CN105792203A - Method and system for distinguishing authenticity through data channel and authenticating data through voice channel - Google Patents
Method and system for distinguishing authenticity through data channel and authenticating data through voice channel Download PDFInfo
- Publication number
- CN105792203A CN105792203A CN201610102366.9A CN201610102366A CN105792203A CN 105792203 A CN105792203 A CN 105792203A CN 201610102366 A CN201610102366 A CN 201610102366A CN 105792203 A CN105792203 A CN 105792203A
- Authority
- CN
- China
- Prior art keywords
- data
- authentication
- channel
- call
- unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
Abstract
The invention discloses a method and a system for distinguishing authenticity through a data channel and authenticating data through a voice channel. According to the method and the system, data are transmitted through dual channels for authentication. The method is characterized by comprising the following steps that: when a call is triggered, two call parties transmit authentication data through the data channel to distinguish the authenticity of the other party, and a user mobile phone client only transmits received data input by the user according to a hint to a call center through the voice channel when the user mobile phone client authenticates that data pushed by a call center processing device to which the call center belongs are valid; and the call center processing device only authenticates received data for the voice channel when the call center processing device authenticates that data transmitted by a client device to which a mobile phone number in the call belongs are valid. Through adoption of the method and the system, a counterfeit call center can be prevented from cheating private authentication data of the user, and stealing of important resources or fund of the user in a way of entering a key program after authentication pass through inputting of stolen user private data via a call of a counterfeit user mobile phone number can be prevented.
Description
Technical field
The present invention relates to communications field data and transmit certification, particularly relate to and transmit discriminating data the other side's true and false by data channel, speech channel transmits data authentication.
Background technology
Along with advancing by leaps and bounds of science and technology, technical field has reached certain level, the Internet and communication bring very big convenience to the life of the people, but offender often also avails oneself of the opportunity to get in easily while, and their technical merit also with science and technology development in continuous raising, trick also emerges in an endless stream.As long as the login authentication method of existing platform inputs account number on platform and namely password is authenticated, there is certain my operation non-and cause private data or the stolen risk of password, and transmit private data and password for certification by speech channel or data channel merely, in the process of transmission, private data or password also occur the possibility being intercepted, and cause individual private possession data stolen or fund is stolen.
And forth generation mobile communication technology (being called for short 4G) can realize the high speed Internet access when call, and each province and city, the 4G network whole nation all in laying comprehensively, and the release that this condition has been the present invention is had laid a good foundation.
The advantage of limit high speed Internet access when the present invention converses in conjunction with 4G network edge, realize transmitting authentication data certification by data channel, the speech channel dual pathways by our application program simultaneously, when being characterized in that user mobile phone number and call center's trigger call, both call sides first passes through data channel and transmits authentication data for the other side's certification true and false, user mobile phone client certification draws when the data that call center's process device belonging to call center pushes are legal, just by prompting input data, the user received is passed through speech channel and transmits to call center;Call center processes device authentication and draws when the data of client terminal device transmission are legal belonging to cell-phone number in call, just speech channel is authenticated to the data received.
Summary of the invention
A kind of data channel distinguishes the true from the false the method for speech channel data authentication, when call center and user mobile phone number bid trigger call, call center processes device need to issue the user with the voice message for certification of the input data by speech channel, and by network data channels to client push authentication data on user mobile phone, user mobile phone end client terminal device also needs to access call center by network data channels and processes unit address simultaneously, processes device to call center and transmits authentication data.Wherein
Call center processes device and includes correctly operating reserved authentication data, next confirmation authentication data and other mutual agreement data last time to client push authentication data on user mobile phone by network data channels;
Client terminal device transmits authentication data by network data channels to call center and includes the PIN identification code of this trigger call SIM and correctly operated reserved authentication data, confirmation next time authentication data, other mutual agreement data last time.
After trigger call, in stipulated time, client terminal device only receives call center and transmits the voice message for certification of the input data by speech channel, network data channels does not receive the authentication data to call center's process device propelling movement, definition the other side is pseudo-call center, not transmits the data of user's input.
After trigger call, in stipulated time, client terminal device speech channel receives the input data transmitted call center for certification voice message, and network data channels receives and processes the authentication data that device pushes to call center, client certificate show that the data that data channel receives are illegal, not transmits the data of user's input.
After trigger call, in stipulated time, client terminal device speech channel receives the input data transmitted call center for certification voice message, and network data channels receives and processes the authentication data that device pushes to call center, client certificate draws the data fit requirement that data channel receives, receive user by prompting input authentication data, give to transmit the data of user's input.
After trigger call, it is stipulated that in the time, call center processes device and does not receive the authentication data that client terminal device is transmitted by data channel, the authentication data that not certification speech channel sends.
After trigger call, it is stipulated that in the time, call center processes device and receives the authentication data that client terminal device is transmitted by data channel, and certification show that the data of transmission are illegal,
Illegal reason is that call center's process device detects that cell-phone number first time uses this service, the data that data channel receives are that client terminal device non-first time uses system default data, other people will be used need to reinstall client application by used mobile phone by voice channel voice message, or notify call center by the mode reached an agreement on, just call center process device redefine, otherwise call center process device cannot authenticate speech channel transmit data whether correct;
Illegal reason is that call center processes device and detects that cell-phone number is existing and used this service, the data that data channel receives are the system default data used client terminal device newly installed first time, by by voice channel voice message client new clothes or again need by reach an agreement on mode notify call center, just call center process device redefine, otherwise call center process device cannot authenticate speech channel transmit data whether correct;
Other reasons is illegal, is not inconsistent by it that situation is self-defined makes prompting, and the authentication data that not certification speech channel sends.
After trigger call, it is stipulated that in the time, call center processes device and receives the authentication data that client terminal device is transmitted by data channel, and certification show that data are legal, waits the data that speech channel to be received transmits.
Call center processes device authentication and draws the data fit requirement that client device network data channel transmits, and speech channel is when receiving the user input data that user mobile phone end transmits, give whether the user input data that certification speech channel is switched to meets the requirements with appointment data.
Call center processes device authentication and show that user input data is undesirable, re-enters correct data for certification by speech channel voice message.
In this call stipulated time, call center processes device repeatedly certification user input data and does not comply with requirement, by the data repeatedly mistake that speech channel voice message inputs, by cutoff call, as please need to again initiated call by checking.
Call center processes certification user input data in the device stipulated time and does not comply with requirement, and mistake exceedes specified number of times, the error in data number of times inputted by speech channel voice message has reached stipulated number, to temporarily stop to provide authentication data, this call will be aborted, and please again reach an agreement on manager as need to be again verified.
Call center process device authentication show that user input data meets the requirements, by the data fit requirement that speech channel voice message inputs, and give enter user ask operating procedure.
A kind of data channel distinguishes the true from the false the system of speech channel data authentication, and system includes call center and processes device, client terminal device and transmission network, wherein
Call center processes device, includes again: pass connection module, call module, authentication module, generation instruction module, logging modle, wherein:
Pass connection module
Speech channel delivery unit: the voice message generating unit generation for calling voice message transmits voice message by speech channel to partner;
Data channel delivery unit: the authentication data generating unit generation for calling true and false certification is pushed to given client end by data channel;
Speech channel receives unit: for receiving the user input data of speech channel the other side transmission and these data being delivered voice conversation authentication ' unit;
Data channel receives unit: for receiving authentication data that given client end sent by data channel and these data being delivered data channel authentication ' unit;
Call module
Calling unit: for calling designated mobile phone number according to instruction;
Answer unit: for connecting the calling of cell-phone number request;
Authentication module
Speech channel authentication ' unit: the data demand drawn according to data channel authentication ' unit certification, what when data that certification draws are legal, certification speech channel received that unit transmits receives whether data meet the requirements;
Data channel authentication ' unit: whether legal receive these data of certification during the data of data channel reception unit transmission, illegal, make prompting according to its reason to voice message generation unit transmission or speech channel authentication ' unit;Legal, transmitting data to voice channel authentication ' unit legal, the data that can speech channel reception unit be received are authenticated:
Generation module
True and false certification generates unit: automatically generate and correctly operated reserved authentication data last time, next time confirms authentication data, other mutual agreement data;
Voice message generates unit: automatically generate voice message;
Logging modle
Storing data record unit: record stores pre-setting authentication data, transmit the cell-phone number of user's input authentication data, cell-phone number correspondence client installs the physical address of place mobile phone;
Real-time data record unit: record is call every time, generates authentication data, and data channel transmits and receives, and speech channel transmits and receives, authentication scenario.
Client terminal device, includes again: pass connection module, privately owned call module, generation module, detection module, authentication module, logging modle, wherein
Pass connection module
Speech channel delivery unit: for transferring the data that on keyboard unit, user inputs by prompting, perform according to the certification that data channel authentication ' unit transmits, certification show that the authentication data received is illegal, not transmits user by the data pointing out input by speech channel to call center;Certification show that the authentication data received is legal, gives to transmit user by the data pointing out input by speech channel to call center;
Data channel delivery unit: the authentication data generated for calling data authentication generation module is transmitted to call center by data channel;
Data channel receives unit: for receiving the authentication data that call center data channel transfer unit is sent by data channel, and these data are delivered data channel authentication ' unit;
Privately owned call module
Shielding harness answers unit: answers interface for shielding harness when monitoring call center numbers request call, intercepts call request and enter the called subitem of telephony unit;
Telephony unit: have caller subitem " calling ", " abandoning " or called subitem " on ", " hanging up " to select for user;
Keyboard unit: supply user's input operation when connecting call;
Voice playing unit: receive the voice message that call center's speech channel delivery unit sends, is play by receiver or speaker;
Detection module is abnormal for the generation of detecting device software program or lacks, reduce, change, change, increase concerns;
What authentication module got that data channel receives that unit transmits gives certification when receiving authentication data, and authentication result is to speech channel delivery unit transmission;
Automatically generate the PIN identification code of this trigger call SIM after data authentication generation module trigger call and correctly operated reserved authentication data, confirmation next time authentication data, other mutual agreement data last time;
Logging modle real time record is conversed every time, is generated the situation that authentication data, data channel transmission and reception, speech channel transmission, certification, user input.
Transmission network, is available for a side request call the opposing party, and after trigger call, both sides can transmit authentication data by data channel to the other side;Call center can transmit voice message by speech channel to the other side, and client can transmit the data of user's input by speech channel to the other side.
Described call center processes device and has at least bound a call center numbers, for by its request call and connection incoming call call.
Described client terminal device first time uses and correctly operated reserved authentication data the last time of this service is system default data.
Described call center process device detects that cell-phone number is existing and used this service, what the data authentication that data channel receives was derived as client terminal device transmission is newly installed first time use system default data, by voice channel voice message client new clothes or again need by reach an agreement on mode notify call center, just call center process device redefine, otherwise call center process device cannot authenticate speech channel transmit data whether correct.
Described call center processes device and detects that cell-phone number first time uses this service, what the data authentication that data channel receives was derived as client terminal device transmission is nonsystematic default data, use other people need to reinstall client application by used mobile phone by voice channel voice message, or notify call center by the mode reached an agreement on, just call center process device redefine, otherwise call center process device cannot authenticate speech channel transmit data whether correct.
After trigger call in the stipulated time, when described client data channel interface receives the authentication data that call center processes device propelling movement all the time, assert that the other side is pseudo-call center.
Described client data channel interface is received call center and is processed the authentication data that device transmits, and its data are authenticated by authentication ' unit, and certification draws
Data are empty, do not transmit when receiving user by prompting input data;
Data are illegal, and speech channel delivery unit does not transmit when receiving keyboard unit user by prompting input data;
When data are legal, speech channel delivery unit transmits when receiving keyboard unit user by prompting input data.
After trigger call in the stipulated time, when described call center processes the authentication data that device data channel interface receives client terminal device transmission all the time, assert that the other side is pseudo-cell-phone number.
Described call center process device by the authentication data that data channel transmits include detection client environment whether be destroyed, device operating environment safety and other is it may happen that faulting instruction.
Described call center processes device data channel interface and receives the authentication data that client transmits, and when speech channel interface receives the user input data that partner transmits, its data are authenticated by authentication ' unit, and certification draws
The data that data channel is received are inept, and by not being inconsistent, situation is self-defined makes prompting the authentication data that not certification speech channel receives;
The data fit requirement that data channel is received, when receiving the user input data that its speech channel transmits, gives certification;
The user input data that partner speech channel transmits is undesirable, re-enters correct data for certification by speech channel voice message;
In this call stipulated time, the user input data that partner speech channel transmits is repeatedly undesirable, by the data repeatedly mistake that speech channel voice message inputs, by cutoff call, as please need to again initiated call by checking;
In stipulated time, the user input data that partner speech channel transmits does not comply with requirement, and mistake exceedes specified number of times, the error in data number of times inputted by speech channel voice message has reached specified number of times, to temporarily stop to provide authentication data, this call will be aborted, and please again reach an agreement on manager as need to be again verified;
Partner speech channel transmit user input data meet the requirements, by the data fit requirement that speech channel voice message inputs, and give enter user ask operating procedure.
Described client terminal device is mounted in the APP application program on user mobile phone, and for selecting the incoming call request at calling call center and call establishment center for user, trigger call realizes data transmission;
Described client terminal device idle only has shielding harness to answer unit in operation, other major part program is in silent status, when shielding harness answer unit monitor designated call center incoming call request call or user by caller request call designated call center time, other all startup of mourning in silence of this apparatus system is awaited orders, with call center's end of conversation, answering unit except shielding harness running, other modular unit enters silent status.
Described client terminal device shielding harness answers unit when monitoring designated call center incoming call request, interceptions incoming call request leads into the called subitem " on " of telephony unit, " hanging up " page selects to operate for user.
User chooses designated call center to enter telephony unit caller subitem optional " calling " operation or abort operation at client terminal device.
Accompanying drawing explanation
Fig. 1, present system structural representation.
Fig. 2, client terminal device structural representation of the present invention
Fig. 3, call center of the present invention process apparatus structure schematic diagram
Fig. 4, the present patent application realize method flow diagram
Fig. 5, the invention process system schematic
Detailed description of the invention
Present system structure, with reference to Fig. 1,100 client terminal devices and 110 call centers process UNICOM when device occurs to converse by 101 cell-phone numbers and call centers No. 111,110 call centers' process devices 112 pass connection module and pass connection module UNICOM by data channel and 100 clients 102, it is easy to twocouese the other side and transmits authentication data, to sentence the true and false;After 100 client terminal devices and 110 call centers process device UNICOM, after trigger call, call centers No. 111 can transmit voice message by speech channel, and 101 cell-phone number ends can pass through speech channel and transmit user's authentication data by prompting input to call centers No. 111.
The present invention transmits data by the dual pathways, it may be achieved the data channel transmission data that distinguish the true from the false first differentiate the other side's verity, identifies the other side's identity and is whether the data that true time transmits privately owned authentication data again and understanding the other side transmits meet the requirements.
Client terminal device structure of the present invention, with reference to Fig. 2, client terminal device includes 210 biography connection modules, 220 privately owned call modules, 230 detection modules, 240 authentication modules, 250 generation modules, 260 logging modles, wherein
210 pass connection module includes again
211 speech channel delivery units: for transferring the data that on 222 keyboard units, user inputs by prompting, perform according to the certification that data channel 240 authentication module transmits, certification show that the authentication data received is illegal, the data not inputted by prompting to call center transmission user by speech channel: certification show that the authentication data received is legal, give to transmit user by the data pointing out input by speech channel to call center;
212 data channel delivery units: the authentication data generated for calling data authentication 250 generation module is transmitted to call center by data channel;
213 data channel receive unit: for receiving the authentication data that call center 312 data channel delivery unit is sent by data channel, and these data are delivered 250 data channel authentication ' unit;
220 privately owned call modules include again
221 shielding harness answer unit: answer interface for shielding harness when monitoring call center numbers request call, intercept call request and enter the called subitem of telephony unit;
222 keyboard units: supply user's input operation when connecting call;
223 telephony unit: have caller subitem " calling ", " abandoning " or called subitem " on ", " hanging up " to select for user;
224 voice playing unit: receive the voice message that call center's speech channel delivery unit sends, are play by receiver or speaker;
230 detection modules are abnormal for the generation of detecting device software program or lack, reduce, change, change, increase concerns;
What 240 authentication modules got that 214 data channel receive that unit transmit gives certification when receiving authentication data, and authentication result is to 211 speech channel delivery unit transmission;
Automatically generate the PIN identification code of this trigger call SIM after 250 generation module trigger call and correctly operated reserved authentication data, confirmation next time authentication data, other mutual agreement data last time;
260 logging modle real time record are conversed every time, are generated the situation that authentication data, data channel transmission and reception, speech channel transmission, certification, user input.
Call center of the present invention processes apparatus structure, and with reference to Fig. 3, call center processes device and includes 310 biography connection modules, 320 call module, 330 authentication modules, 340 generation modules, 350 logging modles, wherein:
310 pass connection module includes again
311 speech channel delivery units: the voice message generating unit generation for calling 342 voice messages transmits voice message by speech channel to client terminal device:
312 data channel delivery units: the authentication data generating unit generation for calling 341 true and false certifications is pushed to given client end by data channel;
313 speech channels receive unit: for receiving user input data that passage the other side transmits and to 331 voice conversation authentication ' unit transmission;
314 data channel receive unit: for receiving authentication data that given client end sent by data channel and these data being delivered 332 data channel authentication ' unit;
320 call modules include again
321 calling units: for calling designated mobile phone number according to instruction;
322 answer unit: for connecting the calling of cell-phone number request;
330 authentication modules include again
331 speech channel authentication ' unit: the data demand drawn according to 332 data channel authentication ' unit certifications, when data that certification draws are legal, certification speech channel receives whether the data of the reception that unit transmits meet the requirements;
332 data channel authentication ' unit: whether legal receive these data of certification during the data of 314 data channel reception unit transmission, illegal, to 342 voice messages generation unit transmission and make prompting to 331 speech channel authentication ' unit according to its reason;Legal, transmit data to 342 voice channel authentication ' unit legal, the data that 313 speech channels reception unit receive can be authenticated;
340 generation modules include again
341 true and false certifications generate unit: automatically generate and correctly operated reserved authentication data last time, next time confirms authentication data, other mutual agreement data;
342 voice messages generate unit: automatically generate voice message;
350 logging modles include again
351 store data record unit: record stores pre-setting authentication data, transmit the cell-phone number of user's input authentication data, and cell-phone number correspondence client installs the physical address of place mobile phone;
352 real-time data record unit: record is call every time, generate authentication data, and data channel transmits and receives, and speech channel transmits and receives, authentication scenario.
The invention process realizes method, with reference to Fig. 4, call center and the request of user mobile phone number bid, during trigger call, 401 call centers process device and send the voice message for certification of the input data by speech channel to 402 user mobile phones, and need to by network data channels to client push authentication data on user 402 mobile phone, 402 user mobile phone end client terminal devices also need to access call center by network data channels and process unit address simultaneously, and process device transmission authentication data to 401 call centers.Wherein
401 call centers process device and include correctly operating reserved authentication data, next confirmation authentication data and other mutual agreement data last time to client push authentication data on 402 user mobile phones by network data channels;
402 client terminal devices access 401 call centers by network data channels and process unit address, transmit authentication data to 401 call centers and include the PIN identification code of this trigger call SIM and correctly operated reserved authentication data, confirmation next time authentication data, other mutual agreement data last time.
After trigger call, in stipulated time, 413 cell phone customer end devices only receive call center and transmit the voice message for certification of the input data by speech channel, network data channels does not receive the authentication data to call center's process device propelling movement, definition the other side is pseudo-call center, and 424 not transmit the data of user's input.
After trigger call, in stipulated time, 412 cell phone customer end device speech channels receive the input data transmitted call center for certification voice message, and network data channels receives and processes the authentication data that device pushes to call center, whether the data of 423 authentication data channel transfers are legal, show that 431 data received are illegal, enter 424 data not transmitting user's input.
After trigger call, in stipulated time, 412 client terminal device speech channels receive the input data transmitted call center for certification voice message, and network data channels receives and processes the authentication data that device pushes to call center, whether the data of 423 authentication data channel transfers are legal, 432 certifications draw the data fit requirement that data channel receives, and 435 receive user by prompting input authentication data, give to transmit the data of user's input.
432 certifications draw the data fit requirement that data channel receives, and do not receive user by prompting input authentication data in 434 stipulated times, and 437 cannot transmit data.
After trigger call, it is stipulated that in the time, 410 call centers process device and do not receive the authentication data that client terminal device is transmitted by data channel, 421 authentication datas that not certification speech channel sends.
After trigger call, it is stipulated that in the time, 411 call centers process device and receive the authentication data that client terminal device is transmitted by data channel, and whether 422 checking data are legal, and 430 certifications show that the data of transmission are illegal,
The illegal reason of 436A is that call center's process device detects that cell-phone number first time uses this service, the data that data channel receives are that client terminal device non-first time uses system default data, other people will be used need to reinstall client application by used mobile phone by voice channel voice message, or notify call center by the mode reached an agreement on, just call center process device redefine, otherwise call center process device cannot authenticate speech channel transmit data whether correct;
The illegal reason of 438B is that call center processes device and detects that cell-phone number is existing and used this service, the data that data channel receives are the system default data used client terminal device newly installed first time, by by voice channel voice message client new clothes or again need by reach an agreement on mode notify call center, just call center process device redefine, otherwise call center process device cannot authenticate speech channel transmit data whether correct;
439 other reasons C are illegal, are not inconsistent by it that situation is self-defined makes prompting, and the authentication data that not certification speech channel sends.
After trigger call, it is stipulated that in the time, 411 call centers process devices and receive the authentication data that client terminal device transmits by data channel, and 433 certifications show that data are legal, the data of speech channel to be received transmission such as carry out.
433 call centers process device authentication and draw the data fit requirement that client device network data channel transmits, and speech channel receive 435 user mobile phone ends transmit user input data time, whether the user input data that 440 call center's certification speech channels are switched to meets the requirements.
441 call centers process device authentication and show that user input data is undesirable, and 442 re-enter correct data for certification by speech channel voice message.
In this call stipulated time, 443 call centers process device repeatedly certification user input data and do not comply with requirement, the 444 data repeatedly mistakes inputted by speech channel voice message, by cutoff call, as please need to again initiated call by checking.
It is all repeatedly undesirable that 445 call centers process certification user input data in the device stipulated time, and mistake exceedes specified number of times, the error in data number of times inputted by speech channel voice message has reached specified number of times, time-out is provided authentication data by 446, this call will be aborted, and please again reach an agreement on manager as need to be again verified.
447 call centers process device authentications and show that user input data meets the requirements, 448 by speech channel voice message by certification, and give to enter user and ask operating procedure.
The invention process system, with reference to Fig. 5, UNICOM when client terminal device occurs to converse with calling ringing number by cell-phone number with call center's process device, realize 532 call centers' process device speech channel delivery units and receive unit UNICOM by telephone line speech channel and 533 client speech channels, 542 same client speech channel delivery units are also process device speech channel by telephone line speech channel and 543 call centers to receive unit, it is achieved double-directional speech data transmission;Connect the call call center's process device 512 data channel delivery unit of triggering simultaneously and receive unit UNICOM by data network passage with client 513 data channel, same client 522 data channel delivery unit is also process device 523 data channel by data network passage with call center to receive unit, it is achieved the transmission of two-way authentication data.
During trigger call, 511 call centers process device true and false certification generation unit and are responsible for generating authentication data, when 512 data channel delivery units get the authentication data that 511 true and false certifications generate unit generation, transferred and received unit transmission by data channel to client 513 data channel;531 voice messages simultaneously generate unit and also generate voice message data, when 532 speech channel delivery units get the voice message data that 531 voice messages generate unit generation, transferred and received unit transmission by speech channel to client 533 speech channel;Another 521 client terminal device data authentication generation modules also are responsible for generating authentication data, when 522 data channel delivery units get the authentication data that 521 data authentication generation modules generate, transferred and received unit transmission by data channel to call center's process device 523 data channel.
When client terminal device 513 data channel receives the authentication data that unit receives call center's process device 512 data channel delivery unit transmission, the authentication data received delivers 514 data channel authentication modules, when 533 speech channels reception unit receive the voice message that 532 call center's speech channel delivery units send simultaneously, the voice message data received are played out by 534 voice playing unit.514 data channel authentication modules give authentication processing when receiving authentication data, and certification show that the authentication data received is illegal, transmit prompting the other side's data to 542 speech channel delivery units illegal;Certification show that the authentication data received is legal, transmits prompting the other side's data to 542 speech channel delivery units legal.
After 534 voice playing unit play voice message, 541 privately owned keyboard units receive user by prompting input authentication data, authentication data user inputted is to 542 speech channel delivery unit transmission, 542 speech channel delivery units receive the user of 541 privately owned keyboard units transmission by prompting input authentication data, and 514 data channel authentication module to transmit prompting the other side's data illegal, not process device 543 speech channel to call center and receive unit and transmit with in every family by the authentication data of prompting input;542 speech channel delivery units receive the user of 541 privately owned keyboard units transmission by prompting input authentication data, and 514 data channel authentication module transmit prompting the other side's data legal, give to call center process device 543 speech channel receive unit transmit user by prompting input authentication data.
When call center processes the authentication data that device 523 data channel reception unit receives the transmission of client terminal device 522 data channel delivery unit, the authentication data received delivers 524 data channel authentication ' unit, 524 data channel authentication ' unit give authentication processing when receiving authentication data, certification show that the authentication data received is illegal, transmits prompting the other side's data to 544 speech channel delivery units illegal;Certification show that the authentication data received is legal, transmits prompting the other side's data to 544 speech channel delivery units legal.
Call center processes device 543 speech channel reception unit and receives the user of client terminal device 542 speech channel delivery unit transmission by when pointing out the authentication data inputted, and the user received delivers 544 speech channel authentication ' unit certifications by prompting input authentication data.
544 speech channel authentication ' unit receive 524 data channel authentication ' unit, and to transmit prompting the other side's data illegal, and when receiving the user of 543 transmission by prompting input authentication data, whether the authentication data that not certification 543 transmits meets the requirements;It is legal that 544 speech channel authentication ' unit receive 524 data channel authentication ' unit transmission prompting the other side's data, and receive 543 speech channel authentication ' unit transmit user by prompting input authentication data time, give certification 543 speech channel authentication ' unit transmit authentication data whether meet the requirements.
544 speech channel authentication ' unit certifications show that the user input data that 543 speech channel authentication ' unit transmit is undesirable, the situation that will not meet generates unit transmission to 531 voice messages, 531 voice messages generate unit and generate voice message " please re-enter correct data for certification ", and 532 speech channel delivery units call and receive unit transmission to 533 clients.
In this call stipulated time, 544 speech channel authentication ' unit repeatedly certifications show that the user input data that 543 speech channel authentication ' unit transmit is undesirable, 531 voice messages are generated unit and generate voice message " data of input repeatedly mistake; this call will be aborted; as please need to again initiated call by checking ", and 532 speech channel delivery units call and receive unit transmission to 533 clients.
In stipulated time, 544 speech channel authentication ' unit repeatedly certifications show that the user input data that 543 speech channel authentication ' unit transmit is undesirable, and mistake exceedes specified number of times, 531 voice messages generate unit and generate voice message " the error in data number of times of input has reached specified number of times; will temporarily stop to provide authentication data; this call also will be aborted; please again reaches an agreement on manager as need to be again verified ", and 532 speech channel delivery units call and receive unit transmission to 533 clients.
544 speech channel authentication ' unit certifications show that the user input data that 543 speech channel authentication ' unit transmit meets the requirements, 531 voice messages generate unit and generate voice message " your data authentication of input is correct ", 532 speech channel delivery units call to 533 clients receive unit transmission, and give enter user ask operating procedure.
524 data channel authentication ' unit certifications show that the authentication data that the other side that 523 data channel reception unit receive transmits is illegal, illegal reason is for detecting that cell-phone number first time uses this service, the data that data channel receives are that client terminal device non-first time uses system default data, generating unit generation voice message by 531 voice messages " uses other people need to reinstall client application by used mobile phone, or notify call center by the mode reached an agreement on, just process device in call center's redefines, otherwise call center process device cannot authenticate speech channel transmit data whether correct ", unit transmission is received to 533 clients by 532 speech channel delivery units.
524 data channel authentication ' unit certifications show that the authentication data that the other side that 523 data channel reception unit receive transmits is illegal, illegal reason used this service for detecting that cell-phone number is existing, the data that data channel receives are the system default data used client terminal device newly installed first time, " client is newly installed or reinstalls and need to notify call center by the mode reached an agreement on to generate unit generation voice message by 531 voice messages, just process device in call center's redefines, otherwise call center process device cannot authenticate speech channel transmit data whether correct ", unit transmission is received to 533 clients by 532 speech channel delivery units.
After trigger call, in stipulated time, client terminal device 513 data channel receives unit and does not receive what call center 512 data channel delivery unit transmitted authentication data, make the authentication data that receives for " 0 " to 514 data channel authentication module transmission, 514 data channel authentication module certifications are derived as " 0 ", and it is transmitted as " 0 " to 542 speech channel delivery units, when 542 speech channel delivery units receive the user of 541 privately owned keyboard units transmission by prompting input authentication data, not process device 543 speech channel to call center and receive unit transmission user by the authentication data of prompting input.
After trigger call, in stipulated time, call center processes device 523 data channel and receives unit and do not receive what client 522 data channel delivery unit transmitted authentication data, make the authentication data that receives for " 0 " to 524 data channel authentication ' unit transmission, 524 data channel authentication ' unit certifications show that the authentication data received is illegal, and transmit this data to 544 speech channel authentication ' unit, 544 speech channel authentication ' unit receive 543 speeches user by reception unit transmission by when pointing out input authentication data, not certification 543 speech channel receives the user of unit transmission by whether the authentication data of prompting input meets the requirements.
Claims (12)
1. a data channel distinguishes the true from the false the method for speech channel data authentication, this method realizes first passing through data channel transmission authentication data and distinguishes the true from the false, client terminal device certification the other side gives to transmit the data of user's input for true time, whether the user input data that process device authentication the other side in call center's gives certification the other side transmission for true time is legal, purpose prevents a side counterfeiting prior art transmission data from by certification, user being caused damage, it is characterised in that this method comprises the steps:
When A, trigger call, call center processes device by speech channel voice message user's input authentication data and need to generate authentication data by network data channels to client push, and client terminal device need to generate authentication data and processed device by network data channels access call center and transmitted;
Whether the data that B, call center process device, client terminal device certification the other side's data channel transmits are legal;
C, client terminal device authenticated calling centre data channel transfer data legal, receive user by prompting input data time transmit;
The data that D, call center process device authentication client data channel transfer are legal, and when receiving the data of partner cell phone voice channel transfer, give whether these data of certification meet the requirements.
2. method according to claim 1, and during step A trigger call, call center processes device need to generate authentication data by network data channels to client push, and client terminal device need to generate authentication data and accesses call center's process device by network data channels and transmit, wherein
Call center processes device, and by network data channels, to transmitting, client certificate data include correctly operating reserved authentication data last time, next time confirms authentication data and other mutual agreement data;
Client terminal device processes device transmission authentication data by network data channels to call center and includes the PIN identification code of this trigger call SIM and correctly operated reserved authentication data, confirmation next time authentication data, other mutual agreement data last time.
3. method according to claim 1, and call center processes device and by speech channel voice message user's input authentication data and need to generate authentication data by network data channels to client push in step A, client only receives speech channel voice message, do not receive network data channels and transmit authentication data, assert that the other side is pseudo-call center.
4. method according to claim 1, and claim 2 second item call center processes device by network data channels to transmitting client certificate data, after client terminal device receives, whether the data that entrance step B authenticated calling central processing unit is transmitted by data channel are legal, and certification draws
Data are illegal, do not transmit when receiving user by prompting input data;
Data are legal, transmit when receiving user by prompting input data.
5. according to the method described in claim 1, and client terminal device need to generate authentication data and accesses call center by network data channels and process device transmitting in step A, call center processes device and does not receive the authentication data that client terminal device is transmitted by data channel, the authentication data that not certification speech channel sends.
6. according to the method described in claim 1, and claim 2 third item client terminal device processes device by network data channels to call center and transmits authentication data, after call center's process device receives data, whether the data that entrance step B Authentication Client is transmitted by data channel are legal, and certification draws
Data are illegal, and by not being inconsistent, situation is self-defined makes prompting the authentication data that not certification speech channel receives;
Data are legal, give certification when receiving the data of partner cell phone voice channel transfer.
7. according to the method described in claim 1, and the data of step D or claim 6 third item call center process device authentication client data channel transfer are legal, and when receiving the data of partner cell phone voice channel transfer, give whether these data of certification meet the requirements
Certification show that user input data is undesirable, re-enters correct data for certification by speech channel voice message;
In this call stipulated time, repeatedly certification user input data does not comply with requirement, by the data repeatedly mistake that speech channel voice message inputs, by cutoff call, as please need to again initiated call by checking;
In stipulated time, certification user input data does not comply with requirement, and mistake exceedes specified number of times, the error in data number of times inputted by speech channel voice message has reached specified number of times, to temporarily stop to provide authentication data, this call will be aborted, and please again reach an agreement on manager as need to be again verified;
Certification show that user input data meets the requirements, by the data fit requirement that speech channel voice message inputs, and give enter user ask operating procedure.
8. a data channel distinguishes the true from the false the system of speech channel data authentication, it is characterised in that system includes: call center processes device, client terminal device and transmission network, wherein
Call center processes device, includes again: pass connection module, call module, authentication module, generation instruction module, logging modle, wherein:
Pass connection module
Speech channel delivery unit: the voice message generating unit generation for calling voice message transmits voice message by speech channel to partner;
Data channel delivery unit: the authentication data generating unit generation for calling true and false certification is pushed to given client end by data channel;
Speech channel receives unit: for receiving the user input data of speech channel the other side transmission and these data being delivered voice conversation authentication ' unit;
Data channel receives unit: for receiving authentication data that given client end sent by data channel and these data being delivered data channel authentication ' unit;
Call module
Calling unit: for calling designated mobile phone number according to instruction;
Answer unit: for connecting the calling of cell-phone number request;
Authentication module
Speech channel authentication ' unit: the data demand drawn according to data channel authentication ' unit certification, what when data that certification draws are legal, certification speech channel received that unit transmits receives whether data meet the requirements;
Data channel authentication ' unit: whether legal receive these data of certification during the data of data channel reception unit transmission, illegal, make prompting according to its reason to voice message generation unit transmission or speech channel authentication ' unit;Legal, transmitting data to voice channel authentication ' unit legal, the data that can speech channel reception unit be received are authenticated;
Generation module
True and false certification generates unit: automatically generate and correctly operated reserved authentication data last time, next time confirms authentication data, other mutual agreement data;
Voice message generates unit: automatically generate voice message;
Logging modle
Storing data record unit: record stores pre-setting authentication data, transmit the cell-phone number of user's input authentication data, cell-phone number correspondence client installs the physical address of place mobile phone;
Real-time data record unit: record is call every time, generates authentication data, and data channel transmits and receives, and speech channel transmits and receives, authentication scenario.
Client terminal device, includes again: pass connection module, privately owned call module, generation module, detection module, authentication module, logging modle, wherein
Pass connection module
Speech channel delivery unit: for transferring the data that on keyboard unit, user inputs by prompting, perform according to the certification that data channel authentication module transmits, certification show that the authentication data received is illegal, not transmits user by the data pointing out input by speech channel to call center;Certification show that the authentication data received is legal, gives to transmit user by the data pointing out input by speech channel to call center;
Data channel delivery unit: the authentication data generated for calling data authentication generation module is transmitted to call center by data channel;
Data channel receives unit: for receiving the authentication data that call center data channel transfer unit is sent by data channel, and these data are delivered data channel authentication ' unit;
Privately owned call module
Shielding harness answers unit: answers interface for shielding harness when monitoring call center numbers request call, intercepts call request and enter the called subitem of telephony unit;
Telephony unit: have caller subitem " calling ", " abandoning " or called subitem " on ", " hanging up " to select for user;
Keyboard unit: supply user's input operation when connecting call;
Voice playing unit: receive the voice message that call center's speech channel delivery unit sends, is play by receiver or speaker;
Detection module is abnormal for the generation of detecting device software program or lacks, reduce, change, change, increase concerns;
What authentication module got that data channel receives that unit transmits gives certification when receiving authentication data, and authentication result is to speech channel delivery unit transmission;
Automatically generate the PIN identification code of this trigger call SIM after data authentication generation module trigger call and correctly operated reserved authentication data, confirmation next time authentication data, other mutual agreement data last time;
Logging modle real time record is conversed every time, is generated the situation that authentication data, data channel transmission and reception, speech channel transmission, certification, user input.
Described transmission network, is available for a side request call the opposing party, and after trigger call, both sides can transmit authentication data by data channel to the other side;Call center can transmit voice message by speech channel to the other side, and client can transmit the data of user's input by speech channel to the other side.
9. system according to claim 8, it is characterised in that described call center processes device and at least bound a call center numbers, for by its request call and connection incoming call call.
10. system according to claim 8, it is characterised in that described client terminal device is mounted in the APP application program on user mobile phone, for selecting to perform to converse with call center for user.
11. system according to claim 8, it is characterised in that client data channel interface is received call center and processed the authentication data that device transmits, and its data are authenticated by authentication ' unit, and certification draws
Data are empty, assert that the other side is pseudo-call center;
Data are illegal, and speech channel delivery unit does not transmit when receiving keyboard unit user by prompting input data;
When data are legal, speech channel delivery unit transmits when receiving keyboard unit user by prompting input data.
12. system according to claim 8, it is characterized in that, call center processes device data channel reception unit and receives, by data channel interface, the authentication data that client transmits, when speech channel receives the user input data that unit receives partner transmission by speech channel interface, its data are all authenticated by authentication ' unit, and certification draws
The data that client terminal device is transmitted by data channel are illegal, and by not being inconsistent, situation is self-defined makes prompting the authentication data that not certification speech channel receives;
The data fit that client terminal device is transmitted by data channel requires, when receiving the user input data that its speech channel transmits, gives certification;
The user input data that partner speech channel transmits is undesirable, re-enters correct data for certification by speech channel voice message;
In this call stipulated time, the user input data that partner speech channel transmits is repeatedly undesirable, by the data repeatedly mistake that speech channel voice message inputs, by cutoff call, as please need to again initiated call by checking;
In stipulated time, the user input data that partner speech channel transmits does not comply with requirement, and mistake exceedes specified number of times, the error in data number of times inputted by speech channel voice message has reached specified number of times, to temporarily stop to provide authentication data, this call will be aborted, and please again reach an agreement on manager as need to be again verified;
Partner speech channel transmit user input data meet the requirements, by the data fit requirement that speech channel voice message inputs, and give enter user ask operating procedure.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610102366.9A CN105792203A (en) | 2016-02-19 | 2016-02-19 | Method and system for distinguishing authenticity through data channel and authenticating data through voice channel |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610102366.9A CN105792203A (en) | 2016-02-19 | 2016-02-19 | Method and system for distinguishing authenticity through data channel and authenticating data through voice channel |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105792203A true CN105792203A (en) | 2016-07-20 |
Family
ID=56403624
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610102366.9A Pending CN105792203A (en) | 2016-02-19 | 2016-02-19 | Method and system for distinguishing authenticity through data channel and authenticating data through voice channel |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105792203A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106411390A (en) * | 2016-09-14 | 2017-02-15 | 西安远眺卫星通信有限公司 | Internet portable terminal based on Tiantong No.1 communication satellite and communication method thereof |
| CN109636559A (en) * | 2018-12-13 | 2019-04-16 | 杭州嘿马科技有限公司 | A kind of the signing method, apparatus and contracting terminal of obligatory contract |
| EP3942788B1 (en) * | 2019-03-18 | 2023-10-25 | Capital One Services, LLC | System and method for pre-authentication of customer support calls |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101997824A (en) * | 2009-08-20 | 2011-03-30 | 中国移动通信集团公司 | Identity authentication method based on mobile terminal as well as device and system thereof |
| CN103281187A (en) * | 2013-05-17 | 2013-09-04 | 北京网秦天下科技有限公司 | Security authentication method, equipment and system |
| CN104735651A (en) * | 2015-01-22 | 2015-06-24 | 庞己人 | Method, system and device for safely transmitting data |
| CN104754572A (en) * | 2013-12-25 | 2015-07-01 | 中兴通讯股份有限公司 | Data forwarding authentication device and equipment access method |
-
2016
- 2016-02-19 CN CN201610102366.9A patent/CN105792203A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101997824A (en) * | 2009-08-20 | 2011-03-30 | 中国移动通信集团公司 | Identity authentication method based on mobile terminal as well as device and system thereof |
| CN103281187A (en) * | 2013-05-17 | 2013-09-04 | 北京网秦天下科技有限公司 | Security authentication method, equipment and system |
| CN104754572A (en) * | 2013-12-25 | 2015-07-01 | 中兴通讯股份有限公司 | Data forwarding authentication device and equipment access method |
| CN104735651A (en) * | 2015-01-22 | 2015-06-24 | 庞己人 | Method, system and device for safely transmitting data |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106411390A (en) * | 2016-09-14 | 2017-02-15 | 西安远眺卫星通信有限公司 | Internet portable terminal based on Tiantong No.1 communication satellite and communication method thereof |
| CN109636559A (en) * | 2018-12-13 | 2019-04-16 | 杭州嘿马科技有限公司 | A kind of the signing method, apparatus and contracting terminal of obligatory contract |
| EP3942788B1 (en) * | 2019-03-18 | 2023-10-25 | Capital One Services, LLC | System and method for pre-authentication of customer support calls |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8301117B2 (en) | Authenticating voice calls from mobile devices | |
| US20100197293A1 (en) | Remote computer access authentication using a mobile device | |
| US8959581B2 (en) | Switching apparatus, authentication server, authentication system, authentication method, and computer program product | |
| US9185214B2 (en) | Method and apparatus for providing enhanced communications | |
| CN105634737B (en) | Data transmission method, terminal and system | |
| CN101150631A (en) | A method and device for setting call forward | |
| CN105307158B (en) | A kind of auth method of the phone number of communication terminal | |
| US9001977B1 (en) | Telephone-based user authentication | |
| CN109413362A (en) | A kind of call voice access video-meeting method and device | |
| JP2010109619A (en) | Authentication device, authentication method, and program | |
| JP2018522323A (en) | Voice communication processing method and system, electronic apparatus, and storage medium | |
| CN105656850B (en) | Data processing method, related device and system | |
| KR20130122644A (en) | A method, device and system for verifying communication sessions | |
| CN104735651B (en) | A kind of method, system and device of securely communicating data | |
| CN105792203A (en) | Method and system for distinguishing authenticity through data channel and authenticating data through voice channel | |
| CN206993151U (en) | Network signal security authentication systems | |
| CN104348780B (en) | A kind of method and system of login | |
| CN102883313A (en) | Method for implementing privacy protection during communication, and terminal | |
| JP2016149636A (en) | Authentication apparatus, telephone terminal, authentication method and authentication program | |
| CN111327752B (en) | Call processing method, device, communication system and storage medium | |
| JP2010044654A (en) | Authentication server and authentication system equipped with same | |
| KR20050009770A (en) | A Telebanking IVR System Based On Voice Authentication Technology Using Conference Call Capabilities | |
| CN103428162A (en) | Voice dynamic password | |
| CN202872901U (en) | Terminal realizing privacy protection in communication process | |
| CN106506450B (en) | Method and system for secure call |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160720 |