CN105491543B - A kind of short message safety authentication method, equipment and system - Google Patents

A kind of short message safety authentication method, equipment and system Download PDF

Info

Publication number
CN105491543B
CN105491543B CN201510967100.6A CN201510967100A CN105491543B CN 105491543 B CN105491543 B CN 105491543B CN 201510967100 A CN201510967100 A CN 201510967100A CN 105491543 B CN105491543 B CN 105491543B
Authority
CN
China
Prior art keywords
message
mobile terminal
nfc chip
short message
safety
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510967100.6A
Other languages
Chinese (zh)
Other versions
CN105491543A (en
Inventor
林凡
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hebei Jiahu Technology Co ltd
Original Assignee
Xiamen Meitu Mobile Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xiamen Meitu Mobile Technology Co Ltd filed Critical Xiamen Meitu Mobile Technology Co Ltd
Priority to CN201510967100.6A priority Critical patent/CN105491543B/en
Publication of CN105491543A publication Critical patent/CN105491543A/en
Application granted granted Critical
Publication of CN105491543B publication Critical patent/CN105491543B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/12Messaging; Mailboxes; Announcements
    • H04W4/14Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a kind of short message safety authentication methods, in the system including multiple mobile terminals, this method to include:First movement terminal reads the first NFC chip information;First movement terminal generates the first message comprising content of short message to be sent, first movement terminal iidentification and the first NFC chip information;Judge whether first movement terminal is connected to data network;If being connected to data network, first message is sent to the second mobile terminal by message security server, to be authenticated by message security server to the safety of first message;If being not connected to data network, first message is sent to the second mobile terminal by telecommunication network, to be authenticated according to the second NFC chip to the safety of first message by the second mobile terminal.The invention also discloses the equipment for realizing above-mentioned short message safety authentication method and using the short message safety Verification System of above-mentioned short message safety authentication method.

Description

A kind of short message safety authentication method, equipment and system
Technical field
The present invention relates to mobile communication technology field more particularly to a kind of short message safety authentication methods, equipment and system.
Background technique
Currently, the mobile phone user of China is more than 1,000,000,000, people have got used to the exchange that various information are carried out with short message With it is shared, short message safety problem is also gradually attract attention.It is mobile as false base station and number forge the appearance of software Terminal user will receive various refuse messages and fraud text message, this brings puzzlement to the life of user, and may cause user's Economic loss.
NFC (Near Field Communication, wireless near field communication, also known as near-field communication), is a kind of short distance From high frequency wireless communication technology, allow electronic equipment between carry out contactless Point-to-Point Data Transmission.With bluetooth, Wifi etc. Communication protocol is compared, and NFC protocol is highly-safe, connection speed is fast, low in energy consumption, and NFC chip is easy to carry, manufacturing cost is low, There is good application prospect in fields such as gate inhibition, mobile payment, electronic bills.Currently, NFC has become many mobile terminals, fortune The official protocol standard that Ying Shangdeng manufacturer supports, NFC on mobile terminals using more and more, become following trend Trend.
Summary of the invention
For this purpose, the present invention provides a kind of short message safety authentication method, equipment and system, to try hard to solve or at least slow Solution above there are the problem of.
According to an aspect of the present invention, a kind of short message safety authentication method is provided, for including multiple mobile terminals System in, this method includes:First movement terminal reads the first NFC chip information;First movement terminal is generated comprising pending The first message of the content of short message, first movement terminal iidentification and the first NFC chip information that send;First movement terminal judges Whether one mobile terminal is connected to data network;If first movement terminal is connected to data network, first movement terminal will First message is sent to the second mobile terminal by message security server, so as to by message security server to first message Safety is authenticated;If first movement terminal is not connected to data network, first movement terminal passes through first message Telecommunication network is sent to the second mobile terminal, so as to by the second mobile terminal according to the second NFC chip to the safety of first message Property is authenticated.
Optionally, in short message safety authentication method according to the present invention, the first NFC chip information includes for unique Identify the first ID of the first NFC chip and for carrying out matched first password, the second NFC chip information with other NFC chips Including the 2nd ID for the second NFC chip of unique identification and for carrying out matched second password with other NFC chips.
Optionally, in short message safety authentication method according to the present invention, the first password and the second password Wei Jini Sub- password encryption.
Optionally, in short message safety authentication method according to the present invention, further include:Message security server will be multiple The ID associated storage of the corresponding NFC chip of mobile terminal is in lists.
Optionally, in short message safety authentication method according to the present invention, when first movement terminal leads to first message When crossing message security server and being sent to the second mobile terminal, this method further includes:Message security server is from first message Extract first movement terminal iidentification and the first ID;Message security server matches extracted first movement terminal mark in lists Know and the first ID;Message security server sends first message and secure authenticated information to the second mobile terminal, wherein if With success, then secure authenticated information prompt first message is security information, and otherwise secure authenticated information prompt first message is doubtful Non-safety information.
Optionally, in short message safety authentication method according to the present invention, when first movement terminal leads to first message When crossing telecommunication network and being sent to the second mobile terminal, this method further includes:Second mobile terminal reads the second NFC chip information; Second mobile terminal extracts the first password from first message;First password is matched with the second password;If matching at Function, then showing the content of short message in first message and prompting first message is that security information is not shown if matching is unsuccessful Show content of short message.
Optionally, in short message safety authentication method according to the present invention, matching process is vigenere cipher decryption.
According to an aspect of the present invention, a kind of mobile terminal is provided, including:NFC read module, be suitable for read with it is above-mentioned The information of the corresponding NFC chip of mobile terminal;Short message safety module, suitable for generating comprising content of short message to be sent, moving The first message of dynamic terminal iidentification and NFC chip information;Short message sending module, suitable for judging whether above-mentioned mobile terminal connects First message is sent by message security server to data network if above-mentioned mobile terminal is connected to data network To another mobile terminal, to be authenticated by message security server to the safety of first message;If above-mentioned mobile whole End is not connected to data network, then first message is sent to another mobile terminal by telecommunication network, so as to by above-mentioned another Mobile terminal authenticates the safety of first message according to corresponding NFC chip.
Optionally, in mobile terminal according to the present invention, the information of NFC chip corresponding with mobile terminal includes:With In the ID of unique identification NFC chip and for carrying out matched password with other NFC chips.
Optionally, further include short message receiving module in mobile terminal according to the present invention, be suitable for receiving another movement The first message that terminal is sent.
Optionally, in mobile terminal according to the present invention, short message safety module is further adapted for docking according to the following steps The first message that another mobile terminal received is sent carries out safety certification:It is extracted from first message and another mobile terminal The password of corresponding NFC chip;The password of the password of the NFC chip extracted NFC chip corresponding with mobile terminal is carried out Matching;If successful match, showing the content of short message in first message and prompting the first message is security information, If matching is unsuccessful, content of short message is not shown.
According to an aspect of the present invention, a kind of message security server is provided, suitable for being connected to data in mobile terminal The safety of the first message sent when network to mobile terminal authenticates, wherein message security server is further adapted for will be more The ID associated storage of a corresponding NFC chip of mobile terminal is in lists.
Optionally, message security server according to the present invention is further adapted for:Mobile terminal is extracted from first message Mark and NFC chip corresponding with above-mentioned mobile terminal ID;Match in lists extracted mobile terminal mark and The ID of NFC chip corresponding with above-mentioned mobile terminal;The first message and secure authenticated information are sent to another mobile terminal, Wherein if successful match, it is security information that the secure authenticated information, which prompts the first message, and otherwise the safety is recognized Demonstrate,prove the doubtful non-safety information of first message described in information alert.
According to an aspect of the present invention, a kind of short message safety Verification System is provided, including:At least two is mobile whole End, wherein first movement terminal is the sender of first message, and the second mobile terminal is the recipient of first message;At least two A NFC chip, wherein the first NFC chip corresponds to first movement terminal, suitable for adding first movement into first message message Terminal iidentification and the first NFC chip information, the second NFC chip correspond to the second mobile terminal, be suitable for first movement terminal not The second mobile terminal is assisted to authenticate the safety of the first message when being connected to data network;With at least one message Security server, suitable for being authenticated when first movement terminal is connected to data network to the safety of the first message.
Optionally, in short message safety Verification System according to the present invention, the first NFC chip information includes for unique It identifies the first ID of the first NFC chip and for carrying out matched first password with other NFC chips, is deposited in the second NFC chip Have for the 2nd ID of the second NFC chip of unique identification and for carrying out matched second password with other NFC chips.
Optionally, in short message safety Verification System according to the present invention, the first password and the second password Wei Jini Sub- password encryption.
Optionally, in short message safety Verification System according to the present invention, message security server is further adapted for will be multiple The ID associated storage of the corresponding NFC chip of mobile terminal is in lists.
Optionally, in short message safety Verification System according to the present invention, message security server is further adapted for:From First movement terminal iidentification and the first ID are extracted in first message;Match in lists extracted first movement terminal iidentification and First ID;The first message and secure authenticated information are sent to the second mobile terminal, wherein if successful match, the peace It is security information that full authentication information, which prompts the first message, and otherwise the secure authenticated information prompts the first message doubtful Non-safety information.
Optionally, in short message safety Verification System according to the present invention, the second mobile terminal is further adapted for:It reads Second NFC chip information;The first password is extracted from first message;First password is matched with the second password;If With success, then show the content of short message in first message and prompt the first message be security information, if matching not at Function does not show content of short message then.
Optionally, in short message safety Verification System according to the present invention, matching process is vigenere cipher decryption.
The technical solution provided according to the present invention, the first NFC chip be added into short message first movement terminal iidentification and First two kinds of NFC chip information identity information can be authenticated by the identity information to SMS sender to distinguish and send Whether the identity of side is true, and the safety of short message is judged with this, helps user filtering to fall and forges software by false base station or number The refuse messages and fraud text message of generation improve user experience, ensure user's property safety, avoid unnecessary loss.
In addition, the second NFC chip can assist the second mobile terminal at first movement terminal when no data network connection Safety certification is carried out to the first message received, so that being no longer dependent on data network to the safety certification process of short message, more Add practical.
Detailed description of the invention
To the accomplishment of the foregoing and related purposes, certain illustrative sides are described herein in conjunction with following description and drawings Face, these aspects indicate the various modes that can practice principles disclosed herein, and all aspects and its equivalent aspect It is intended to fall in the range of theme claimed.Read following detailed description in conjunction with the accompanying drawings, the disclosure it is above-mentioned And other purposes, feature and advantage will be apparent.Throughout the disclosure, identical appended drawing reference generally refers to identical Component or element.
Fig. 1 shows the schematic diagram for realizing the system 100 according to the present invention including multiple mobile terminals;
Fig. 2 shows the structure charts of short message safety Verification System 200 according to an embodiment of the invention;
Fig. 3 shows the structure chart of first movement terminal 210 according to an embodiment of the invention;
Fig. 4 A shows the close table of letter of vigenere cipher, and Fig. 4 B shows the close table of number of vigenere cipher;
A kind of data storage method that Fig. 5 shows message security server 250 according to an embodiment of the invention shows It is intended to;And
Fig. 6 shows the flow chart of short message safety authentication method 300 according to an embodiment of the invention.
Specific embodiment
Exemplary embodiments of the present disclosure are described in more detail below with reference to accompanying drawings.Although showing the disclosure in attached drawing Exemplary embodiment, it being understood, however, that may be realized in various forms the disclosure without should be by embodiments set forth here It is limited.On the contrary, these embodiments are provided to facilitate a more thoroughly understanding of the present invention, and can be by the scope of the present disclosure It is fully disclosed to those skilled in the art.
Fig. 1 shows the schematic diagram for realizing the system 100 according to the present invention including multiple mobile terminals.In system 100 Comprising multiple mobile terminals, such as mobile phone, tablet computer, portable notebook computer etc., but not limited to this.Each mobile terminal it Between can be communicated by data network or telecommunication network, such as receive short message, voice communication, shared picture, video are chatted It etc., but not limited to this.
Short message makes the user in system 100 carry out the exchange of various information with can be convenient and share, but its safety Problem is also gradually attract attention.As false base station and number forge the appearance of software, mobile terminal user be will receive Various refuse messages and fraud text message for example, user's A number, which forges software, pretends to be user B, and are sent out with the name of B to user C Short message is sent, asks for wealth to C.Refuse messages and fraud text message bring puzzlement to the life of user, and may cause user's Economic loss.In order to reduce the puzzlement of user, the property safety of user is ensured, the invention proposes a kind of certifications of short message safety Method, apparatus and system add identity information into short message using NFC chip, are helped by above-mentioned identity information mobile whole End subscriber distinguishes whether the identity of sender true, and judges with this safety of short message, help user filtering refuse messages and Fraud text message avoids unnecessary loss.
Fig. 2 shows the structure charts of short message safety Verification System 200 according to an embodiment of the invention.As schemed To show, short message safety Verification System 200 includes first movement terminal 210, the first NFC chip 220, the second mobile terminal 230, and the Two NFC chips 240 and message security server 250.
In other examples, there can be multiple mobile terminals in short message safety Verification System, multiple NFC chips, Or multiple message security servers.The present invention pacifies mobile terminal, NFC chip and the message in short message safety Verification System The number of full server is with no restrictions.
In short message safety Verification System 200 according to an embodiment of the invention, first movement terminal 210 is short disappears The sender of breath.Fig. 3 shows the structure chart of first movement terminal 210 according to an embodiment of the invention.As shown in figure 3, First movement terminal 210 includes:NFC read module 211, short message safety module 212 and short disappear at short message sending module 213 Cease receiving module 214.
Second mobile terminal 230 is the recipient of short message.Second mobile terminal 230 includes:NFC read module 231, it is short Message security module 232, short message the sending module 233, (functional module of the second mobile terminal 230 of short message receiving module 234 Diagram is not provided).
First movement terminal 210 is identical with the functional module of the second mobile terminal 230, but Fig. 2 shows it is of the invention In the short message safety Verification System 200 of one embodiment, sender of the first movement terminal 210 as short message uses it NFC read module 211, short message safety module 212 and short message sending module 213;Second mobile terminal 230 disappears as short The recipient of breath, using its NFC read module 231, short message safety module 232 and short message receiving module 234.Another In a embodiment, the second mobile terminal 230 can also be used as the sender of short message, short to disappear using its NFC read module 231 Cease security module 232, short message sending module 233;Recipient of the first movement terminal 210 as short message, is read using its NFC Modulus block 211, short message safety module 212 and short message receiving module 214.In short, in short message safety Verification System 200 In, each mobile terminal can be used as the sender of short message, also can be used as the recipient of short message.
In order to realize the authentication of sender, the NFC read module 211 of first movement terminal 210 is for reading first NFC chip 220.
First NFC chip 220 is read close to first movement terminal 210, the NFC read module 211 of first movement terminal 210 First NFC chip 220, short message safety module 212 can be to the short message addition identity letters that first movement terminal 210 is sent Breath.First NFC chip 220 close to first movement terminal 210 opportunity can before user edits content of short message, editor it is short When message content or after content of short message editor completion, the present invention is without limitation.As long as will before short message transmission First NFC chip 220 can add the identity letter of first movement terminal 210 close to first movement terminal 210 in short message Breath.
Identity information includes the mark of first movement terminal 210 and the information of the first NFC chip 220.First movement terminal 210 mark can be the character string that phone number, mobile terminal sequence number, user name etc. are capable of uniquely tagged mobile terminal. In the system 100 for including multiple mobile terminals, the mark of each mobile terminal is all different.
The information of first NFC chip 220 includes the ID for the first NFC chip of unique identification and is used for and other NFC cores Piece carries out matched password.In fact, having ID and password in each NFC chip in short message safety Verification System 200 Two kinds of information.ID can be the character string that the sequence number of NFC chip, factory number etc. are capable of uniquely tagged NFC chip, each NFC The ID of chip is all different.The password of NFC chip is a more special character string, and the password of each NFC chip is all different But there are certain rules, so that can be mutually distinguishable between NFC chip and complete to match.In addition, the password of NFC chip can be with To pass through encrypted password, i.e. ciphertext password.By the encryption to password, the encoding law and matching rule of NFC chip are more It is not easy to be cracked, so that the NFC chip forged in the present invention for short message safety certification is more difficult, in this way, making in the present invention NFC chip quality is more secure, further such that it is more acurrate by the short message safety certification that it is realized, more there is confidence level.
For example, the password of each NFC chip is encrypted using vigenere cipher.The encryption and decryption of vigenere cipher need Close table and key.Wherein, close table is a two-dimentional square matrix, for defining the rule of encryption and decryption;Key is a character string, For determining specific cipher mode.Fig. 4 A shows the close table of letter of vigenere cipher, which is the square matrix of 26*26. A character string is selected as key, will can be encrypted in plain text ciphertext.For example, with character string " KEY " for key, in plain text " ABCDE " carries out Virginia encryption, and detailed process is as follows:The length of " ABCDE " is greater than the length of key " KEY " in plain text, because This, first by cipher key spreading at length identical with plaintext, extended mode is that the sequence of key repeats, i.e., is by cipher key spreading "KEYKE".Plaintext first letter is " A ", and key first letter is " K ", then is close after the first letter encryption of plaintext The letter of " A " column " K " row infall of table, i.e., alphabetical " K " are " B " column " E " row of close table after the second letter encryption of plaintext The letter of infall, i.e., alphabetical " F ", and so on, obtaining " ABCDE " encrypted ciphertext in plain text is " KFANI ".
Virginia decrypting process is the reverse procedure of above-mentioned ciphering process.For example, with character string " KEY " for key, it is right Ciphertext " KFANI " is decrypted that detailed process is as follows:The length of ciphertext " KFANI " is greater than the length of key " KEY ", therefore, First by cipher key spreading at length identical with plaintext, extended mode is that the sequence of key repeats, i.e., is by cipher key spreading "KEYKE".Key first letter is " K ", and ciphertext first letter is " K ", then is close table after the decryption of ciphertext first letter Column name corresponding to the letter " K " of " K " row, i.e., alphabetical " A ".And so on, the plaintext after obtaining ciphertext " KEYKE " decryption is “ABCDE”。
After successful match refers to the password progress vigenere cipher decryption by two NFC chips between NFC chip, Plaintext password corresponding to the password of two NFC chips is obtained, the two plaintext passwords meet specific matching rule.For example, Above-mentioned " matching rule " is set as:First of the plaintext password of NFC chip and last position are check bit, and last Letter is close to after primary letter in the position in English alphabet sequence list.With the table shown in Fig. 4 A for close table, with " KEY " is key, carries out Virginia encryption to the password of two NFC chips:
Key:KEYEY
The plaintext password of NFC chip 1:ACDEB
The password (being stored in NFC chip) of NFC chip 1:KGBOF
The plaintext password of NFC chip 2:FHIJG
The password (being stored in NFC chip) of NFC chip 2:PLGTK
When NFC chip 1 is matched with NFC chip 2, firstly, it is close that the password of two NFC chips is carried out Virginia Code decryption, the plaintext password for obtaining the two is respectively " ACDEB " and " FHIJG ".In the plaintext password of NFC chip 1, first Letter is A, last letter is B, and B is close to the latter position of A in English alphabet sequence list;In the plaintext mouth of NFC chip 1 In order, first letter is F, last letter is G, and G is close to the latter position of F in English alphabet sequence list.As it can be seen that two The plaintext password of a NFC chip meets identical rule, i.e., the letter of last in plaintext password is in English alphabet sequence list In position be close to it is primary letter after, the two NFC chips can be with successful match.If the password of two NFC chips It is not able to satisfy preset matching rule after carrying out vigenere cipher decryption, then the two NFC chips mismatch.
In addition, the close table of vigenere cipher can also be digital form, as shown in Figure 4 B.Correspondingly, key is also answered The character string being made of number.Encrypting and decrypting mode is similar with key with the close table of alphabetical form, and details are not described herein again.
Certainly, the close table of vigenere cipher can be other forms, and key can be set to other character strings;NFC The password of chip can also take other matching rules, the present invention does not make above content using other length Limitation.
In addition, the password of NFC chip can also be using other cipher modes in addition to vigenere cipher;Or not Password is encrypted, matching rule directly is formulated to the password of plaintext, realizes the matching between NFC chip.The present invention is to NFC What encrypted with no restriction whether chip password encryption, with mode.
Particularly, after the user of first movement terminal 210 has purchased the first NFC chip 220, it can choose and moved first Dynamic terminal 210 is bound with the first NFC chip 220, is by the mark of first movement terminal 210 and the first NFC specifically First ID of chip 220 is bound, and binding result is uploaded to message security server 250.
The ID associated storage for the NFC chip for binding multiple mobile terminals with it in message security server 250 is in list In.For example, Fig. 5 shows a kind of data storage method schematic diagram of message security server 250.As shown in figure 5, every record Including two data item of mobile terminal identification and NFC chip ID.There is the ID of all NFC chips in message security server, but It is only just to there is corresponding mobile terminal identification to record with the NFC chip of mobile terminal binding.For example, record 1 indicates movement Terminal " P2BD76C " and NFC chip " 1234 " are bound, and NFC chip " 5555 " is not bound with mobile terminal, mobile terminal " Li Si " and NFC chip " 6666 " binds, and mobile terminal " 139XXXX1234 " and NFC chip " 7890 " are bound.
It includes content of short message to be sent, first movement that the short message safety module 212 of first movement terminal 210, which generates, After terminal iidentification and the short message of the first NFC chip information, short message sending module 213 detects the network state of its own, sentences Breaking, whether it is connected to data network.If first movement terminal is connected to data network, short message sending module 213 will be upper It states short message and is sent to message security server 250, message security server 250 authenticates the safety of short message, tool The process of body is:Message security server 250 extracts the ID of first movement terminal iidentification and the first NFC chip from short message, And the ID of extracted first movement terminal iidentification and the first NFC chip is matched in lists.Then, message security server Short message and secure authenticated information are sent to the second mobile terminal 230 by 250.Wherein, if successful match, above-mentioned safety is recognized Card information alert short message is security information;If matching is unsuccessful, the doubtful non-safety information of short message is prompted.
Obviously, during message security server 250 carries out safety certification to short message, if the first NFC chip 220 Illegal, i.e., the first NFC chip 220 is forged by improper channel, then there is no above-mentioned in message security server 250 The relevant information of first NFC chip 220, it is doubtful non-safety information that message security server 250, which will be prompted to the short message,.If the One NFC chip 220 is not bound with first movement terminal 210, then it is whole that there is no first movements in message security server 250 The mark at end 210, it is doubtful non-safety information that message security server 250, which also will be prompted to the short message,.Only the first NFC chip 220 is legal, and when having carried out binding with first movement terminal 210, and message security server 250 can just prompt the short message for peace Full information.By binding and adding into short message the information of the first NFC chip 220, the first NFC with first movement terminal 210 Chip 220 provides double shield for short message, and the second mobile terminal 230 is allowed clearly to know the safety of short message Property.
If first movement terminal 210 is not connected to data network, short message is passed through electricity by short message sending module 213 Communication network is sent to the second mobile terminal 230, and the second mobile terminal 230 passes through safety of second NFC chip 240 to short message It is authenticated.Second NFC chip 240 has ID and password as other NFC chips.Second mobile terminal 230 passes through the The detailed process that two NFC chips 240 authenticate the safety of short message is:The short message of second mobile terminal 230 receives After module 234 receives the short message that first movement terminal 210 is sent, user is mobile whole close to second by the second NFC chip 240 End 230, to start short message safety verification process.The NFC read module 231 of second mobile terminal 230 reads the second NFC chip 240 password, short message safety module 232 extract the password of the first NFC chip 220 from the short message received, by The password of one NFC chip 220 is matched with the password of the second NFC chip 240, for example, by the password of the first NFC chip 220 Virginia decryption is carried out with the password of the second NFC chip 240, whether two passwords after verifying decryption meet certain matching Rule.If two passwords after decryption meet certain matching rule, the first NFC chip 220 and the second NFC chip 240 The content of short message can be shown to user with successful match, short message safety module 232, and prompt the short message for safety letter Breath;If two passwords after decryption do not meet certain matching rule, the first NFC chip 220 and the second NFC chip 240 are not Matching, it is non-safety information that short message safety module 232, which will be considered to the short message, and is no longer shown in short message to user Hold.
Obviously, the mistake safety of short message authenticated by the second NFC chip 240 in the second mobile terminal 230 Cheng Zhong, if the first NFC chip 220 is illegal, i.e., the first NFC chip 220 is forged by improper channel, then the first NFC The password of chip 220 and the password of the second NFC chip 240 have and may greatly not meet same matching rule, i.e. the first NFC core Piece 220 and the second NFC chip 240 mismatch, so that short message safety module 232 thinks that the short message is non-safety information, directly The content for abandoning short message is connect, is no longer shown to user.Only when the first NFC chip 220 is legal, short message safety module 232 can just prompt short message for security information, and show content of short message to user.
In above-mentioned short message safety Verification System, the first NFC chip 220 plays crucial effect.When for sending The short message of the first NFC chip 220 addition identity information is not used, recipient will be unable to judge its safety, which has Unsafe possibility.The short message of the first NFC chip 220 addition identity information is used when for sending, recipient can lead to Cross whether the identity authenticated to identity information to distinguish sender is true, and judge the safety of short message with this, helps to use Family filters out the refuse messages and fraud text message that Software Create is forged by false base station or number, improves user experience, ensures user Property safety avoids unnecessary loss.
Fig. 6 shows the flow chart of short message safety authentication method 300 according to an embodiment of the invention.Such as Fig. 6 institute Show, this method starts from step S310.
In step s310, first movement terminal reads the first NFC chip information.
In one embodiment, the first NFC information include for the first NFC chip of unique identification the first ID and for Other NFC chips carry out matched first password, wherein the first password is encrypted with vigenere cipher.
Then, in step s 320, according to the first NFC chip information read in step S310, first movement terminal is raw At the first message comprising content of short message to be sent, first movement terminal iidentification and the first NFC chip information.
Then, in step S330, first movement terminal judges the network state locating for itself, that is, judges whether it connects It is connected to data network.If being connected to data network, S340 is thened follow the steps, if being not connected to data network, is thened follow the steps S350。
In step S340, first message is sent to message security server by first movement terminal, and by message safety Server authenticates the safety of first message.
According to a kind of embodiment, message security server deposits the ID association of the corresponding NFC chip of multiple mobile terminals Storage is in lists.Message security server extracts first movement terminal iidentification and the first ID from first message, and in lists Match extracted first movement terminal iidentification and the first ID.Then, message security server sends institute to the second mobile terminal State first message and secure authenticated information, wherein if successful match, the secure authenticated information prompts the first message For security information, otherwise the secure authenticated information prompts the doubtful non-safety information of first message.
In step S350, first message is sent to the second mobile terminal by telecommunication network by first movement terminal, and The safety of first message is authenticated according to the second NFC chip by the second mobile terminal.
According to a kind of embodiment, the second mobile terminal reads the second NFC chip information, and the second NFC chip information includes using In the 2nd ID of the second NFC chip of unique identification and for carrying out matched second password with other NFC chips, wherein second Password is encrypted with vigenere cipher.Second mobile terminal extracts the first password from first message, and by the first password and Two passwords are matched, and matching process can be two passwords and meet certain rule after vigenere cipher is decrypted.Such as Fruit successful match, then show the content of short message in first message and prompt first message be security information, if matching not at Function does not show content of short message then.
The technical solution provided according to the present invention, the first NFC chip be added into short message first movement terminal iidentification and First two kinds of NFC chip information identity information can be authenticated by the identity information to SMS sender to distinguish and send Whether the identity of side is true, and the safety of short message is judged with this, helps user filtering to fall and forges software by false base station or number The refuse messages and fraud text message of generation improve user experience, ensure user's property safety, avoid unnecessary loss.
A1:The short message safety authentication method further includes:The message security server by multiple mobile terminals with Its ID associated storage for corresponding to NFC chip is in lists.A2:The short message safety authentication method, wherein working as first movement When the first message is sent to the second mobile terminal by message security server by terminal, this method further includes:It is described to disappear Breath security server extracts first movement terminal iidentification and the first ID from the first message;The message security server exists Extracted first movement terminal iidentification and the first ID are matched in list;Message security server sends institute to the second mobile terminal First message and secure authenticated information are stated, wherein the secure authenticated information prompts the first message if successful match For security information, otherwise the secure authenticated information prompts the doubtful non-safety information of first message.A3:The short message Safety certifying method, wherein when the first message is sent to the second mobile terminal by telecommunication network by first movement terminal When, this method further includes:Second mobile terminal reads the second NFC chip information;Second mobile terminal is from the first message Extract the first password;First password is matched with the second password;If successful match, show in first message short disappears It ceases content and the first message is prompted not show content of short message if matching is unsuccessful for security information.A4:It is described Short message safety authentication method, wherein the matching process be vigenere cipher decryption.
B1:The mobile terminal, wherein further include short message receiving module, sent suitable for receiving another mobile terminal First message.B2:The mobile terminal, wherein the short message safety module is further adapted for according to the following steps to reception To the first message sent of another mobile terminal carry out safety certification:It is extracted from the first message and another shifting The password of the dynamic corresponding NFC chip of terminal;By the password of the NFC chip extracted NFC chip corresponding with the mobile terminal Password matched;If successful match, shows the content of short message in first message and prompt the first message Content of short message is not shown if matching is unsuccessful for security information.
D1:The short message safety Verification System, wherein the message security server is further adapted for will be multiple mobile whole Hold the ID associated storage of corresponding NFC chip in lists.D2:The short message safety Verification System, wherein described to disappear Breath security server is further adapted for:First movement terminal iidentification and the first ID are extracted from the first message;In lists Match extracted first movement terminal iidentification and the first ID;The first message and safety certification are sent to the second mobile terminal Information, wherein it is security information that the secure authenticated information, which prompts the first message, otherwise the peace if successful match Full authentication information prompts the doubtful non-safety information of first message.D3:The short message safety Verification System, wherein institute The second mobile terminal is stated to be further adapted for:Read the second NFC chip information;The first password is extracted from the first message;It will First password is matched with the second password;If successful match, the content of short message in first message and prompt are shown The first message does not show content of short message if matching is unsuccessful for security information.D4:The short message safety is recognized Card system, wherein the matching process is vigenere cipher decryption.
In the instructions provided here, numerous specific details are set forth.It is to be appreciated, however, that implementation of the invention Example can be practiced without these specific details.In some instances, well known method, knot is not been shown in detail Structure and technology, so as not to obscure the understanding of this specification.
Similarly, it should be understood that in order to simplify the disclosure and help to understand one or more of the various inventive aspects, Above in the description of exemplary embodiment of the present invention, each feature of the invention is grouped together into single implementation sometimes In example, figure or descriptions thereof.However, the disclosed method should not be interpreted as reflecting the following intention:It is i.e. required to protect Shield the present invention claims than feature more features expressly recited in each claim.More precisely, as following As claims reflect, inventive aspect is all features less than single embodiment disclosed above.Therefore, it abides by Thus the claims for following specific embodiment are expressly incorporated in the specific embodiment, wherein each claim itself As a separate embodiment of the present invention.
Those skilled in the art should understand that the module of the equipment in example disclosed herein or unit or groups Part can be arranged in equipment as depicted in this embodiment, or alternatively can be positioned at and the equipment in the example In different one or more equipment.Module in aforementioned exemplary can be combined into a module or furthermore be segmented into multiple Submodule.
Those skilled in the art will understand that can be carried out adaptively to the module in the equipment in embodiment Change and they are arranged in one or more devices different from this embodiment.It can be the module or list in embodiment Member or component are combined into a module or unit or component, and furthermore they can be divided into multiple submodule or subelement or Sub-component.Other than such feature and/or at least some of process or unit exclude each other, it can use any Combination is to all features disclosed in this specification (including adjoint claim, abstract and attached drawing) and so disclosed All process or units of what method or apparatus are combined.Unless expressly stated otherwise, this specification is (including adjoint power Benefit require, abstract and attached drawing) disclosed in each feature can carry out generation with an alternative feature that provides the same, equivalent, or similar purpose It replaces.
In addition, it will be appreciated by those of skill in the art that although some embodiments described herein include other embodiments In included certain features rather than other feature, but the combination of the feature of different embodiments mean it is of the invention Within the scope of and form different embodiments.For example, in the following claims, embodiment claimed is appointed Meaning one of can in any combination mode come using.
In addition, be described as herein can be by the processor of computer system or by executing by some in the embodiment The combination of method or method element that other devices of the function are implemented.Therefore, have for implementing the method or method The processor of the necessary instruction of element forms the device for implementing this method or method element.In addition, Installation practice Element described in this is the example of following device:The device be used for implement as in order to implement the purpose of the invention element performed by Function.
As used in this, unless specifically stated, come using ordinal number " first ", " second ", " third " etc. Description plain objects, which are merely representative of, is related to the different instances of similar object, and is not intended to imply that the object being described in this way must Must have the time it is upper, spatially, sequence aspect or given sequence in any other manner.
Although the embodiment according to limited quantity describes the present invention, above description, the art are benefited from It is interior it is clear for the skilled person that in the scope of the present invention thus described, it can be envisaged that other embodiments.Additionally, it should be noted that Language used in this specification primarily to readable and introduction purpose and select, rather than in order to explain or limit Determine subject of the present invention and selects.Therefore, without departing from the scope and spirit of the appended claims, for this Many modifications and changes are obvious for the those of ordinary skill of technical field.For the scope of the present invention, to this Invent done disclosure be it is illustrative and not restrictive, it is intended that the scope of the present invention be defined by the claims appended hereto.

Claims (19)

1. a kind of short message safety authentication method, in the system including multiple mobile terminals, this method to include:
First movement terminal reads the first NFC chip information;
It includes content of short message to be sent, first movement terminal iidentification and the first NFC chip information that first movement terminal, which generates, First message;
First movement terminal judges whether first movement terminal is connected to data network;
If first movement terminal is connected to data network, the first message is passed through message safety clothes by first movement terminal Business device is sent to the second mobile terminal, to be authenticated by the message security server to the safety of first message;
If first movement terminal is not connected to data network, the first message is passed through telecommunication network by first movement terminal Be sent to the second mobile terminal, so as to by the second mobile terminal according to the second NFC chip information to the safety of first message into Row certification.
2. short message safety authentication method as described in claim 1, wherein the first NFC chip information includes for only It first ID of one the first NFC chip of mark and is used for and other NFC chips carry out matched first password, the 2nd NFC core Piece information includes for the 2nd ID of the second NFC chip of unique identification and for carrying out matched second mouthful with other NFC chips It enables.
3. short message safety authentication method as claimed in claim 2, wherein first password and the second password Wei Jini Sub- password encryption.
4. short message safety authentication method as claimed in claim 3, further includes:
The message security server by the ID associated storage of the corresponding NFC chip of multiple mobile terminals in lists.
5. short message safety authentication method as claimed in claim 4, wherein when first movement terminal leads to the first message When crossing message security server and being sent to the second mobile terminal, this method further includes:
The message security server extracts first movement terminal iidentification and the first ID from the first message;
The message security server matches extracted first movement terminal iidentification and the first ID in lists;
Message security server sends the first message and secure authenticated information to the second mobile terminal, wherein if matching at Function, then it is security information that the secure authenticated information, which prompts the first message, otherwise described in the secure authenticated information prompt The doubtful non-safety information of first message.
6. short message safety authentication method as claimed in claim 3, wherein when first movement terminal leads to the first message When crossing telecommunication network and being sent to the second mobile terminal, this method further includes:
Second mobile terminal reads the second NFC chip information;
Second mobile terminal extracts the first password from the first message;
First password is matched with the second password;
If successful match, showing the content of short message in first message and prompting the first message is security information, If matching is unsuccessful, content of short message is not shown.
7. short message safety authentication method as claimed in claim 6, wherein the matching process is vigenere cipher solution It is close.
8. a kind of mobile terminal, including:
NFC read module, suitable for reading the information of NFC chip corresponding with the mobile terminal;
Short message safety module, suitable for generating comprising content of short message to be sent, mobile terminal identification and NFC chip information First message;
Short message sending module, suitable for judging whether the mobile terminal is connected to data network, if the mobile terminal connects It is connected to data network, then the first message is sent to another mobile terminal by message security server, so as to by described Message security server authenticates the safety of first message;If the mobile terminal is not connected to data network, The first message is sent to another mobile terminal by telecommunication network, so as to by another mobile terminal according to right with it The NFC chip answered authenticates the safety of first message.
9. mobile terminal as claimed in claim 8, wherein the packet of the NFC chip corresponding with the mobile terminal It includes:For the ID of unique identification NFC chip and for carrying out matched password with other NFC chips.
10. mobile terminal as claimed in claim 8, wherein further include short message receiving module, be suitable for receiving another mobile whole Hold the first message sent.
11. mobile terminal as claimed in claim 10, wherein it is right according to the following steps that the short message safety module is further adapted for The first message that another mobile terminal received is sent carries out safety certification:
The password of NFC chip corresponding with another mobile terminal is extracted from the first message;
The password of the password of the NFC chip extracted NFC chip corresponding with the mobile terminal is matched;
If successful match, showing the content of short message in first message and prompting the first message is security information, If matching is unsuccessful, content of short message is not shown.
12. a kind of message security server, suitable for what is sent when mobile terminal is connected to data network to the mobile terminal The safety of first message is authenticated, wherein the message security server is further adapted for multiple mobile terminals are corresponding In lists, the message security server is further adapted for the ID associated storage of NFC chip:
The mark of mobile terminal and the ID of NFC chip corresponding with the mobile terminal are extracted from the first message;
The mark of extracted mobile terminal and the ID of NFC chip corresponding with the mobile terminal are matched in lists;
The first message and secure authenticated information are sent to another mobile terminal, wherein if successful match, the safety It is security information that authentication information, which prompts the first message, and otherwise the secure authenticated information prompts the first message doubtful not Security information.
13. a kind of short message safety Verification System, including:
At least two mobile terminals, wherein first movement terminal is the sender of first message, and the second mobile terminal disappears for first The recipient of breath;
At least two NFC chips, wherein the first NFC chip corresponds to first movement terminal, suitable for adding the into first message One mobile terminal identification and the first NFC chip information, the second NFC chip correspond to the second mobile terminal, are suitable in first movement Terminal is not connected to assist the second mobile terminal to authenticate the safety of the first message when data network;With
At least one message security server, suitable for when first movement terminal is connected to data network to the first message Safety is authenticated.
14. short message safety Verification System as claimed in claim 13, wherein the first NFC chip information includes being used for It first ID of the first NFC chip of unique identification and is used for and other NFC chips carry out matched first password, the 2nd NFC Have in chip for the 2nd ID of the second NFC chip of unique identification and for carrying out matched second mouthful with other NFC chips It enables.
15. short message safety Verification System as claimed in claim 14, wherein first password and the second password Wei Ji The password encryption of Buddhist nun Asia.
16. short message safety Verification System as claimed in claim 15, wherein the message security server is further adapted for will be more The ID associated storage of a corresponding NFC chip of mobile terminal is in lists.
17. short message safety Verification System as claimed in claim 16, wherein the message security server is further fitted In:
First movement terminal iidentification and the first ID are extracted from the first message;
Extracted first movement terminal iidentification and the first ID are matched in lists;
The first message and secure authenticated information are sent to the second mobile terminal, wherein if successful match, the safety It is security information that authentication information, which prompts the first message, and otherwise the secure authenticated information prompts the first message doubtful not Security information.
18. short message safety Verification System as claimed in claim 15, wherein second mobile terminal is further adapted for:
Read the second NFC chip information;
The first password is extracted from the first message;
First password is matched with the second password;
If successful match, showing the content of short message in first message and prompting the first message is security information, If matching is unsuccessful, content of short message is not shown.
19. short message safety Verification System as claimed in claim 18, wherein the matching process is vigenere cipher solution It is close.
CN201510967100.6A 2015-12-21 2015-12-21 A kind of short message safety authentication method, equipment and system Active CN105491543B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510967100.6A CN105491543B (en) 2015-12-21 2015-12-21 A kind of short message safety authentication method, equipment and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510967100.6A CN105491543B (en) 2015-12-21 2015-12-21 A kind of short message safety authentication method, equipment and system

Publications (2)

Publication Number Publication Date
CN105491543A CN105491543A (en) 2016-04-13
CN105491543B true CN105491543B (en) 2018-11-23

Family

ID=55678186

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510967100.6A Active CN105491543B (en) 2015-12-21 2015-12-21 A kind of short message safety authentication method, equipment and system

Country Status (1)

Country Link
CN (1) CN105491543B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108171847A (en) * 2018-01-04 2018-06-15 北京神器科技有限公司 The unlocking method and device of a kind of access control equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101015173A (en) * 2004-09-08 2007-08-08 皇家飞利浦电子股份有限公司 Secure pairing for wired or wireless communications devices
CN202818612U (en) * 2012-06-19 2013-03-20 吴振陵 System capable of blocking unauthorized SMS text messages or bulk SMS text messages
CN103400095A (en) * 2013-08-14 2013-11-20 熊文俊 System and interaction method combining far-field and near-field interaction functions

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2010042560A2 (en) * 2008-10-06 2010-04-15 Vivotech, Inc. Systems, methods, and computer readable media for payment and non-payment virtual card transfer between mobile devices

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101015173A (en) * 2004-09-08 2007-08-08 皇家飞利浦电子股份有限公司 Secure pairing for wired or wireless communications devices
CN202818612U (en) * 2012-06-19 2013-03-20 吴振陵 System capable of blocking unauthorized SMS text messages or bulk SMS text messages
CN103400095A (en) * 2013-08-14 2013-11-20 熊文俊 System and interaction method combining far-field and near-field interaction functions

Also Published As

Publication number Publication date
CN105491543A (en) 2016-04-13

Similar Documents

Publication Publication Date Title
CN104765999B (en) Method, terminal and server for processing user resource information
CN105099692B (en) Security verification method and device, server and terminal
CN103840944B (en) A kind of short message authentication method, server and system
EP3110099B1 (en) Device authentication
CN103124266B (en) Mobile terminal and carry out the method, system and the cloud server that log in by it
US8787969B2 (en) Using low-cost tags as a virtual storage medium for multimedia information
CN101742499B (en) Account number protection system for mobile communication equipment terminal and application method thereof
CN103546289B (en) USB (universal serial bus) Key based secure data transmission method and system
CN104363250B (en) A kind of method and system for equipment connection
CN105101183B (en) The method and system that privacy content on mobile terminal is protected
US20100293376A1 (en) Method for authenticating a clent mobile terminal with a remote server
CN106487762A (en) The recognition methodss of user identity, identification applications client and server
CN104104657B (en) Information Authentication method, server, terminal and system
CN105722013A (en) Bluetooth pairing method and device
CN103380592A (en) Method, server and system for authentication of a person
CN101621794A (en) Method for realizing safe authentication of wireless application service system
CN101145914A (en) Automatic management of security information for a security token access device with multiple connections
CN102833244A (en) Communication method for authentication by fingerprint information
CN102761871A (en) Method for preventing fake device during other party identity authentication of wireless communication devices
CN102694782A (en) Internet-based device and method for security information interaction
CN104660401A (en) Authentication method, authentication system and terminal
CN103701586A (en) Method and device for acquiring secret key
CN106022081A (en) Card reading method for identity-card card-reading terminal, and terminal and system for identity-card card-reading
CN103973543B (en) Instant communicating method and device
CN104702613B (en) Verify the method and system of pickup people's information

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20230104

Address after: 050000 Room 2507, Block B, China Resources MIXC, No. 108, Zhongshan West Road, Qiaoxi District, Shijiazhuang, Hebei

Patentee after: Hebei Jiahu Technology Co.,Ltd.

Address before: 361009 112a, Pioneer Building, Pioneer Park, torch hi tech Zone, Xiamen City, Fujian Province

Patentee before: Xiamen Meitu Mobile Technology Co.,Ltd.