal by message security server by terminal, this method further includes:It is described to disappear
Breath security server extracts first movement terminal iidentification and the first ID from the first message;The message security server exists
Extracted first movement terminal iidentification and the first ID are matched in list;Message security server sends institute to the second mobile terminal
First message and secure authenticated information are stated, wherein the secure authenticated information prompts the first message if successful match
For security information, otherwise the secure authenticated information prompts the doubtful non-safety information of first message.A3:The short message
Safety certifying method, wherein when the first message is sent to the second mobile terminal by telecommunication network by first movement terminal
When, this method further includes:Second mobile terminal reads the second NFC chip information;Second mobile terminal is from the first message
Extract the first password;First password is matched with the second password;If successful match, show in first message short disappears
It ceases content and the first message is prompted not show content of short message if matching is unsuccessful for security information.A4:It is described
Short message safety authentication method, wherein the matching process be vigenere cipher decryption.
B1:The mobile terminal, wherein further include short message receiving module, sent suitable for receiving another mobile terminal
First message.B2:The mobile terminal, wherein the short message safety module is further adapted for according to the following steps to reception
To the first message sent of another mobile terminal carry out safety certification:It is extracted from the first message and another shifting
The password of the dynamic corresponding NFC chip of terminal;By the password of the NFC chip extracted NFC chip corresponding with the mobile terminal
Password matched;If successful match, shows the content of short message in first message and prompt the first message
Content of short message is not shown if matching is unsuccessful for security information.
D1:The short message safety Verification System, wherein the message security server is further adapted for will be multiple mobile whole
Hold the ID associated storage of corresponding NFC chip in lists.D2:The short message safety Verification System, wherein described to disappear
Breath security server is further adapted for:First movement terminal iidentification and the first ID are extracted from the first message;In lists
Match extracted first movement terminal iidentification and the first ID;The first message and safety certification are sent to the second mobile terminal
Information, wherein it is security information that the secure authenticated information, which prompts the first message, otherwise the peace if successful match
Full authentication information prompts the doubtful non-safety information of first message.D3:The short message safety Verification System, wherein institute
The second mobile terminal is stated to be further adapted for:Read the second NFC chip information;The first password is extracted from the first message;It will
First password is matched with the second password;If successful match, the content of short message in first message and prompt are shown
The first message does not show content of short message if matching is unsuccessful for security information.D4:The short message safety is recognized
Card system, wherein the matching process is vigenere cipher decryption.
In the instructions provided here, numerous specific details are set forth.It is to be appreciated, however, that implementation of the invention
Example can be practiced without these specific details.In some instances, well known method, knot is not been shown in detail
Structure and technology, so as not to obscure the understanding of this specification.
Similarly, it should be understood that in order to simplify the disclosure and help to understand one or more of the various inventive aspects,
Above in the description of exemplary embodiment of the present invention, each feature of the invention is grouped together into single implementation sometimes
In example, figure or descriptions thereof.However, the disclosed method should not be interpreted as reflecting the following intention:It is i.e. required to protect
Shield the present invention claims than feature more features expressly recited in each claim.More precisely, as following
As claims reflect, inventive aspect is all features less than single embodiment disclosed above.Therefore, it abides by
Thus the claims for following specific embodiment are expressly incorporated in the specific embodiment, wherein each claim itself
As a separate embodiment of the present invention.
Those skilled in the art should understand that the module of the equipment in example disclosed herein or unit or groups
Part can be arranged in equipment as depicted in this embodiment, or alternatively can be positioned at and the equipment in the example
In different one or more equipment.Module in aforementioned exemplary can be combined into a module or furthermore be segmented into multiple
Submodule.
Those skilled in the art will understand that can be carried out adaptively to the module in the equipment in embodiment
Change and they are arranged in one or more devices different from this embodiment.It can be the module or list in embodiment
Member or component are combined into a module or unit or component, and furthermore they can be divided into multiple submodule or subelement or
Sub-component.Other than such feature and/or at least some of process or unit exclude each other, it can use any
Combination is to all features disclosed in this specification (including adjoint claim, abstract and attached drawing) and so disclosed
All process or units of what method or apparatus are combined.Unless expressly stated otherwise, this specification is (including adjoint power
Benefit require, abstract and attached drawing) disclosed in each feature can carry out generation with an alternative feature that provides the same, equivalent, or similar purpose
It replaces.
In addition, it will be appreciated by those of skill in the art that although some embodiments described herein include other embodiments
In included certain features rather than other feature, but the combination of the feature of different embodiments mean it is of the invention
Within the scope of and form different embodiments.For example, in the following claims, embodiment claimed is appointed
Meaning one of can in any combination mode come using.
In addition, be described as herein can be by the processor of computer system or by executing by some in the embodiment
The combination of method or method element that other devices of the function are implemented.Therefore, have for implementing the method or method
The processor of the necessary instruction of element forms the device for implementing this method or method element.In addition, Installation practice
Element described in this is the example of following device:The device be used for implement as in order to implement the purpose of the invention element performed by
Function.
As used in this, unless specifically stated, come using ordinal number " first ", " second ", " third " etc.
Description plain objects, which are merely representative of, is related to the different instances of similar object, and is not intended to imply that the object being described in this way must
Must have the time it is upper, spatially, sequence aspect or given sequence in any other manner.
Although the embodiment according to limited quantity describes the present invention, above description, the art are benefited from
It is interior it is clear for the skilled person that in the scope of the present invention thus described, it can be envisaged that other embodiments.Additionally, it should be noted that
Language used in this specification primarily to readable and introduction purpose and select, rather than in order to explain or limit
Determine subject of the present invention and selects.Therefore, without departing from the scope and spirit of the appended claims, for this
Many modifications and changes are obvious for the those of ordinary skill of technical field.For the scope of the present invention, to this
Invent done disclosure be it is illustrative and not restrictive, it is intended that the scope of the present invention be defined by the claims appended hereto.
Claims (19)
1. a kind of short message safety authentication method, in the system including multiple mobile terminals, this method to include:
First movement terminal reads the first NFC chip information;
It includes content of short message to be sent, first movement terminal iidentification and the first NFC chip information that first movement terminal, which generates,
First message;
First movement terminal judges whether first movement terminal is connected to data network;
If first movement terminal is connected to data network, the first message is passed through message safety clothes by first movement terminal
Business device is sent to the second mobile terminal, to be authenticated by the message security server to the safety of first message;
If first movement terminal is not connected to data network, the first message is passed through telecommunication network by first movement terminal
Be sent to the second mobile terminal, so as to by the second mobile terminal according to the second NFC chip information to the safety of first message into
Row certification.
2. short message safety authentication method as described in claim 1, wherein the first NFC chip information includes for only
It first ID of one the first NFC chip of mark and is used for and other NFC chips carry out matched first password, the 2nd NFC core
Piece information includes for the 2nd ID of the second NFC chip of unique identification and for carrying out matched second mouthful with other NFC chips
It enables.
3. short message safety authentication method as claimed in claim 2, wherein first password and the second password Wei Jini
Sub- password encryption.
4. short message safety authentication method as claimed in claim 3, further includes:
The message security server by the ID associated storage of the corresponding NFC chip of multiple mobile terminals in lists.
5. short message safety authentication method as claimed in claim 4, wherein when first movement terminal leads to the first message
When crossing message security server and being sent to the second mobile terminal, this method further includes:
The message security server extracts first movement terminal iidentification and the first ID from the first message;
The message security server matches extracted first movement terminal iidentification and the first ID in lists;
Message security server sends the first message and secure authenticated information to the second mobile terminal, wherein if matching at
Function, then it is security information that the secure authenticated information, which prompts the first message, otherwise described in the secure authenticated information prompt
The doubtful non-safety information of first message.
6. short message safety authentication method as claimed in claim 3, wherein when first movement terminal leads to the first message
When crossing telecommunication network and being sent to the second mobile terminal, this method further includes:
Second mobile terminal reads the second NFC chip information;
Second mobile terminal extracts the first password from the first message;
First password is matched with the second password;
If successful match, showing the content of short message in first message and prompting the first message is security information,
If matching is unsuccessful, content of short message is not shown.
7. short message safety authentication method as claimed in claim 6, wherein the matching process is vigenere cipher solution
It is close.
8. a kind of mobile terminal, including:
NFC read module, suitable for reading the information of NFC chip corresponding with the mobile terminal;
Short message safety module, suitable for generating comprising content of short message to be sent, mobile terminal identification and NFC chip information
First message;
Short message sending module, suitable for judging whether the mobile terminal is connected to data network, if the mobile terminal connects
It is connected to data network, then the first message is sent to another mobile terminal by message security server, so as to by described
Message security server authenticates the safety of first message;If the mobile terminal is not connected to data network,
The first message is sent to another mobile terminal by telecommunication network, so as to by another mobile terminal according to right with it
The NFC chip answered authenticates the safety of first message.
9. mobile terminal as claimed in claim 8, wherein the packet of the NFC chip corresponding with the mobile terminal
It includes:For the ID of unique identification NFC chip and for carrying out matched password with other NFC chips.
10. mobile terminal as claimed in claim 8, wherein further include short message receiving module, be suitable for receiving another mobile whole
Hold the first message sent.
11. mobile terminal as claimed in claim 10, wherein it is right according to the following steps that the short message safety module is further adapted for
The first message that another mobile terminal received is sent carries out safety certification:
The password of NFC chip corresponding with another mobile terminal is extracted from the first message;
The password of the password of the NFC chip extracted NFC chip corresponding with the mobile terminal is matched;
If successful match, showing the content of short message in first message and prompting the first message is security information,
If matching is unsuccessful, content of short message is not shown.
12. a kind of message security server, suitable for what is sent when mobile terminal is connected to data network to the mobile terminal
The safety of first message is authenticated, wherein the message security server is further adapted for multiple mobile terminals are corresponding
In lists, the message security server is further adapted for the ID associated storage of NFC chip:
The mark of mobile terminal and the ID of NFC chip corresponding with the mobile terminal are extracted from the first message;
The mark of extracted mobile terminal and the ID of NFC chip corresponding with the mobile terminal are matched in lists;
The first message and secure authenticated information are sent to another mobile terminal, wherein if successful match, the safety
It is security information that authentication information, which prompts the first message, and otherwise the secure authenticated information prompts the first message doubtful not
Security information.
13. a kind of short message safety Verification System, including:
At least two mobile terminals, wherein first movement terminal is the sender of first message, and the second mobile terminal disappears for first
The recipient of breath;
At least two NFC chips, wherein the first NFC chip corresponds to first movement terminal, suitable for adding the into first message
One mobile terminal identification and the first NFC chip information, the second NFC chip correspond to the second mobile terminal, are suitable in first movement
Terminal is not connected to assist the second mobile terminal to authenticate the safety of the first message when data network;With
At least one message security server, suitable for when first movement terminal is connected to data network to the first message
Safety is authenticated.
14. short message safety Verification System as claimed in claim 13, wherein the first NFC chip information includes being used for
It first ID of the first NFC chip of unique identification and is used for and other NFC chips carry out matched first password, the 2nd NFC
Have in chip for the 2nd ID of the second NFC chip of unique identification and for carrying out matched second mouthful with other NFC chips
It enables.
15. short message safety Verification System as claimed in claim 14, wherein first password and the second password Wei Ji
The password encryption of Buddhist nun Asia.
16. short message safety Verification System as claimed in claim 15, wherein the message security server is further adapted for will be more
The ID associated storage of a corresponding NFC chip of mobile terminal is in lists.
17. short message safety Verification System as claimed in claim 16, wherein the message security server is further fitted
In:
First movement terminal iidentification and the first ID are extracted from the first message;
Extracted first movement terminal iidentification and the first ID are matched in lists;
The first message and secure authenticated information are sent to the second mobile terminal, wherein if successful match, the safety
It is security information that authentication information, which prompts the first message, and otherwise the secure authenticated information prompts the first message doubtful not
Security information.
18. short message safety Verification System as claimed in claim 15, wherein second mobile terminal is further adapted for:
Read the second NFC chip information;
The first password is extracted from the first message;
First password is matched with the second password;
If successful match, showing the content of short message in first message and prompting the first message is security information,
If matching is unsuccessful, content of short message is not shown.
19. short message safety Verification System as claimed in claim 18, wherein the matching process is vigenere cipher solution
It is close.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510967100.6A CN105491543B (en) | 2015-12-21 | 2015-12-21 | A kind of short message safety authentication method, equipment and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510967100.6A CN105491543B (en) | 2015-12-21 | 2015-12-21 | A kind of short message safety authentication method, equipment and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105491543A CN105491543A (en) | 2016-04-13 |
CN105491543B true CN105491543B (en) | 2018-11-23 |
Family
ID=55678186
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510967100.6A Active CN105491543B (en) | 2015-12-21 | 2015-12-21 | A kind of short message safety authentication method, equipment and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN105491543B (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108171847A (en) * | 2018-01-04 | 2018-06-15 | 北京神器科技有限公司 | The unlocking method and device of a kind of access control equipment |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101015173A (en) * | 2004-09-08 | 2007-08-08 | 皇家飞利浦电子股份有限公司 | Secure pairing for wired or wireless communications devices |
CN202818612U (en) * | 2012-06-19 | 2013-03-20 | 吴振陵 | System capable of blocking unauthorized SMS text messages or bulk SMS text messages |
CN103400095A (en) * | 2013-08-14 | 2013-11-20 | 熊文俊 | System and interaction method combining far-field and near-field interaction functions |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2010042560A2 (en) * | 2008-10-06 | 2010-04-15 | Vivotech, Inc. | Systems, methods, and computer readable media for payment and non-payment virtual card transfer between mobile devices |
-
2015
- 2015-12-21 CN CN201510967100.6A patent/CN105491543B/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101015173A (en) * | 2004-09-08 | 2007-08-08 | 皇家飞利浦电子股份有限公司 | Secure pairing for wired or wireless communications devices |
CN202818612U (en) * | 2012-06-19 | 2013-03-20 | 吴振陵 | System capable of blocking unauthorized SMS text messages or bulk SMS text messages |
CN103400095A (en) * | 2013-08-14 | 2013-11-20 | 熊文俊 | System and interaction method combining far-field and near-field interaction functions |
Also Published As
Publication number | Publication date |
---|---|
CN105491543A (en) | 2016-04-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104765999B (en) | Method, terminal and server for processing user resource information | |
CN105099692B (en) | Security verification method and device, server and terminal | |
CN103840944B (en) | A kind of short message authentication method, server and system | |
EP3110099B1 (en) | Device authentication | |
CN103124266B (en) | Mobile terminal and carry out the method, system and the cloud server that log in by it | |
US8787969B2 (en) | Using low-cost tags as a virtual storage medium for multimedia information | |
CN101742499B (en) | Account number protection system for mobile communication equipment terminal and application method thereof | |
CN103546289B (en) | USB (universal serial bus) Key based secure data transmission method and system | |
CN104363250B (en) | A kind of method and system for equipment connection | |
CN105101183B (en) | The method and system that privacy content on mobile terminal is protected | |
US20100293376A1 (en) | Method for authenticating a clent mobile terminal with a remote server | |
CN106487762A (en) | The recognition methodss of user identity, identification applications client and server | |
CN104104657B (en) | Information Authentication method, server, terminal and system | |
CN105722013A (en) | Bluetooth pairing method and device | |
CN103380592A (en) | Method, server and system for authentication of a person | |
CN101621794A (en) | Method for realizing safe authentication of wireless application service system | |
CN101145914A (en) | Automatic management of security information for a security token access device with multiple connections | |
CN102833244A (en) | Communication method for authentication by fingerprint information | |
CN102761871A (en) | Method for preventing fake device during other party identity authentication of wireless communication devices | |
CN102694782A (en) | Internet-based device and method for security information interaction | |
CN104660401A (en) | Authentication method, authentication system and terminal | |
CN103701586A (en) | Method and device for acquiring secret key | |
CN106022081A (en) | Card reading method for identity-card card-reading terminal, and terminal and system for identity-card card-reading | |
CN103973543B (en) | Instant communicating method and device | |
CN104702613B (en) | Verify the method and system of pickup people's information |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20230104 Address after: 050000 Room 2507, Block B, China Resources MIXC, No. 108, Zhongshan West Road, Qiaoxi District, Shijiazhuang, Hebei Patentee after: Hebei Jiahu Technology Co.,Ltd. Address before: 361009 112a, Pioneer Building, Pioneer Park, torch hi tech Zone, Xiamen City, Fujian Province Patentee before: Xiamen Meitu Mobile Technology Co.,Ltd. |