CN105516057A

CN105516057A - Data processing method, apparatus and system

Info

Publication number: CN105516057A
Application number: CN201410494209.8A
Authority: CN
Inventors: 刘飞飞; 陈荣; 陈梦; 董梁; 刘宽; 陈远斌; 余传生
Original assignee: Tencent Technology Shenzhen Co Ltd
Current assignee: Tencent Technology Shenzhen Co Ltd
Priority date: 2014-09-24
Filing date: 2014-09-24
Publication date: 2016-04-20
Anticipated expiration: 2034-09-24
Also published as: CN105516057B

Abstract

The invention discloses a data processing method. The data processing method comprises based on the operation data of a first client on a data processing platform, prompting the first client to perform identity verification; receiving the identity verification result information returned from a second client, wherein the second client is a third party client which is preset for the first client based on the data processing platform and is used for verifying the identity of the first client; the identity verification result information is the result information which is transmitted from the second client and is used for indicating whether the first client passes the identify verification after the first client and the second client carry out identify verification; and when the first client is authorized to perform operation according to the identity verification result information, performing the corresponding operation processing according to the operation data. The invention also discloses a data processing apparatus and system. The data processing method, apparatus and system can solve the problem that in the prior art the user must call a specific number so that the line is busy and calling often fails, and can improve the safety for identify verification.

Description

A kind of data processing method, Apparatus and system

Technical field

The present invention relates to computer internet field, particularly relate to data processing method, Apparatus and system.

Background technology

Along with the development of electronics technology and Internet technology, the function of electronic equipment (particularly Intelligent mobile equipment) from strength to strength, as long as user installs various application program on an electronic device according to the demand of self, just can complete various affairs.

User utilizes electronic equipment when the various affairs of the Internet process, and often need to submit to some data to show the process of oneself identity, namely Correlation method for data processing platform needs to carry out authentication; Such as buy article on the internet to pay, or transfer accounts to third party, all need to carry out data processing to complete the authentication to user.Intelligent mobile terminal is as the means of current main Portable safety certification, the mode receiving short message verification code is usually used to verify, but this mode is for website operator, each checking all can produce certain cost, by current Freight Basis Yue Wei $0.05 to $0.1/ time, because expense is less and current Internet superman small amount payment is not also facilitate especially, most website operator takes free strategy of providing loans, and has so naturally increased the weight of the operation burden of website.In addition, even if at present the short message certification of one of main identity authentication mode also only supports the intelligent mobile terminal that can receive note, wouldn't support landline telephone certification, this causes certain inconvenience and dangerous to enterprise dominant network ID authentication.

A kind of internet identity authentication based on incoming call is disclosed in prior art, after user needs to adopt active call website or system assigned telephone number (called main frame) when carrying out authentication in internet use process, caller ID is sent to website or system server by this called main frame, the server number (or related information) that (as 1 minute) contrast user submits in limiting time and the number information that called main frame transmits carry out algorithmic match and carry out identity verification, this technology all can carry out certification to mobile phone and fixed telephone number, and can not listening user incoming call in verification process.But said method at least exists following technical problem: user must call out assigned number, because power system capacity is limited, easily cause trunks busy during user's centralized call, usually occurring cannot the phenomenon of access success; In addition, if in intelligent mobile terminal when trojan horse or loss, other people can use this intelligent mobile terminal to complete authentication, and that is above-mentioned identity identifying method is easily bypassed, and fail safe is low.

Summary of the invention

Embodiment of the present invention technical problem to be solved is, a kind of data processing method, data processing equipment and data handling system are provided, solve user in prior art to call out assigned number and easily cause trunks busy, usually occurring cannot the phenomenon of access success, and improves the fail safe of authentication.

In order to solve the problems of the technologies described above, embodiment of the present invention first aspect discloses a kind of data processing method, comprising:

Based on the operating data of the first client in data processing platform (DPP), described first client is pointed out to carry out authentication;

Receive the authentication object information that the second client returns; Described first client and described second client are the client registered in described data processing platform (DPP), and described second client is the third party's client for verifying described first client identity that described first client is preset based on described data processing platform (DPP); Described authentication object information is after described first client and described second client carry out authentication, and what described second client sent is used to indicate described first client whether by the object information of authentication;

When the first client operates according to the mandate of described authentication object information, perform corresponding operational processes according to described operating data.

Embodiment of the present invention second aspect discloses a kind of data processing method, comprising:

Receive authentication and assist solicited message, described authentication assistance solicited message is used to indicate assists to carry out authentication to the first client by data processing platform (DPP);

After carrying out authentication with described first client, return authentication object information by described data processing platform (DPP); Described authentication object information is used to indicate described first client and whether passes through authentication.

The embodiment of the present invention third aspect discloses a kind of data processing equipment, comprising:

Verification tip module, for based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication;

The result information receiving module, for receiving the authentication object information that the second client returns; Described first client and described second client are the client registered in described data processing platform (DPP), and described second client is the third party's client for verifying described first client identity that described first client is preset based on described data processing platform (DPP); Described authentication object information is after described first client and described second client carry out authentication, and what described second client sent is used to indicate described first client whether by the object information of authentication;

Operational module, for when the first client operates according to the mandate of described authentication object information, performs corresponding operational processes according to described operating data.

Embodiment of the present invention fourth aspect discloses a kind of data processing equipment, comprising:

Solicited message receiver module, assists solicited message for receiving authentication, and described authentication assistance solicited message is used to indicate assists to carry out authentication to the first client by data processing platform (DPP);

The result information returns module, after carrying out authentication with described first client, returns authentication object information by described data processing platform (DPP); Described authentication object information is used to indicate described first client and whether passes through authentication.

The embodiment of the present invention the 5th aspect discloses a kind of data handling system, comprises the first data processing equipment and the second data processing equipment, wherein

Described first data processing equipment, based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication; Receive the authentication object information that described second data processing equipment is returned by the second client; Described first client and described second client are the client registered in described data processing platform (DPP), and described second client is the third party's client for verifying described first client identity that described first client is preset based on described data processing platform (DPP); Described authentication object information is after described first client and described second client carry out authentication, and what described second data processing equipment was sent by described second client is used to indicate described first client whether by the object information of authentication; When according to the mandate of described authentication object information, the first client operates, described first data processing equipment performs corresponding operational processes according to described operating data.

The embodiment of the present invention the 6th aspect discloses a kind of computer-readable storage medium, and described computer-readable storage medium has program stored therein, and comprises the embodiment of the present invention first aspect when described program performs, or the Overall Steps of the data processing method of second aspect.

Implement the embodiment of the present invention, user presets the third party's client for assisting identity verification by the first client, when needing to carry out authentication in the process of business operation, this third party's client assists to carry out authentication, and return the result information, thus the operation of authorized user is judged whether again according to this result information, avoid user in prior art to call out assigned number and easily cause trunks busy, usually occurring cannot the phenomenon of access success, if and when to efficiently solve in intelligent mobile terminal trojan horse or lose, other people can use this intelligent mobile terminal to complete authentication, the technical problem that fail safe is low, but also the telephone relation situation with this third party's client can be analyzed, judge whether that authorized user operates further, substantially increase system fail safe in data processing, decrease the loss that user is unnecessary.

Accompanying drawing explanation

In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.

Fig. 1 is the schematic flow sheet of the data processing method that the embodiment of the present invention provides;

Fig. 2 is the schematic diagram that authentication is carried out in prompting in the embodiment of the present invention;

Fig. 3 be authentication object information in the embodiment of the present invention return schematic diagram;

Fig. 4 is the schematic flow sheet of another embodiment of data processing method provided by the invention;

Fig. 5 is the schematic flow sheet of another embodiment of data processing method provided by the invention;

Fig. 6 is the schematic flow sheet of another embodiment of data processing method provided by the invention;

Fig. 7 is the schematic flow sheet of another embodiment of data processing method provided by the invention;

Fig. 8 is the structural representation of the data processing equipment that the embodiment of the present invention provides;

Fig. 9 is the structural representation of another embodiment of data processing equipment provided by the invention;

Figure 10 is the structural representation of another embodiment of data processing equipment provided by the invention;

Figure 11 is the structural representation of another embodiment of data processing equipment provided by the invention;

Figure 12 is the structural representation of verification tip module provided by the invention;

Figure 13 is the structural representation of another embodiment of data processing equipment provided by the invention;

Figure 14 is the structural representation of another embodiment of data processing equipment provided by the invention;

Figure 15 is the structural representation of another embodiment of data processing equipment provided by the invention;

Figure 16 is the structural representation of another embodiment of data processing equipment provided by the invention;

Figure 17 is the structural representation of data handling system provided by the invention;

Figure 18 is the structural representation of another embodiment of data handling system provided by the invention.

Embodiment

Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.

Data processing platform (DPP) in each embodiment of the present invention includes but not limited to the internal data treatment system etc. of mobile terminal payment platform, bank transfer platform, certain enterprise or department, user can log in this data processing platform (DPP) and carry out relevant issues or the business such as delivery operation, bank transfer operation, and this data processing platform (DPP) performs process related data according to the operation of login user; Client in each embodiment of the present invention, comprises the first client and the second client etc., specifically can refer to user log in this data processing platform (DPP) after client, namely refer to the account of user, such as email address, phone number or other mark;

The data process application of third party's exploitation that the data processing platform (DPP) in each embodiment of the present invention can be installed on mobile device or mobile terminal for user and the data processing platform (DPP) that generates; Will be understood that, for the data processing platform (DPP) on this mobile device, third party developer often arranges background service system, carrys out the data service in this data processing platform (DPP) of assist process by Internet Transmission;

The data processing method of each embodiment of the present invention namely can in above-mentioned application scenarios, in conjunction with logging in the mobile device of the first client, the mobile device logging in the second client and background service system, user presets the third party's client (i.e. the second client) for assisting identity verification by the first client, when user needs to carry out authentication in the process of business operation, this third party's client assists to carry out authentication, and return the result information, and then judge whether the operation of authorized user again according to this result information.

Below, the schematic flow sheet of the data processing method that the embodiment of the present invention shown in composition graphs 1 provides, first from logging in the mobile device side of the first client to describe technical scheme of the present invention, comprises the steps:

Step S100: based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication;

Particularly, user can use mobile device to log in this data processing platform (DPP), and login account can be the first client, and user can operate with finishing service at the enterprising line operate of this data processing platform (DPP) based on the first client logged in, and such as carries out payment processes; So this data processing platform (DPP) is receiving and processing in the process of the operating data that this first client (i.e. user) inputs, and this first client can be pointed out to carry out authentication by demand;

Further, operating data can be sent to background service system by this data processing platform (DPP), detects this first client whether occur exception based on the operating data of data processing platform (DPP) by background service system; Such as user carries out delivery operation by this first client, if detect that the too high or payment frequency of the amount of payment is too fast etc., can show to occur extremely, so background service system can return abnormal information to this data processing platform (DPP), and this data processing platform (DPP) points out this first client to carry out authentication after receiving this abnormal information; Particularly, the schematic diagram of authentication is carried out in prompting in the embodiment of the present invention as shown in Figure 2, the mobile device of user is for mobile phone, the data processing platform (DPP) run in mobile phone can generate the element such as a reminding window or the prompting page, then show user to point out, as the content displaying of " the entering strong authentication flow process " in Fig. 2.Will be understood that, the embodiment of the present invention is not limited to the authentication schematic diagram shown in Fig. 2, and Fig. 2 is one of them execution mode.

Step S102: receive the authentication object information that the second client returns; Described first client and described second client are the client registered in described data processing platform (DPP), and described second client is the third party's client for verifying described first client identity that described first client is preset based on described data processing platform (DPP); Described authentication object information is after described first client and described second client carry out authentication, and what described second client sent is used to indicate described first client whether by the object information of authentication;

Particularly, step S100 is before prompting first client carries out authentication, and this data processing platform (DPP) can also receive and preserve the second client-side information that this first client inputs based on this data processing platform (DPP); This second client is the third party's client for verifying this first client identity that this first client is preset based on this data processing platform (DPP), such as, this data processing platform (DPP) can comprise the address list module between user, namely user can be provided with multiple good friend, so can user can from the multiple good friends be provided with, select one or more as the good friend for assisting identity verification; Will be understood that, multiple good friends that user is arranged register in this data processing platform (DPP), all have the login account of self, the second client so in the embodiment of the present invention namely can see as user good friend log in this data processing platform (DPP) after client, belong to the third party's client beyond the first client and server; Will be understood that, the second client-side information received can be transferred to background service system and preserve by this data processing platform (DPP).

Further, after in step S100, this data processing platform (DPP) points out the first client to carry out authentication, this first client and this second client carry out authentication, this first client can carry out voice with this second client and link up and to verify or video is linked up and verified particularly, and after authentication, this second client returns authentication object information by this data processing platform (DPP) to this first client, authentication object information in the embodiment of the present invention as shown in Figure 3 return schematic diagram, for mobile phone, in the data processing platform (DPP) run in mobile phone good friend can be clicked by this second client " by " button indicates and passes through authentication, click " refusal " button indicates and does not pass through authentication, authentication object information is returned to this first client to complete, will be understood that, be not limited to the button that content is " passing through " and " refusal ", can be " legal " and " illegal ", or " correctly " and " mistake " etc., what the embodiment of the present invention was not limited to the authentication object information shown in Fig. 3 returns schematic diagram, and Fig. 3 is one of them execution mode.

Step S104: when the first client operates according to the mandate of described authentication object information, perform corresponding operational processes according to described operating data.

Particularly, after this data processing platform (DPP) receives this authentication object information, know whether this second client is passed through the authentication of this first client by resolving this authentication object information, if parse this authentication object information do not pass through authentication for indicating described first client, this first client is not then authorized to operate, this operation of this first client of direct refusal, namely can will verify that the information do not passed through sends to background service system, background service system refuses this operation of this first client, and return processing response information to data processing platform (DPP), if be verified, so this data processing platform (DPP) directly can authorize this operation of this first client, namely the information be verified can be sent to background service system, this operation of this first client of background service system mandate, and return processing response information to data processing platform (DPP), or, after this data processing platform (DPP) receives this authentication object information, after resolving this authentication object information and knowing that this second client authentication to this first client is passed through, this data processing platform (DPP) can also arrange other verification conditions again to do further authentication, and this first client of ultimate authority operates, and perform corresponding operational processes.

Further, in the step S100 of Fig. 1 embodiment of the present invention, this data processing platform (DPP) is pointed out the first client to carry out authentication can to comprise and send outside authentication information to described first client, second client-side information of this data processing platform (DPP) according to this first client input of preserving can also be comprised, assist solicited message to this second client push authentication.That is, after prompting first client carries out authentication, authentication can be initiated to the second client by the first client, also authentication can be initiated by the second client to the first client, and after authentication, return authentication object information by the second client to this data processing platform (DPP).

Again further, in the embodiment of the present invention, this first client can comprise phone information corresponding to the second client based on the second client-side information that this data processing platform (DPP) inputs, carry out telephone communication with the first client and the second client to be below described to complete authentication, the schematic flow sheet of another embodiment of data processing method provided by the invention as shown in Figure 4, first initiatively initiate authentication to the second client for the first client, comprising:

Step S400: data processing platform (DPP), based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication;

Particularly, with reference to the step S100 in above-mentioned Fig. 1 embodiment, can repeat no more here.

Step S402: after this first client receives described authentication information, the phone information corresponding according to described second client and described second client carry out telephone communication, to complete authentication;

Particularly, after user sees authentication information, can according to the second client-side information pre-entered, the user corresponding to this second client initiates authentication, namely called to the mobile device of the second client by the mobile device of local terminal, log in user corresponding to the second client and verify whether the user of current login first client is real user by communication on telephone, and after authentication (namely after end of conversation), return authentication object information by this data processing platform (DPP) to this first client;

Step S404: data processing platform (DPP) receives the authentication object information that the second client returns;

Step S406: when the first client operates according to the mandate of described authentication object information, data processing platform (DPP) performs corresponding operational processes according to described operating data.

Particularly, step S404 and step S406 can be corresponding to the step S102 in above-mentioned Fig. 1 embodiment and step S104, repeats no more here.

The schematic flow sheet of another embodiment of data processing method provided by the invention as shown in Figure 5 again, first initiatively initiate authentication to the first client for the second client, comprising:

Step S500: data processing platform (DPP), based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication;

Step S502: the second client-side information that data processing platform (DPP) pre-enters according to this first client, assists solicited message to this second client push authentication;

Particularly, this data processing platform (DPP) is assisted after solicited message to this second client push authentication, also can notify this first client to the second client push authentication assist solicited message, to inform that user carries out strong authentication flow process.

Step S504: this second client carries out telephone communication, to complete authentication with described first client after receiving described authentication assistance solicited message;

Particularly, after the user having logged in the second client sees that solicited message is assisted in authentication, know the authentication needing to assist to carry out this first client, so can initiate authentication to the user (i.e. the current user having logged in this first client) that this first client is corresponding, namely called to the mobile device of the first client by the mobile terminal of the second client, log in user corresponding to the second client and verify whether the user of current login first client is real user by communication on telephone, and after authentication (namely after end of conversation), authentication object information is returned to this first client by this data processing platform (DPP).

Step S506: data processing platform (DPP) receives the authentication object information that the second client returns;

Particularly, step S506 can be corresponding to the step S102 in above-mentioned Fig. 1 embodiment, repeats no more here.

Step S508: when the first client operates according to the mandate of described authentication object information, data processing platform (DPP) performs corresponding operational processes according to described operating data.

Particularly, step S508 can be corresponding to the step S104 in above-mentioned Fig. 1 embodiment, and after this data processing platform (DPP) receives this authentication object information, after resolving this authentication object information and knowing that this second client authentication to this first client is passed through, this data processing platform (DPP) also arranges other verification conditions to do further authentication, in detail, can comprise the steps:

This data processing platform (DPP) obtains call time information and the duration of call information of this first client and this second client; And work as according to this call time information and duration of call information, judge that this first client and this second client have carried out telephone communication after this prompting first client carries out authentication, and the duration of call of this telephone communication reaches the first predetermined threshold value, then authorize this first client to operate, perform this performs corresponding operational processes step according to this operating data.

Particularly, this data processing platform (DPP) can get message registration from the mobile device of login first client, and find out from message registration and the call moment of this second client and the duration of call, exclude the message registration carrying out before authentication in this first client of prompting, only judge at the message registration of pointing out this first client to carry out after authentication, and analyze this duration of call and whether reach the first predetermined threshold value, this first predetermined threshold value can be 1 minute or 2 minutes etc., and the present invention is not restricted; Have multiple when finding out at this first client message registration carried out after authentication of prompting, so can analyze one by one and judge whether the duration of call reaches the first predetermined threshold value, and when judging to have at least one to reach the first predetermined threshold value by duration, just this first client of ultimate authority operates, and performs this performs corresponding operational processes step according to this operating data; Or after judging to have at least one to reach the first predetermined threshold value by duration, judged result is sent to background service system, carry out this first client of ultimate authority by background service system according to this judged result to operate, perform this performs corresponding operational processes step according to this operating data.

It should be noted that, in the embodiment of the present invention, the first client can comprise multiple for assisting the client-side information of authentication based on the second client-side information that this data processing platform (DPP) inputs; This second client can comprise the plurality of for assisting the client of authentication.That is, what user can select wherein from the multiple good friends be provided with is multiple as the good friend for assisting identity verification; So to carry out can also comprising in the process of authentication according to this preservation in this first client of prompting multiple for assisting the client-side information of authentication for this data processing platform (DPP), select at least two for assisting the client of authentication; And when sending authentication information to this first client, at least two that can notify that this first client selects for assisting the client of authentication; So solicited message is assisted to comprise to described second client push authentication: to assist solicited message at least two that select for assisting the client push authentication of authentication.

Particularly, the schematic flow sheet of another embodiment of the data processing method provided by the invention shown in composition graphs 6, carries out telephone communication with the first client and the second client equally and is described to complete authentication, comprising:

Step S600: data processing platform (DPP), based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication;

Step S602: the second client-side information that data processing platform (DPP) pre-enters according to this first client, selects at least two for assisting the client of authentication;

Particularly, such as this first client has pre-entered 6 for assisting the client of authentication, and be stored in background service system, so this data processing platform (DPP) calls the second client-side information that background service system is preserved, then according to these 6 for assisting the information of the client of authentication, select at least two and assist authentication, such as, can select 4, or whole etc., can be self-defined or select according to the number of default setting according to user's self-demand.

Step S604: data processing platform (DPP) assists solicited message at least two that select for assisting the client push authentication of authentication;

Particularly, such as this data processing platform (DPP) have selected 4 for assisting the client of authentication, assist solicited message so just to respectively these 4 client push authentications, also can notify simultaneously this first client to 4 client push of this selection authentication assist solicited message, to inform that user carries out strong authentication flow process.

Step S606: the second client carries out telephone communication, to complete authentication with described first client after receiving described authentication assistance solicited message;

Particularly, such as this data processing platform (DPP) to 4 client push authentication assist solicited message, after so these 4 clients receive authentication assistance solicited message, know the authentication needing to assist to carry out this first client, so can initiate authentication respectively to the user that this first client is corresponding separately, namely be called to the mobile device of the first client by the mobile terminal of the second client; Certainly this step also can be that the first client is called respectively to the user that these 4 clients are corresponding, carries out authentication.

Step S608: this second client returns authentication object information to data processing platform (DPP);

Particularly, such as this data processing platform (DPP) to 4 client push authentication assist solicited message, so after authentication, these 4 clients return authentication object information respectively towards this data processing platform (DPP).

Step S610: data processing platform (DPP) receives the authentication object information that the second client returns;

Step S612: when all authentication object informations received for described first client of instruction by authentication time, data processing platform (DPP) obtains each for assisting call time information and the duration of call information of the client of authentication of described first client and selection respectively;

Particularly, such as this data processing platform (DPP) to 4 client push authentication assist solicited message, so when 4 the authentication object informations received be all this first client of instruction by authentication time, just carry out each for assisting call time information and the duration of call information of the client of authentication of acquisition first client and selection; If there is at least 1 to be when indicating this first client not by authentication, then directly can perform step S618 in the authentication object information received.

Step S614: judge whether to authorize according to described call time information and duration of call information;

Particularly, when according to described call time information and duration of call information, to judge after described prompting first client carries out authentication described first client and described for assisting the client of authentication to carry out telephone communication, and the ratio for the client number of assisting authentication of the duration of call telephone relation number and described selection that reach this first predetermined threshold value reaches the second predetermined threshold value, then perform step S616, otherwise perform step S618; Wherein this second predetermined threshold value can be the numerical value of the self-defined or default setting of user's self-demand, can be such as 50%, 60% etc., such as the second predetermined threshold value is 50%, and have selected 4 for assisting the client of authentication, so when the telephone relation number reaching the first predetermined threshold value has 3, show to reach the second predetermined threshold value, then perform step S616, when the telephone relation number reaching the first predetermined threshold value has 1, show not reach this second predetermined threshold value, then perform step S618;

Will be understood that, if the telephone relation number that the duration of call reaches this first predetermined threshold value reaches the 3rd predetermined threshold value, the first client then can be authorized to operate, such as the 3rd predetermined threshold value is N/2, wherein N is the client number for assisting authentication that this data processing platform (DPP) is selected, so the 3rd predetermined threshold value N/2 is equivalent in fact above-mentioned second predetermined threshold value is the situation of 50%, therefore the embodiment of the present invention is not limited to the expression form of above-mentioned " ratio for the client number of assisting authentication of telephone relation number and described selection that the duration of call reaches this first predetermined threshold value reaches the second predetermined threshold value ", as long as the identical in fact protection range all belonging to the embodiment of the present invention.

Step S616: described in data processing platform (DPP) mandate, the first client operates, performs and describedly performs corresponding operational processes according to described operating data;

Step S618: described first client of data processing platform (DPP) refusal operates, and does not perform and describedly performs corresponding operational processes according to described operating data.

Below, for the ease of implementing the such scheme of the embodiment of the present invention better, the schematic flow sheet of another embodiment of data processing method provided by the invention as shown in Figure 7, the embodiment of the present invention also correspondence provides another data processing method, from logging in the mobile device side of the second client to describe technical scheme of the present invention, comprise the steps:

Step S700: receive authentication and assist solicited message, described authentication assistance solicited message is used to indicate assists to carry out authentication to the first client by data processing platform (DPP);

Particularly, this second client receives the authentication assistance solicited message that data processing platform (DPP) sends, and this second client is client that is registered and that log in this data processing platform (DPP).

Step S702: after carrying out authentication with described first client, return authentication object information by described data processing platform (DPP); Described authentication object information is used to indicate described first client and whether passes through authentication.

Particularly, shown in reference diagram 3, after this second client and the first client carry out authentication, authentication object information can be returned by described data processing platform (DPP); This authentication can be initiated by the first client, also can be initiated by the second client.Such as, this second client receives authentication and assists solicited message, knows and needs to carry out authentication to this first client, then can assist solicited message according to this authentication, telephone communication is carried out, to carry out authentication to this first client with this first client.

Will be understood that, the implementation of Fig. 7 embodiment of the present invention, specifically referring to figs. 1 to the associated description in Fig. 6 embodiment, can repeat no more here.

For the ease of implementing the such scheme of the embodiment of the present invention better, the present invention also correspondence provides a kind of data processing equipment, the structural representation of the data processing equipment that the embodiment of the present invention as shown in Figure 8 provides, data processing equipment 80 can comprise: verification tip module 800, the result information receiving module 802 and operational module 804, wherein

Verification tip module 800, for based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication;

The authentication object information that the result information receiving module 802 returns for receiving the second client; Described first client and described second client are the client registered in described data processing platform (DPP), and described second client is the third party's client for verifying described first client identity that described first client is preset based on described data processing platform (DPP); Described authentication object information is after described first client and described second client carry out authentication, and what described second client sent is used to indicate described first client whether by the object information of authentication;

Operational module 804, for when the first client operates according to the mandate of described authentication object information, performs corresponding operational processes according to described operating data.

Particularly, the structural representation of another embodiment of data processing equipment provided by the invention as shown in Figure 9, data processing equipment 80 comprises outside verification tip module 800, the result information receiving module 802 and operational module 804, can also comprise receiving and preserve module 806, for pointing out in verification tip module 800 before described first client carries out authentication, receiving and preserving the second client-side information that described first client inputs based on described data processing platform (DPP);

Verification tip module 800 can comprise: information transmitting element 8000 and solicited message push unit 8002, wherein

Information transmitting element 8000 is for sending authentication information to described first client;

Solicited message push unit 8002, for the second client-side information according to the described first client input of preserving, assists solicited message to described second client push authentication.

Further, described second client-side information comprises phone information corresponding to described second client; The structural representation of another embodiment of data processing equipment provided by the invention as shown in Figure 10, data processing equipment 80 comprises verification tip module 800, the result information receiving module 802, operational module 804 and receives to be preserved outside module 806, telephone communication module 808 can also be comprised, for after receiving described authentication information, the phone information corresponding according to described second client and described second client carry out telephone communication, to complete authentication; Or receive described authentication assist after solicited message for receiving described second client, the telephone communication set up with described first client, to complete authentication.

Again further, the structural representation of another embodiment of data processing equipment provided by the invention as shown in Figure 11, data processing equipment 80 comprises verification tip module 800, the result information receiving module 802, operational module 804, receives and preserve outside module 806 and telephone communication module 808, first information acquisition module 8010 and first can also be comprised and judge authorization module 8012, wherein

First information acquisition module 8010 obtains call time information and the duration of call information of described first client and described second client after being indicate described first client by authentication for the authentication object information that described second client received when the result letter receiver module 802 returns;

First judges that authorization module 8012 is for working as according to described call time information and duration of call information, judge that described first client and described second client have carried out telephone communication after described prompting first client carries out authentication, and the duration of call of described telephone communication reaches the first predetermined threshold value, then authorize described first client to operate, trigger action module 804 performs the described step performing corresponding operational processes according to described operating data.

Again further, the first client in the embodiment of the present invention can comprise multiple for assisting the client-side information of authentication based on the second client-side information that described data processing platform (DPP) inputs; Described second client can comprise described multiple for assisting the client of authentication.The structural representation of verification tip module provided by the invention as shown in Figure 12, verification tip module 800 comprises outside information transmitting element 8000 and solicited message push unit 8002, selected cell 8004 can also be comprised, multiple for assisting the client-side information of authentication for according to described preservation, select at least two for assisting the client of authentication;

Information transmitting element 8000 specifically for sending authentication information to described first client, and notifies that at least two of described first client selection for assisting the client of authentication;

Solicited message push unit 8002 is specifically for assisting solicited message at least two that select for assisting the client push authentication of authentication.

Again further, the result information receiving module 802 in the embodiment of the present invention can specifically for receiving each authentication object information for assisting the client of authentication to return of described selection; The structural representation of another embodiment of data processing equipment provided by the invention as shown in Figure 13, data processing equipment 80 comprises verification tip module 800, the result information receiving module 802, operational module 804, receives and preserve outside module 806 and telephone communication module 808, the second data obtaining module 8014 and second can also be comprised and judge authorization module 8016, wherein

Second data obtaining module 8014 is for obtaining each for assisting call time information and the duration of call information of the client of authentication of described first client and selection respectively;

Second judges that authorization module 8016 is for working as according to described call time information and duration of call information, to judge after described prompting first client carries out authentication described first client and described for assisting the client of authentication to carry out telephone communication, and the ratio for the client number of assisting authentication of the duration of call telephone relation number and described selection that reach the first predetermined threshold value reaches the second predetermined threshold value, described first client is then authorized to operate, trigger action module 804 performs the described step performing corresponding operational processes according to described operating data.

Particularly, the authentication object information that operational module 804 in the embodiment of the present invention also returns for receiving described second client when the result information receiving module 802 is indicate described first client not by the object information of authentication, then do not authorize described first client to operate.

Refer to Figure 14, Figure 14 is the structural representation of another embodiment of data processing equipment provided by the invention.Wherein, as shown in figure 14, data processing equipment 140 can comprise: at least one processor 1401, such as CPU, at least one network interface 1404, user interface 1403, memory 1405, at least one communication bus 1402 and display screen 1406.Wherein, communication bus 1402 is for realizing the connection communication between these assemblies.Wherein, user interface 1403 can comprise display screen, keyboard or mouse etc.Network interface 1404 optionally can comprise wireline interface, the wave point (as WI-FI interface) of standard.Memory 1405 can be high-speed RAM memory, and also can be non-labile memory (non-volatilememory), such as at least one magnetic disc store, memory 1405 comprises the flash in the embodiment of the present invention.Memory 1405 can also be optionally that at least one is positioned at the storage system away from aforementioned processor 1401.As shown in figure 14, operating system, network communication module, Subscriber Interface Module SIM and data processor can be comprised as in a kind of memory 1405 of computer-readable storage medium.

In the data processing equipment 140 shown in Figure 14, network interface 1404 may be used for connecting background service system, carries out data communication with background service system; And processor 1401 may be used for calling the data processor stored in memory 1405, and perform following operation:

Particularly, processor 1401, before described first client carries out authentication in prompting, also performs: receive and preserve the second client-side information that described first client inputs based on described data processing platform (DPP);

Processor 1401 points out described first client to carry out authentication can to comprise:

Authentication information is sent to described first client;

According to the second client-side information of the described first client input of preserving, assist solicited message to described second client push authentication.

Particularly, described second client-side information comprises phone information corresponding to described second client; Described first client and described second client are carried out authentication and are comprised:

After described first client receives described authentication information, the phone information corresponding according to described second client and described second client carry out telephone communication, to complete authentication; Or

Described second client carries out telephone communication, to complete authentication with described first client after receiving described authentication assistance solicited message.

Particularly, the authentication object information that returns of described second client received when processor 1401 for described first client of instruction by authentication after, also perform:

Obtain call time information and the duration of call information of described first client and described second client;

When according to described call time information and duration of call information, judge that described first client and described second client have carried out telephone communication after described prompting first client carries out authentication, and the duration of call of described telephone communication reaches the first predetermined threshold value, then authorize described first client to operate, perform the described step performing corresponding operational processes according to described operating data.

Particularly, described first client comprises multiple for assisting the client-side information of authentication based on the second client-side information that described data processing platform (DPP) inputs; Described second client comprises described multiple for assisting the client of authentication.

Particularly, processor 1401 points out described first client to carry out authentication also to comprise: multiple for assisting the client-side information of authentication according to described preservation, selects at least two for assisting the client of authentication;

Processor 1401 sends authentication information to described first client and comprises: send authentication information to described first client, and notifies that at least two of described first client selection for assisting the client of authentication;

Processor 1401 assists solicited message to comprise to described second client push authentication: assist solicited message at least two that select for assisting the client push authentication of authentication.

Particularly, processor 1401 receives the authentication object information that the second client returns and comprises: each authentication object information for assisting the client of authentication to return receiving described selection;

The all authentication object informations received when processor 1401 are, after described first client of instruction passes through authentication, can also perform:

Obtain each for assisting call time information and the duration of call information of the client of authentication of described first client and selection respectively;

When according to described call time information and duration of call information, to judge after described prompting first client carries out authentication described first client and described for assisting the client of authentication to carry out telephone communication, and the ratio for the client number of assisting authentication of the duration of call telephone relation number and described selection that reach the first predetermined threshold value reaches the second predetermined threshold value, then authorize described first client to operate, perform the described step performing corresponding operational processes according to described operating data.

Particularly, when processor 1401 receive authentication object information that described second client returns be described first client of instruction not by the object information of authentication, then do not authorize described first client to operate.

Particularly, processor 1401, based on the operating data of the first client in data processing platform (DPP), is pointed out described first client to carry out authentication and is comprised:

Detect described first client by background service system and whether occur exception based on the operating data of data processing platform (DPP);

When the test results is yes, then described first client is pointed out to carry out authentication.

It should be noted that, the data processing equipment 80 in the embodiment of the present invention or data processing equipment 140 can be personal computer or the electronic equipment such as mobile intelligent terminal, panel computer; Data processing equipment 80 or data processing equipment 140 can be provided with this data processing platform (DPP), user can enter this data processing platform (DPP) by registration and login account, the first client that the first client that the user namely in the embodiment of the present invention logs in specifically logs on data processing equipment 80 or data processing equipment 140; And the second client is other users by installation data processing platform on respective data processing equipment, and in this data processing platform (DPP) registration and the client that logs in.

Will be understood that, in data processing equipment 80 or data processing equipment 140, the function of each module may correspond to the specific implementation with reference to Fig. 1 to Fig. 6 any embodiment in above-mentioned each embodiment of the method, repeats no more here.

Accordingly, the invention also discloses another kind of data processing equipment, the structural representation of another embodiment of data processing equipment provided by the invention as shown in Figure 15, data processing equipment 150 can comprise solicited message receiver module 1500 and the result information returns module 1502, wherein

Solicited message receiver module 1500 assists solicited message for receiving authentication, and described authentication assistance solicited message is used to indicate assists to carry out authentication to the first client by data processing platform (DPP);

The result information returns module 1502 for after carrying out authentication with described first client, returns authentication object information by described data processing platform (DPP); Described authentication object information is used to indicate described first client and whether passes through authentication.

Particularly, the structural representation of another embodiment of data processing equipment provided by the invention as shown in Figure 16, data processing equipment 150 can comprise solicited message receiver module 1500 and the result information returns outside module 1502, telephone communication authentication module 1504 can also be comprised, for receive authentication assistance solicited message at solicited message receiver module 1500 after, solicited message is assisted according to described authentication, telephone communication is carried out, to carry out authentication to described first client with described first client.

It should be noted that, the data processing equipment 150 in the embodiment of the present invention can be personal computer or the electronic equipment such as mobile intelligent terminal, panel computer; Data processing equipment 150 can be provided with this data processing platform (DPP), user can enter this data processing platform (DPP) by registration and login account, the second client that the second client that the user namely in the embodiment of the present invention logs in specifically logs on data processing equipment 150.

Will be understood that, in data processing equipment 150 or data processing equipment 150, the function of each module may correspond to the specific implementation with reference to Fig. 7 embodiment in above-mentioned each embodiment of the method, repeats no more here.

Correspondingly, the invention also discloses a kind of data handling system, the structural representation of data handling system provided by the invention as shown in Figure 17, data handling system 170 can comprise the first data processing equipment 1700 and the second data processing equipment 1702, wherein

First data processing equipment 1700, based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication; Receive the authentication object information that the second data processing equipment 1702 is returned by the second client; Described first client and described second client are the client registered in described data processing platform (DPP), and described second client is the third party's client for verifying described first client identity that described first client is preset based on described data processing platform (DPP); Described authentication object information is after described first client and described second client carry out authentication, and what described second data processing equipment was sent by described second client is used to indicate described first client whether by the object information of authentication; When according to the mandate of described authentication object information, the first client operates, the first data processing equipment 1700 performs corresponding operational processes according to described operating data.

Particularly, the structural representation of another embodiment of data handling system provided by the invention as shown in Figure 18, data handling system 170 can comprise outside the first data processing equipment 1700 and the second data processing equipment 1702, background service system 1704 can also be comprised, for pointing out before described first client carries out authentication at the first data processing equipment 1700, detect described first client and whether occur exception based on the operating data of described data processing platform (DPP), and when the test results is yes, triggering the first data processing equipment 1700 points out described first client to carry out authentication.

Particularly, when the first client comprises multiple for assisting the client-side information of authentication based on the second client-side information that described data processing platform (DPP) inputs; Described second client comprise described multiple for assisting the client of authentication time,

First data processing equipment 1700 is each for assisting call time information and the duration of call information of the client of authentication according to described first client got respectively and selection, to judge after described prompting first client carries out authentication described first client and described for assisting the client of authentication to carry out telephone communication, and after the duration of call reaches the telephone relation number of the first predetermined threshold value, described telephone relation number is sent to background service system 1704, whether the ratio for the client number of assisting authentication being analyzed described telephone relation number and selection by background service system 1704 reaches the second predetermined threshold value, if reach the second predetermined threshold value, described first client is authorized to operate, or

Each call time information and duration of call information for assisting the client of authentication of described first client got respectively and selection is sent to background service system 1704 by the first data processing equipment 1700, when background service system 1704 is according to described call time information and duration of call information, to judge after described prompting first client carries out authentication described first client and described for assisting the client of authentication to carry out telephone communication, and the ratio for the client number of assisting authentication of the duration of call telephone relation number and described selection that reach the first predetermined threshold value reaches the second predetermined threshold value, described first client is then authorized to operate.

Will be understood that, the first data processing equipment 1700 can with reference to the implementation of above-mentioned Fig. 8 to Figure 14 any embodiment, and the second data processing equipment 1702 with reference to the implementation of above-mentioned Figure 15 embodiment, can repeat no more here.

In sum, implement the embodiment of the present invention, user presets the third party's client for assisting identity verification by the first client, when needing to carry out authentication in the process of business operation, this third party's client assists to carry out authentication, and return the result information, thus the operation of authorized user is judged whether again according to this result information, avoid user in prior art to call out assigned number and easily cause trunks busy, usually occurring cannot the phenomenon of access success, if and when to efficiently solve in intelligent mobile terminal trojan horse or lose, other people can use this intelligent mobile terminal to complete authentication, the technical problem that fail safe is low, but also the telephone relation situation with this third party's client can be analyzed, judge whether that authorized user operates further, substantially increase system fail safe in data processing, decrease the loss that user is unnecessary.

One of ordinary skill in the art will appreciate that all or part of flow process realized in above-described embodiment method, that the hardware that can carry out instruction relevant by computer program has come, described program can be stored in a computer read/write memory medium, this program, when performing, can comprise the flow process of the embodiment as above-mentioned each side method.Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-OnlyMemory, ROM) or random store-memory body (RandomAccessMemory, RAM) etc.

Above disclosedly be only present pre-ferred embodiments, certainly can not limit the interest field of the present invention with this, therefore according to the equivalent variations that the claims in the present invention are done, still belong to the scope that the present invention is contained.

Claims

1. a data processing method, is characterized in that, comprising:

2. the method for claim 1, is characterized in that, described first client of described prompting also comprises before carrying out authentication: receive and preserve the second client-side information that described first client inputs based on described data processing platform (DPP);

Described first client of described prompting is carried out authentication and is comprised:

Authentication information is sent to described first client;

3. method as claimed in claim 2, it is characterized in that, described second client-side information comprises phone information corresponding to described second client; Described first client and described second client are carried out authentication and are comprised:

4. method as claimed in claim 3, is characterized in that, the authentication object information returned when described second client received for described first client of instruction by authentication after, also comprise:

5. method as claimed in claim 2, it is characterized in that, described first client comprises multiple for assisting the client-side information of authentication based on the second client-side information that described data processing platform (DPP) inputs; Described second client comprises described multiple for assisting the client of authentication.

6. method as claimed in claim 5, it is characterized in that, described first client of described prompting is carried out authentication and is also comprised: multiple for assisting the client-side information of authentication according to described preservation, selects at least two for assisting the client of authentication;

Describedly send authentication information to described first client and comprise: send authentication information to described first client, and at least two that notify that described first client selects for assisting the client of authentication;

Described to described second client push authentication assist solicited message comprise: to select at least two for assist authentication client push authentication assist solicited message.

7. method as claimed in claim 6, it is characterized in that, the authentication object information that described reception second client returns comprises: each authentication object information for assisting the client of authentication to return receiving described selection;

When all authentication object informations received are for described first client of instruction is by after authentication, also comprise:

8. the method as described in any one of claim 1-7, it is characterized in that, when receive authentication object information that described second client returns be described first client of instruction not by the object information of authentication, then do not authorize described first client to operate.

9. the method as described in any one of claim 1-7, is characterized in that, described based on the operating data of the first client in data processing platform (DPP), points out described first client to carry out authentication and comprises:

10. a data processing method, is characterized in that, comprising:

11. methods as claimed in claim 10, is characterized in that, described reception authentication also comprises after assisting solicited message:

Assist solicited message according to described authentication, carry out telephone communication with described first client, to carry out authentication to described first client.

12. 1 kinds of data processing equipments, is characterized in that, comprising:

13. 1 kinds of data processing equipments, is characterized in that, comprising:

14. 1 kinds of data handling systems, is characterized in that, comprise the first data processing equipment and the second data processing equipment, wherein